C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Behavioral task
behavioral1
Sample
Botnets_PACK.rar
Resource
win11-20241007-en
General
-
Target
Botnets_PACK.rar
-
Size
27.5MB
-
MD5
edaebf5c06f81cbe6123a820761dd217
-
SHA1
e4ce7f4a9d61548e91160647c7d7df62315b3441
-
SHA256
f38de4913b8110f971939219bab3d06d0a5682c0a9649b7f344af83429958e0c
-
SHA512
b0d984be5ebc6642e1c7191d42cfec2fc35dcfce031f1c6568dccdd0413fab18ad64abd6337075a37023f6ed514ea38c6b561375d065dbde6cbcb8fe1c8388ee
-
SSDEEP
786432:U5WlRiyrkogffaoyq0RXDPTCyK9pDw5sz+WP/:aGRgLAM9pDw5szVP/
Malware Config
Extracted
blacknet
[ID]
[HOST]
[MUTEX]
-
antivm
false
-
elevate_uac
false
-
install_name
[Install_Name]
-
splitter
|BN|
-
start_name
[StartupName]
-
startup
false
-
usb_spread
false
Signatures
-
BlackNET payload 2 IoCs
resource yara_rule static1/unpack001/Botnets PACK/BlackNET - Compiled/aepic/stub.exe family_blacknet static1/unpack001/Botnets PACK/BlackNET - Compiled/stub.exe family_blacknet -
Blacknet family
-
Contains code to disable Windows Defender 2 IoCs
A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
resource yara_rule static1/unpack001/Botnets PACK/BlackNET - Compiled/aepic/stub.exe disable_win_def static1/unpack001/Botnets PACK/BlackNET - Compiled/stub.exe disable_win_def -
resource yara_rule static1/unpack001/Botnets PACK/Pony 1.9/masm32/bin/upx.exe upx static1/unpack001/Botnets PACK/Pony 1.9/sys/WPFToolkit.exe upx -
Unsigned PE 82 IoCs
Checks for missing Authenticode signature.
resource unpack001/Botnets PACK/Amadey Cracked/Amadey Cracked [XakFor.Net].exe unpack001/Botnets PACK/Amadey Cracked/xpti/Ionic.Zip.dll unpack001/Botnets PACK/Amadey Cracked/xpti/Launcher.exe unpack001/Botnets PACK/Amadey Cracked/xpti/svg.exe unpack001/Botnets PACK/Atmos BOTNET Builder/RuriLib.dll unpack001/Botnets PACK/Atmos BOTNET Builder/atmos_weber.exe unpack001/Botnets PACK/Atmos BOTNET Builder/forms/Ionic.Zip.dll unpack001/Botnets PACK/Atmos BOTNET Builder/forms/Launcher.exe unpack001/Botnets PACK/Atmos BOTNET Builder/forms/comm.exe unpack001/Botnets PACK/BetaBotBuilder Leaked by Bull/BetaBotBuilderGUI.exe unpack001/Botnets PACK/BetaBotBuilder Leaked by Bull/RDXService.dll unpack001/Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/Ionic.Zip.dll unpack001/Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/Launcher.exe unpack001/Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/secur32.exe unpack001/Botnets PACK/BlackNET - Compiled/BlackNET Builder.exe unpack001/Botnets PACK/BlackNET - Compiled/Mono.Cecil.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/Confuser.Core.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/Confuser.DynCipher.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/Confuser.Protections.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/Confuser.Renamer.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/Confuser.Runtime.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/Confuser.exe unpack001/Botnets PACK/BlackNET - Compiled/Packer/System.Windows.Interactivity.dll unpack001/Botnets PACK/BlackNET - Compiled/Packer/dnlib.dll unpack001/Botnets PACK/BlackNET - Compiled/aepic/Ionic.Zip.dll unpack001/Botnets PACK/BlackNET - Compiled/aepic/Launcher.exe unpack001/Botnets PACK/BlackNET - Compiled/aepic/Mono.Cecil.dll unpack001/Botnets PACK/BlackNET - Compiled/aepic/RESOURCES.exe unpack001/Botnets PACK/BlackNET - Compiled/aepic/stub.exe unpack001/Botnets PACK/BlackNET - Compiled/aepic/watcher.exe unpack001/Botnets PACK/BlackNET - Compiled/ffmpeg.dll unpack001/Botnets PACK/BlackNET - Compiled/nssdbm3.dll unpack001/Botnets PACK/BlackNET - Compiled/stub.exe unpack001/Botnets PACK/BlackNET - Compiled/watcher.exe unpack001/Botnets PACK/H1N1 Loader/H1N1.exe unpack001/Botnets PACK/H1N1 Loader/nssckbi.dll unpack001/Botnets PACK/H1N1 Loader/sqlite3/Ionic.Zip.dll unpack001/Botnets PACK/H1N1 Loader/sqlite3/Launcher.exe unpack001/Botnets PACK/H1N1 Loader/sqlite3/NcaSvc.exe unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/L0rdix Cracked [XakFor.Net].exe unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/dnlib.dll unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/Ionic.Zip.dll unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/Launcher.exe unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/dnlib.dll unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/xpti.exe unpack001/Botnets PACK/L0rdix Cracked [XakFor.Net]/ffmpeg.dll unpack001/Botnets PACK/LiteHTTP-master/LiteDB/Ionic.Zip.dll unpack001/Botnets PACK/LiteHTTP-master/LiteDB/Launcher.exe unpack001/Botnets PACK/LiteHTTP-master/LiteDB/all.exe unpack001/Botnets PACK/LiteHTTP-master/LiteHTTP Builder.exe unpack001/Botnets PACK/Loki 1.8/CookComputing.XmlRpcV2.dll unpack001/Botnets PACK/Loki 1.8/Loki_original.exe unpack001/Botnets PACK/Loki 1.8/MRG.Controls.UI.dll unpack001/Botnets PACK/Loki 1.8/NReadability.dll unpack001/Botnets PACK/Loki 1.8/SgmlReaderDll.dll unpack001/Botnets PACK/Loki 1.8/xpinstal/CookComputing.XmlRpcV2.dll unpack001/Botnets PACK/Loki 1.8/xpinstal/Ionic.Zip.dll unpack001/Botnets PACK/Loki 1.8/xpinstal/Launcher.exe unpack001/Botnets PACK/Loki 1.8/xpinstal/MRG.Controls.UI.dll unpack001/Botnets PACK/Loki 1.8/xpinstal/NReadability.dll unpack001/Botnets PACK/Loki 1.8/xpinstal/SgmlReaderDll.dll unpack001/Botnets PACK/Loki 1.8/xpinstal/ieproxy.exe unpack001/Botnets PACK/Pandora/pandora.exe unpack001/Botnets PACK/Pandora/rdpcorets.dll unpack001/Botnets PACK/Pandora/xpinstal/Ionic.Zip.dll unpack001/Botnets PACK/Pandora/xpinstal/Launcher.exe unpack001/Botnets PACK/Pandora/xpinstal/sxs.exe unpack001/Botnets PACK/Pony 1.9/PonyBuilder.exe unpack001/Botnets PACK/Pony 1.9/masm32/bin/brcc32.exe unpack001/Botnets PACK/Pony 1.9/masm32/bin/cvtres.exe unpack001/Botnets PACK/Pony 1.9/masm32/bin/cw3220mt.dll unpack001/Botnets PACK/Pony 1.9/masm32/bin/ml.exe unpack001/Botnets PACK/Pony 1.9/masm32/bin/rw32core.dll unpack001/Botnets PACK/Pony 1.9/masm32/bin/upx.exe unpack001/Botnets PACK/Pony 1.9/secproc.dll unpack001/Botnets PACK/Pony 1.9/sys/Ionic.Zip.dll unpack001/Botnets PACK/Pony 1.9/sys/Launcher.exe unpack001/Botnets PACK/Pony 1.9/sys/WPFToolkit.exe unpack001/Botnets PACK/Smoke Loader Original Stub/nssdbm3/CoreShell.exe unpack001/Botnets PACK/Smoke Loader Original Stub/nssdbm3/Ionic.Zip.dll unpack001/Botnets PACK/Smoke Loader Original Stub/nssdbm3/Launcher.exe unpack001/Botnets PACK/Smoke Loader Original Stub/smokeloader.exe
Files
-
Botnets_PACK.rar.rar
-
Botnets PACK/Amadey Cracked/Amadey Cracked [XakFor.Net].exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 178KB - Virtual size: 177KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Amadey Cracked/d3d9.dll.dll windows:10 windows x64 arch:x64
f3fd9d8ce2d0ce4ac0275b43760bba08
Code Sign
33:00:00:02:32:41:fb:59:99:6d:cc:4d:ff:00:00:00:00:02:32Certificate
IssuerCN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before02-05-2019 21:24Not After02-05-2020 21:24SubjectCN=Microsoft Windows,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:07:76:56:00:00:00:00:00:08Certificate
