25f99a1e06b33a0ac8cf1907bf808477_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25f99a1e06b33a0ac8cf1907bf808477_JaffaCakes118
Size

3.0MB
MD5

25f99a1e06b33a0ac8cf1907bf808477
SHA1

6fe0f22938f8af26966fcb5286fce262b8910e48
SHA256

120f0098073c26e2529a35298213eda120f0b40c19131e85260ea8b61d776bf6
SHA512

a8335924cc0b0667e6fa8bb504e3b39f10a93717f8051fbb9e4839f3040f0bd94645e6a30c11f95428cac4437f2b1a4cb9e2e6d1e14cd6b2626766fc1e1d28e3
SSDEEP

49152:T7GSwEBOjkzyoCdweew2g+HEaHE6uaJQT3xSUUFHOiRUdtSiQUx2GqR4Zhqm1edy:T0gGoajH+Hq9lThSjU91qR4Zz7N

Score

3^/10

Malware Config

Signatures

Unsigned PE 33 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BINKW32.DLL
unpack001/BNCLIENT.DLL
unpack001/BNUPDATE.EXE
unpack001/D2.LNG
unpack001/D2CLIENT.DLL
unpack001/D2CMP.DLL
unpack001/D2COMMON.DLL
unpack001/D2DDRAW.DLL
unpack001/D2DIRECT3D.DLL
unpack001/D2GAME.DLL
unpack001/D2GDI.DLL
unpack001/D2GFX.DLL
unpack001/D2GLIDE.DLL
unpack001/D2LANG.DLL
unpack001/D2LAUNCH.DLL
unpack001/D2Loader.exe
unpack001/D2MAPHACK.DLL
unpack001/D2MCPCLIENT.DLL
unpack001/D2MULTI.DLL
unpack001/D2NET.DLL
unpack001/D2SOUND.DLL
unpack001/D2VIDTST.EXE
unpack001/D2WIN.DLL
unpack001/DIABLOUI.DLL
unpack001/FOG.DLL
unpack001/GAME.EXE
unpack001/IJL11.DLL
unpack001/LMPQAPI.DLL
unpack001/msvcp60.dll
unpack001/plugin/d2hackmap.dll
unpack001/plugin/d2maphack.dll
unpack001/plugin/d2maphack.exe
unpack001/plugin/winkey.dll

Files

25f99a1e06b33a0ac8cf1907bf808477_JaffaCakes118
.rar
1.09战网注册表.reg
BATTLE.SNP
BINKW32.DLL
.dll windows:4 windows x86 arch:x86

327406786daf4585f7156323aaeab403

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentProcessId
HeapAlloc
CreateThread
HeapFree
RtlUnwind
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
GetProcAddress
SetErrorMode
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
GetSystemDirectoryA
GetStringTypeW
LoadLibraryA
CloseHandle
FreeLibrary
GetModuleHandleA
SetFilePointer
Sleep
ReadFile
GetWindowsDirectoryA
CreateFileA
GetModuleFileNameA
SetHandleCount
GetStdHandle
GetStringTypeA

user32

GetCursorPos
RegisterClassA
ClientToScreen
IsWindowVisible
GetClientRect
GetWindowRect
GetClassLongA
ChangeDisplaySettingsA
GetActiveWindow
GetWindowThreadProcessId
GetWindowLongA
GetWindow
GetTopWindow
MessageBoxA
CreateWindowExA
UnregisterClassA
PeekMessageA
ScreenToClient
ShowCursor
SetCursor
DestroyWindow
DefWindowProcA
BeginPaint
EndPaint
GetSystemMetrics
GetDC
ReleaseDC

winmm

timeGetTime

gdi32

SetPixel
GetPixel
GetDeviceCaps
DeleteDC
CreateDIBSection
SelectObject
DeleteObject
GetDIBits
CreateCompatibleDC
StretchBlt
SetStretchBltMode
CreateCompatibleBitmap

Exports

Exports

_BinkBufferBlit@12
_BinkBufferCheckWinPos@12
_BinkBufferClear@8
_BinkBufferClose@4
_BinkBufferGetDescription@4
_BinkBufferGetError@0
_BinkBufferLock@4
_BinkBufferOpen@16
_BinkBufferSetDirectDraw@8
_BinkBufferSetHWND@8
_BinkBufferSetOffset@12
_BinkBufferSetResolution@12
_BinkBufferSetScale@12
_BinkBufferUnlock@4
_BinkCheckCursor@20
_BinkClose@4
_BinkCloseTrack@4
_BinkCopyToBuffer@28
_BinkDDSurfaceType@4
_BinkDoFrame@4
_BinkGetError@0
_BinkGetKeyFrame@12
_BinkGetRealtime@12
_BinkGetRects@8
_BinkGetSummary@8
_BinkGetTrackData@8
_BinkGetTrackID@8
_BinkGetTrackMaxSize@8
_BinkGetTrackType@8
_BinkGoto@12
_BinkIsSoftwareCursor@8
_BinkLogoAddress@0
_BinkNextFrame@4
_BinkOpen@8
_BinkOpenDirectSound@4
_BinkOpenMiles@4
_BinkOpenTrack@8
_BinkPause@8
_BinkRestoreCursor@4
_BinkService@4
_BinkSetError@4
_BinkSetFrameRate@8
_BinkSetIOSize@4
_BinkSetPan@8
_BinkSetSimulate@4
_BinkSetSoundOnOff@8
_BinkSetSoundSystem@8
_BinkSetSoundTrack@4
_BinkSetVideoOnOff@8
_BinkSetVolume@8
_BinkWait@4
_ExpandBink@56
_ExpandBundleSizes@8
_ExpandPlane@44
_YUV_blit_16bpp@48
_YUV_blit_16bpp_mask@48
_YUV_blit_24bpp@48
_YUV_blit_24bpp_mask@48
_YUV_blit_32bpp@48
_YUV_blit_32bpp_mask@48
_YUV_blit_UYVY@48
_YUV_blit_UYVY_mask@48
_YUV_blit_YUY2@48
_YUV_blit_YUY2_mask@48
_YUV_blit_YV12@52
_YUV_init@4
_radfree@4
_radmalloc@4

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BNCLIENT.DLL
.dll windows:4 windows x86 arch:x86

b63d85bdf1574d9357017fefdca6562c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

fog

ord10008
ord10007
ord10017
ord10012
ord10005
ord10004
ord10023
ord10001
ord10006
ord10227
ord10109
ord10111
ord10107
ord10029
ord10042
ord10112
ord10000
ord10043

storm

ord601
ord609
ord606
ord603
ord628
ord638
ord636
ord622
ord612
ord501
ord624
ord548
ord280
ord542
ord550
ord541
ord465
ord510
ord428
ord509
ord279
ord494
ord571
ord421
ord266
ord268
ord265
ord269
ord251
ord267
ord506
ord253
ord252
ord426
ord425
ord424
ord401
ord491
ord422
ord403

kernel32

WriteFile
CompareStringW
VirtualFree
CompareStringA
HeapDestroy
GetVersionExA
HeapCreate
GetEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentVariableA
FreeEnvironmentStringsA
GetStartupInfoA
FreeEnvironmentStringsW
GetStdHandle
SetHandleCount
GetFileType
LCMapStringA
MultiByteToWideChar
LCMapStringW
RtlUnwind
UnhandledExceptionFilter
WideCharToMultiByte
HeapSize
HeapAlloc
HeapFree
HeapReAlloc
SetLastError
TlsFree
TlsGetValue
GetVersion
GetCommandLineA
GetTickCount
Sleep
WaitForSingleObject
CreateThread
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CloseHandle
SetFileTime
CompareFileTime
FreeLibrary
GetProcAddress
LoadLibraryA
DeleteFileA
GetFileSize
GetFileTime
GetModuleFileNameA
GetModuleHandleA
CreateProcessA
GetUserDefaultLangID
GetTimeZoneInformation
GetLocaleInfoA
GetUserDefaultLCID
SystemTimeToFileTime
GetLocalTime
GetSystemTime
SetFilePointer
ReadFile
CreateFileA
TlsSetValue
ExitThread
TlsAlloc
FlushFileBuffers
SetStdHandle
GetOEMCP
GetACP
SetEnvironmentVariableA
GetCPInfo
VirtualAlloc
GetStringTypeW
GetStringTypeA
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
GetLastError
ExitProcess

user32

CharLowerBuffA
wsprintfA

wsock32

htons
setsockopt
connect
ntohs
socket
gethostbyname
inet_addr
select
WSAGetLastError
send
ioctlsocket
recv

Exports

Exports

??4BNGatewayAccess@@QAEAAV0@ABV0@@Z
?CurGateway@BNGatewayAccess@@QAGHXZ
?DNS@BNGatewayAccess@@QAGPADH@Z
?FindKey@BNGatewayAccess@@AAEPADPAD0@Z
?FindSection@BNGatewayAccess@@AAEPADPAD0@Z
?GMT@BNGatewayAccess@@QAGHH@Z
?GetBattlenetGatewayList@BNGatewayAccess@@AAEXXZ
?GetBattlenetRealmsList@BNGatewayAccess@@AAEXXZ
?GetGatewayList@BNGatewayAccess@@AAEXPBD@Z
?GetSystemTimeZone@BNGatewayAccess@@AAEHXZ
?Load@BNGatewayAccess@@QAGXXZ
?Name@BNGatewayAccess@@QAGPADH@Z
?Nth@BNGatewayAccess@@AAEPADH@Z
?NumGateways@BNGatewayAccess@@QAGHXZ
?PickClosestZone@BNGatewayAccess@@AAEXH@Z
?Realm@BNGatewayAccess@@QAGPADH@Z
?SetCurGateway@BNGatewayAccess@@QAGXH@Z
?SkipEOL@BNGatewayAccess@@AAEPADPAD0@Z
?SkipToEOL@BNGatewayAccess@@AAEPADPAD0@Z
?Unload@BNGatewayAccess@@QAGXXZ
?UpdateGatewaysFromIni@BNGatewayAccess@@QAGXPAD@Z
?WriteDefaultGatewayList@BNGatewayAccess@@AAEXXZ
QueryInterface

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BNUPDATE.EXE
.exe windows:4 windows x86 arch:x86

65f20498265642761932ac21b2ee533d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
GetLogicalDriveStringsA
GetLocalTime
Sleep
GetTempFileNameA
SetEndOfFile
GetModuleFileNameA
CreateEventA
GetTickCount
WriteFile
SetFileTime
GetWindowsDirectoryA
SetErrorMode
CopyFileA
MoveFileA
GetModuleHandleA
CreateDirectoryA
GetDiskFreeSpaceA
LoadLibraryA
GetProcAddress
FreeLibrary
CreateFileA
GetFileSize
ReadFile
CloseHandle
DeleteFileA
GetFileAttributesA
SetLastError
SetFilePointer
InterlockedDecrement
GetCurrentDirectoryA
FindResourceA
MapViewOfFile
RaiseException
SetStdHandle
GetStringTypeA
HeapCreate
GetStringTypeW
GetVersionExA
GetEnvironmentVariableA
HeapDestroy
TlsGetValue
CreateFileMappingA
SetEvent
TlsSetValue
LeaveCriticalSection
EnterCriticalSection
ExitProcess
VirtualAlloc
VirtualFree
GetSystemInfo
DeleteCriticalSection
OutputDebugStringA
InitializeCriticalSection
HeapFree
GetProcessHeap
GetCurrentThreadId
GetLastError
InterlockedIncrement
TerminateProcess
GetExitCodeProcess
GetCurrentProcess
GetVersion
FindClose
FindFirstFileA
FormatMessageA
HeapAlloc
UnmapViewOfFile
FreeResource
SizeofResource
LockResource
LoadResource
GetStdHandle
HeapReAlloc
TlsAlloc
SetThreadPriority
CreateThread
WaitForSingleObject
GetVolumeInformationA
FlushFileBuffers
GetFullPathNameA
VirtualUnlock
VirtualLock
GetFileType
GetStartupInfoA
GetCommandLineA
WideCharToMultiByte
RtlUnwind
LCMapStringA
HeapSize
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount

user32

LoadCursorA
GetDC
LoadImageA
SetWindowPos
LoadIconA
PostQuitMessage
UpdateWindow
DefWindowProcA
DestroyWindow
FindWindowA
CreateDialogParamA
SetForegroundWindow
GetLastActivePopup
GetTopWindow
MoveWindow
LoadStringA
SetClassLongA
GetWindowRect
SetFocus
SendDlgItemMessageA
ReleaseDC
GetSystemMetrics
RegisterClassExA
DialogBoxParamA
EndDialog
wsprintfA
MessageBoxA
IsWindow
GetDlgItem
SetDlgItemTextA
CreateWindowExA
SetWindowTextA
IsWindowVisible
EnableWindow
SetTimer
GetDlgItemTextA
ShowWindow

gdi32

GetDeviceCaps
GetStockObject

advapi32

RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

comctl32

ord17

shell32

ShellExecuteA

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
D2.LNG
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 512B - Virtual size: 476B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2CLIENT.DLL
.dll windows:4 windows x86 arch:x86

