2c70b54dfc385df429b39b3860b8058a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2c70b54dfc385df429b39b3860b8058a_JaffaCakes118
Size

5.8MB
MD5

2c70b54dfc385df429b39b3860b8058a
SHA1

9baa883b7a633a08e3771442b202824c778bd442
SHA256

10e12e7e01705782bbbd94d27dadf2785f3707406b7a628641f8f78cc42724b3
SHA512

933ed8229e0077ac733670f6c7b1e79b13101e1d112df932143d3004a5ca6533bb40f8e3fe5917768bfa27313c218468384210bcbcb02375c85d83b7f5986a40
SSDEEP

98304:1uFRgQrP8L77LVJMoHvqiwAkgY4YRQ+Gz0SJU393bhPnoN0Qj1z0ZJmv9XQ3:1uFYL77RJMoPqiwAmRQfYSJYbVnq5gJn

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SKIDROW/HKShip.exe
unpack001/SKIDROW/Steamclient.dll
unpack001/SKIDROW/buddha.dll
unpack001/SKIDROW/steam_api.dll

Files

2c70b54dfc385df429b39b3860b8058a_JaffaCakes118
.rar
ALI213.txt
SKIDROW/HKShip.exe
.exe windows:5 windows x86 arch:x86

9eff793551989f023d41a0bf01ee1403

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\ufg\madscience\project\builds\hk_pc\dev\build\Project\int\HK-PC-Ship\HKShip.pdb

Imports

d3d11

D3D11CreateDevice

dinput8

DirectInput8Create

dxgi

CreateDXGIFactory1

xinput1_3

ord3
ord2
ord4

d3dcompiler_43

D3DReflect

binkw32

_BinkOpenDirectSound@4
_BinkSetIOSize@4
_BinkRegisterFrameBuffers@8
_BinkPause@8
_BinkNextFrame@4
_BinkShouldSkip@4
_BinkWait@4
_BinkDoFrame@4
_BinkSetVolume@12
_BinkGoto@12
_BinkClose@4
_BinkControlBackgroundIO@8
_BinkGetRealtime@12
_BinkGetFrameBuffersInfo@8
_BinkGetError@0
_BinkOpen@8
_BinkSetSoundSystem@8

steam_api

SteamAPI_RegisterCallback
SteamClient
SteamAPI_UnregisterCallResult
SteamAPI_RegisterCallResult
SteamApps
SteamAPI_RunCallbacks
SteamAPI_Init
SteamAPI_Shutdown
SteamUserStats
SteamAPI_UnregisterCallback
SteamUser
SteamFriends
SteamUtils
SteamAPI_IsSteamRunning
SteamAPI_SetMiniDumpComment
SteamAPI_WriteMiniDump
SteamAPI_RestartAppIfNecessary

advapi32

CryptReleaseContext
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegOpenKeyExW
RegQueryValueExA
RegOpenKeyExA
CryptGenRandom
CryptAcquireContextA
RegQueryValueExW
RegCloseKey

kernel32

CompareStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetFileType
SetHandleCount
GetConsoleMode
GetConsoleCP
UnhandledExceptionFilter
GetStartupInfoA
FindFirstFileW
GetDriveTypeW
RtlUnwind
GetThreadPriority
ExitThread
WaitForMultipleObjectsEx
SleepEx
CreateEventW
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
DebugBreak
HeapReAlloc
LCMapStringA
LCMapStringW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetStringTypeA
GetStringTypeW
SetEndOfFile
CompareStringA
HeapAlloc
CloseHandle
GetFileInformationByHandleEx
HeapFree
CreateFileW
GetTickCount
GetFileInformationByHandle
lstrlenW
GetStartupInfoW
CreateSemaphoreA
GetCurrentProcessId
GetModuleHandleA
GetLastError
ReleaseSemaphore
OpenFileById
GetTimeZoneInformation
GetProcessHeap
lstrcmpiW
FileTimeToSystemTime
ExitProcess
UnmapViewOfFile
HeapSize
SetLastError
CreateFileA
InterlockedExchange
GetFullPathNameW
GetConsoleWindow
SizeofResource
GetSystemTime
WriteFile
VirtualQuery
GetCurrentDirectoryW
CreateEventA
GetFullPathNameA
GetComputerNameA
SetEvent
CreateFileMappingA
GetCurrentThreadId
MapViewOfFile
GetModuleHandleExA
RemoveVectoredExceptionHandler
InterlockedCompareExchange
AddVectoredExceptionHandler
SetEnvironmentVariableA
GetProcAddress
GetSystemTimeAsFileTime
GetModuleFileNameA
FindResourceW
GetEnvironmentStringsW
GetCommandLineW
LockResource
WaitForSingleObject
InterlockedExchangeAdd
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
InitializeCriticalSection
LoadLibraryA
DeleteCriticalSection
SetErrorMode
QueryPerformanceCounter
QueryPerformanceFrequency
TlsGetValue
SetThreadPriority
GetDiskFreeSpaceExA
GetDriveTypeA
GetLogicalDriveStringsA
GlobalMemoryStatusEx
GetVersionExA
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
ResetEvent
WaitForMultipleObjects
SetThreadIdealProcessor
CreateThread
TerminateThread
GetExitCodeThread
SetThreadContext
GetThreadContext
GetCurrentThread
Sleep
ReadFile
CreateDirectoryA
FindClose
FindNextFileA
RemoveDirectoryA
FindFirstFileA
GetFileAttributesExA
FileTimeToLocalFileTime
SetFileTime
LocalFileTimeToFileTime
SetFileAttributesA
DeleteFileA
MoveFileA
SetFilePointer
GetFileSize
FlushFileBuffers
GetCurrentDirectoryA
SetCurrentDirectoryA
IsDebuggerPresent
SystemTimeToFileTime
GetLocalTime
VirtualAlloc
VirtualFree
VirtualProtect
LocalAlloc
GetStdHandle
GetCurrentProcess
MultiByteToWideChar
WideCharToMultiByte
TerminateProcess
ResumeThread
GetSystemInfo
CreateMutexA
ReleaseMutex
SetThreadAffinityMask
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
InterlockedIncrement
InterlockedDecrement
GetGeoInfoA
GetCommandLineA
TlsAlloc
TlsFree
TlsSetValue
FreeLibrary
RaiseException
GetFileAttributesA
GetModuleHandleW
GetSystemDirectoryW
OpenFileMappingA
GetModuleFileNameW
GetWindowsDirectoryW
HeapCreate
HeapDestroy
OpenEventA
LoadResource