IssuerCN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before19-10-2011 18:41Not After19-10-2026 18:51SubjectCN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
c0:c4:38:c3:09:4a:4d:82:fc:63:be:c6:91:61:48:42:c7:3f:36:04:ee:e6:a7:b9:03:79:c5:e4:e3:5a:fa:e8Signer
Actual PE Digestc0:c4:38:c3:09:4a:4d:82:fc:63:be:c6:91:61:48:42:c7:3f:36:04:ee:e6:a7:b9:03:79:c5:e4:e3:5a:fa:e8Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
d3d9.pdb
Imports
msvcrt
memmove
memset
pow
powf
sinf
sqrt
sqrtf
strcmp
memcpy
__dllonexit
_unlock
_lock
memcmp
_wtoi
wcschr
_wcsnicmp
swprintf_s
swscanf_s
_wcsicmp
wcscpy_s
wcscat_s
_wcslwr
wcsstr
wcsrchr
wcsncmp
toupper
strncmp
wcsspn
qsort
sprintf_s
strcat_s
??1exception@@UEAA@XZ
logf
log10f
floorf
floor
??0exception@@QEAA@XZ
??0exception@@QEAA@AEBV0@@Z
ceil
_CxxThrowException
memcpy_s
_vsnwprintf
_vsnprintf_s
_purecall
memmove_s
malloc
free
expf
cosf
cos
wcstol
_onexit
_vsnprintf
_stricmp
strcpy_s
strrchr
__C_specific_handler
abort
sscanf_s
strstr
__iscsym
_XcptFilter
_amsg_exit
_initterm
__CxxFrameHandler3
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
wcscmp
ntdll
ZwQueryDirectoryFile
RtlpEnsureBufferSize
RtlNtPathNameToDosPathName
ZwUnmapViewOfSection
ZwMapViewOfSection
LdrResSearchResource
RtlVerifyVersionInfo
RtlImageDirectoryEntryToData
RtlGetVersion
NtClose
RtlRunOnceExecuteOnce
ZwQueryKey
ZwEnumerateValueKey
RtlUnicodeStringToInteger
RtlCopyUnicodeString
EtwEventWriteNoRegistration
RtlAnsiStringToUnicodeString
RtlxAnsiStringToUnicodeSize
RtlInitString
RtlUnicodeStringToAnsiString
ZwSetInformationProcess
ZwQueryInformationProcess
ZwCreateSection
ZwQueryInformationFile
ZwCreateFile
RtlFormatCurrentUserKeyPath
RtlAppendUnicodeToString
RtlAppendUnicodeStringToString
ZwQueryValueKey
RtlInitUnicodeStringEx
ZwOpenKey
RtlFreeUnicodeString
ZwOpenFile
RtlDosPathNameToNtPathName_U_WithStatus
ZwQuerySystemInformation
RtlGetNativeSystemInformation
RtlUpcaseUnicodeChar
RtlInitUnicodeString
ZwClose
RtlFreeHeap
ZwEnumerateKey
RtlReAllocateHeap
RtlAllocateHeap
NtQueryWnfStateData
NtQueryInformationProcess
RtlGUIDFromString
EtwEventWriteTransfer
EtwLogTraceEvent
NtQueryValueKey
EtwEventUnregister
EtwEventRegister
VerSetConditionMask
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
EtwUnregisterTraceGuids
EtwGetTraceEnableFlags
EtwGetTraceLoggerHandle
EtwRegisterTraceGuidsA
EtwGetTraceEnableLevel
RtlIsCriticalSectionLockedByThread
RtlPublishWnfStateData
RtlUpcaseUnicodeString
api-ms-win-core-registry-l1-1-0
RegCreateKeyExA
RegQueryValueExA
RegDeleteValueA
RegEnumValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegGetValueA
RegQueryInfoKeyA
api-ms-win-security-base-l1-1-0
AddAccessAllowedAce
SetSecurityDescriptorDacl
AllocateLocallyUniqueId
GetSidSubAuthority
GetSidLengthRequired
InitializeSid
SetSecurityDescriptorSacl
IsValidSid
InitializeSecurityDescriptor
InitializeAcl
SetKernelObjectSecurity
GetLengthSid
AddMandatoryAce
api-ms-win-security-sddl-l1-1-0
ConvertStringSidToSidW
api-ms-win-gdi-dpiinfo-l1-1-0
GetCurrentDpiInfo
user32
IsRectEmpty
SetWindowLongA
GetForegroundWindow
UnregisterClassA
PeekMessageA
LoadCursorW
TranslateMessage
SetPropW
AttachThreadInput
MsgWaitForMultipleObjects
RemovePropW
GetPropW
DestroyWindow
DispatchMessageA
GetWindow
GetWindowThreadProcessId
SetForegroundWindow
mouse_event
GetWindowLongA
IsWindow
IsIconic
SetWindowDisplayAffinity
GetWindowDisplayAffinity
GetAncestor
PtInRect
NotifyOverlayWindow
SetCursorPos
GetCursorPos
CreateIconIndirect
GetWindowDC
GetDesktopWindow
DestroyIcon
GetCursor
SetCursor
UnionRect
SetRectEmpty
UnregisterHotKey
RegisterHotKey
GetThreadDesktop
CloseDesktop
GetUserObjectInformationA
OpenInputDesktop
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
MonitorFromWindow
GetDC
GetWindowInfo
ReleaseDC
GetSystemMetrics
EqualRect
GetWindowRect
GetKeyState
PostMessageA
SendMessageA
CallWindowProcA
SetWindowLongPtrA
CallWindowProcW
SetWindowLongPtrW
KillTimer
SetTimer
IsZoomed
ShowWindow
IsWindowVisible
IsWindowUnicode
GetWindowLongPtrA
GetWindowLongPtrW
OffsetRect
EnumDisplayMonitors
DefWindowProcA
LoadIconA
RegisterClassA
CreateWindowExA
EnumDisplayDevicesA
DisplayConfigGetDeviceInfo
SystemParametersInfoA
SetWindowPos
GetMonitorInfoA
IntersectRect
SetRect
GetClientRect
EnumDisplaySettingsA
ClientToScreen
api-ms-win-core-versionansi-l1-1-0
VerQueryValueA
GetFileVersionInfoExA
GetFileVersionInfoSizeExA
api-ms-win-appmodel-unlock-l1-1-0
IsDeveloperModeEnabled
win32u
NtUnBindCompositionSurface
NtQueryCompositionSurfaceStatistics
NtBindCompositionSurface
NtNotifyPresentToCompositionSurface
gdi32
StretchBlt
D3DKMTCacheHybridQueryValue
D3DKMTGetCachedHybridQueryValue
CreateDIBitmap
GetNearestColor
GetDeviceCaps
GetSystemPaletteEntries
DdEntry27
DdEntry20
DdEntry2
DdEntry38
DdEntry54
CreateCompatibleBitmap
SelectObject
CreateDIBSection
DdEntry30
DdEntry16
DdEntry42
CreateCompatibleDC
DdEntry25
DdEntry6
DdEntry31
DdEntry29
DdEntry33
DdEntry44
DdEntry43
DdEntry50
DdEntry46
DdEntry24
DdEntry12
DdEntry9
DdEntry26
SetLayout
DdEntry37
DdEntry22
GetDeviceGammaRamp
DdEntry28
DdEntry23
GetDIBits
DdEntry56
DdEntry17
DdEntry35
CreateRectRgn
DdEntry13
DdEntry19
DdEntry21
DdEntry53
GetRegionData
DdEntry45
DdEntry48
DdEntry40
DdEntry4
DdEntry5
GdiEntry1
DdEntry18
DdEntry36
DdEntry34
SetStretchBltMode
DdEntry39
DdEntry3
DdEntry11
DdEntry10
DeleteObject
DdEntry1
GetRandomRgn
DdEntry41
DdEntry49
D3DKMTMakeResident
D3DKMTPresent
D3DKMTEvict
D3DKMTDestroyAllocation2
D3DKMTLock2
D3DKMTCreateAllocation
D3DKMTMapGpuVirtualAddress
D3DKMTDestroyContext
D3DKMTDestroyAllocation
D3DKMTFreeGpuVirtualAddress
D3DKMTCloseAdapter
D3DKMTCreateHwQueue
D3DKMTSharedPrimaryUnLockNotification
D3DKMTRegisterTrimNotification
D3DKMTWaitForSynchronizationObjectFromCpu
D3DKMTEnumAdapters
D3DKMTUnregisterTrimNotification
D3DKMTDestroyOverlay
D3DKMTGetSharedPrimaryHandle
D3DKMTEscape
D3DKMTSubmitPresentToHwQueue
D3DKMTUnlock2
D3DKMTUpdateAllocationProperty
D3DKMTWaitForSynchronizationObject
D3DKMTDestroySynchronizationObject
D3DKMTQueryStatistics
D3DKMTShareObjects
D3DKMTConfigureSharedResource
D3DKMTSetGammaRamp
D3DKMTCreateSynchronizationObject2
D3DKMTCheckOcclusion
D3DKMTGetDisplayModeList
GdiEntry13
D3DKMTReclaimAllocations
D3DKMTCreateSynchronizationObject
D3DKMTUpdateGpuVirtualAddress
D3DKMTOpenAdapterFromHdc
D3DKMTDestroyDCFromMemory
D3DKMTOpenResource
D3DKMTQueryResourceInfoFromNtHandle
D3DKMTDestroyPagingQueue
D3DKMTCreateAllocation2
D3DKMTQueryAllocationResidency
D3DKMTUpdateOverlay
D3DKMTSharedPrimaryLockNotification
D3DKMTSetDisplayPrivateDriverFormat
D3DKMTCreateDevice
D3DKMTSubmitCommand
D3DKMTRender
D3DKMTCheckExclusiveOwnership
D3DKMTQueryVidPnExclusiveOwnership
D3DKMTDestroyHwQueue
D3DKMTInvalidateCache
D3DKMTSignalSynchronizationObjectFromGpu
D3DKMTSetQueuedLimit
D3DKMTWaitForSynchronizationObjectFromGpu
DeleteDC
D3DKMTSetDisplayMode
D3DKMTSubmitSignalSyncObjectsToHwQueue
D3DKMTSetVidPnSourceOwner1
D3DKMTSignalSynchronizationObject
D3DKMTReclaimAllocations2
D3DKMTCreateContext
D3DKMTSubmitCommandToHwQueue