73bec14163a258c592b80e787006177e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10032
ord10052
ord10089
ord10053
ord10090
ord10092
ord10063
ord10064
ord10060
ord10061
ord10093
ord10046
ord10095
ord10096
ord10102
ord10099
ord10054
ord10084
ord10082
ord10078
ord10077
ord10037
ord10038
ord10036
ord10097
ord10055
ord10040
ord10039
ord10058
ord10057
ord10056
ord10022
ord10019
ord10024
ord10051

d2common

ord10581
ord10918
ord10033
ord10111
ord10576
ord10575
ord10329
ord10030
ord10034
ord10035
ord10631
ord10057
ord10927
ord10326
ord10330
ord10926
ord10054
ord10342
ord10103
ord10118
ord10042
ord10001
ord10917
ord10633
ord10632
ord10933
ord10510
ord10932
ord10327
ord10039
ord11227
ord11226
ord10038
ord10334
ord10333
ord10078
ord10003
ord10088
ord10923
ord10104
ord10056
ord11102
ord11242
ord10582
ord10913
ord10089
ord10424
ord10348
ord10563
ord10968
ord10950
ord10517
ord10564
ord10063
ord10064
ord10521
ord10083
ord10184
ord10214
ord11073
ord10486
ord10519
ord11030
ord10953
ord11012
ord10949
ord10962
ord10518
ord11067
ord10425
ord11123
ord11126
ord10416
ord10621
ord10108
ord10028
ord10095
ord10110
ord10031
ord10392
ord10091
ord10092
ord10394
ord10332
ord11064
ord10318
ord10135
ord10344
ord10407
ord10119
ord10414
ord10402
ord10398
ord10403
ord10401
ord10802
ord10963
ord10966
ord10920
ord10912
ord10049
ord10114
ord10029
ord10032
ord10052
ord10589
ord11087
ord11142
ord11140
ord10170
ord10176
ord10175
ord10594
ord10457
ord10834
ord10759
ord10767
ord10257
ord10961
ord10323
ord10781
ord10434
ord10377
ord10958
ord10751
ord10890
ord11039
ord10760
ord11100
ord10462
ord10487
ord10942
ord10274
ord10082
ord10520
ord10324
ord10952
ord11026
ord10983
ord10979
ord10731
ord10839
ord10413
ord10502
ord10977
ord10976
ord10161
ord10361
ord11095
ord11096
ord11094
ord11105
ord10475
ord10477
ord10470
ord10985
ord10941
ord10951
ord11031
ord10957
ord11040
ord10947
ord10948
ord10120
ord10360
ord10376
ord10465
ord10980
ord10365
ord10992
ord10366
ord10996
ord10216
ord10982
ord10981
ord10993
ord10994
ord10995
ord10978
ord10991
ord10997
ord10990
ord10372
ord11133
ord11131
ord10590
ord10142
ord10188
ord10185
ord11121
ord11122
ord10914
ord11018
ord11019
ord10359
ord10984
ord11025
ord10122
ord11034
ord10130
ord10210
ord10134
ord10336
ord10146
ord10182
ord10147
ord10190
ord10179
ord10205
ord10233
ord10212
ord11056
ord10143
ord10126
ord10181
ord11037
ord11020
ord10157
ord10158
ord10203
ord11136
ord10998
ord11066
ord10160
ord11021
ord10235
ord10231
ord10349
ord10154
ord10379
ord11055
ord11053
ord10418
ord10159
ord10234
ord10399
ord10180
ord11061
ord11017
ord10141
ord10476
ord10888
ord10480
ord10397
ord10466
ord10010
ord10626
ord10007
ord10011
ord10000
ord10293
ord10628
ord10629
ord10546
ord10273
ord10539
ord10550
ord10543
ord10548
ord10541
ord10549
ord10542
ord10547
ord10540
ord10655
ord10522
ord10566
ord10565
ord10433
ord10431
ord10756
ord10765
ord10707
ord10262
ord10604
ord10610
ord10608
ord10705
ord10606
ord10703
ord10701
ord10284
ord10723
ord10725
ord10614
ord10732
ord10695
ord10699
ord10600
ord10877
ord10758
ord10815
ord10810
ord10783
ord10749
ord10409
ord10291
ord10339
ord10637
ord10636
ord10635
ord10304
ord10305
ord10816
ord10277
ord10248
ord10247
ord11107
ord10955
ord10478
ord10307
ord10821
ord10601
ord10795
ord10616
ord10572
ord10737
ord10568
ord10569
ord10739
ord10757
ord10244
ord10567
ord10811
ord11248
ord10828
ord11036
ord11003
ord11002
ord10598
ord10878
ord10842
ord10841
ord10746
ord10299
ord10245
ord10833
ord10768
ord10252
ord10772
ord10771
ord11108
ord11038
ord11023
ord10808
ord10807
ord11010
ord10844
ord10848
ord10485
ord10474
ord10483
ord10855
ord10845
ord10846
ord10843
ord10573
ord10484
ord10837
ord10836
ord10838
ord10251
ord10279
ord10907
ord10906
ord10905
ord10335
ord11085
ord11082
ord11086
ord10776
ord10438
ord11111
ord11112
ord11113
ord10153
ord10908
ord10740
ord10775
ord10879
ord10777
ord10322
ord10321
ord10826
ord10806
ord10272
ord10639
ord10271
ord10638
ord10367
ord11046
ord11045
ord10545
ord10538
ord10481
ord10258
ord11005
ord11004
ord11044
ord10544
ord10537
ord10432
ord10523
ord10524
ord10689
ord11219
ord11047
ord11033
ord11220
ord10999
ord11035
ord11032
ord11235
ord11239
ord11048
ord10964
ord10989
ord10988
ord10967
ord11029
ord11008
ord10320
ord11011
ord10902
ord10899
ord10896
ord10893
ord10895
ord10668
ord10911
ord10910
ord10901
ord10892
ord10898
ord10897
ord10900
ord10086
ord10058
ord10353
ord10832
ord10831
ord10830
ord10261
ord11148
ord11149
ord11150
ord11153
ord11146
ord11152
ord10041
ord10229
ord10634
ord10093
ord10384
ord10351
ord10350
ord10460
ord10692
ord10687
ord10422
ord10393
ord10240
ord10592
ord10101
ord10100
ord10055
ord10688
ord10386
ord10461
ord10511
ord11013
ord10369
ord10243
ord10306
ord10670
ord10669
ord10208
ord10209
ord11051
ord10464
ord10954
ord10514
ord10526
ord10708
ord10390
ord10389
ord10352
ord10527
ord10241
ord10374
ord10378
ord10883
ord10754
ord10882
ord10720
ord10254
ord10255
ord10442
ord10290
ord10840

d2game

ord10050
ord10003
ord10016
ord10036
ord10009
ord10010
ord10046
ord10005
ord10002
ord10059
ord10025
ord10006
ord10004

d2gfx

ord10077
ord10073
ord10067
ord10074
ord10017
ord10071
ord10064
ord10059
ord10047
ord10029
ord10068
ord10006
ord10008
ord10042
ord10007
ord10019
ord10060
ord10022
ord10061
ord10050
ord10020
ord10026
ord10045
ord10044
ord10058
ord10024
ord10011
ord10001
ord10028
ord10065
ord10072
ord10055
ord10057
ord10082
ord10081
ord10080
ord10056
ord10070
ord10016
ord10027
ord10018
ord10021
ord10003
ord10069
ord10066
ord10079
ord10010
ord10076
ord10075
ord10040
ord10014
ord10034
ord10005

d2lang

ord10007
?strcmp@Unicode@@SIHPBU1@0@Z
?_toLowerTable@Unicode@@0PAGA
ord10000
ord10004
ord10001
??_FUnicode@@QAEXXZ
?toUnicode@Unicode@@SIPAU1@PAU1@PBDH@Z
?strcpy@Unicode@@SIPAU1@PAU1@PBU1@@Z
?strcat@Unicode@@SIPAU1@PAU1@PBU1@@Z
?strlen@Unicode@@SIHPBU1@@Z
?sprintf@Unicode@@SAXHPAU1@PBU1@ZZ
?unicodenwidth@Unicode@@SIIPBDH@Z
ord10006
ord10010
?strncpy@Unicode@@SIPAU1@PAU1@PBU1@H@Z
ord10003
?_toUpperTable@Unicode@@0PAGA
?isLineBreak@Unicode@@SIHPBU1@I@Z
?toUtf@Unicode@@SIPADPADPBU1@H@Z
?win2Unicode@Unicode@@SIPAU1@PAU1@PBDH@Z
ord10009
?Personalize@Unicode@@SIXPAU1@PBU1@1HW4ELANGUAGE@@@Z
?strchr@Unicode@@SIPAU1@PBU1@U1@@Z
?strstr@Unicode@@SIPAU1@PBU1@0@Z

d2mcpclient

ord10003

d2net

ord10005
ord10007
ord10008
ord10026
ord10025
ord10000
ord10004
ord10023
ord10003
ord10001
ord10030
ord10017

d2sound

ord10056
ord10060
ord10059
ord10019
ord10062
ord10063
ord10064
ord10003
ord10008
ord10007
ord10045
ord10023
ord10057
ord10016
ord10017
ord10021
ord10014
ord10002
ord10013
ord10018
ord10012
ord10009
ord10027
ord10020
ord10010
ord10022
ord10011
ord10025
ord10044
ord10004
ord10006
ord10058
ord10052
ord10053
ord10050
ord10051
ord10048
ord10049
ord10046
ord10047
ord10032
ord10029
ord10031

d2win

ord10185
ord10124
ord10130
ord10116
ord10123
ord10119
ord10134
ord10168
ord10128
ord10129
ord10132
ord10131
ord10178
ord10006
ord10028
ord10161
ord10127
ord10121
ord10117
ord10199
ord10125
ord10200
ord10179
ord10019
ord10175
ord10034
ord10005
ord10176
ord10014
ord10016
ord10015
ord10172
ord10003
ord10173
ord10177
ord10171
ord10004
ord10038

fog

ord10022
ord10116
ord10029
ord10023
ord10191
ord10227
ord10145
ord10144
ord10042
ord10062
ord10060
ord10098
ord10063
ord10065
ord10064
ord10084
ord10083
ord10142
ord10061
ord10115
ord10025
ord10024
ord10130
ord10126
gdwBitMasks
ord10055
ord10043
ord10109
ord10111
ord10112
ord10110
ord10108
ord10107
ord10114
ord10013
ord10045
ord10209
ord10207
ord10210
ord10208
ord10097
ord10095
ord10094
ord10092
ord10091
ord10103
ord10105
ord10102
ord10039
ord10026
ord10104
ord10018
ord10143

storm

ord412
ord416
ord477
ord464
ord422
ord425
ord462
ord253
ord268
ord508
ord475
ord476
ord403
ord401
ord276
ord502
ord571
ord509
ord504
ord423
ord578
ord426
ord506
ord405
ord501
ord511
ord418
ord419
ord515
ord512
ord514
ord513
ord417
ord414
ord415

advapi32

GetUserNameA

imm32

ImmGetCandidateListCountA
ImmSetOpenStatus
ImmSetConversionStatus
ImmSimulateHotKey
ImmGetConversionStatus
ImmReleaseContext
ImmGetCandidateListA
ImmIsIME
ImmGetContext
ImmGetCompositionStringA
ImmGetOpenStatus

kernel32

VirtualAlloc
InterlockedDecrement
InterlockedIncrement
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
SetFilePointer
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
HeapSize
HeapAlloc
HeapReAlloc
GetModuleHandleA
GetProcAddress
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapFree
GetVersion
GetCommandLineA
ExitProcess
RtlUnwind
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
CloseHandle
CreateFileA
WriteFile
LoadLibraryExA
FreeLibrary
lstrcpynA
GetTickCount
GetModuleFileNameA
Sleep
GlobalMemoryStatus
DeleteCriticalSection
WaitForSingleObject
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringA
CreateThread
InitializeCriticalSection
GetVersionExA
lstrcpyA
ReadFile
IsBadCodePtr
GetFileSize
MultiByteToWideChar
GetSystemDefaultLangID
WideCharToMultiByte
GetCPInfo
GetLastError
TerminateProcess
GetCurrentProcess
GetACP
VirtualFree
SetEndOfFile
FlushFileBuffers
GetStringTypeA
LoadLibraryA
GetOEMCP
GetStringTypeW
SetStdHandle

user32

GetWindowRect
SetCursorPos
PtInRect
IntersectRect
GetKeyboardLayout
SetRect
RegisterWindowMessageA
FindWindowA
GetSystemMetrics
GetKeyState
GetAsyncKeyState
TranslateAcceleratorA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
PostQuitMessage
LoadAcceleratorsA
SendMessageA
MessageBoxA
wsprintfA

winmm

timeGetTime

Exports

Exports

QueryInterface

Sections

.text
Size: 808KB - Virtual size: 805KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2CMP.DLL
.dll windows:4 windows x86 arch:x86