gdi32

DeleteDC
ExtEscape
CreateDCA

ole32

CoInitialize
CoUninitialize
CoInitializeEx
CoCreateInstance
CoSetProxyBlanket
StringFromGUID2

oleaut32

SysAllocString
SysFreeString

psapi

GetModuleFileNameExA

shlwapi

SHRegGetUSValueA

user32

GetForegroundWindow
GetWindowLongW
UnhookWindowsHookEx
RegisterDeviceNotificationW
UnregisterDeviceNotification
SetWindowLongW
GetKeyboardLayout
MessageBoxA
ToUnicodeEx
EnumDisplayDevicesA
DefWindowProcA
PostQuitMessage
GetClientRect
ShowWindow
CreateWindowExA
AdjustWindowRectEx
SetRect
RegisterClassExA
LoadCursorA
LoadIconA
MoveWindow
GetWindowRect
DispatchMessageA
TranslateMessage
PeekMessageA
GetKeyState
MapVirtualKeyA
GetAsyncKeyState
ShowCursor
ClipCursor
ClientToScreen
GetCursorInfo
ReleaseCapture
SetCapture
SetCursorPos
GetWindowInfo
TrackMouseEvent
CallWindowProcW
CallNextHookEx
SetWindowsHookExA

winmm

timeGetDevCaps
timeEndPeriod
timeGetTime
timeBeginPeriod

wsock32

setsockopt
socket
ioctlsocket
send
shutdown
gethostbyname
bind
inet_addr
htons
WSAAsyncSelect
select
ntohs
accept
gethostname
connect
closesocket
recv
WSAGetLastError
inet_ntoa
WSAStartup
WSACleanup
htonl
getsockname
listen
ntohl
__WSAFDIsSet

iphlpapi

GetAdaptersInfo

ws2_32

WSARecv
WSASend
WSAAccept
WSASocketA

wininet

InternetOpenA
InternetOpenUrlA
InternetCloseHandle
InternetGetConnectedState

crypt32

CertCloseStore
CertOpenSystemStoreA
CertEnumCertificatesInStore
CertGetNameStringA