D3DKMTReleaseProcessVidPnSourceOwners
D3DKMTCreatePagingQueue
D3DKMTSubmitWaitForSyncObjectsToHwQueue
D3DKMTCreateDCFromMemory
D3DKMTDestroyDevice
D3DKMTReserveGpuVirtualAddress
D3DKMTGetMultisampleMethodList
D3DKMTCheckMonitorPowerState
D3DKMTSignalSynchronizationObjectFromGpu2
D3DKMTSetAllocationPriority
D3DKMTOpenAdapterFromDeviceName
D3DKMTCreateContextVirtual
D3DKMTQueryResourceInfo
D3DKMTSignalSynchronizationObject2
D3DKMTGetScanLine
D3DKMTMarkDeviceAsError
D3DKMTUnlock
D3DKMTLock
D3DKMTOpenResource2
D3DKMTGetContextSchedulingPriority
D3DKMTWaitForSynchronizationObject2
D3DKMTSignalSynchronizationObjectFromCpu
D3DKMTGetMultiPlaneOverlayCaps
BitBlt
D3DKMTWaitForVerticalBlankEvent
D3DKMTQueryAdapterInfo
D3DKMTSetContextSchedulingPriority
D3DKMTOpenResourceFromNtHandle
D3DKMTGetDeviceState
D3DKMTGetResourcePresentPrivateDriverData
D3DKMTOfferAllocations
D3DKMTGetOverlayState
D3DKMTOpenSyncObjectFromNtHandle2
D3DKMTFlipOverlay
D3DKMTCreateOverlay
CreateDCA
kernel32
GetFileSize
GetVersionExA
GetLogicalProcessorInformation
ResolveDelayLoadedAPI
DelayLoadFailureHook
GetLongPathNameW
GetDriveTypeW
ExpandEnvironmentStringsW
FindClose
FindNextFileW
FindFirstFileW
FreeEnvironmentStringsW
GetEnvironmentStringsW
RegQueryValueExW
GetCurrentPackageFamilyName
InitOnceComplete
OpenProcess
GetApplicationUserModelId
RegOpenKeyExW
RegGetValueW
K32GetModuleFileNameExW
GetPackageFamilyName
GetCurrentApplicationUserModelId
InitOnceBeginInitialize
CreateEventA
CreateThread
SetEvent
GetModuleHandleExA
WaitForMultipleObjects
GetProcessMitigationPolicy
GetModuleFileNameW
GetSystemTimeAsFileTime
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateNamedPipeA
CreateFileA
WaitNamedPipeA
TransactNamedPipe
GetPrivateProfileStringA
WriteFile
PeekNamedPipe
ReadFile
FlushFileBuffers
DisconnectNamedPipe
ConnectNamedPipe
SetNamedPipeHandleState
OpenMutexW
CreateMutexW
CreateSemaphoreA
GlobalAddAtomA
ResetEvent
OpenEventW
GetTickCount
LocalFree
LocalAlloc
VerifyVersionInfoA
DisableThreadLibraryCalls
CreateSemaphoreExA
FreeLibraryAndExitThread
GetModuleHandleA
QueryPerformanceCounter
GetSystemTime
WideCharToMultiByte
LoadLibraryW
QueryPerformanceFrequency
Sleep
GetProcessId
GetCurrentProcess
InitializeSRWLock
lstrcmpA
SetErrorMode
LoadLibraryA
InitializeCriticalSection
LoadLibraryExW
FreeLibrary
OutputDebugStringA
GetNativeSystemInfo
IsDebuggerPresent
GetCurrentProcessId
DeleteCriticalSection
AcquireSRWLockShared
CreateMutexExW
CreateThreadpoolTimer
ReleaseSRWLockShared
SetThreadpoolTimer
CloseHandle
OpenSemaphoreW
WaitForSingleObjectEx
AcquireSRWLockExclusive
CloseThreadpoolTimer
OutputDebugStringW
ReleaseSRWLockExclusive
GetLastError
ReleaseMutex
WaitForSingleObject
WaitForThreadpoolTimerCallbacks
InitializeCriticalSectionEx
LeaveCriticalSection
ReleaseSemaphore
EnterCriticalSection
SetLastError
CreateSemaphoreExW
DebugBreak
GetModuleHandleW
GetProcessHeap
GetProcAddress
HeapAlloc
FormatMessageW
GetCurrentThreadId
GetModuleHandleExW
HeapFree
GetModuleFileNameA
dwmapi
DwmIsCompositionEnabled
ord128
ord100
ord101
ord136
ord137
api-ms-win-shell-shellfolders-l1-1-0
SHGetKnownFolderPath
api-ms-win-eventing-provider-l1-1-0
EventRegister
EventSetInformation
EventUnregister
api-ms-win-core-com-l1-1-0
CoTaskMemFree
CoUninitialize
CoInitializeEx
CoCreateInstance
Exports
Exports
D3DPERF_BeginEvent
D3DPERF_EndEvent
D3DPERF_GetStatus
D3DPERF_QueryRepeatFrame
D3DPERF_SetMarker
D3DPERF_SetOptions
D3DPERF_SetRegion
DebugSetLevel
DebugSetMute
Direct3D9EnableMaximizedWindowedModeShim
Direct3DCreate9
Direct3DCreate9Ex
Direct3DShaderValidatorCreate9
PSGPError
PSGPSampleTexture
Sections
.text Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 394KB - Virtual size: 393KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 49KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 40B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Amadey Cracked/forms.css
-
Botnets PACK/Amadey Cracked/xpti/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Amadey Cracked/xpti/LICENCE.dat.zip
-
Botnets PACK/Amadey Cracked/xpti/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Amadey Cracked/xpti/svg.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
n Size: 1.8MB - Virtual size: 1.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 457KB - Virtual size: 456KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 264KB - Virtual size: 263KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Amadey Cracked/СС/config.php
-
Botnets PACK/Amadey Cracked/СС/del_task.php
-
Botnets PACK/Amadey Cracked/СС/edit_task.php
-
Botnets PACK/Amadey Cracked/СС/f.st/c.index.txt
-
Botnets PACK/Amadey Cracked/СС/f.st/geo_ip.dat
-
Botnets PACK/Amadey Cracked/СС/f.st/geo_ip.php
-
Botnets PACK/Amadey Cracked/СС/f.st/style.css
-
Botnets PACK/Amadey Cracked/СС/header.php
-
Botnets PACK/Amadey Cracked/СС/images/b1.png.png
-
Botnets PACK/Amadey Cracked/СС/images/b2.png.png
-
Botnets PACK/Amadey Cracked/СС/images/b3.png.png
-
Botnets PACK/Amadey Cracked/СС/images/b4.png.png
-
Botnets PACK/Amadey Cracked/СС/images/b5.png.png
-
Botnets PACK/Amadey Cracked/СС/images/b6.png.png
-
Botnets PACK/Amadey Cracked/СС/images/bg_1.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_1.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_10.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_11.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_12.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_13.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_2.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_3.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_4.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_5.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_6.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_7.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_8.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_9.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_av.png.png
-
Botnets PACK/Amadey Cracked/СС/images/ic_sort.png.png
-
Botnets PACK/Amadey Cracked/СС/images/l0.png.png
-
Botnets PACK/Amadey Cracked/СС/images/l1.png.png
-
Botnets PACK/Amadey Cracked/СС/images/logo_small.png.png
-
Botnets PACK/Amadey Cracked/СС/images/task_example.png.png
-
Botnets PACK/Amadey Cracked/СС/index.php
-
Botnets PACK/Amadey Cracked/СС/login.php
-
Botnets PACK/Amadey Cracked/СС/make_task.php
-
Botnets PACK/Amadey Cracked/СС/settings.php
-
Botnets PACK/Amadey Cracked/СС/show_bots.php
-
Botnets PACK/Amadey Cracked/СС/show_task.php
-
Botnets PACK/Amadey Cracked/СС/statistic.php
-
Botnets PACK/Atmos BOTNET Builder/NetUtil.jsm.js
-
Botnets PACK/Atmos BOTNET Builder/RuriLib.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\Users\satan666\Downloads\openbullet-master\openbullet-master\RuriLib\obj\Release\RuriLib.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 211KB - Virtual size: 210KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 872B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Atmos BOTNET Builder/atmos_ffcookie.module
-
Botnets PACK/Atmos BOTNET Builder/atmos_hvnc.module