1d52932189b8f8c76b9bd2ef45b86619

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

fog

ord10097
ord10024
ord10042
ord10043
ord10046
ord10045
ord10029
ord10105
ord10103
ord10104
ord10102
gdwBitMasks
ord10023
ord10094
ord10025
ord10022
ord10092
ord10018
ord10095
ord10091
ord10030
ord10026
ord10106

storm

ord403
ord276
ord423
ord502
ord405
ord401

kernel32

ExitProcess
TlsFree
TlsAlloc
FlushFileBuffers
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SetFilePointer
CloseHandle
ReadFile
GetFileSize
OutputDebugStringA
CreateFileA
lstrlenA
GetTickCount
IsBadCodePtr
VirtualAlloc
VirtualFree
GetLastError
GetModuleFileNameA
RtlUnwind
GetEnvironmentStrings
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
HeapReAlloc
HeapAlloc
HeapSize
HeapFree
GetCurrentThreadId
TlsSetValue
WriteFile
HeapCreate
SetLastError
TlsGetValue
GetProcAddress
GetModuleHandleA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
InterlockedIncrement
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
InterlockedDecrement
MultiByteToWideChar
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle

user32

wsprintfA

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2COMMON.DLL
.dll windows:4 windows x86 arch:x86

66a72061ccd2b9a12d4d5ac5be64fac7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10098
ord10087
ord10088
ord10079
ord10081
ord10078
ord10082
ord10085

d2lang

?strcpy@Unicode@@SIPAU1@PAU1@PBU1@@Z
ord10003
?strcat@Unicode@@SIPAU1@PAU1@PBU1@@Z
?toUnicode@Unicode@@SIPAU1@PAU1@PBDH@Z
??_FUnicode@@QAEXXZ
?strncpy@Unicode@@SIPAU1@PAU1@PBU1@H@Z
ord10013
ord10004
ord10007

fog

ord10207
ord10045
ord10046
ord10024
ord10043
ord10209
ord10023
ord10210
ord10208
ord10212
ord10211
ord10213
ord10025
ord10215
ord10029
gdwBitMasks
ord10047
ord10227
ord10042
ord10216
ord10217
ord10214
ord10018
ord10050
ord10130
ord10129
ord10126
ord10127
ord10131
ord10128
ord10084
ord10083
ord10119
ord10118
ord10120
gdwInvBitMasks
ord10026
ord10102
ord10103
ord10105
ord10104

storm

ord578
ord276
ord501

kernel32

GetLocalTime
FlushFileBuffers
GetProcAddress
GetModuleHandleA
ReadFile
SetEndOfFile
LoadLibraryA
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
LeaveCriticalSection
InterlockedDecrement
GetTickCount
IsBadCodePtr
TlsAlloc
QueryPerformanceCounter
QueryPerformanceFrequency
GetLastError
GetModuleFileNameA
SetEnvironmentVariableA
CompareStringW
CompareStringA
ExitProcess
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
GetCommandLineA
GetVersion
EnterCriticalSection
HeapFree
CloseHandle
WriteFile
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
HeapCreate
GetCurrentThreadId
TlsSetValue
VirtualFree
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
CreateFileA
GetCPInfo
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
SetStdHandle
SetFilePointer
GetStringTypeW
GetStringTypeA

user32

wsprintfA

Sections

.text
Size: 496KB - Virtual size: 494KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2DDRAW.DLL
.dll windows:4 windows x86 arch:x86

af670249b5221ac948fa973e2888ea01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10037
ord10004
ord10033
ord10040
ord10039
ord10038
ord10091
ord10055
ord10034
ord10035
ord10048

d2sound

ord10027

fog

gdwBitMasks
ord10117
ord10023
ord10043
ord10198
ord10029
ord10042
ord10022

storm

ord403
ord281
ord421
ord268
ord321
ord423
ord422

binkw32

_BinkOpenDirectSound@4
_BinkNextFrame@4
_BinkCopyToBuffer@28
_BinkDoFrame@4
_BinkWait@4
_BinkClose@4
_BinkOpen@8
_BinkDDSurfaceType@4
_BinkSetSoundSystem@8

ddraw

DirectDrawCreate

gdi32

SetBkMode
CreateFontA
CreateBitmap
SelectObject
SetTextColor
SetBkColor
CreateDCA
GetPixel
GetCharWidthA
DeleteObject
DeleteDC

kernel32

HeapSize
GetModuleHandleA
HeapReAlloc
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetVersion
InterlockedIncrement
WriteFile
HeapFree
InterlockedDecrement
HeapCreate
Sleep
LeaveCriticalSection
EnterCriticalSection
GetTickCount
CloseHandle
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
HeapDestroy
VirtualFree
GetProcAddress
SetHandleCount
HeapAlloc
VirtualAlloc
GetFileType
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
FreeEnvironmentStringsW
GetStdHandle
WideCharToMultiByte
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentVariableA
GetEnvironmentStrings
GetEnvironmentStringsW
GetVersionExA

smackw32

_SmackNextFrame@4
_SmackOpen@12
_SmackToBuffer@28
_SmackClose@4
_SmackDoFrame@4
_SmackWait@4

user32

wvsprintfA
SetRect
DrawTextA
PeekMessageA
TranslateMessage
DispatchMessageA

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2DIRECT3D.DLL
.dll windows:4 windows x86 arch:x86

6b5fe2408e2dade2275fcc91cc0b25cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10039
ord10076
ord10044
ord10040
ord10038
ord10091
ord10037
ord10055
ord10033
ord10043

d2sound

ord10027

fog

ord10029
ord10117
ord10022
ord10023
ord10043
ord10198
ord10042
gdwBitMasks

storm

ord403
ord321
ord268
ord421
ord423
ord422
ord281

binkw32

_BinkDDSurfaceType@4
_BinkOpenDirectSound@4
_BinkCopyToBuffer@28
_BinkWait@4
_BinkNextFrame@4
_BinkClose@4
_BinkOpen@8
_BinkSetSoundSystem@8
_BinkDoFrame@4

ddraw

DirectDrawCreate

gdi32

CreateFontA
CreateBitmap
SelectObject
SetTextColor
SetBkColor
SetBkMode
GetPixel
CreateDCA
DeleteObject
DeleteDC
GetCharWidthA

kernel32

DeleteCriticalSection
GetProcAddress
GetModuleHandleA
GetCommandLineA
GetVersion
InterlockedDecrement
WriteFile
HeapFree
VirtualFree
Sleep
LeaveCriticalSection
EnterCriticalSection
GetTickCount
CloseHandle
InitializeCriticalSection
GetOEMCP
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
TlsSetValue
GetACP
GetCPInfo
RtlUnwind
VirtualAlloc
InterlockedIncrement
ExitProcess
TerminateProcess
GetCurrentProcess
HeapCreate
SetHandleCount
GetVersionExA
HeapReAlloc
HeapAlloc
HeapSize
GetCurrentThreadId
GetStdHandle
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
HeapDestroy
FreeEnvironmentStringsA
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW

smackw32

_SmackToBuffer@28
_SmackNextFrame@4
_SmackClose@4
_SmackOpen@12
_SmackDoFrame@4
_SmackWait@4

user32

wvsprintfA
SetRect
DrawTextA
MoveWindow
PeekMessageA
TranslateMessage
DispatchMessageA

Sections

.text
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2GAME.DLL
.dll windows:4 windows x86 arch:x86

493a6d319ac3306db04dd9746c1abbea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10079

d2common

ord10385
ord10596
ord10344
ord10424
ord10331
ord10329
ord10328
ord10326
ord10968
ord10950
ord10085
ord10295
ord10313
ord10315
ord10316
ord10314
ord10296
ord10057
ord10034
ord10045
ord10336
ord10037
ord10513
ord10426
ord10666
ord10519
ord10298
ord10077
ord10062
ord10066
ord10342
ord10521
ord10425
ord10099
ord10035
ord10487
ord10917
ord10913
ord10920
ord10912
ord10039
ord11073
ord10074
ord10075
ord10931
ord10924
ord10076
ord10071
ord10081
ord10073
ord10056
ord10078
ord10582
ord10626
ord10600
ord10068
ord10067
ord10079
ord10080
ord10229
ord10137
ord11229
ord11230
ord10038
ord10001
ord10391
ord10189
ord10187
ord10178
ord10177
ord11029
ord10963
ord10947
ord10948
ord10397
ord10368
ord10304
ord10755
ord10305
ord10277
ord10754
ord10810
ord10881
ord10708
ord10709
ord10442
ord10720
ord10853
ord10719
ord10175
ord10176
ord10707
ord10826
ord11114
ord10517
ord10564
ord10427
ord11067
ord10311
ord10312
ord10280
ord10710
ord10711
ord10281
ord10690
ord10357
ord11012
ord11011
ord10518
ord10949
ord10618
ord10701
ord10731
ord10954
ord10514
ord10523
ord10535
ord10462
ord10524
ord10258
ord10866
ord10695
ord11107
ord10283
ord10261
ord10386
ord10352
ord10751
ord10348
ord10262
ord10439
ord10750
ord10781
ord10782
ord10257
ord10756
ord10839
ord10736
ord10520
ord10759
ord10765
ord10840
ord10242
ord10270
ord10770
ord10768
ord10299
ord10785
ord10767
ord10265
ord10376
ord10855
ord10820
ord10616
ord10811
ord10795
ord10833
ord10263
ord10264
ord10783
ord10246
ord10409
ord10250
ord10243
ord10854
ord10284
ord10384
ord10351
ord10350
ord10332
ord10249
ord10964
ord10566
ord10565
ord10289
ord10689
ord10369
ord10290
ord10322
ord10957
ord10321
ord10253
ord10455
ord10444
ord10443
ord10447
ord10448
ord10254
ord10835
ord10255
ord10267
ord10271
ord10638
ord10367
ord10276
ord10446
ord10445
ord10449
ord10450
ord10722
ord10601
ord11108
ord11109
ord10771
ord10266
ord10749
ord10867
ord10822
ord10525
ord10816
ord10821
ord10746
ord10567
ord10735
ord10516
ord10918
ord10693
ord10717
ord10828
ord10260
ord10307
ord10697
ord10699
ord10655
ord10300
ord10240
ord10475
ord10470
ord10526
ord10138
ord10042
ord10599
ord10602
ord10732
ord10604
ord10608
ord10607
ord10875
ord10694
ord10733
ord10914
ord10691
ord10793
ord10772
ord10792
ord10773
ord10791
ord10696
ord10706
ord10704
ord10702
ord10700
ord10698
ord10817
ord10815
ord10865
ord10753
ord10623
ord10728
ord10789
ord10862
ord10799
ord10797
ord10882
ord10726
ord10724
ord10718
ord10876
ord11247
ord10802
ord10082
ord10527
ord10241
ord10725
ord10723
ord10883
ord10762
ord10752
ord10672
ord10659
ord10863
ord11042
ord11041
ord10813
ord10859
ord10603
ord10739
ord10860
ord10605
ord10617
ord10610
ord10609
ord10861
ord10612
ord10611
ord10613
ord11115
ord11116
ord11126
ord10992
ord11034
ord11128
ord10415
ord11119
ord11218
ord11217
ord10398
ord10148
ord10150
ord11129
ord10142
ord10184
ord10182
ord10170
ord10179
ord10146
ord11136
ord11123
ord11121
ord10466
ord10480
ord10589
ord11127
ord11120
ord11124
ord10562
ord11095
ord10118
ord11098
ord11096
ord11094
ord11117
ord11135
ord10990
ord10437
ord10997
ord10996
ord10991
ord11140
ord11141
ord10402
ord10403
ord10401
ord11143
ord11005
ord11004
ord10594
ord11220
ord10465
ord10998
ord10127
ord10147
ord10234
ord10128
ord11142
ord11125
ord10994
ord10995
ord10201
ord10486
ord10528
ord10463
ord10477
ord10478
ord10476
ord10102
ord11036
ord10188
ord10185
ord11122
ord11003
ord11002
ord10473
ord11006
ord10976
ord11059
ord11058
ord10407
ord10119
ord10198
ord11137
ord10124
ord11130
ord11062
ord10945
ord11246
ord11075
ord10960
ord10893
ord11056
ord11068
ord10583
ord11082
ord11086
ord11084
ord10629
ord10902
ord10909
ord10901
ord10631
ord10468
ord10481
ord10668
ord10471
ord10472
ord10559
ord11050
ord10324
ord10134
ord10106
ord10161
ord10143
ord10557
ord10493
ord11060
ord10469
ord10363
ord10378
ord10373
ord11057
ord10154
ord10323
ord10984
ord10985
ord10190
ord10186
ord10180
ord10217
ord10222
ord10895
ord10530
ord10490
ord10206
ord10191
ord10158
ord10163
ord10162
ord10095
ord10046
ord10025
ord10113
ord10096
ord10592
ord11063
ord11074
ord10059
ord10097
ord10090
ord11072
ord11025
ord11064
ord10122
ord10210
ord10030
ord10974
ord10515
ord10590
ord11017
ord10121
ord10560
ord10136
ord10396
ord10624
ord10458
ord10394
ord10120
ord10625
ord10919
ord10047
ord10627
ord10087
ord10060
ord10459
ord10933
ord10428
ord10393
ord10395
ord10337
ord10285
ord11088
ord11065
ord10563
ord10291
ord10434
ord10581
ord10966
ord11023
ord10432
ord10431
ord10892
ord10400
ord10399
ord11147
ord11152
ord11151
ord10086
ord11146
ord10429
ord10485
ord10474