Exports

Exports

??1CAkRegisteredObj@@QAE@XZ
?AddBehavioralExtension@SoundEngine@AK@@YA?AW4AKRESULT@@P6AX_N@Z@Z
?AddLanguageChangeObserver@StreamMgr@AK@@YA?AW4AKRESULT@@P6AXQB_WPAX@Z1@Z
?AddPlayerMotionDevice@MotionEngine@AK@@YA?AW4AKRESULT@@EKKPAX@Z
?Break@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@K@Z
?BypassEnvironment@SoundEngine@AK@@YA?AW4AKRESULT@@K_N@Z
?CancelBankCallbackCookie@SoundEngine@AK@@YAXPAX@Z
?CancelEventCallback@SoundEngine@AK@@YAXK@Z
?CancelEventCallbackCookie@SoundEngine@AK@@YAXPAX@Z
?CheckPoolId@MemoryMgr@AK@@YA?AW4AKRESULT@@J@Z
?ClearBanks@SoundEngine@AK@@YA?AW4AKRESULT@@XZ
?ClearPreparedEvents@SoundEngine@AK@@YA?AW4AKRESULT@@XZ
?Close@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@K@Z
?Create@StreamMgr@AK@@YAPAVIAkStreamMgr@2@ABUAkStreamMgrSettings@@@Z
?CreateDevice@StreamMgr@AK@@YAKABUAkDeviceSettings@@PAVIAkLowLevelIOHook@12@@Z
?CreatePool@MemoryMgr@AK@@YAJPAXKKKK@Z
?DestroyDevice@StreamMgr@AK@@YA?AW4AKRESULT@@K@Z
?DestroyPool@MemoryMgr@AK@@YA?AW4AKRESULT@@J@Z
?ExecuteActionOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@KW4AkActionOnEventType@12@IJW4AkCurveInterpolation@@K@Z
?ExecuteActionOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@PBDW4AkActionOnEventType@12@IJW4AkCurveInterpolation@@K@Z
?ExecuteActionOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WW4AkActionOnEventType@12@IJW4AkCurveInterpolation@@K@Z
?Falign@MemoryMgr@AK@@YA?AW4AKRESULT@@JPAX@Z
?Free@MemoryMgr@AK@@YA?AW4AKRESULT@@JPAX@Z
?GetActiveGameObjects@Query@SoundEngine@AK@@YA?AW4AKRESULT@@AAV?$AkArray@IIUArrayPoolDefault@@$0CA@@@@Z
?GetActiveListeners@Query@SoundEngine@AK@@YA?AW4AKRESULT@@IAAK@Z
?GetBlock@MemoryMgr@AK@@YAPAXJ@Z
?GetBlockSize@MemoryMgr@AK@@YAKJ@Z
?GetCurrentLanguage@StreamMgr@AK@@YAPB_WXZ
?GetDefaultDeviceSettings@StreamMgr@AK@@YAXAAUAkDeviceSettings@@@Z
?GetDefaultInitSettings@MusicEngine@AK@@YAXAAUAkMusicSettings@@@Z
?GetDefaultInitSettings@SoundEngine@AK@@YAXAAUAkInitSettings@@@Z
?GetDefaultPlatformInitSettings@SoundEngine@AK@@YAXAAUAkPlatformInitSettings@@@Z
?GetDefaultSettings@StreamMgr@AK@@YAXAAUAkStreamMgrSettings@@@Z
?GetEnvironmentBypass@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAA_N@Z
?GetEnvironmentVolume@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAAM@Z
?GetEnvironmentVolumes@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAAUAkSpeakerVolumes@@@Z
?GetEventIDFromPlayingID@Query@SoundEngine@AK@@YAKK@Z
?GetFileLocationResolver@StreamMgr@AK@@YAPAVIAkFileLocationResolver@12@XZ
?GetGameObjectDryLevelValue@Query@SoundEngine@AK@@YA?AW4AKRESULT@@IAAM@Z
?GetGameObjectEnvironmentsValues@Query@SoundEngine@AK@@YA?AW4AKRESULT@@IPAUAkEnvironmentValue@@AAK@Z
?GetGameObjectFromPlayingID@Query@SoundEngine@AK@@YAIK@Z
?GetIDFromString@SoundEngine@AK@@YAKPBD@Z
?GetIDFromString@SoundEngine@AK@@YAKPB_W@Z
?GetIsGameObjectActive@Query@SoundEngine@AK@@YA_NI@Z
?GetListenerPosition@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAAUAkListenerPosition@@@Z
?GetListenerSpatialization@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAA_NAAUAkSpeakerVolumes@@@Z
?GetMaxPools@MemoryMgr@AK@@YAJXZ
?GetMaxRadius@Query@SoundEngine@AK@@YA?AW4AKRESULT@@AAV?$AkArray@UGameObjDst@Query@SoundEngine@AK@@ABU1234@UArrayPoolDefault@@$0CA@@@@Z
?GetMaxRadius@Query@SoundEngine@AK@@YAMI@Z
?GetNumPools@MemoryMgr@AK@@YAJXZ
?GetObjAndAddref@CAkRegistryMgr@@QAEPAVCAkRegisteredObj@@I@Z
?GetObjectObstructionAndOcclusion@Query@SoundEngine@AK@@YA?AW4AKRESULT@@IKAAM0@Z
?GetPanningRule@SoundEngine@AK@@YA?AW4AkPanningRule@@XZ
?GetPlayingIDsFromGameObject@Query@SoundEngine@AK@@YA?AW4AKRESULT@@IAAKPAK@Z
?GetPlayingSegmentInfo@MusicEngine@AK@@YA?AW4AKRESULT@@KAAUAkSegmentInfo@@_N@Z
?GetPoolAttributes@MemoryMgr@AK@@YA?AW4AkMemPoolAttributes@@J@Z
?GetPoolID@StreamMgr@AK@@YAJXZ
?GetPoolMemoryUsed@MemoryMgr@AK@@YAXJAAUPoolMemInfo@12@@Z
?GetPoolName@MemoryMgr@AK@@YAPA_WJ@Z
?GetPoolStats@MemoryMgr@AK@@YA?AW4AKRESULT@@JAAUPoolStats@12@@Z
?GetPosition@Query@SoundEngine@AK@@YA?AW4AKRESULT@@IAAUAkSoundPosition@@@Z
?GetPositioningInfo@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAAUAkPositioningInfo@@@Z
?GetRTPCValue@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KIAAMAAW4RTPCValue_type@123@@Z
?GetRTPCValue@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PBDIAAMAAW4RTPCValue_type@123@@Z
?GetRTPCValue@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WIAAMAAW4RTPCValue_type@123@@Z
?GetSourcePlayPosition@SoundEngine@AK@@YA?AW4AKRESULT@@KPAJ_N@Z
?GetSpeakerConfiguration@SoundEngine@AK@@YAKXZ
?GetState@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAAK@Z
?GetState@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PBDAAK@Z
?GetState@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WAAK@Z
?GetSwitch@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KIAAK@Z