-
Botnets PACK/Atmos BOTNET Builder/atmos_video.module
-
Botnets PACK/Atmos BOTNET Builder/atmos_weber.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 174KB - Virtual size: 174KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Atmos BOTNET Builder/config.txt
-
Botnets PACK/Atmos BOTNET Builder/files/.htaccess
-
Botnets PACK/Atmos BOTNET Builder/forms/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Atmos BOTNET Builder/forms/LICENCE.dat.zip
-
Botnets PACK/Atmos BOTNET Builder/forms/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Atmos BOTNET Builder/forms/atmos_ffcookie.module
-
Botnets PACK/Atmos BOTNET Builder/forms/atmos_hvnc.module
-
Botnets PACK/Atmos BOTNET Builder/forms/atmos_video.module
-
Botnets PACK/Atmos BOTNET Builder/forms/comm.exe.exe windows:5 windows x86 arch:x86
db621b2225be5105722ecfee3459606f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetFileSizeEx
GetLastError
VirtualAlloc
CloseHandle
GetVolumeNameForVolumeMountPointW
SetFileAttributesW
CreateThread
ExitThread
TerminateThread
GetFileAttributesExW
ExitProcess
FindResourceW
LoadResource
GlobalLock
GlobalAlloc
SizeofResource
GetModuleFileNameW
GlobalUnlock
GlobalFree
LockResource
GetPrivateProfileIntW
GetUserDefaultUILanguage
MultiByteToWideChar
CreateFileW
ReadFile
lstrcmpiA
GetFileAttributesW
Sleep
WideCharToMultiByte
WriteFile
IsBadReadPtr
VirtualFree
GetTickCount
GetModuleHandleW
WaitForSingleObject
CreateDirectoryW
HeapFree
HeapReAlloc
lstrlenW
GetProcessHeap
HeapAlloc
lstrcpyW
DeleteFileW
user32
LoadImageW
GetWindowTextLengthW
SetWindowTextW
EnableWindow
SendMessageW
SetDlgItemTextW
MessageBoxW
SendDlgItemMessageW
GetDlgItem
IsWindowEnabled
CreateDialogParamW
ShowWindow
EndDialog
GetUpdateRect
GetDC
ReleaseDC
SetWindowLongW
BeginPaint
DialogBoxParamW
DrawTextW
DestroyWindow
EndPaint
wsprintfW
GetWindowTextW
advapi32
CryptReleaseContext
GetTokenInformation
CryptAcquireContextW
OpenProcessToken
CryptGetHashParam
CryptCreateHash
CryptDestroyHash
CryptHashData
GetLengthSid
shlwapi
wvnsprintfA
PathRemoveBackslashW
PathCombineW
PathSkipRootW
PathAddBackslashW
PathRemoveFileSpecW
wvnsprintfW
StrCmpNIA
shell32
ShellExecuteW
SHGetFolderPathW
gdi32
CreateCompatibleDC
SelectObject
SetBkColor
CreateFontW
SetTextColor
BitBlt
CreateSolidBrush
DeleteDC
gdiplus
GdiplusShutdown
GdipFree
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdiplusStartup
GdipCloneImage
GdipCreateHBITMAPFromBitmap
comctl32
InitCommonControlsEx
comdlg32
GetOpenFileNameW
GetSaveFileNameW
ole32
CoUninitialize
CoInitialize
CoInitializeSecurity
CoSetProxyBlanket
CoCreateInstance
CoInitializeEx
CreateStreamOnHGlobal
CLSIDFromString
oleaut32
VariantClear
Sections
.text Size: 91KB - Virtual size: 91KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 928KB - Virtual size: 927KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 9KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 390KB - Virtual size: 389KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Atmos BOTNET Builder/forms/config.txt
-
Botnets PACK/Atmos BOTNET Builder/forms/intergate.php
-
Botnets PACK/Atmos BOTNET Builder/forms/intergate_config.php
-
Botnets PACK/Atmos BOTNET Builder/forms/usagold.xml
-
Botnets PACK/Atmos BOTNET Builder/intergate.php
-
Botnets PACK/Atmos BOTNET Builder/intergate_config.php
-
Botnets PACK/Atmos BOTNET Builder/usagold.xml
-
Botnets PACK/BetaBotBuilder Leaked by Bull/BetaBotBuilderGUI.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 193KB - Virtual size: 193KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BetaBotBuilder Leaked by Bull/RDXService.dll.dll windows:10 windows x64 arch:x64
41fe2269dd6b4fc9e271773a5a81f94b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
RDXService.pdb
Imports
msvcrt
memcmp
__crtLCMapStringA
__crtLCMapStringW
memmove
memcpy
sprintf_s
_wtof
wcstok_s
swprintf_s
_set_errno
_XcptFilter
_amsg_exit
??1bad_cast@@UEAA@XZ
_CxxThrowException
_initterm
_wcsdup
_itow_s
abort
islower
?what@exception@@UEBAPEBDXZ
_get_current_locale
calloc
isupper
__pctype_func
memset
__C_specific_handler
?terminate@@YAXXZ
_free_locale
_get_errno
_ismbblead
___lc_codepage_func
___lc_handle_func
wcsstr
_lock
_unlock
__dllonexit
___mb_cur_max_func
??0exception@@QEAA@AEBQEBDH@Z
??0exception@@QEAA@AEBQEBD@Z
_callnewh
malloc
memmove_s
_vsnprintf_s
??0exception@@QEAA@AEBV0@@Z
??0exception@@QEAA@XZ
??1exception@@UEAA@XZ
_purecall
??3@YAXPEAX@Z
_errno
_onexit
memcpy_s
setlocale
toupper
wcschr
wcsrchr
??0bad_cast@@QEAA@AEBV0@@Z
_wcsnicmp
??1type_info@@UEAA@XZ
ldiv
_wcsicmp
_vsnwprintf
??_V@YAXPEAX@Z
realloc
__CxxFrameHandler3
strcspn
localeconv
??0bad_cast@@QEAA@PEBD@Z
free
wcsncmp
sqrtf
propsys
PSCreateMemoryPropertyStore
PropVariantToBoolean
VariantToStringAlloc
VariantToInt32
api-ms-win-shcore-taskpool-l1-1-0
SHTaskPoolQueueTask
api-ms-win-shcore-registry-l1-1-0
SHSetValueW
SHDeleteValueW
api-ms-win-shcore-stream-l1-1-0
IStream_Reset
IStream_Write
IStream_Size
SHCreateStreamOnFileEx
windows.storage
ShellExecuteExW
SHCreateItemFromParsingName
SHGetNameFromIDList
SHGetKnownFolderPath
ILClone
ord866
shcore
ord200
rpcrt4
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrCStdStubBuffer_Release
IUnknown_QueryInterface_Proxy
CStdStubBuffer_Disconnect
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Connect
NdrOleAllocate
CStdStubBuffer_QueryInterface
CStdStubBuffer_CountRefs
IUnknown_Release_Proxy
CStdStubBuffer_AddRef
NdrOleFree
CStdStubBuffer_DebugServerQueryInterface
IUnknown_AddRef_Proxy
CStdStubBuffer_Invoke
api-ms-win-core-com-l1-1-0
CoTaskMemFree
CoCreateInstance
CoRegisterClassObject
CoGetMalloc
CoTaskMemRealloc
CoTaskMemAlloc
CoReleaseServerProcess
CoRevokeClassObject
CoResumeClassObjects
CoSetProxyBlanket
CoAddRefServerProcess
CLSIDFromString
CoCreateFreeThreadedMarshaler
CreateStreamOnHGlobal
CoWaitForMultipleHandles
CoGetApartmentType
PropVariantClear
CoInitializeSecurity
CoUninitialize
StringFromGUID2
CoDisconnectObject
CoInitializeEx
api-ms-win-core-libraryloader-l1-2-0
GetModuleHandleW
GetProcAddress
LoadLibraryExW
GetModuleHandleExW
DisableThreadLibraryCalls
LoadResource
LockResource
FindResourceExW
FreeLibrary
GetModuleFileNameA
api-ms-win-core-synch-l1-2-0
WakeAllConditionVariable
SleepConditionVariableSRW
InitOnceComplete
InitOnceBeginInitialize
Sleep
api-ms-win-core-synch-l1-1-0
ReleaseSRWLockExclusive
CreateSemaphoreExW
OpenSemaphoreW
SetEvent
CreateEventW
OpenEventW
ReleaseSemaphore
CreateEventExW
ReleaseSRWLockShared
EnterCriticalSection
WaitForSingleObjectEx
WaitForSingleObject
LeaveCriticalSection
InitializeCriticalSectionEx
ResetEvent
DeleteCriticalSection
CreateMutexExW
ReleaseMutex
AcquireSRWLockExclusive
WaitForMultipleObjectsEx
AcquireSRWLockShared
InitializeSRWLock
api-ms-win-core-heap-l1-1-0
HeapAlloc
HeapFree
GetProcessHeap
api-ms-win-core-errorhandling-l1-1-0
GetLastError
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RaiseException
api-ms-win-core-winrt-string-l1-1-0
WindowsDeleteString
WindowsStringHasEmbeddedNull
WindowsIsStringEmpty
WindowsCreateString