d2net

ord10024
ord10019
ord10021
ord10020
ord10016
ord10006
ord10014
ord10012
ord10010
ord10011
ord10015

fog

ord10046
ord10023
ord10050
ord10029
ord10030
ord10137
ord10086
ord10045
ord10025
ord10024
ord10055
ord10142
ord10143
ord10147
ord10042
ord10127
ord10128
ord10126
gdwBitMasks
ord10118
ord10119
ord10120
ord10018
ord10115
ord10129
ord10130
ord10229
ord10230

storm

ord501
ord403
ord405
ord506
ord491
ord423
ord509
ord401

kernel32

ExitProcess
GetProcAddress
HeapReAlloc
GetStringTypeA
HeapAlloc
LoadLibraryA
GetOEMCP
LCMapStringW
GetTickCount
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
IsBadCodePtr
EnterCriticalSection
QueryPerformanceCounter
Sleep
InterlockedDecrement
InterlockedIncrement
OutputDebugStringA
QueryPerformanceFrequency
GetLocalTime
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
GetStringTypeW
GetFileType
TerminateProcess
GetCurrentProcess
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetCommandLineA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapFree
LCMapStringA
GetACP
HeapSize
HeapCreate
GetModuleHandleA
CloseHandle
WriteFile
ReadFile
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
FlushFileBuffers
VirtualFree
SetFilePointer
CreateFileA
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
SetStdHandle
GetCPInfo
MultiByteToWideChar

user32

PtInRect
wsprintfA
CopyRect

winmm

timeGetTime

Sections

.text
Size: 828KB - Virtual size: 827KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2GDI.DLL
.dll windows:4 windows x86 arch:x86

de3f8c531c841ff1d4d7995c268e6b24

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10091
ord10004
ord10033
ord10040
ord10039
ord10038
ord10037
ord10055
ord10034
ord10035
ord10048

fog

ord10043
ord10029
ord10023
ord10042

storm

ord403
ord321
ord281

gdi32

CreateFontA
SetTextColor
SetBkColor
SetBkMode
CreatePalette
CreateDIBSection
DeleteObject
DeleteDC
GdiFlush
BitBlt
RealizePalette
SelectPalette
SetDIBColorTable
SelectObject
CreateCompatibleDC
SetPaletteEntries

kernel32

GetCurrentProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
SetHandleCount
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
InterlockedDecrement
ExitProcess
TerminateProcess
GetModuleHandleA
GetCommandLineA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetStringTypeW
HeapFree
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
HeapAlloc
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
WriteFile
LCMapStringW
GetStringTypeA
GetACP
GetOEMCP
HeapReAlloc
MultiByteToWideChar
GetProcAddress
LoadLibraryA
RtlUnwind
LCMapStringA

smackw32

_SmackWait@4
_SmackDoFrame@4
_SmackNextFrame@4
_SmackOpen@12
_SmackToBuffer@28
_SmackClose@4

user32

wvsprintfA
SetRect
DrawTextA
GetDC
ReleaseDC

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2GFX.DLL
.dll windows:4 windows x86 arch:x86

f8d3fd675d8ed29a02fa8e4f298a4f07

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

fog

ord10018
ord10028
ord10024
ord10029
ord10227
ord10023

storm

ord423

gdi32

GdiSetBatchLimit
GetStockObject

kernel32

HeapSize
SetLastError
TlsGetValue
GetCommandLineA
GetProcAddress
LoadLibraryA
GetLastError
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
lstrcpynA
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
HeapAlloc
CloseHandle
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
ExitProcess
GetOEMCP
GetVersion
RtlUnwind
HeapReAlloc
InterlockedIncrement
GetACP
WideCharToMultiByte
TlsSetValue
TlsAlloc
TlsFree
GetCPInfo
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
HeapCreate
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
VirtualFree
HeapFree
WriteFile
VirtualAlloc
IsBadWritePtr
SetFilePointer
InterlockedDecrement

shell32

SHAppBarMessage

user32

ShowWindow
wvsprintfA
GetWindowPlacement
IsIconic
FindWindowA
AdjustWindowRectEx
GetDesktopWindow
GetClientRect
GetSystemMetrics
ChangeDisplaySettingsA
CreateWindowExA
UpdateWindow
SetFocus
ShowCursor
DestroyWindow
SetWindowPos
UnregisterClassA
MessageBoxA
LoadImageA
LoadCursorA
RegisterClassA
wsprintfA

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2GLIDE.DLL
.dll windows:4 windows x86 arch:x86

9e6e8f23d8e61851a257b89c03c07c1c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10033
ord10076
ord10044
ord10040
ord10038
ord10039
ord10037
ord10055
ord10091
ord10043

d2sound

ord10027

fog

ord10029
ord10117
ord10023
ord10042
ord10043
ord10198

storm

ord403
ord281
ord321
ord401
ord268

binkw32

_BinkDoFrame@4
_BinkSetSoundSystem@8
_BinkOpen@8
_BinkClose@4
_BinkWait@4
_BinkOpenDirectSound@4
_BinkCopyToBuffer@28
_BinkNextFrame@4

gdi32

SetTextColor
CreateDCA
CreateFontA
CreateBitmap
SelectObject
DeleteDC
SetBkColor
SetBkMode
GetPixel
GetCharWidthA
DeleteObject

glide3x

_grDrawVertexArray@12
_grDitherMode@4
_grConstantColorValue@4
_grDrawLine@8
_grDrawVertexArrayContiguous@16
_grAlphaCombine@20
_grAlphaBlendFunction@16
_grColorCombine@20
_grTexDownloadTable@8
_grChromakeyMode@4
_grLoadGammaTable@16
_guGammaCorrectionRGB@12
_grDrawPoint@4
_grSstWinClose@4
_grSstWinOpen@28
_grCoordinateSpace@4
_grFinish@0
_grDepthMask@4
_grColorMask@8
_grTexCombine@28
_grTexFilterMode@12
_grChromakeyValue@4
_grTexMinAddress@4
_grTexMaxAddress@4
_grBufferClear@12
_grBufferSwap@4
_grGlideShutdown@0
_grGlideInit@0
_grSstSelect@4
_grGetString@4
_grGet@12
_grTexDownloadMipMap@16
_grTexSource@16
_grLfbLock@24
_grLfbUnlock@8
_grVertexLayout@12

kernel32

Sleep
GetEnvironmentStrings
GetStartupInfoA
FreeEnvironmentStringsW
TerminateProcess
FreeEnvironmentStringsA
GetCurrentProcess
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
InterlockedIncrement
InterlockedDecrement
RtlUnwind
VirtualAlloc
WriteFile
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetEnvironmentStringsW
HeapSize
WideCharToMultiByte
GetCommandLineA
ExitProcess
GetModuleFileNameA
GetFileType
GetStdHandle
SetHandleCount
GetLastError
TlsFree
LeaveCriticalSection
EnterCriticalSection
GetTickCount
CloseHandle
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
TlsGetValue
SetLastError
HeapAlloc
TlsAlloc
TlsSetValue
GetModuleHandleA
GetProcAddress
HeapReAlloc
GetVersion

smackw32

_SmackToBuffer@28
_SmackOpen@12
_SmackNextFrame@4
_SmackDoFrame@4
_SmackWait@4
_SmackClose@4

user32

wvsprintfA
SetRect
DrawTextA
TranslateMessage
DispatchMessageA
PeekMessageA

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2LANG.DLL
.dll windows:4 windows x86 arch:x86

c72ff7bb980499d7d80c1895ddaf681b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

storm

ord403
ord276
ord401

fog

ord10043
ord10029
ord10023
ord10024
ord10042
ord10102
ord10103
ord10105
ord10104
ord10026

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

kernel32

GetStartupInfoA
GetFileType
GetProfileStringA
GetVersionExA
GetLastError
GetModuleFileNameA
GetEnvironmentStringsW
GetEnvironmentStrings
CloseHandle
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
HeapReAlloc
HeapAlloc
HeapSize
SetHandleCount
GetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
LCMapStringA
GetStringTypeA
GetStringTypeW
SetFilePointer
GetCPInfo
GetACP
LCMapStringW
VirtualAlloc
RtlUnwind
GetOEMCP
GetProcAddress
LoadLibraryA
SetStdHandle
FlushFileBuffers

Exports

Exports

??0Unicode@@QAE@G@Z
??4Unicode@@QAEAAU0@ABU0@@Z
??BUnicode@@QBEGXZ
??_FUnicode@@QAEXXZ
?Personalize@Unicode@@SIXPAU1@PBU1@1HW4ELANGUAGE@@@Z
?_toLowerTable@Unicode@@0PAGA
?_toUpperTable@Unicode@@0PAGA
?compare@Unicode@@QBEHU1@@Z
?compare@Unicode@@SIHU1@0@Z
?directionality@Unicode@@QAE?AW4Direction@1@XZ
?isASCII@Unicode@@QBEHXZ
?isAlpha@Unicode@@QBEHXZ
?isLeftToRight@Unicode@@QBEHXZ
?isLineBreak@Unicode@@SIHPBU1@I@Z
?isNewline@Unicode@@QBEHXZ
?isPipe@Unicode@@QBEHXZ
?isWhitespace@Unicode@@QBEHXZ
?isWordEnd@Unicode@@SIHPBU1@I@Z
?loadSysMap@Unicode@@SIHPAUHD2ARCHIVE__@@PBD@Z
?sprintf@Unicode@@SAXHPAU1@PBU1@ZZ
?strcat@Unicode@@SIPAU1@PAU1@PBU1@@Z
?strchr@Unicode@@SIPAU1@PBU1@U1@@Z
?strcmp@Unicode@@SIHPBU1@0@Z
?strcoll@Unicode@@SIHPBU1@0@Z
?strcpy@Unicode@@SIPAU1@PAU1@PBU1@@Z
?stricmp@Unicode@@SIHPBU1@0@Z
?strlen@Unicode@@SIHPBU1@@Z
?strncat@Unicode@@SIPAU1@PAU1@PBU1@H@Z
?strncoll@Unicode@@SIHPBU1@0H@Z
?strncpy@Unicode@@SIPAU1@PAU1@PBU1@H@Z
?strnicmp@Unicode@@SIHPBU1@0I@Z
?strstr@Unicode@@SIPAU1@PBU1@0@Z
?strstri@Unicode@@SIPAU1@PBU1@0@Z
?sys2Unicode@Unicode@@SIPAU1@PAU1@PBDH@Z
?sysWidth@Unicode@@SIKPBU1@H@Z
?toLower@Unicode@@QBE?AU1@XZ
?toUnicode@Unicode@@SIPAU1@PAU1@PBDH@Z
?toUpper@Unicode@@QBE?AU1@XZ
?toUtf@Unicode@@SIPADPADPBU1@H@Z
?unicode2Sys@Unicode@@SIPADPADPBU1@H@Z
?unicode2Win@Unicode@@SIPADPADPBU1@H@Z
?unicodeWidth@Unicode@@SIKPBDH@Z
?unicodenwidth@Unicode@@SIIPBDH@Z
?unloadSysMap@Unicode@@SIXXZ
?utfnwidth@Unicode@@SIIPBU1@H@Z
?utfwidth@Unicode@@QBEHXZ
?win2Unicode@Unicode@@SIPAU1@PAU1@PBDH@Z