?GetSwitch@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PBDIAAK@Z
?GetSwitch@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WIAAK@Z
?GetTimeStamp@Monitor@AK@@YAJXZ
?Init@MusicEngine@AK@@YA?AW4AKRESULT@@PAUAkMusicSettings@@@Z
?Init@SoundEngine@AK@@YA?AW4AKRESULT@@PAUAkInitSettings@@PAUAkPlatformInitSettings@@@Z
?IsInitialized@MemoryMgr@AK@@YA_NXZ
?IsInitialized@SoundEngine@AK@@YA_NXZ
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@KJ@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@KP6AXKW43@JPAX@Z1J@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PBDJAAK@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PBDP6AXKW43@JPAX@Z2JAAK@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PBXKAAK@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PBXKP6AXKW43@JPAX@Z2AAK@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WJAAK@Z
?LoadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WP6AXKW43@JPAX@Z2JAAK@Z
?LockPlaylist@DynamicSequence@SoundEngine@AK@@YAPAVPlaylist@123@K@Z
?Malign@MemoryMgr@AK@@YAPAXJIK@Z
?Malloc@MemoryMgr@AK@@YAPAXJI@Z
?Open@DynamicSequence@SoundEngine@AK@@YAKIKP6AXW4AkCallbackType@@PAUAkCallbackInfo@@@ZPAXW4DynamicSequenceType@123@@Z
?Pause@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@KJW4AkCurveInterpolation@@@Z
?Play@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@KJW4AkCurveInterpolation@@@Z
?PlaySourcePlugin@SoundEngine@AK@@YAKKKI@Z
?PostCode@Monitor@AK@@YA?AW4AKRESULT@@W4ErrorCode@12@W4ErrorLevel@12@@Z
?PostEvent@SoundEngine@AK@@YAKKIKP6AXW4AkCallbackType@@PAUAkCallbackInfo@@@ZPAXKPAUAkExternalSourceInfo@@K@Z
?PostEvent@SoundEngine@AK@@YAKPBDIKP6AXW4AkCallbackType@@PAUAkCallbackInfo@@@ZPAXKPAUAkExternalSourceInfo@@K@Z
?PostEvent@SoundEngine@AK@@YAKPB_WIKP6AXW4AkCallbackType@@PAUAkCallbackInfo@@@ZPAXKPAUAkExternalSourceInfo@@K@Z
?PostString@Monitor@AK@@YA?AW4AKRESULT@@PBDW4ErrorLevel@12@@Z
?PostString@Monitor@AK@@YA?AW4AKRESULT@@PB_WW4ErrorLevel@12@@Z
?PostTrigger@SoundEngine@AK@@YA?AW4AKRESULT@@KI@Z
?PostTrigger@SoundEngine@AK@@YA?AW4AKRESULT@@PBDI@Z
?PostTrigger@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WI@Z
?PrepareBank@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@KP6AXKW43@JPAX@Z2W4AkBankContent@12@@Z
?PrepareBank@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@KW4AkBankContent@12@@Z
?PrepareBank@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PBDP6AXKW43@JPAX@Z3W4AkBankContent@12@@Z
?PrepareBank@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PBDW4AkBankContent@12@@Z
?PrepareBank@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PB_WP6AXKW43@JPAX@Z3W4AkBankContent@12@@Z
?PrepareBank@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PB_WW4AkBankContent@12@@Z
?PrepareEvent@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PAKK@Z
?PrepareEvent@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PAKKP6AXKW43@JPAX@Z3@Z
?PrepareEvent@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PAPBDK@Z
?PrepareEvent@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PAPBDKP6AXKW43@JPAX@Z3@Z
?PrepareEvent@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PAPB_WK@Z
?PrepareEvent@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@PAPB_WKP6AXKW43@JPAX@Z3@Z
?PrepareGameSyncs@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@W4AkGroupType@@KPAKK@Z
?PrepareGameSyncs@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@W4AkGroupType@@KPAKKP6AXKW43@JPAX@Z4@Z
?PrepareGameSyncs@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@W4AkGroupType@@PBDPAPBDK@Z
?PrepareGameSyncs@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@W4AkGroupType@@PBDPAPBDKP6AXKW43@JPAX@Z5@Z
?PrepareGameSyncs@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@W4AkGroupType@@PB_WPAPB_WK@Z
?PrepareGameSyncs@SoundEngine@AK@@YA?AW4AKRESULT@@W4PreparationType@12@W4AkGroupType@@PB_WPAPB_WKP6AXKW43@JPAX@Z5@Z
?QueryAudioObjectIDs@Query@SoundEngine@AK@@YA?AW4AKRESULT@@KAAKPAUAkObjectInfo@@@Z
?QueryAudioObjectIDs@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PBDAAKPAUAkObjectInfo@@@Z
?QueryAudioObjectIDs@Query@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WAAKPAUAkObjectInfo@@@Z
?RegisterCodec@SoundEngine@AK@@YA?AW4AKRESULT@@KKP6APAVIAkSoftwareCodec@@PAX@Z1@Z
?RegisterGameObj@SoundEngine@AK@@YA?AW4AKRESULT@@I@Z
?RegisterGameObj@SoundEngine@AK@@YA?AW4AKRESULT@@IPBD@Z
?RegisterGlobalCallback@SoundEngine@AK@@YA?AW4AKRESULT@@P6AX_N@Z@Z
?RegisterMotionDevice@MotionEngine@AK@@YAXKKP6APAVIAkPlugin@2@PAVIAkPluginMemAlloc@2@@Z@Z
?RegisterPlugin@SoundEngine@AK@@YA?AW4AKRESULT@@W4AkPluginType@@KKP6APAVIAkPlugin@2@PAVIAkPluginMemAlloc@2@@ZP6APAVIAkPluginParam@2@1@Z@Z
?ReleaseBlock@MemoryMgr@AK@@YA?AW4AKRESULT@@JPAX@Z
?RemoveBehavioralExtension@SoundEngine@AK@@YA?AW4AKRESULT@@P6AX_N@Z@Z
?RemoveLanguageChangeObserver@StreamMgr@AK@@YAXPAX@Z
?RemovePlayerMotionDevice@MotionEngine@AK@@YAXEKK@Z