WindowsCreateStringReference
WindowsGetStringRawBuffer
api-ms-win-eventing-provider-l1-1-0
EventRegister
EventActivityIdControl
EventWriteTransfer
EventUnregister
EventSetInformation
EventProviderEnabled
api-ms-win-core-registry-l1-1-0
RegDeleteValueW
RegQueryInfoKeyW
RegGetValueW
RegOpenKeyExW
RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegCopyTreeW
RegOpenCurrentUser
RegEnumKeyExW
RegEnumValueW
RegDeleteTreeW
api-ms-win-core-util-l1-1-0
EncodePointer
DecodePointer
api-ms-win-core-threadpool-l1-2-0
CreateThreadpoolTimer
CloseThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
api-ms-win-core-processthreads-l1-1-0
TerminateProcess
CreateProcessW
ResumeThread
OpenProcessToken
GetCurrentThreadId
OpenThreadToken
GetCurrentThread
GetCurrentProcess
CreateThread
GetCurrentProcessId
api-ms-win-core-winrt-l1-1-0
RoRevokeActivationFactories
RoGetActivationFactory
RoRegisterActivationFactories
RoActivateInstance
api-ms-win-core-winrt-error-l1-1-0
RoTransformError
SetRestrictedErrorInfo
RoOriginateErrorW
RoOriginateError
api-ms-win-core-localization-l1-2-0
GetUserGeoID
GetLocaleInfoW
GetThreadUILanguage
FormatMessageW
GetGeoInfoW
api-ms-win-core-debug-l1-1-0
DebugBreak
OutputDebugStringW
IsDebuggerPresent
api-ms-win-core-handle-l1-1-0
DuplicateHandle
CloseHandle
api-ms-win-core-url-l1-1-0
ParseURLW
api-ms-win-core-rtlsupport-l1-1-0
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
api-ms-win-core-sysinfo-l1-1-0
GetSystemTime
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
GetLocalTime
GlobalMemoryStatusEx
GetWindowsDirectoryW
GetTickCount
oleaut32
SysAllocString
VariantClear
SysFreeString
api-ms-win-core-timezone-l1-1-0
SystemTimeToFileTime
FileTimeToSystemTime
api-ms-win-core-libraryloader-l1-2-1
LoadLibraryW
api-ms-win-core-sysinfo-l1-2-1
GetPhysicallyInstalledSystemMemory
api-ms-win-core-file-l1-1-0
CompareFileTime
DeleteFileW
FindClose
CreateDirectoryW
GetDriveTypeW
FindNextFileW
CreateFileW
SetFileAttributesW
RemoveDirectoryW
ReadFile
GetFileSizeEx
SetFilePointerEx
FindFirstFileW
api-ms-win-core-io-l1-1-0
DeviceIoControl
api-ms-win-core-path-l1-1-0
PathCchAppend
PathCchCombine
api-ms-win-core-registry-l1-1-1
RegDeleteKeyValueW
RegSetKeyValueW
api-ms-win-ntuser-sysparams-l1-1-0
GetSystemMetrics
api-ms-win-security-sddl-l1-1-0
ConvertSidToStringSidW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertStringSidToSidW
api-ms-win-security-base-l1-1-0
InitializeAcl
AdjustTokenPrivileges
GetLengthSid
AddAce
DeleteAce
IsWellKnownSid
RevertToSelf
ImpersonateLoggedOnUser
EqualSid
GetAce
GetAclInformation
GetTokenInformation
DestroyPrivateObjectSecurity
api-ms-win-core-heap-l2-1-0
LocalFree
LocalAlloc
api-ms-win-service-core-l1-1-0
SetServiceStatus
RegisterServiceCtrlHandlerExW
api-ms-win-appmodel-runtime-l1-1-0
PackageNameAndPublisherIdFromFamilyName
PackageFamilyNameFromFullName
GetPackagesByPackageFamily
api-ms-win-core-string-l1-1-0
MultiByteToWideChar
WideCharToMultiByte
CompareStringOrdinal
GetStringTypeW
xmllite
CreateXmlWriter
CreateXmlReader
sspicli
LsaEnumerateLogonSessions
LsaGetLogonSessionData
LsaFreeReturnBuffer
api-ms-win-security-lsalookup-l2-1-0
LookupPrivilegeValueW
api-ms-win-service-management-l1-1-0
CloseServiceHandle
OpenServiceW
OpenSCManagerW
StartServiceW
api-ms-win-service-management-l2-1-0
QueryServiceConfigW
ChangeServiceConfigW
api-ms-win-core-processenvironment-l1-1-0
GetStdHandle
ExpandEnvironmentStringsW
api-ms-win-core-com-midlproxystub-l1-1-0
ObjectStublessClient6
ObjectStublessClient7
ObjectStublessClient9
ObjectStublessClient10
ObjectStublessClient4
ObjectStublessClient8
ObjectStublessClient5
ObjectStublessClient3
api-ms-win-security-provider-l1-1-0
SetSecurityInfo
GetSecurityInfo
api-ms-win-shell-namespace-l1-1-0
SHParseDisplayName
ILFree
api-ms-win-core-registry-l2-1-0
RegCreateKeyW
api-ms-win-core-string-l2-1-0
CharLowerBuffW
api-ms-win-shlwapi-winrt-storage-l1-1-1
ord24
PathIsDirectoryEmptyW
StrFormatByteSizeEx
api-ms-win-core-shlwapi-obsolete-l1-1-0
QISearch
StrCmpW
StrRChrW
ntdll
RtlGetDeviceFamilyInfoEnum
RtlGetVersion
api-ms-win-rtcore-ntuser-window-l1-1-0
SetWindowLongPtrW
RegisterClassExW
DefWindowProcW
GetWindowLongPtrW
GetMessageW
SetTimer
DestroyWindow
DispatchMessageW
TranslateMessage
PostQuitMessage
KillTimer
PeekMessageW
UnregisterClassW
CreateWindowExW
api-ms-win-rtcore-ntuser-synch-l1-1-0
MsgWaitForMultipleObjectsEx
api-ms-win-appmodel-runtime-internal-l1-1-1
GetPackageStatusForUser
api-ms-win-core-shlwapi-legacy-l1-1-0
PathFileExistsW
PathRemoveFileSpecW
PathStripPathW
PathFindFileNameW
PathRemoveBackslashW
PathFindExtensionW
api-ms-win-core-registryuserspecific-l1-1-0
SHRegGetUSValueW
api-ms-win-shell-changenotify-l1-1-0
SHChangeNotify
appxalluserstore
GetAllPackagesToBeInstalledForUser
DeleteAllPackagesFromMainPackageArray
dmenrollengine
EnrollEngineInitialize
wlanapi
WlanFreeMemory
WlanGetProfile
WlanCloseHandle
WlanOpenHandle
api-ms-win-core-delayload-l1-1-1
ResolveDelayLoadedAPI
api-ms-win-core-delayload-l1-1-0
DelayLoadFailureHook
api-ms-win-core-shutdown-l1-1-0
InitiateSystemShutdownExW
api-ms-win-core-winrt-error-l1-1-1
RoGetMatchingRestrictedErrorInfo
api-ms-win-core-kernel32-legacy-l1-1-0
MoveFileW
api-ms-win-core-processthreads-l1-1-1
OpenProcess
api-ms-win-security-cryptoapi-l1-1-0
CryptDestroyHash
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptAcquireContextW
CryptReleaseContext
api-ms-win-core-file-l2-1-2
CopyFileW
api-ms-win-core-apiquery-l1-1-0
ApiSetQueryApiSetPresence
Exports
Exports
DllCanUnloadNow
DllGetClassObject
GetProxyDllInfo
OpenRDXDocumentW
ServiceMain
Sections
.text Size: 488KB - Virtual size: 487KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 198KB - Virtual size: 197KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 6KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 22KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 288B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/LICENCE.dat.zip
-
Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BetaBotBuilder Leaked by Bull/npnul32/secur32.exe.exe windows:6 windows x86 arch:x86
583007cf32d430e85fe21f2badd88765
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Development2015\NativeProjects\BetaBotBuilder\Release\BetaBotBuilderGUI.pdb
Imports
kernel32
GetModuleHandleA
user32
GetWindowTextLengthA
advapi32
RegEnumKeyExA
ole32
CoUninitialize
oleaut32
SysFreeString
comctl32
InitCommonControlsEx
msvcrt
strncpy
iphlpapi
GetInterfaceInfo
psapi
GetMappedFileNameW
shell32
SHGetFolderPathW
Sections
.text Size: 704KB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sedata Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sedata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/BetaBotBuilder Leaked by Bull/toolkit.jar.zip .js polyglot
-
content/global/XPCNativeWrapper.js
-
content/global/about.xhtml.html .js polyglot
-
content/global/aboutMemory.css
-
content/global/aboutMemory.js.js
-
content/global/aboutMemory.xhtml.xml
-
content/global/aboutRights-unbranded.xhtml.html
-
content/global/aboutRights.xhtml.html
-