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2LAUNCH.DLL
.dll windows:4 windows x86 arch:x86

1828363c4f18a3d6d0a77ba3cf41852a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

bnclient

?Name@BNGatewayAccess@@QAGPADH@Z
?SetCurGateway@BNGatewayAccess@@QAGXH@Z
?Realm@BNGatewayAccess@@QAGPADH@Z

d2gfx

ord10034

d2lang

?strcat@Unicode@@SIPAU1@PAU1@PBU1@@Z
ord10004
?strncpy@Unicode@@SIPAU1@PAU1@PBU1@H@Z
?win2Unicode@Unicode@@SIPAU1@PAU1@PBDH@Z
??_FUnicode@@QAEXXZ
?toUtf@Unicode@@SIPADPADPBU1@H@Z
?toUnicode@Unicode@@SIPAU1@PAU1@PBDH@Z
?strcpy@Unicode@@SIPAU1@PAU1@PBU1@@Z
?unicode2Win@Unicode@@SIPADPADPBU1@H@Z
?strcmp@Unicode@@SIHPBU1@0@Z
?sprintf@Unicode@@SAXHPAU1@PBU1@ZZ
?isLineBreak@Unicode@@SIHPBU1@I@Z
?strlen@Unicode@@SIHPBU1@@Z
ord10006
ord10001
ord10000
ord10007
?_toUpperTable@Unicode@@0PAGA

d2mcpclient

ord10028
ord10008
ord10001
ord10046
ord10056
ord10058
ord10057
ord10003
ord10002
ord10029
ord10030
ord10031
ord10032
ord10033
ord10060
ord10061
ord10021
ord10062
ord10009
ord10055
ord10000

d2net

ord10000
ord10008
ord10025
ord10001

d2sound

ord10029
ord10034
ord10069
ord10042
ord10039
ord10037
ord10040
ord10038
ord10036
ord10027
ord10031

d2win

ord10055
ord10121
ord10009
ord10002
ord10008
ord10051
ord10030
ord10033
ord10045
ord10047
ord10025
ord10142
ord10046
ord10027
ord10048
ord10050
ord10062
ord10044
ord10087
ord10161
ord10156
ord10153
ord10152
ord10143
ord10151
ord10149
ord10158
ord10144
ord10192
ord10193
ord10188
ord10182
ord10180
ord10191
ord10195
ord10194
ord10189
ord10112
ord10007
ord10028
ord10017
ord10018
ord10029
ord10088
ord10090
ord10089
ord10185
ord10080
ord10012
ord10076
ord10072
ord10073
ord10081
ord10031
ord10053
ord10127
ord10105
ord10054
ord10035
ord10024
ord10077
ord10110
ord10104
ord10106
ord10016
ord10010
ord10004
ord10003
ord10005
ord10011
ord10038
ord10015
ord10039
ord10041
ord10171
ord10186
ord10172
ord10173
ord10049
ord10082
ord10125

fog

ord10023
ord10029
ord10227
ord10043
gdwBitMasks
gdwInvBitMasks
ord10115
ord10085
ord10042
ord10013
ord10108
ord10109
ord10110
ord10107
ord10191
ord10103
ord10104
ord10105
ord10102
ord10015
ord10086
ord10111
ord10229
ord10114
ord10112

storm

ord403
ord268
ord253
ord423
ord503
ord578
ord422
ord491
ord509
ord501
ord425
ord502
ord401
ord426

kernel32

GetCurrentThreadId
HeapFree
LCMapStringW
LCMapStringA
SetEndOfFile
GetOEMCP
GetACP
GetCPInfo
CreateFileA
FlushFileBuffers
SetStdHandle
GetProcAddress
GetLastError
LoadLibraryA
TerminateProcess
GetCurrentProcess
OutputDebugStringA
WaitForSingleObject
GetTickCount
FindClose
FindNextFileA
FindFirstFileA
GetFileSize
GetDiskFreeSpaceA
Sleep
DeleteFileA
GetFileAttributesA
SetEnvironmentVariableA
CompareStringW
CompareStringA
ExitProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetEnvironmentStrings
CloseHandle
ReadFile
GetModuleHandleA
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
SetFilePointer
GetEnvironmentStringsW
InterlockedDecrement
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
GetStringTypeA
InterlockedIncrement
HeapAlloc
MultiByteToWideChar
HeapReAlloc
GetStringTypeW
VirtualAlloc

user32

GetCursorPos
PeekMessageA
TranslateMessage
DispatchMessageA
wsprintfA
MessageBoxA

Exports

Exports

QueryInterface

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2Loader.exe
.exe windows:4 windows x86 arch:x86

aa2a55bef677f66086604e5edd462b41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

storm

ord252
ord266

msvcrt

_except_handler3
_controlfp
__set_app_type
__p__fmode
__p__commode
_initterm
_adjust_fdiv
_iob
strlen
__setusermatherr
exit
__getmainargs
_acmdln
memmove
_XcptFilter
_exit
_isctype
tolower
__mb_cur_max
strcmp
_pctype
fputc
strncpy
strcat
realloc
memcpy
strtoul
memcmp
memset
free
malloc
strcpy
time
localtime
fprintf
strftime
fflush
fgets
vfprintf
printf
fopen
_stricmp
_unlink
_strdup
fclose
freopen

kernel32

IsBadCodePtr
IsBadReadPtr
GetVersionExA
GetCommandLineA
GetStartupInfoA
SetConsoleTitleA
GetTempFileNameA
CreateProcessA
GetTempPathA
SetPriorityClass
CreateFileA
GetCurrentProcess
ExitProcess
VirtualAlloc
WinExec
CreateEventA
CloseHandle
VirtualFree
EnterCriticalSection
WaitForSingleObject
DeleteCriticalSection
InitializeCriticalSection
FindFirstFileA
LeaveCriticalSection
FindClose
LocalFree
FindNextFileA
GetLastError
FreeLibrary
FormatMessageA
GetProcAddress
GetFullPathNameA
GetModuleHandleA
GetModuleFileNameA
lstrcpynA
LoadLibraryA
IsBadWritePtr
lstrcmpiA
VirtualQuery
AllocConsole
lstrlenA
VirtualProtect
SetLastError

user32

SetLastErrorEx
ShowWindow
FindWindowA
DestroyWindow
MessageBoxA
SetWindowTextA
wsprintfA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
D2MAPHACK.DLL
.dll windows:4 windows x86 arch:x86

b0e1cfab1793878654795359c57dbdd7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileA
ReadFile
CloseHandle
GetFileSize
GetModuleFileNameA
VirtualProtect
ReadProcessMemory
GetCurrentProcess
WriteProcessMemory
HeapCreate
HeapFree
lstrcatW
GetTickCount
lstrlenA
lstrcpyA
lstrcpyW
GetLocalTime
lstrcmpA
lstrcmpiA
DisableThreadLibraryCalls
HeapAlloc
lstrlenW
GetModuleHandleA
LoadLibraryA
HeapDestroy
GetProcAddress

user32

SendMessageA
wvsprintfA
wsprintfA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

Exports

Exports

QueryInterface

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 79B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2MCPCLIENT.DLL
.dll windows:4 windows x86 arch:x86

d826ca81dcc2f7cad6083a3e21d0c91a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

fog

ord10068
ord10012
ord10071
ord10075
ord10016
ord10079
ord10073
ord10077
ord10014
ord10069
ord10072
ord10023
ord10042
ord10043
ord10070

storm

ord506
ord501

kernel32

GetEnvironmentStrings
WideCharToMultiByte
SetEvent
CreateThread
Sleep
WaitForSingleObject
GetTickCount
CreateEventA
CloseHandle
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCPInfo
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
HeapAlloc
LCMapStringW
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
RtlUnwind
MultiByteToWideChar
LCMapStringA
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2MULTI.DLL
.dll windows:4 windows x86 arch:x86

08aad2907cfda01d5959e373d8dfb801

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2lang

ord10000
?toUnicode@Unicode@@SIPAU1@PAU1@PBDH@Z
?strlen@Unicode@@SIHPBU1@@Z
ord10012
?sprintf@Unicode@@SAXHPAU1@PBU1@ZZ
?win2Unicode@Unicode@@SIPAU1@PAU1@PBDH@Z
ord10007
?strncat@Unicode@@SIPAU1@PAU1@PBU1@H@Z
?strstr@Unicode@@SIPAU1@PBU1@0@Z
?strcat@Unicode@@SIPAU1@PAU1@PBU1@@Z
?strcpy@Unicode@@SIPAU1@PAU1@PBU1@@Z
?toUtf@Unicode@@SIPADPADPBU1@H@Z
??_FUnicode@@QAEXXZ
ord10004
ord10001
?unicode2Win@Unicode@@SIPADPADPBU1@H@Z

d2mcpclient

ord10020
ord10046
ord10019
ord10017
ord10005
ord10016
ord10003
ord10030
ord10031
ord10009
ord10000
ord10002
ord10055
ord10052
ord10053
ord10001
ord10048
ord10004
ord10027
ord10059
ord10012
ord10006
ord10007
ord10050
ord10018
ord10054
ord10049
ord10015

d2sound

ord10036
ord10069
ord10034
ord10038
ord10037

d2win

ord10077
ord10039
ord10041
ord10009
ord10051
ord10030
ord10033
ord10017
ord10025
ord10159
ord10018
ord10031
ord10076
ord10012
ord10073
ord10072
ord10081
ord10044
ord10027
ord10045
ord10075
ord10048
ord10049
ord10050
ord10011
ord10170
ord10008
ord10146
ord10114
ord10107
ord10007
ord10038
ord10016
ord10005
ord10015
ord10047
ord10052
ord10055
ord10196
ord10054
ord10058
ord10161
ord10057
ord10188
ord10197
ord10182
ord10180
ord10060
ord10059
ord10062
ord10056
ord10204
ord10198
ord10013
ord10099
ord10101
ord10156
ord10155
ord10152
ord10151
ord10169
ord10149
ord10153
ord10158
ord10110
ord10144
ord10154
ord10142
ord10160
ord10080
ord10061
ord10046
ord10109
ord10078
ord10024
ord10053
ord10082
ord10145

fog

ord10013
ord10109
ord10111
ord10107
gdwBitMasks
gdwInvBitMasks
ord10085
ord10029
ord10138
ord10014
ord10042
ord10023
ord10043
ord10227

storm

ord426
ord494
ord501
ord571
ord423

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

kernel32

TlsFree
LCMapStringA
LCMapStringW
WideCharToMultiByte
MultiByteToWideChar
FlushFileBuffers
SetStdHandle
LoadLibraryA
GetTickCount
CloseHandle
CreateProcessA
WaitForSingleObject
DeleteFileA
GetTempFileNameA
GetTempPathA
ExitProcess
TerminateProcess
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
GetVersionExA
SetLastError
TlsGetValue
GetLastError
GetProcAddress
HeapFree
WriteFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
SetFilePointer
HeapAlloc
GetCPInfo
RtlUnwind
VirtualAlloc
HeapReAlloc
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP

user32

SetRect
GetDesktopWindow
SetForegroundWindow
wsprintfA

Exports

Exports

QueryInterface

Sections

.text
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2NET.DLL
.dll windows:4 windows x86 arch:x86

e572a820c286342acf7ef85ee96cfaac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

fog

ord10156
ord10015
ord10024
ord10042
ord10000
ord10043
ord10224
ord10023
ord10219
ord10175
ord10154
ord10149
ord10186
ord10187
ord10151
ord10180
ord10178
ord10152
ord10050
ord10157
ord10223
ord10222
ord10159
ord10162
ord10163
ord10164
ord10166
ord10165
ord10170
ord10171
ord10172
ord10173
ord10177
ord10182
ord10183

storm

ord506
ord501

kernel32

GetStdHandle
GetFileType
SetLastError
TlsGetValue
LeaveCriticalSection
SetThreadPriority
CreateThread
WaitForSingleObject
InitializeCriticalSection
DeleteCriticalSection
ExitThread
OutputDebugStringA
GetTickCount
InterlockedIncrement
InterlockedDecrement
GetEnvironmentStrings
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
EnterCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
GetStringTypeW
VirtualFree
GetLastError
SetHandleCount
WriteFile
HeapFree
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualAlloc
LCMapStringW
GetStringTypeA
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
HeapReAlloc
MultiByteToWideChar
GetProcAddress
LoadLibraryA
RtlUnwind
LCMapStringA

wsock32

WSAStartup
send
select
__WSAFDIsSet
recv
inet_addr
socket
WSAGetLastError
htons
ioctlsocket
connect
getsockname