?RenderAudio@SoundEngine@AK@@YA?AW4AKRESULT@@XZ
?ResetRTPCValue@SoundEngine@AK@@YA?AW4AKRESULT@@KIJW4AkCurveInterpolation@@@Z
?ResetRTPCValue@SoundEngine@AK@@YA?AW4AKRESULT@@PBDIJW4AkCurveInterpolation@@@Z
?ResetRTPCValue@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WIJW4AkCurveInterpolation@@@Z
?ResolveDialogueEvent@DynamicDialogue@SoundEngine@AK@@YAKKPAKKK@Z
?ResolveDialogueEvent@DynamicDialogue@SoundEngine@AK@@YAKPBDPAPBDKK@Z
?ResolveDialogueEvent@DynamicDialogue@SoundEngine@AK@@YAKPB_WPAPB_WKK@Z
?Resume@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@KJW4AkCurveInterpolation@@@Z
?SeekOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@KIJ_N@Z
?SeekOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@KIM_N@Z
?SeekOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@PBDIJ_N@Z
?SeekOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@PBDIM_N@Z
?SeekOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WIJ_N@Z
?SeekOnEvent@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WIM_N@Z
?SetActiveListeners@SoundEngine@AK@@YA?AW4AKRESULT@@IK@Z
?SetAttenuationScalingFactor@SoundEngine@AK@@YA?AW4AKRESULT@@IM@Z
?SetBankLoadIOSettings@SoundEngine@AK@@YA?AW4AKRESULT@@MD@Z
?SetCurrentLanguage@StreamMgr@AK@@YA?AW4AKRESULT@@PB_W@Z
?SetEffect@SoundEngine@AK@@YA?AW4AKRESULT@@KKK@Z
?SetEnvironmentVolume@SoundEngine@AK@@YA?AW4AKRESULT@@KM@Z
?SetEnvironmentVolumes@SoundEngine@AK@@YA?AW4AKRESULT@@KABUAkSpeakerVolumes@@@Z
?SetFileLocationResolver@StreamMgr@AK@@YAXPAVIAkFileLocationResolver@12@@Z
?SetGameObjectDryLevelValue@SoundEngine@AK@@YA?AW4AKRESULT@@IM@Z
?SetGameObjectEnvironmentsValues@SoundEngine@AK@@YA?AW4AKRESULT@@IPAUAkEnvironmentValue@@K@Z
?SetListenerPipeline@SoundEngine@AK@@YA?AW4AKRESULT@@K_N0@Z
?SetListenerPosition@SoundEngine@AK@@YA?AW4AKRESULT@@ABUAkListenerPosition@@K@Z
?SetListenerScalingFactor@SoundEngine@AK@@YA?AW4AKRESULT@@KM@Z
?SetListenerSpatialization@SoundEngine@AK@@YA?AW4AKRESULT@@K_NPAUAkSpeakerVolumes@@@Z
?SetLocalOutput@Monitor@AK@@YA?AW4AKRESULT@@KP6AXW4ErrorCode@12@PB_WW4ErrorLevel@12@KI@Z@Z
?SetMaxNumVoicesLimit@SoundEngine@AK@@YA?AW4AKRESULT@@G@Z
?SetMonitoring@MemoryMgr@AK@@YA?AW4AKRESULT@@J_N@Z
?SetMultiplePositions@SoundEngine@AK@@YA?AW4AKRESULT@@IPBUAkSoundPosition@@GW4MultiPositionType@12@@Z
?SetObjectObstructionAndOcclusion@SoundEngine@AK@@YA?AW4AKRESULT@@IKMM@Z
?SetPanningRule@SoundEngine@AK@@YA?AW4AKRESULT@@W4AkPanningRule@@@Z
?SetPlayerListener@MotionEngine@AK@@YAXEE@Z
?SetPlayerVolume@MotionEngine@AK@@YAXEM@Z
?SetPoolName@MemoryMgr@AK@@YA?AW4AKRESULT@@JPBD@Z
?SetPoolName@MemoryMgr@AK@@YA?AW4AKRESULT@@JPB_W@Z
?SetPosition@SoundEngine@AK@@YA?AW4AKRESULT@@IABUAkSoundPosition@@K@Z
?SetPositionInternal@SoundEngine@AK@@YA?AW4AKRESULT@@IABUAkSoundPosition@@K@Z
?SetRTPCInternal@CAkRTPCMgr@@QAE?AW4AKRESULT@@KMPAVCAkRegisteredObj@@AAUTransParams@@W4AkValueMeaning@@@Z
?SetRTPCValue@SoundEngine@AK@@YA?AW4AKRESULT@@KMIJW4AkCurveInterpolation@@@Z
?SetRTPCValue@SoundEngine@AK@@YA?AW4AKRESULT@@PBDMIJW4AkCurveInterpolation@@@Z
?SetRTPCValue@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WMIJW4AkCurveInterpolation@@@Z
?SetState@SoundEngine@AK@@YA?AW4AKRESULT@@KK@Z
?SetState@SoundEngine@AK@@YA?AW4AKRESULT@@PBD0@Z
?SetState@SoundEngine@AK@@YA?AW4AKRESULT@@PB_W0@Z
?SetSwitch@SoundEngine@AK@@YA?AW4AKRESULT@@KKI@Z
?SetSwitch@SoundEngine@AK@@YA?AW4AKRESULT@@PBD0I@Z
?SetSwitch@SoundEngine@AK@@YA?AW4AKRESULT@@PB_W0I@Z
?SetVolumeThreshold@SoundEngine@AK@@YA?AW4AKRESULT@@M@Z
?StartOutputCapture@SoundEngine@AK@@YA?AW4AKRESULT@@PB_W@Z
?Stop@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@KJW4AkCurveInterpolation@@@Z
?StopAll@SoundEngine@AK@@YAXI@Z
?StopOutputCapture@SoundEngine@AK@@YA?AW4AKRESULT@@XZ
?StopPlayingID@SoundEngine@AK@@YAXKJW4AkCurveInterpolation@@@Z
?StopSourcePlugin@SoundEngine@AK@@YA?AW4AKRESULT@@KKK@Z
?Term@MemoryMgr@AK@@YAXXZ
?Term@MusicEngine@AK@@YAXXZ
?Term@SoundEngine@AK@@YAXXZ
?UnloadBank@SoundEngine@AK@@YA?AW4AKRESULT@@KP6AXKW43@JPAX@Z1@Z
?UnloadBank@SoundEngine@AK@@YA?AW4AKRESULT@@KPAJ@Z
?UnloadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PBDP6AXKW43@JPAX@Z2@Z
?UnloadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PBDPAJ@Z
?UnloadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WP6AXKW43@JPAX@Z2@Z
?UnloadBank@SoundEngine@AK@@YA?AW4AKRESULT@@PB_WPAJ@Z
?UnlockPlaylist@DynamicSequence@SoundEngine@AK@@YA?AW4AKRESULT@@K@Z
?UnregisterAllGameObj@SoundEngine@AK@@YA?AW4AKRESULT@@XZ
?UnregisterGameObj@SoundEngine@AK@@YA?AW4AKRESULT@@I@Z
?UnregisterGlobalCallback@SoundEngine@AK@@YA?AW4AKRESULT@@P6AX_N@Z@Z
?g_DefaultPoolId@@3JA
?g_LEngineDefaultPoolId@@3JA
?g_pAssertHook@@3P6AXPBD0H@ZA
?g_pRTPCMgr@@3PAVCAkRTPCMgr@@A
?g_pRegistryMgr@@3PAVCAkRegistryMgr@@A
?m_pStreamMgr@IAkStreamMgr@AK@@1PAV12@A
MFortressDefaultResponseVariant_1_0x1e961a57_ResponseFnPtr_mfort6317_