content/global/alerts/alert.js.js
-
content/global/alerts/alert.xul.xml
-
content/global/appPicker.js.js
-
content/global/appPicker.xul.xml
-
content/global/bindings/autocomplete.xml.js .xml polyglot
-
content/global/bindings/browser.xml.js .xml polyglot
-
content/global/bindings/button.xml.js .xml polyglot
-
content/global/bindings/checkbox.xml.js .xml polyglot
-
content/global/bindings/colorpicker.xml.js .xml polyglot
-
content/global/bindings/datetimepicker.xml.js .xml polyglot
-
content/global/bindings/dialog.xml.js .xml polyglot
-
content/global/bindings/editor.xml.xml
-
content/global/bindings/expander.xml.js .xml polyglot
-
content/global/bindings/filefield.xml.js .xml polyglot
-
content/global/bindings/findbar.xml.js .xml polyglot
-
content/global/bindings/general.xml.js .xml polyglot
-
content/global/bindings/groupbox.xml.xml
-
content/global/bindings/listbox.xml.js .xml polyglot
-
content/global/bindings/menu.xml.js .xml polyglot
-
content/global/bindings/menulist.xml.js .xml polyglot
-
content/global/bindings/notification.xml.js .xml polyglot
-
content/global/bindings/numberbox.xml.js .xml polyglot
-
content/global/bindings/popup.xml.js .xml polyglot
-
content/global/bindings/preferences.xml.js .xml polyglot
-
content/global/bindings/progressmeter.xml.js .xml polyglot
-
content/global/bindings/radio.xml.js .xml polyglot
-
content/global/bindings/resizer.xml.xml
-
content/global/bindings/richlistbox.xml.js .xml polyglot
-
content/global/bindings/scale.xml.js .xml polyglot
-
content/global/bindings/scrollbar.xml.xml
-
content/global/bindings/scrollbox.xml.js .xml polyglot
-
content/global/bindings/spinbuttons.xml.js .xml polyglot
-
content/global/bindings/splitter.xml.js .xml polyglot
-
content/global/bindings/stringbundle.xml.js .xml polyglot
-
content/global/bindings/tabbox.xml.js .xml polyglot
-
content/global/bindings/text.xml.js .xml polyglot
-
content/global/bindings/textbox.xml.js .xml polyglot
-
content/global/bindings/toolbar.xml.js .xml polyglot
-
content/global/bindings/toolbarbutton.xml.xml
-
content/global/bindings/tree.xml.js .xml polyglot
-
content/global/bindings/videocontrols.css
-
content/global/bindings/videocontrols.xml.js .xml polyglot
-
content/global/bindings/wizard.xml.js .xml polyglot
-
content/global/buildconfig.html.html
-
content/global/charsetOverlay.js.js
-
content/global/charsetOverlay.xul.xml
-
content/global/commonDialog.css
-
content/global/commonDialog.js.js
-
content/global/commonDialog.xul.xml
-
content/global/config.js.js
-
content/global/config.xul.xml
-
content/global/configIntValue.xul.js .xml polyglot
-
content/global/console.css
-
content/global/console.js.js
-
content/global/console.xul.xml
-
content/global/consoleBindings.xml.js .xml polyglot
-
content/global/contentAreaUtils.js.js
-
content/global/crash-submit-form.xhtml.html
-
content/global/crashes.js.js
-
content/global/crashes.xhtml.html
-
content/global/customizeCharset.js.js
-
content/global/customizeCharset.xul.xml
-
content/global/customizeToolbar.css
-
content/global/customizeToolbar.js.js
-
content/global/customizeToolbar.xul.xml
-
content/global/dialogOverlay.js.js
-
content/global/dialogOverlay.xul.xml
-
content/global/directionDetector.html.html
-
content/global/editMenuOverlay.js
-
content/global/editMenuOverlay.xul.xml
-
content/global/filepicker.js.js
-
content/global/filepicker.xul.xml
-
content/global/findUtils.js.js
-
content/global/finddialog.js.js
-
content/global/finddialog.xul.xml
-
content/global/globalOverlay.js.js
-
content/global/globalOverlay.xul.js .xml polyglot
-
content/global/inlineSpellCheckUI.js.js
-
content/global/license.html.html .js polyglot
-
content/global/menulist.css
-
content/global/mozilla.xhtml.html
-
content/global/netError.xhtml.html .js polyglot
-
content/global/notfound.wav
-
content/global/nsClipboard.js.js
-
content/global/nsDragAndDrop.js.js
-
content/global/nsHelperAppDlg.xul.xml
-
content/global/nsProgressDialog.xul.xml
-
content/global/nsUserSettings.js.js
-
content/global/platformHTMLBindings.xml.xml
-
content/global/plugins.css
-
content/global/plugins.html.html .js polyglot
-
content/global/printPageSetup.js.js
-
content/global/printPageSetup.xul.xml
-
content/global/printPreviewBindings.xml.js .xml polyglot
-
content/global/printPreviewProgress.js.js
-
content/global/printPreviewProgress.xul.xml
-
content/global/printProgress.js.js
-
content/global/printProgress.xul.xml
-
content/global/printUtils.js.js
-
content/global/printdialog.js.js
-
content/global/printdialog.xul.xml
-
content/global/selectDialog.js.js
-
content/global/selectDialog.xul.xml
-
content/global/strres.js.js
-
content/global/svg/svgBindings.xml.xml
-
content/global/textbox.css
-
content/global/viewPartialSource.js.js
-
content/global/viewPartialSource.xul.xml
-
content/global/viewSource.css
-
content/global/viewSource.js.js
-
content/global/viewSource.xul.xml
-
content/global/viewSourceUtils.js.js
-
content/global/viewZoomOverlay.js.js
-
content/global/xml/XMLMonoPrint.css
-
content/global/xml/XMLPrettyPrint.css
-
content/global/xml/XMLPrettyPrint.xml.js .xml polyglot
-
content/global/xml/XMLPrettyPrint.xsl.xml
-
content/global/xul.css
-
content/mozapps/downloads/DownloadProgressListener.js.js
-
content/mozapps/downloads/download.xml.xml
-
content/mozapps/downloads/downloads.css
-
content/mozapps/downloads/downloads.js.js
-
content/mozapps/downloads/downloads.xul.xml
-
content/mozapps/downloads/helperApps.js.js
-
content/mozapps/downloads/unknownContentType.xul.xml
-
content/mozapps/extensions/about.js.js
-
content/mozapps/extensions/about.xul.xml
-
content/mozapps/extensions/blocklist.css
-
content/mozapps/extensions/blocklist.js.js
-
content/mozapps/extensions/blocklist.xul.xml
-
content/mozapps/extensions/errors.xul.js .xml polyglot
-
content/mozapps/extensions/eula.js.js
-
content/mozapps/extensions/eula.xul.xml
-
content/mozapps/extensions/extensions.css
-
content/mozapps/extensions/extensions.js.js
-
content/mozapps/extensions/extensions.xml.js .xml polyglot
-
content/mozapps/extensions/extensions.xul.xml
-
content/mozapps/extensions/list.js.js
-
content/mozapps/extensions/list.xul.xml
-
content/mozapps/extensions/update.js.js
-
content/mozapps/extensions/update.xul.xml
-
content/mozapps/extensions/updateinfo.xsl.xml
-
content/mozapps/handling/dialog.js.js
-
content/mozapps/handling/dialog.xul.xml
-
content/mozapps/handling/handler.css
-
content/mozapps/handling/handler.xml.xml
-
content/mozapps/plugins/pluginBlocked.png.png
-
content/mozapps/plugins/pluginCrashed.png.png
-
content/mozapps/plugins/pluginDisabled.png.png
-
content/mozapps/plugins/pluginDownload.png.png
-
content/mozapps/plugins/pluginFinderBinding.css
-
content/mozapps/plugins/pluginHelp-16.png.png
-
content/mozapps/plugins/pluginInstallerDatasource.js.js
-
content/mozapps/plugins/pluginInstallerService.js.js
-
content/mozapps/plugins/pluginInstallerWizard.css
-
content/mozapps/plugins/pluginInstallerWizard.js.js
-
content/mozapps/plugins/pluginInstallerWizard.xul.xml
-