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2SOUND.DLL
.dll windows:4 windows x86 arch:x86

a95851aaff7d044516ccc0ff2bf18c09

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2gfx

ord10027

fog

ord10103
ord10042
ord10105
ord10023
ord10043
ord10104
ord10029
ord10102
ord10026

storm

ord257
ord423
ord426
ord276
ord255
ord256
ord260
ord258

dsound

ord1
ord2

kernel32

ExitProcess
GetCurrentThreadId
GetProcAddress
GetModuleHandleA
RaiseException
LCMapStringA
GetStringTypeW
LCMapStringW
GetWindowsDirectoryA
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
CreateThread
CreateEventA
GetTickCount
WaitForSingleObject
CloseHandle
SetEvent
Sleep
UnmapViewOfFile
GetLastError
SetLastError
MapViewOfFile
CreateFileMappingA
CreateFileA
GetModuleFileNameA
GetEnvironmentStrings
TerminateProcess
GetCurrentProcess
RtlUnwind
GetCommandLineA
GetVersion
HeapDestroy
GetVersionExA
GetStringTypeA
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
InterlockedDecrement
GetEnvironmentStringsW
GetEnvironmentVariableA
MultiByteToWideChar
HeapCreate
VirtualFree
HeapFree
WriteFile
HeapAlloc
GetOEMCP
InterlockedIncrement
VirtualAlloc
GetCPInfo
GetACP
LoadLibraryA
HeapReAlloc

version

VerQueryValueA

user32

IsIconic

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
D2VIDTST.EXE
.exe windows:4 windows x86 arch:x86

b16cf117ca9e882db02f4d0ecb0421f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

storm

ord253
ord252
ord269
ord267
ord266

fog

ord10019
gdwInvBitMasks
gdwBitMasks
ord10022
ord10029

ddraw

DirectDrawEnumerateA
DirectDrawCreate

user32

LoadStringA
LoadCursorA
DialogBoxIndirectParamA
DialogBoxParamA
wvsprintfA
CreateDialogIndirectParamA
CreateDialogParamA
CreateWindowExA
EnumDisplaySettingsA
SetCursor
DefWindowProcA
RegisterClassA
SendMessageA
PostMessageA
SetForegroundWindow
SetActiveWindow
SetFocus
BringWindowToTop
GetWindowTextA
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
EndDialog
MessageBoxA
DestroyWindow
UnregisterClassA
ShowWindow
GetDlgItem
SetWindowTextA

gdi32

GetStockObject

kernel32

RtlUnwind
TlsGetValue
WideCharToMultiByte
CloseHandle
FlushFileBuffers
LCMapStringW
LCMapStringA
ReadFile
SetStdHandle
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
TlsSetValue
lstrlenA
SleepEx
CreateThread
GetLastError
CreateEventA
SetLastError
GetProcAddress
LoadLibraryA
LockResource
LoadResource
FindResourceExA
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
lstrcpynA
TerminateProcess
GetCurrentProcess
GetEnvironmentStringsW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetCurrentThreadId
GetEnvironmentVariableA
TlsAlloc
GetVersionExA
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
HeapCreate
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
InterlockedIncrement
HeapDestroy
VirtualFree
HeapFree
WriteFile
HeapReAlloc
HeapAlloc
HeapSize

advapi32

RegDeleteValueA
RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
D2WIN.DLL
.dll windows:4 windows x86 arch:x86

63fe0f403102ae0ac27d237181b45251

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d2cmp

ord10040
ord10055
ord10046
ord10039
ord10038
ord10037
ord10036
ord10024
ord10051
ord10032
ord10054
ord10052
ord10053
ord10004

d2gfx

ord10025
ord10046
ord10048
ord10035
ord10028
ord10049
ord10036
ord10038
ord10037
ord10047
ord10044
ord10026
ord10033
ord10032
ord10024
ord10023
ord10000
ord10041
ord10075
ord10055
ord10073
ord10003
ord10074
ord10027
ord10058
ord10056
ord10045
ord10031
ord10030
ord10052
ord10072

d2lang

?strncpy@Unicode@@SIPAU1@PAU1@PBU1@H@Z
ord10003
?sprintf@Unicode@@SAXHPAU1@PBU1@ZZ
?isLineBreak@Unicode@@SIHPBU1@I@Z
?strnicmp@Unicode@@SIHPBU1@0I@Z
ord10007
ord10004
?unicode2Win@Unicode@@SIPADPADPBU1@H@Z
??_FUnicode@@QAEXXZ
?strcpy@Unicode@@SIPAU1@PAU1@PBU1@@Z
?strcat@Unicode@@SIPAU1@PAU1@PBU1@@Z
?win2Unicode@Unicode@@SIPAU1@PAU1@PBDH@Z
?strlen@Unicode@@SIHPBU1@@Z
?toUnicode@Unicode@@SIPAU1@PAU1@PBDH@Z

fog

ord10039
ord10209
ord10207
ord10045
ord10210
ord10208
ord10215
ord10211
ord10025
ord10227
ord10117
ord10116
gdwInvBitMasks
ord10029
ord10109
ord10107
ord10026
ord10105
ord10104
ord10043
gdwBitMasks
ord10102
ord10103
ord10042
ord10023
ord10024

storm

ord403
ord416
ord513
ord414
ord503
ord401
ord501
ord415
ord276
ord252
ord266
ord514
ord515
ord512
ord511
ord412
ord417

ijl11

ord5
ord3
ord2

kernel32

QueryPerformanceFrequency
GetLocalTime
GetCommandLineA
GetCPInfo
HeapAlloc
HeapFree
VirtualFree
SetEnvironmentVariableA
CompareStringW
CompareStringA
CloseHandle
GetTickCount
GetFileAttributesA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
ExitProcess
QueryPerformanceCounter
DeleteFileA
GetLastError
Sleep
GetModuleFileNameA
lstrcpyA
lstrcatA
GetDriveTypeA
GetLogicalDriveStringsA
FlushFileBuffers
SetStdHandle
RtlUnwind
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
SetFilePointer
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetProcAddress
InterlockedIncrement
WriteFile
HeapCreate
GetModuleHandleA
GetEnvironmentVariableA
GetEnvironmentStringsW
GetVersionExA
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
TlsSetValue
TlsAlloc
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
HeapDestroy
SetHandleCount
GetCurrentThreadId
GetStdHandle
WideCharToMultiByte
TlsFree
SetLastError
TlsGetValue
FreeEnvironmentStringsW
GetEnvironmentStrings
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA

user32

SetClipboardData
PostQuitMessage
DefWindowProcA
SetCursorPos
PtInRect
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
EmptyClipboard
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
MessageBoxA
SetRect
wsprintfA

d2sound

ord10069
ord10065
ord10034
ord10070
ord10039
ord10066

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 705KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DEFAULT.KEY
DIABLOUI.DLL
.dll windows:4 windows x86 arch:x86

df9841e1fa35f83ba4ebca01e7b88f23

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
CreateFileA
FlushFileBuffers
SetStdHandle
VirtualAlloc
GetLocaleInfoA
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
SetFilePointer
IsBadWritePtr
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
WideCharToMultiByte
DeleteFileA
UnhandledExceptionFilter
TlsGetValue
SetLastError
TlsFree
TlsAlloc
GetCurrentThreadId
HeapSize
SetEndOfFile
LoadLibraryA
CompareStringA
ReadFile
GetLocaleInfoW
CompareStringW
SetEnvironmentVariableA
SizeofResource
GlobalMemoryStatus
GetModuleHandleA
LockResource
FindResourceA
LoadResource
MulDiv
FreeResource
GetTimeZoneInformation
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
InitializeCriticalSection
HeapAlloc
GetProcAddress
HeapReAlloc
GetCurrentProcess
TerminateProcess
HeapFree
ExitProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CloseHandle
ExitThread
GetVersion
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
GetLastError
TlsSetValue
CreateThread
ResumeThread
RtlUnwind

user32

InvalidateRect
IsWindowEnabled
GetKeyState
IsWindowVisible
IsWindow
PostQuitMessage
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
MessageBoxA
DrawTextA
PeekMessageA
GetNextDlgGroupItem
CallWindowProcA
RemovePropA
GetWindowTextA
GetPropA
SetPropA
DefWindowProcA
RegisterClassA
BeginPaint
EndPaint
ScreenToClient
UpdateWindow
wsprintfA
SetWindowLongA
ShowCursor
SetWindowTextA
GetFocus
SetRect
OffsetRect
LoadCursorA
GetDlgItem
SetFocus
SetForegroundWindow
SetActiveWindow
ShowWindow
LoadStringA
GetCursorPos
GetWindowRect
GetClientRect
GetDesktopWindow
GetDC
ReleaseDC
PtInRect
SendDlgItemMessageA
SendMessageA
GetWindowLongA
GetParent
PostMessageA
EnableWindow

gdi32

CreatePalette
GetPaletteEntries
MoveToEx
SetTextAlign
SetBkColor
GetCurrentPositionEx
GetTextExtentExPointA
TextOutA
GetTextMetricsA
SelectObject
ExtTextOutA
CreateFontA
DeleteObject
GetTextExtentPoint32A
CreateFontIndirectA
CreateCompatibleDC
GetObjectA
SetTextColor
GetStockObject
DeleteDC

shell32

FindExecutableA
ShellExecuteA

storm

ord117
ord494
ord421
ord279
ord503
ord501
ord202
ord313
ord357
ord215
ord463
ord101
ord219
ord213
ord465
ord391
ord210
ord118
ord104
ord343
ord212
ord201
ord218
ord217
ord205
ord220
ord203
ord315
ord105
ord102
ord428
ord425
ord422
ord125
ord103
ord116
ord323
ord314
ord386
ord389
ord390
ord506
ord393
ord385
ord383
ord216
ord346
ord206
ord211
ord209
ord431
ord401
ord267
ord265
ord269
ord253
ord433
ord403
ord434
ord424

Exports

Exports

UiAppActivate
UiArtCallback
UiAuthCallback
UiBetaDisclaimer
UiCategoryCallback
UiCopyProtError
UiCreateGameCallback
UiCreateGameCriteria
UiCreatePlayerDescription
UiCreditsDialog
UiDestroy
UiDrawDescCallback
UiGetDataCallback
UiGetDefaultStats
UiInitialize
UiMainMenuDialog
UiMessageBoxCallback
UiOnPaint
UiProfileCallback
UiProfileDraw
UiProfileGetString
UiProgressDialog
UiSelHeroMultDialog
UiSelHeroSingDialog
UiSelectGame
UiSelectProvider
UiSelectRegion
UiSetBackgroundBitmap
UiSetSpawned
UiSetupPlayerInfo
UiSoundCallback
UiTitleDialog
UiValidPlayerName

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FOG.DLL
.dll windows:4 windows x86 arch:x86

7ab067717b3acf0af08506d9fc0f55c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

storm

ord401
ord508
ord501
ord403
ord405
ord491
ord572
ord422
ord425
ord265
ord571
ord271
ord267
ord289
ord253
ord274
ord270
ord263
ord506
ord286
ord304
ord283
ord423
ord503
ord285
ord282
ord284
ord509
ord494
ord502
ord578

advapi32

GetUserNameA

kernel32

CreateFileA
SetFilePointer
CreateDirectoryA
GetCurrentProcess
SetLastError
GetModuleFileNameA
TlsAlloc
TlsSetValue
TlsFree
HeapSize
IsBadWritePtr
GetCurrentThreadId
HeapDestroy
LCMapStringW
HeapCreate
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
GetVersion
GetCommandLineA
GetTimeZoneInformation
HeapReAlloc
GetSystemTime
HeapAlloc
RtlUnwind
HeapFree
ExitProcess
TlsGetValue
TerminateProcess
GetStdHandle
GetFileType
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
SetEvent
IsBadCodePtr
Sleep
WaitForSingleObject
CreateThread
CreateEventA
InterlockedIncrement
InterlockedDecrement
GetTickCount
ExitThread
OutputDebugStringA
CreateIoCompletionPort
GetLastError
CloseHandle
WaitForMultipleObjects
QueryPerformanceCounter
GetQueuedCompletionStatus
ReadFile
WriteFile
GlobalMemoryStatus
VirtualAlloc
VirtualFree
RaiseException
EnterCriticalSection
QueryPerformanceFrequency
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetDiskFreeSpaceA
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
ResetEvent
GetFileAttributesA
GetLocalTime
DeleteFileA
GetComputerNameA
GetSystemInfo
SetUnhandledExceptionFilter
DuplicateHandle
CompareStringW
SetHandleCount
VirtualQuery
FormatMessageA
GetModuleHandleA
GetThreadContext
ResumeThread
SuspendThread
IsBadReadPtr
GetCurrentProcessId
GetEnvironmentVariableA
GetCurrentDirectoryA
GetACP
GetOEMCP
GetStartupInfoA
FindClose
FindNextFileA
MoveFileA
FindFirstFileA
RemoveDirectoryA
SystemTimeToFileTime
SetEnvironmentVariableA
GetStringTypeW
CompareStringA
SetEndOfFile
FreeEnvironmentStringsA
FlushFileBuffers
SetStdHandle
GetStringTypeA
GetEnvironmentStrings
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW

user32

GetKeyState
MessageBoxA

wsock32

ioctlsocket
connect
getsockname
__WSAFDIsSet
shutdown
closesocket
select
WSASetLastError
accept
recv
gethostname
gethostbyname
setsockopt
inet_ntoa
htons
bind
listen
getpeername
WSAGetLastError
inet_addr
WSACleanup
WSAStartup
send
socket