Sections

.text
Size: 12.9MB - Virtual size: 12.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 465KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crsig
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.version
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SKIDROW/SKIDROW.ini
SKIDROW/Steamclient.dll
.dll windows:5 windows x86 arch:x86

ca8f196ebeb860e61002d7f57f2739e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

shell32

SHGetFolderPathA

user32

MessageBoxA

wininet

InternetOpenA
InternetCloseHandle
InternetCrackUrlA

kernel32

GetProcessHeap
SetEndOfFile
CreateFileW
WriteConsoleW
CreateFileA
SetStdHandle
LoadLibraryW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualProtectEx
GetCurrentProcess
WriteProcessMemory
SetLastError
GetModuleHandleA
GetProcAddress
GetTickCount
GetModuleFileNameA
VirtualFree
VirtualProtect
VirtualAlloc
VirtualQuery
CloseHandle
CreateToolhelp32Snapshot
Thread32First
GetCurrentProcessId
GetCurrentThreadId
Thread32Next
OpenThread
SuspendThread
GetThreadContext
SetThreadContext
ResumeThread
SetEnvironmentVariableA
FindClose
FindNextFileA
FindFirstFileA
GetLastError
GetPrivateProfileStringA
GetEnvironmentVariableA
WritePrivateProfileStringA
GetVolumeInformationA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
Sleep
InterlockedExchange
EncodePointer
DecodePointer
MultiByteToWideChar
HeapFree
HeapAlloc
CreateDirectoryA
GetSystemTimeAsFileTime
DeleteFileA
GetCommandLineA
RaiseException
RtlUnwind
LCMapStringW
GetCPInfo
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
HeapCreate
HeapDestroy
HeapSize
ExitProcess
IsProcessorFeaturePresent
ReadFile
SetFilePointer
InitializeCriticalSectionAndSpinCount
WriteFile
GetStdHandle
GetModuleFileNameW
GetLocaleInfoW
GetConsoleCP
GetConsoleMode
SetHandleCount
GetFileType
GetStartupInfoW
FlushFileBuffers
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
HeapReAlloc