content/mozapps/plugins/pluginProblem.xml.xml
-
content/mozapps/plugins/pluginProblemBinding.css
-
content/mozapps/plugins/pluginProblemContent.css
-
content/mozapps/plugins/pluginProblemLorentz.css
-
content/mozapps/preferences/changemp.js.js
-
content/mozapps/preferences/changemp.xul.xml
-
content/mozapps/preferences/fontbuilder.js.js
-
content/mozapps/preferences/ocsp.js.js
-
content/mozapps/preferences/ocsp.xul.xml
-
content/mozapps/preferences/removemp.js.js
-
content/mozapps/preferences/removemp.xul.xml
-
content/mozapps/profile/createProfileWizard.js.js
-
content/mozapps/profile/createProfileWizard.xul.xml
-
content/mozapps/profile/profileSelection.js.js
-
content/mozapps/profile/profileSelection.xul.xml
-
content/mozapps/update/history.js.js
-
content/mozapps/update/history.xul.xml
-
content/mozapps/update/updates.css
-
content/mozapps/update/updates.js.js
-
content/mozapps/update/updates.xml.js .xml polyglot
-
content/mozapps/update/updates.xul.xml
-
content/mozapps/xpinstall/xpinstallConfirm.css
-
content/mozapps/xpinstall/xpinstallConfirm.js.js
-
content/mozapps/xpinstall/xpinstallConfirm.xul.xml
-
content/mozapps/xpinstall/xpinstallItem.xml.xml
-
content/passwordmgr/passwordManager.js.js
-
content/passwordmgr/passwordManager.xul.xml
-
content/passwordmgr/passwordManagerCommon.js.js
-
content/passwordmgr/passwordManagerExceptions.js.js
-
content/passwordmgr/passwordManagerExceptions.xul.xml
-
Botnets PACK/BlackNET - Compiled/BlackNET Builder.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 164KB - Virtual size: 164KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Mono.Cecil.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\sources\cecil\obj\Release\net40\Mono.Cecil.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 333KB - Virtual size: 333KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 840B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Confuser.Core.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Source\Public\Confuser2\Confuser.Core\obj\Release\Confuser.Core.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 177KB - Virtual size: 176KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 936B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Confuser.DynCipher.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Source\Public\Confuser2\Confuser.DynCipher\obj\Release\Confuser.DynCipher.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 44KB - Virtual size: 43KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 1000B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Confuser.Protections.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Source\Public\Confuser2\Confuser.Protections\obj\Release\Confuser.Protections.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 126KB - Virtual size: 125KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 1000B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Confuser.Renamer.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Source\Public\Confuser2\Confuser.Renamer\obj\Release\Confuser.Renamer.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 301KB - Virtual size: 300KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 968B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Confuser.Runtime.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Source\Public\Confuser2\Confuser.Runtime\obj\Release\Confuser.Runtime.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 40KB - Virtual size: 39KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 960B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Confuser.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
e:\Source\Public\Confuser2\Confuser.CLI\obj\Release\Confuser.CLI.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 25KB - Virtual size: 25KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/Microsoft.Practices.ServiceLocation.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Code Sign
33:00:00:00:33:e5:27:86:a3:0e:4a:2a:80:00:00:00:00:00:33Certificate
IssuerCN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before27-03-2013 20:08Not After27-06-2014 20:08SubjectCN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:F528-3777-8A76,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageTimeStamping
33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0Certificate
IssuerCN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before24-01-2013 22:33Not After24-04-2014 22:33SubjectCN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:33:26:1a:00:00:00:00:00:31Certificate
IssuerCN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6dNot Before31-08-2010 22:19Not After31-08-2020 22:29SubjectCN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
61:16:68:34:00:00:00:00:00:1cCertificate
IssuerCN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6dNot Before03-04-2007 12:53Not After03-04-2021 13:03SubjectCN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
cd:22:fe:05:fc:8b:ec:8a:ef:4e:ee:cf:cf:07:ef:3d:35:f5:93:ecSigner
Actual PE Digestcd:22:fe:05:fc:8b:ec:8a:ef:4e:ee:cf:cf:07:ef:3d:35:f5:93:ecDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\Projects\CommonServiceLocator\main\Microsoft.Practices.ServiceLocation.PortableClassLibrary\obj\Release\Microsoft.Practices.ServiceLocation.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/System.Windows.Interactivity.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\ExpressionRTM\Sparkle\SDK\BlendWPFSDK\Build\Intermediate\Release\Libraries\System.Windows.Interactivity\Win32\Release\System.Windows.Interactivity.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 36KB - Virtual size: 36KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/Packer/dnlib.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
E:\Source\Public\Confuser2\dnlib\src\obj\Release\dnlib.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 985KB - Virtual size: 984KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 896B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/aepic/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/aepic/LICENCE.dat.zip
-
Botnets PACK/BlackNET - Compiled/aepic/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/aepic/Mono.Cecil.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\sources\cecil\obj\Release\net40\Mono.Cecil.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 333KB - Virtual size: 333KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 840B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/aepic/RESOURCES.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Users\Black.Hacker\Desktop\BlackNET\BlackNET - Source Code\BlackNet Builder\BlackNet Builder\obj\Debug\BlackNET Builder.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 563KB - Virtual size: 562KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 209KB - Virtual size: 209KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/aepic/stub.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Users\Black.Hacker\Desktop\BlackNET\BlackNET - Source Code\PHPStub\PHPStub\obj\Debug\svchost.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 67KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/aepic/watcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Users\Black.Hacker\Desktop\BlackNET\WatcherService\WatcherService\obj\Debug\svchost.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/ffmpeg.dll.dll windows:5 windows x64 arch:x64