Exports

Exports

PERFORMANCE_ACCUMULATOR
PERFORMANCE_ACCUMULATOR_INDEX
PERFORMANCE_FREQUENCY_TICKS_PER_MICROSEC
PERFORMANCE_FREQUENCY_TICKS_PER_MILLISEC
gcsCriticalSectionTimer
gdwBitMasks
gdwInvBitMasks
gfTimeCriticalSections
gqwCriticalSectionTimer

Sections

.text
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GAME.EXE
.exe windows:4 windows x86 arch:x86

890de37a4ee2f02d25d21dd8557d2505

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetTempPathA
GetModuleFileNameA
FindClose
FindNextFileA
FindFirstFileA
CreateFileA
CloseHandle
WaitForSingleObject
SetThreadContext
WriteProcessMemory
VirtualProtectEx
GetThreadContext
SuspendThread
Sleep
UnmapViewOfFile
GetEnvironmentVariableA
FreeLibrary
MapViewOfFile
CreateFileMappingA
SetFilePointer
GetCurrentProcessId
SleepEx
CreateThread
WriteFile
GetTempFileNameA
CreateMailslotA
SetEnvironmentVariableA
CreateProcessA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetFileSize
DeleteFileA
GetVersionExA
GetExitCodeProcess
TerminateProcess
WaitForDebugEvent
DebugActiveProcess
GetLastError
ResumeThread
ReadFile
LoadLibraryA
GetStringTypeW
ContinueDebugEvent
FlushFileBuffers
HeapFree
ExitProcess
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
RtlUnwind
GetVersion
FreeEnvironmentStringsA
FreeEnvironmentStringsW
HeapAlloc
GetCurrentProcess
UnhandledExceptionFilter

user32

MessageBoxA
EnumWindows
SendMessageTimeoutA
GetWindowThreadProcessId
DestroyWindow
SystemParametersInfoA
CreateDialogParamA
UpdateWindow
SetTimer
GetDlgItem
TranslateMessage
BeginPaint
EndPaint
LoadCursorA
GetSystemMetrics
ShowWindow
KillTimer
PostQuitMessage
DefWindowProcA
RegisterClassA
CreateWindowExA
GetMessageA
SetWindowTextA
DispatchMessageA

gdi32

CreateDIBitmap
RealizePalette
DeleteDC
CreateDCA
CreatePalette
SelectPalette
SelectObject
CreateCompatibleDC
BitBlt
DeleteObject

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IJL11.DLL
.dll windows:4 windows x86 arch:x86

eb6df2cdc437fbaf0d983ed099e6f072

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringA
CloseHandle
WriteFile
LocalFree
LocalAlloc
SetFilePointer
ReadFile
GetCurrentThreadId
GetModuleFileNameA
GetLastError
FreeEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsA
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
HeapAlloc
HeapFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
CreateFileA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetACP
FlushFileBuffers
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
InterlockedDecrement
InterlockedIncrement
VirtualAlloc
HeapReAlloc
GetCPInfo
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle

user32

PostQuitMessage
wsprintfA
MessageBoxA
PeekMessageA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Exports

Exports

ijlErrorStr
ijlFree
ijlGetLibVersion
ijlInit
ijlRead
ijlWrite

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LISTFILE.DAT
LMPQAPI.DLL
.dll windows:4 windows x86 arch:x86

70b13111737d6c7e22c2b3d023377cca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WaitForSingleObject
MapViewOfFile
CloseHandle
CreateEventA
CreateFileMappingA
WriteProcessMemory
SetThreadContext
GetProcAddress
GetModuleHandleA
GetThreadContext
CreateProcessA
GetFileAttributesA
GetModuleFileNameA
InitializeCriticalSection
lstrcpyA
lstrlenA
DeleteCriticalSection
TerminateProcess
LeaveCriticalSection
SetEvent
ResumeThread
UnmapViewOfFile
DuplicateHandle
GetCurrentProcess
VirtualProtect
GetLastError
OpenFileMappingA
OpenEventA
GetCurrentProcessId
lstrcpynA
VirtualFree
WriteFile
ReadFile
VirtualAlloc
SetFilePointer
SetEndOfFile
ExitProcess
GetTempFileNameA
GetTempPathA
SetLastError
lstrcmpA
EnterCriticalSection
CreateFileA
LoadLibraryA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
RtlUnwind
GetStringTypeA
GetStringTypeW
GetStdHandle
GetACP
GetOEMCP
GetCPInfo

user32

MessageBoxA
FindWindowA
wsprintfA
CharUpperA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

Exports

Exports

MpqAddFileToArchive
MpqAddWaveToArchive
MpqCloseUpdatedArchive
MpqCompactArchive
MpqDeleteFile
MpqGetVersion
MpqGetVersionString
MpqInitialize
MpqOpenArchiveForUpdate
MpqRenameFile
SFileCloseArchive
SFileCloseFile
SFileGetFileInfo
SFileGetFileSize
SFileOpenArchive
SFileOpenFileEx
SFileReadFile
SFileSetFilePointer
SFileSetLocale

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
anhei3.net战网主页.url
.url
msvcp60.dll
.dll windows:4 windows x86 arch:x86

a7a98f9c2f55921feb823b6f7e5ce74f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

memchr
__CxxFrameHandler
_EH_prolog
free
localeconv
_Gettnames
_Getdays
_Getmonths
__mb_cur_max
atan2
cos
exp
ldexp
log
pow
sin
sqrt
??2@YAPAXI@Z
strtoul
_errno
strtol
sprintf
strcspn
fclose
fwrite
fputc
ungetc
fgetc
fgetpos
fseek
fsetpos
setvbuf
memmove
memset
ungetwc
fgetwc
_Strftime
fopen
_iob
setlocale
malloc
realloc
__crtCompareStringA
__lc_collate_cp
_unlock
__lc_handle
_lock
__setlc_active
__unguarded_readlc_active
__crtLCMapStringA
__lc_codepage
towlower
towupper
strcmp
_pctype
_isctype
_ftol
strtod
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
memcpy
strlen
memcmp
wcslen
??4exception@@QAEAAV0@ABV0@@Z
_CxxThrowException
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z
?what@exception@@UBEPBDXZ
fflush
fputwc

kernel32

DisableThreadLibraryCalls
MultiByteToWideChar
LeaveCriticalSection
DeleteCriticalSection
InterlockedExchange
InitializeCriticalSection
Sleep
EnterCriticalSection
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement

Exports

Exports

??0?$_Complex_base@M@std@@QAE@ABM0@Z
??0?$_Complex_base@N@std@@QAE@ABN0@Z
??0?$_Complex_base@O@std@@QAE@ABO0@Z
??0?$_Mpunct@D@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@D@std@@QAE@I_N@Z
??0?$_Mpunct@G@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@G@std@@QAE@I_N@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@IIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG0ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGIABV?$allocator@G@1@@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$collate@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@D@std@@QAE@I@Z
??0?$collate@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@G@std@@QAE@I@Z
??0?$complex@M@std@@QAE@ABM0@Z
??0?$complex@M@std@@QAE@ABV?$complex@N@1@@Z
??0?$complex@M@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@N@std@@QAE@ABN0@Z
??0?$complex@N@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@N@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@O@std@@QAE@ABO0@Z
??0?$complex@O@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@O@std@@QAE@ABV?$complex@N@1@@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$messages@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@D@std@@QAE@I@Z
??0?$messages@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@G@std@@QAE@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$moneypunct@D$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$00@std@@QAE@I@Z
??0?$moneypunct@D$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$0A@@std@@QAE@I@Z
??0?$moneypunct@G$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$00@std@@QAE@I@Z
??0?$moneypunct@G$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$0A@@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$numpunct@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$numpunct@D@std@@QAE@I@Z
??0?$numpunct@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$numpunct@G@std@@QAE@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0Init@ios_base@std@@QAE@XZ
??0_Locinfo@std@@QAE@ABV01@@Z
??0_Locinfo@std@@QAE@HPBD@Z
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@XZ
??0_Timevec@std@@QAE@ABV01@@Z
??0_Timevec@std@@QAE@PAX@Z
??0_Winit@std@@QAE@XZ
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_alloc@std@@QAE@ABV01@@Z
??0bad_alloc@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_exception@std@@QAE@ABV01@@Z
??0bad_exception@std@@QAE@PBD@Z
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0codecvt_base@std@@QAE@I@Z
??0ctype_base@std@@QAE@I@Z
??0domain_error@std@@QAE@ABV01@@Z
??0domain_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0facet@locale@std@@IAE@I@Z
??0ios_base@std@@IAE@XZ
??0ios_base@std@@QAE@ABV01@@Z
??0length_error@std@@QAE@ABV01@@Z
??0length_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0locale@std@@AAE@PAV_Locimp@01@@Z
??0locale@std@@QAE@ABV01@0H@Z
??0locale@std@@QAE@ABV01@@Z
??0locale@std@@QAE@ABV01@PBDH@Z
??0locale@std@@QAE@PBDH@Z
??0locale@std@@QAE@W4_Uninitialized@1@@Z
??0locale@std@@QAE@XZ
??0logic_error@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0messages_base@std@@QAE@I@Z
??0money_base@std@@QAE@I@Z
??0ostrstream@std@@QAE@PADHH@Z
??0out_of_range@std@@QAE@ABV01@@Z
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0overflow_error@std@@QAE@ABV01@@Z
??0overflow_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0range_error@std@@QAE@ABV01@@Z
??0range_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0runtime_error@std@@QAE@ABV01@@Z
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0strstream@std@@QAE@PADHH@Z
??0time_base@std@@QAE@I@Z
??0underflow_error@std@@QAE@ABV01@@Z
??0underflow_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??1?$_Mpunct@D@std@@UAE@XZ
??1?$_Mpunct@G@std@@UAE@XZ
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_filebuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_fstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_fstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ifstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ifstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_ofstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ofstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??1?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$codecvt@DDH@std@@UAE@XZ
??1?$codecvt@GDH@std@@UAE@XZ
??1?$collate@D@std@@UAE@XZ
??1?$collate@G@std@@UAE@XZ
??1?$ctype@D@std@@UAE@XZ
??1?$ctype@G@std@@UAE@XZ
??1?$messages@D@std@@UAE@XZ
??1?$messages@G@std@@UAE@XZ
??1?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$moneypunct@D$00@std@@UAE@XZ
??1?$moneypunct@D$0A@@std@@UAE@XZ
??1?$moneypunct@G$00@std@@UAE@XZ
??1?$moneypunct@G$0A@@std@@UAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$numpunct@D@std@@UAE@XZ
??1?$numpunct@G@std@@UAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Timevec@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_alloc@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_exception@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1codecvt_base@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??1domain_error@std@@UAE@XZ
??1facet@locale@std@@UAE@XZ
??1ios_base@std@@UAE@XZ
??1istrstream@std@@UAE@XZ
??1length_error@std@@UAE@XZ
??1locale@std@@QAE@XZ
??1logic_error@std@@UAE@XZ
??1messages_base@std@@UAE@XZ
??1money_base@std@@UAE@XZ
??1ostrstream@std@@UAE@XZ
??1out_of_range@std@@UAE@XZ
??1overflow_error@std@@UAE@XZ
??1range_error@std@@UAE@XZ
??1runtime_error@std@@UAE@XZ
??1strstream@std@@UAE@XZ
??1strstreambuf@std@@UAE@XZ
??1time_base@std@@UAE@XZ
??1underflow_error@std@@UAE@XZ
??4?$_Complex_base@M@std@@QAEAAV01@ABV01@@Z
??4?$_Complex_base@N@std@@QAEAAV01@ABV01@@Z
??4?$_Complex_base@O@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@M@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@N@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@O@std@@QAEAAV01@ABV01@@Z
??4?$allocator@X@std@@QAEAAV01@ABV01@@Z
??4?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_fstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ios@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ios@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??4?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$char_traits@D@std@@QAEAAU01@ABU01@@Z
??4?$char_traits@G@std@@QAEAAU01@ABU01@@Z
??4?$complex@M@std@@QAEAAV01@ABM@Z
??4?$complex@M@std@@QAEAAV01@ABV01@@Z
??4?$complex@N@std@@QAEAAV01@ABN@Z
??4?$complex@N@std@@QAEAAV01@ABV01@@Z
??4?$complex@O@std@@QAEAAV01@ABO@Z
??4?$complex@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@C@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@D@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@E@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@F@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@G@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@H@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@I@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@J@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@K@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@M@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@N@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_N@std@@QAEAAV01@ABV01@@Z
??4Init@ios_base@std@@QAEAAV012@ABV012@@Z
??4_Locinfo@std@@QAEAAV01@ABV01@@Z
??4_Lockit@std@@QAEAAV01@ABV01@@Z
??4_Num_base@std@@QAEAAU01@ABU01@@Z
??4_Num_float_base@std@@QAEAAU01@ABU01@@Z
??4_Num_int_base@std@@QAEAAU01@ABU01@@Z
??4_Timevec@std@@QAEAAV01@ABV01@@Z
??4_Winit@std@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_alloc@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_exception@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4domain_error@std@@QAEAAV01@ABV01@@Z
??4id@locale@std@@QAEAAV012@ABV012@@Z
??4ios_base@std@@QAEAAV01@ABV01@@Z
??4length_error@std@@QAEAAV01@ABV01@@Z
??4locale@std@@QAEAAV01@ABV01@@Z
??4logic_error@std@@QAEAAV01@ABV01@@Z
??4out_of_range@std@@QAEAAV01@ABV01@@Z
??4overflow_error@std@@QAEAAV01@ABV01@@Z
??4range_error@std@@QAEAAV01@ABV01@@Z
??4runtime_error@std@@QAEAAV01@ABV01@@Z
??4underflow_error@std@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAC@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAE@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@M@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@N@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@O@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAC@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAD@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAE@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAG@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@M@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@N@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@O@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAF@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAG@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@M@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@N@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@O@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@C@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@E@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBC@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBE@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@M@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@N@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@O@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBF@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBG@Z
??7ios_base@std@@QBE_NXZ
??8locale@std@@QBE_NABV01@@Z
??8std@@YA_NABMABV?$complex@M@0@@Z
??8std@@YA_NABNABV?$complex@N@0@@Z
??8std@@YA_NABOABV?$complex@O@0@@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??8std@@YA_NABV?$complex@M@0@0@Z
??8std@@YA_NABV?$complex@M@0@ABM@Z
??8std@@YA_NABV?$complex@N@0@0@Z
??8std@@YA_NABV?$complex@N@0@ABN@Z
??8std@@YA_NABV?$complex@O@0@0@Z
??8std@@YA_NABV?$complex@O@0@ABO@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??8std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??9locale@std@@QBE_NABV01@@Z
??9std@@YA_NABMABV?$complex@M@0@@Z
??9std@@YA_NABNABV?$complex@N@0@@Z
??9std@@YA_NABOABV?$complex@O@0@@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??9std@@YA_NABV?$complex@M@0@0@Z
??9std@@YA_NABV?$complex@M@0@ABM@Z