Exports

Exports

?_Patch@@YAHIPBXI@Z
CreateInterface
SKIDROW
Steam_BConnected
Steam_BGetCallback
Steam_BLoggedOn
Steam_BReleaseSteamPipe
Steam_ConnectToGlobalUser
Steam_CreateGlobalUser
Steam_CreateLocalUser
Steam_CreateSteamPipe
Steam_FreeLastCallback
Steam_GSBLoggedOn
Steam_GSBSecure
Steam_GSGetSteam2GetEncryptionKeyToSendToNewClient
Steam_GSGetSteamID
Steam_GSLogOff
Steam_GSLogOn
Steam_GSRemoveUserConnect
Steam_GSSendSteam2UserConnect
Steam_GSSendSteam3UserConnect
Steam_GSSendUserDisconnect
Steam_GSSendUserStatusResponse
Steam_GSSetServerType
Steam_GSSetSpawnCount
Steam_GSUpdateStatus
Steam_GetAPICallResult
Steam_GetGSHandle
Steam_InitiateGameConnection
Steam_LogOff
Steam_LogOn
Steam_ReleaseUser
Steam_SetLocalIPBinding
Steam_TerminateGameConnection

Sections

.text
Size: 246KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.STMSIG
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SKIDROW/buddha.dll
.dll windows:4 windows x86 arch:x86

d040a215909279873b251531f26db3a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

RegCloseKey

user32

MessageBoxA

kernel32

VirtualProtect
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

Exports

Exports

H(ˮ�d$ 1��톅̋��扆/��!�#��J��!^��5ޤ�$�So�d�G��x��_�+�H,�Z�އ��K=�Uf�S*|�|��w*p)3��Jն�i��Q��|�/��J��t!�bG7�b��#� =C_X��}"OQ%��Hf��l��!%��-��X[��@t^ �XR]g��P��y�l��om�N��N�S�e��[�tr�c��v*q�厔�i^0��R��Yf6MoT��:j�� x��HOM)�y��C��!��^��I��QdY-��BA"�x0��Lk�9�G~��wz&viF��t �#��uꊟ(�:tS|H�q�4��OgN�*�U5_f0lʏW�Ӄ��J�C�=��(DI�n':^]�xTty�Ze��P��,Lu��׀��1Ji�l��1�<� K��0�YK��6��P<��jE�@��C%O�CnH��Y_&�%&�k]��:]�5�0�=�� >�(�&��z'�0 g��i�:o��Z��ٹ�0 6��[~�X�=K潖pA� Q�Ƹ�(gI�2E\��@b׉�(��zbO�fx�)�=h��K�B��pP�̢q��K�ߦ&��E��O��)#��ǘ��c_��h�l1�>�YG��G߮��s!�C�^"��9u�cy�M#/�۷�f$G�o��;!-��!o�;Y��CP��Ɓ�� ᰯ>�Q�5�gb݋jS�w��trs-��N/�湗��F�D*v%}$N��սk�էw��"S��a�hE�(��XP^#vY�~��;8��|hP��ҨGʇ�·T��MǠ��B)P��T]@$^��̕�mpk�#�nd]$9�$��V��B|�*E\�lC��#C�,��PMCM5��3��Ƶb�4RiN��Y4��J��8��ɔ.�,�V��n&�c��,J2��=-��2��$qʃ�w��Pq�+(�% *-<�*8a�5d@�mP��V��S�C��B�#�û )�dY��!��\S}�wӻ�I�a/�`Sཽu��lv3b�:#��ʛ��k��D}��fEq�~]�[n>�1ҹ��z�b �g/�g+٢��%<�0��L�SN�4��|O#�ɳ�ǯ+�O�¥��o��]t��F#��6�Of!�P)�Cȏ@�$d��e|�O��yj/��7��[C��쵆5�mp�g��.�s�<�)�!�c�E ��.6[Y:Ά0�A�E*�1��fK��K�v1ӑ&{��|n2��ѡ017,�yx��zX��ݳ�B ]�� <4Y��m��(h� ��^Z^ᏲK)��;��S�an�N+�f@T�4�ڛy�M��k�%_�;��Zy�^ (�W��l�>9�}�*MY��^5�ј �F)7j��U u��;eJ��Iذ�ɴ��\y�eˊqL7k��^A�F��PX2��lL?#H�v)d~�kdS��>l<�UNm�;��X��z��E��WhuBH�}2{��Od��Q�`�o b�I��/d�� _v{F#��̌�n�N �~�ͽ��m�+�!�I�K��V`��@I!Z�'l��/剒کO~�>ݻ��&�ǅ>�OKjta�ʸ��NM"?r��W-!E�.Ô��~��F�a�r$��4�g�D�Di>��~p��FS��m��qe3M׶�'Mg��)gp�L��Fba�$��cs��I��Ps�;6��x��%A��N�l�)I�82��ą�X! h�+D}�� h�#x�^�i`�8E��⏫�UE��*��od��Ϗlhx��+v�-�ugy(�r�h_�&�@ \j��)��P��뷭�~��1�%=��ڣ? NF��8z�0�do��-��)��A ��I��6�ɺ5��r�� B�B�B�~1��(oQSYg٤�z��FX�oZ�w��+f�J˫Y�s�&V\@��w�d�s��Q2�M��G�q�+Q��A_"<��7�/y�./�wk��X3�/M��F��56O�A��.�XP�q��Q��{+�A��{�a|��I�W1�)?@�Ӳ��?�{��<0ne桶��_��r�Lǫ!Zy�#��s��5��Y[F3��sIPlv�qb3ޅ;EV �`�o�9cN�z�⫰�J�g#7J� !Oiۂ�Tt3��ǣ��R��^!��1ĵ��x��;ˬ��j��Q�ع�6r8��]��CY��0̴V3�%̂��1F}�8�`ٴБ�¿|#:��&0d��:ϟ�J'�C.k(�gU��~�R��,��c�� BY�S��;vx��U��x��n#��&+mH<�²A�7��c)�4��`Ab0Hz��h��Wߍ�Ob6ssI{��^��?��u,��Jv'�b��K��/W+��Yq #�L��P�*��*��!=g �G\%Ze�Xz��bR>�T��D|=,\�N�-�H͕��xt�H5��1�Ӵ��#{�Q�@��M��]\��iL�-Q��g~2܌�S`8cJ�-�JJ;�+�4�/~�zËʠ��B<�B �Ҽ� ��8�]ɱ�r�b}~�m9��e!�x �H�r ��R�k��X��}0U�w�N(a�#��Z�Z�s�hF�u�g�qR�g'��|�\��,+��{��Q��N��j��n�f� %`��H}�'��P��sh˸x̌/��D�:�� pl;��Yy}�:�ˋ��r��Q?D��t��dX�0�`��GoPN��cl��d�.}j�񪹫)#J4&��c��l�]`��K<��ٵ+;�1M~��`�~ʃD��T�<�Z��-!�� =�4��rC�%��[�GK�Nz��둧�-��>��w��mr4S��S�"��`�J�\�!�^1��G$��
SKIDROW