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
plugin/1.09地图说明.txt
plugin/blobcircle.bmp
plugin/blobcross1.bmp
plugin/blobcross2.bmp
plugin/blobdiamond.bmp
plugin/blobdot.bmp
plugin/d2hackmap.cfg
plugin/d2hackmap.dll
.dll windows:5 windows x86 arch:x86

1e22ec4a1496bc0153bbcbd13badccfe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Game\Diablo II 109\Plugin\d2hackmap.pdb

Imports

kernel32

GetModuleFileNameA
GetModuleHandleA
GetProcAddress
VirtualProtect
WriteProcessMemory
GetCurrentProcess
ReadProcessMemory
CreateFileA
WriteFile
ReadFile
GetFileSize
GetCommandLineA
GetTickCount
GetLocalTime
WideCharToMultiByte
GetCurrentProcessId
SetFilePointer
LoadLibraryA
MultiByteToWideChar
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
DisableThreadLibraryCalls
LCMapStringA
CloseHandle
GetLastError
MoveFileA
HeapAlloc
HeapFree
GetCurrentThreadId
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringW
RaiseException
Sleep
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
HeapDestroy
ExitProcess
GetStdHandle
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
HeapSize
InitializeCriticalSectionAndSpinCount
RtlUnwind

user32

CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
wsprintfW
SendMessageA
MessageBeep
GetKeyboardLayout
wsprintfA
GetWindowInfo
wvsprintfA

imm32

ImmIsIME
ImmSimulateHotKey

Exports

Exports

QueryInterface

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
plugin/d2hackmap.vcb
plugin/d2maphack.dll
.dll windows:4 windows x86 arch:x86

cad8e80b0fc12acb0643576caccc4d48

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
HeapAlloc
HeapFree
CreateFileA
ReadFile
CloseHandle
GetFileSize
WriteFile
GetModuleFileNameA
VirtualProtect
ReadProcessMemory
GetCurrentProcess
WriteProcessMemory
HeapCreate
HeapDestroy
GetTickCount
GetLocalTime
SetFilePointer
DisableThreadLibraryCalls

user32

SendMessageA
wsprintfA
wvsprintfA

Exports

Exports

QueryInterface

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 79B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 680KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
plugin/d2maphack.exe
.exe windows:4 windows x86 arch:x86

def77cba7c5f53e64c5db3a56cfa7673

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExA
lstrcatA
lstrcpyA
GetProcAddress
GetModuleHandleA
VirtualProtectEx
ReadProcessMemory
WriteProcessMemory
FreeLibrary
LoadLibraryA
HeapAlloc
DeleteFileA
CreateThread
WinExec
GetTempPathA
lstrlenA
GetCurrentProcessId
lstrcmpiA
GetCommandLineA
HeapCreate
HeapDestroy
ExitProcess
FindFirstFileA
FindClose
GetModuleFileNameA
CreateFileA
GetFileSize
ReadFile
OpenProcess
CloseHandle
HeapFree

user32

GetWindowTextA
BeginPaint
ReleaseCapture
WindowFromPoint
GetCursorPos
InvalidateRect
SetCapture
GetCapture
GetDlgCtrlID
SendMessageA
GetFocus
SetActiveWindow
GetParent
DefWindowProcA
RegisterClassA
LoadCursorA
EnableWindow
GetDlgItem
SendDlgItemMessageA
LoadIconA
EndDialog
DialogBoxParamA
IsWindowVisible
GetWindowRect
EnumWindows
EndPaint
GetDC
MessageBeep
MessageBoxA
FindWindowA
GetClassLongA
SendMessageTimeoutA
GetWindowThreadProcessId
wsprintfA

gdi32

SelectObject
GetStockObject
TextOutA
SetTextColor
SetBkMode
CreateFontIndirectA
GetObjectA
DeleteObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
plugin/minishrine00.bmp
plugin/minishrine01.bmp
plugin/minishrine02.bmp
plugin/minishrine03.bmp
plugin/minishrine06.bmp
plugin/minishrine07.bmp
plugin/minishrine08.bmp
plugin/minishrine09.bmp
plugin/minishrine10.bmp
plugin/minishrine11.bmp
plugin/minishrine12.bmp
plugin/minishrine15.bmp
plugin/minishrine17.bmp
plugin/minishrine18.bmp
plugin/shrine00.bmp
plugin/shrine01.bmp
plugin/shrine02.bmp
plugin/shrine03.bmp
plugin/shrine06.bmp
plugin/shrine07.bmp
plugin/shrine08.bmp
plugin/shrine09.bmp
plugin/shrine10.bmp
plugin/shrine11.bmp
plugin/shrine12.bmp
plugin/shrine13.bmp
plugin/shrine14.bmp
plugin/shrine15.bmp
plugin/shrine17.bmp
plugin/shrine18.bmp
plugin/shrine19.bmp
plugin/shrine21.bmp
plugin/shrine22.bmp
plugin/shrines.txt
plugin/waypoint.bmp
plugin/winkey.dll
.dll windows:4 windows x86 arch:x86

c35b10857587b75fd7e3b70e70819feb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetModuleHandleA

user32

SetWindowsHookExA
GetAsyncKeyState
CallNextHookEx
UnhookWindowsHookEx
GetClassLongA
GetForegroundWindow

msvcrt

malloc
_initterm
free
_adjust_fdiv

Exports

Exports

QueryInterface

Sections

.rdata
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.share
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
暗黑2-1.09相关知识汇总.url
.url
暗黑知识(注意是否适合1.09)/5分钟学会暗黑2联机,上网络版暗黑.url
.url
暗黑知识(注意是否适合1.09)/Cube(宝盒)公式原理介绍.url
.url
暗黑知识(注意是否适合1.09)/公式汇总-暗黑2公式与表格查询.url
.url
暗黑知识(注意是否适合1.09)/公式：橙色(手工制作)物品公式.url
.url
暗黑知识(注意是否适合1.09)/公式：用赫拉迪克方块(宝盒)打孔的公式与原理.url
.url
暗黑知识(注意是否适合1.09)/公式：神符之语在线查询-runewords.url
.url
暗黑知识(注意是否适合1.09)/公式：赫拉迪克方块(宝盒)所有合成公式.url
.url
暗黑知识(注意是否适合1.09)/推荐！《暗黑2全部资料》.url
.url
暗黑知识(注意是否适合1.09)/数据：所有角色的FCR,FBR,FHR表格.url
.url
暗黑知识(注意是否适合1.09)/暗黑2-1.09相关知识汇总.url
.url
暗黑知识(注意是否适合1.09)/暗黑2七个人物的练法指南.url
.url
暗黑知识(注意是否适合1.09)/暗黑破坏神2新手指南.url
.url
暗黑知识(注意是否适合1.09)/模拟：人物技能模拟计算器.url
.url
暗黑知识(注意是否适合1.09)/物品：暗金物品查询与资料.url
.url
暗黑知识(注意是否适合1.09)/物品：绿色套装查询与资料.url
.url

Sharing

General

Malware Config

Signatures

Files

327406786daf4585f7156323aaeab403

Headers

File Characteristics

Imports

kernel32

user32

winmm

gdi32

Exports

Exports

Sections

.text Size: 134KB - Virtual size: 134KB

.rdata Size: 26KB - Virtual size: 25KB

.data Size: 20KB - Virtual size: 75KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 12KB - Virtual size: 11KB

b63d85bdf1574d9357017fefdca6562c

Headers

File Characteristics

Imports

fog

storm

kernel32

user32

wsock32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 81KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 20KB - Virtual size: 28KB

.rsrc Size: 4KB - Virtual size: 288B

.reloc Size: 8KB - Virtual size: 6KB

65f20498265642761932ac21b2ee533d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

version

comctl32

shell32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 20KB - Virtual size: 46KB

.rsrc Size: 32KB - Virtual size: 28KB

Headers

File Characteristics

Sections

.rsrc Size: 512B - Virtual size: 476B

.reloc Size: 512B - Virtual size: 12B

73bec14163a258c592b80e787006177e

Headers

File Characteristics

Imports

d2cmp

d2common

d2game

d2gfx

d2lang

d2mcpclient

d2net

d2sound

d2win

fog

storm

advapi32

imm32

kernel32

user32

winmm

Exports

.text
Size: 134KB - Virtual size: 134KB

.rdata
Size: 26KB - Virtual size: 25KB

.data
Size: 20KB - Virtual size: 75KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 12KB - Virtual size: 11KB

.text
Size: 84KB - Virtual size: 81KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 20KB - Virtual size: 28KB

.rsrc
Size: 4KB - Virtual size: 288B

.reloc
Size: 8KB - Virtual size: 6KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 20KB - Virtual size: 46KB

.rsrc
Size: 32KB - Virtual size: 28KB

.rsrc
Size: 512B - Virtual size: 476B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 808KB - Virtual size: 805KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 192KB - Virtual size: 449KB

.rsrc
Size: 8KB - Virtual size: 4KB

.reloc
Size: 60KB - Virtual size: 58KB

.text
Size: 100KB - Virtual size: 96KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 24KB - Virtual size: 920KB

.reloc
Size: 12KB - Virtual size: 9KB

.text
Size: 496KB - Virtual size: 494KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 116KB - Virtual size: 124KB

.reloc
Size: 28KB - Virtual size: 27KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 20KB - Virtual size: 21KB

.reloc
Size: 8KB - Virtual size: 5KB