Sections

.text
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 521B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.skr0
Size: - Virtual size: 348B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.skr1
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.skr2
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SKIDROW/steam_api.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\buildslave\steam_rel_client_win32\build\src\steam_api\Release\steam_api.pdb

Exports

Exports

GetHSteamPipe
GetHSteamUser
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamAPI_GetSteamInstallPath
SteamAPI_Init
SteamAPI_InitSafe
SteamAPI_IsSteamRunning
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_SetBreakpadAppID
SteamAPI_SetMiniDumpComment
SteamAPI_SetTryCatchCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamAPI_UseBreakpadCrashHandler
SteamAPI_WriteMiniDump
SteamApps
SteamClient
SteamContentServer
SteamContentServerUtils
SteamContentServer_Init
SteamContentServer_RunCallbacks
SteamContentServer_Shutdown
SteamFriends
SteamGameServer
SteamGameServerApps
SteamGameServerHTTP
SteamGameServerNetworking
SteamGameServerStats
SteamGameServerUtils
SteamGameServer_BSecure
SteamGameServer_GetHSteamPipe
SteamGameServer_GetHSteamUser
SteamGameServer_GetIPCCallCount
SteamGameServer_GetSteamID
SteamGameServer_Init
SteamGameServer_InitSafe
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamHTTP
SteamMatchmaking
SteamMatchmakingServers
SteamNetworking
SteamRemoteStorage
SteamScreenshots
SteamUser
SteamUserStats
SteamUtils
Steam_GetHSteamUserCurrent
Steam_RegisterInterfaceFuncs
Steam_RunCallbacks
g_pSteamClientGameServer

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
skidrow.nfo
游侠网专题导航-游侠网中国单机游戏门户.url
.url

Sharing

General

Malware Config

Signatures

Files

9eff793551989f023d41a0bf01ee1403

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

d3d11

dinput8

dxgi

xinput1_3

d3dcompiler_43

binkw32

steam_api

advapi32

kernel32

gdi32

ole32

oleaut32

psapi

shlwapi

user32

winmm

wsock32

iphlpapi

ws2_32

wininet

crypt32

Exports

Exports

Sections

.text Size: 12.9MB - Virtual size: 12.9MB

.rdata Size: 2.6MB - Virtual size: 2.6MB

.data Size: 465KB - Virtual size: 1.3MB

.tls Size: 512B - Virtual size: 89B

.crsig Size: 4KB - Virtual size: 4KB

.version Size: 512B - Virtual size: 4B

.rsrc Size: 64KB - Virtual size: 64KB

ca8f196ebeb860e61002d7f57f2739e0

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

shell32

user32

wininet

kernel32

Exports

Exports

Sections

.text Size: 246KB - Virtual size: 246KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 7KB - Virtual size: 15KB

.STMSIG Size: 4KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 31KB - Virtual size: 30KB

d040a215909279873b251531f26db3a2

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: - Virtual size: 1KB

.rdata Size: - Virtual size: 521B

.data Size: - Virtual size: 3KB

.skr0 Size: - Virtual size: 348B

.skr1 Size: - Virtual size: 16KB

.tls Size: 512B - Virtual size: 24B

.skr2 Size: 67KB - Virtual size: 67KB

.reloc Size: 512B - Virtual size: 196B

Headers

.text
Size: 12.9MB - Virtual size: 12.9MB

.rdata
Size: 2.6MB - Virtual size: 2.6MB

.data
Size: 465KB - Virtual size: 1.3MB

.tls
Size: 512B - Virtual size: 89B

.crsig
Size: 4KB - Virtual size: 4KB

.version
Size: 512B - Virtual size: 4B

.rsrc
Size: 64KB - Virtual size: 64KB

.text
Size: 246KB - Virtual size: 246KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 7KB - Virtual size: 15KB

.STMSIG
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 31KB - Virtual size: 30KB

.text
Size: - Virtual size: 1KB

.rdata
Size: - Virtual size: 521B

.data
Size: - Virtual size: 3KB

.skr0
Size: - Virtual size: 348B

.skr1
Size: - Virtual size: 16KB

.tls
Size: 512B - Virtual size: 24B

.skr2
Size: 67KB - Virtual size: 67KB

.reloc
Size: 512B - Virtual size: 196B

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 20KB - Virtual size: 16KB