8107c8aa045ec766ceebc74b2f03a5b5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\projects\libchromiumcontent\src\out-x64\static_library\ffmpeg.dll.pdb
Imports
advapi32
CryptReleaseContext
CryptGenRandom
CryptAcquireContextW
kernel32
InitOnceBeginInitialize
InitOnceComplete
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
CloseHandle
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
WaitForSingleObjectEx
GetCurrentProcess
GetProcessAffinityMask
GetStdHandle
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
Sleep
GetSystemTimeAsFileTime
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
vcruntime140
memset
__std_type_info_destroy_list
__C_specific_handler
memchr
memcpy
memcmp
strrchr
memmove
strchr
strstr
api-ms-win-crt-runtime-l1-1-0
_beginthreadex
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
_errno
abort
api-ms-win-crt-stdio-l1-1-0
fputs
__stdio_common_vsscanf
__stdio_common_vfprintf
_isatty
__acrt_iob_func
__stdio_common_vsprintf
api-ms-win-crt-convert-l1-1-0
atoi
strtod
strtol
strtoul
strtoll
api-ms-win-crt-string-l1-1-0
strspn
strncmp
strcmp
api-ms-win-crt-math-l1-1-0
round
pow
hypot
atan2
acos
asin
_dclass
fabs
sinh
tan
tanh
lrintf
llrint
trunc
ceil
floor
exp
atan
ldexp
exp2
sqrt
sin
cos
log
cosh
frexp
atan2f
atanf
cosf
sinf
sqrtf
log2f
powf
cbrtf
cbrt
api-ms-win-crt-time-l1-1-0
_localtime64
_gmtime64
clock
strftime
_mktime64
api-ms-win-crt-heap-l1-1-0
malloc
_aligned_free
_aligned_malloc
_aligned_realloc
free
api-ms-win-crt-environment-l1-1-0
getenv
api-ms-win-crt-utility-l1-1-0
bsearch
Exports
Exports
av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_buffer_create
av_buffer_get_opaque
av_dict_free
av_dict_get
av_dict_set
av_frame_alloc
av_frame_free
av_frame_unref
av_free
av_get_bytes_per_sample
av_get_cpu_flags
av_image_check_size
av_image_fill_linesizes
av_index_search_timestamp
av_init_packet
av_lockmgr_register
av_log_default_callback
av_log_format_line
av_log_set_callback
av_log_set_level
av_malloc
av_max_alloc
av_new_packet
av_opt_get_int
av_packet_copy_props
av_packet_get_side_data
av_packet_split_side_data
av_packet_unref
av_rdft_calc
av_rdft_end
av_rdft_init
av_read_frame
av_register_all
av_register_bitstream_filter
av_rescale_q
av_samples_get_buffer_size
av_seek_frame
av_strerror
avcodec_align_dimensions
avcodec_alloc_context3
avcodec_close
avcodec_decode_audio4
avcodec_decode_video2
avcodec_descriptor_get
avcodec_descriptor_next
avcodec_fill_audio_frame
avcodec_find_decoder
avcodec_flush_buffers
avcodec_free_context
avcodec_get_name
avcodec_open2
avcodec_parameters_to_context
avformat_alloc_context
avformat_close_input
avformat_find_stream_info
avformat_free_context
avformat_open_input
avio_alloc_context
avio_close
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 419KB - Virtual size: 418KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 9KB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rodata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gfids Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/nssdbm3.dll.dll windows:4 windows x86 arch:x86
18999f38da943f617cd94faf1be4792a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\builds\moz2_slave\rel-192-xr-w32-bld\build\obj-firefox\nss\nssdbm\nssdbm3.pdb
Imports
plc4
PL_strncasecmp
PL_strcasecmp
plds4
PL_HashTableAdd
PL_NewHashTable
PL_HashTableDestroy
PL_HashTableEnumerateEntries
PL_HashTableRemove
PL_HashTableLookup
nspr4
PR_SetError
PR_smprintf_free
PR_Delete
PR_Close
PR_Write
PR_GetError
PR_OpenFile
PR_MkDir
PR_Access
PR_CloseFileMap
PR_MemUnmap
PR_Read
PR_MemMap
PR_CreateFileMap
PR_NewLock
PR_Unlock
PR_Lock
PR_DestroyLock
PR_ntohl
PR_htonl
PR_Free
PR_UnloadLibrary
PR_GetEnv
PR_FindSymbol
PR_LoadLibrary
PR_Now
PR_EnterMonitor
PR_ExitMonitor
PR_DestroyMonitor
PR_NewMonitor
PR_LoadLibraryWithFlags
PR_GetDirectorySeparator
PR_GetLibraryFilePathname
PR_FindFunctionSymbol
PR_CallOnce
PR_smprintf
nssutil3
PORT_Alloc_Util
PORT_ZAlloc_Util
NSSBase64_EncodeItem_Util
NSS_Get_SECOID_AlgorithmIDTemplate_Util
PORT_FreeArena_Util
PORT_ArenaZAlloc_Util
PORT_NewArena_Util
PORT_SetError_Util
SECOID_SetAlgorithmID_Util
SEC_ASN1EncodeItem_Util
SECITEM_DupItem_Util
SECITEM_CopyItem_Util
SECOID_GetAlgorithmTag_Util
SEC_QuickDERDecodeItem_Util
SEC_ASN1EncodeInteger_Util
SECITEM_CompareItem_Util
PORT_ArenaStrdup_Util
PORT_ArenaMark_Util
PORT_ArenaUnmark_Util
PORT_ArenaRelease_Util
NSS_Get_SEC_AnyTemplate_Util
NSS_Get_SEC_BitStringTemplate_Util
NSS_Get_SEC_ObjectIDTemplate_Util
DER_DecodeTimeChoice_Util
SECITEM_AllocItem_Util
SECOID_Init
SECITEM_HashCompare
SECOID_Shutdown
SECITEM_ItemsAreEqual_Util
PORT_Realloc_Util
SECITEM_ZfreeItem_Util
NSS_Get_SEC_OctetStringTemplate_Util
PORT_Strdup_Util
SECOID_FindOIDTag_Util
SECITEM_FreeItem_Util
SECOID_FindOIDByTag_Util
PORT_ArenaAlloc_Util
PORT_Free_Util
PORT_GetError_Util
DER_SetUInteger
mozcrt19
_unlink
_close
_read
_open
_strdup
_write
_lseek
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
_malloc_crt
_encode_pointer
abort
calloc
malloc
memmove
free
_get_osfhandle
_stat64i32
_errno
strrchr
strncpy
isdigit
atoi
strcat
isspace
strcpy
tolower
memset
strncmp
getenv
memcmp
strlen
strcmp
memcpy
_getpid
kernel32
GetCurrentProcessId
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
FlushFileBuffers
Exports
Exports
legacy_AddSecmodDB
legacy_DeleteSecmodDB
legacy_Open
legacy_ReadSecmodDB
legacy_ReleaseSecmodDBData
legacy_SetCryptFunctions
legacy_Shutdown
Sections
.text Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 824B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/stub.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Users\Black.Hacker\Desktop\BlackNET\BlackNET - Source Code\PHPStub\PHPStub\obj\Debug\svchost.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 67KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/BlackNET - Compiled/watcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Users\Black.Hacker\Desktop\BlackNET\WatcherService\WatcherService\obj\Debug\svchost.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/H1N1 Loader/H1N1.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/H1N1 Loader/admin/admin.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Auth.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Bots.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/ControllerBase.php.ps1
-
Botnets PACK/H1N1 Loader/admin/app/controllers/ControllerSession.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Factory.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Logs.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Notfound.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Stats.php
-
Botnets PACK/H1N1 Loader/admin/app/controllers/Tasks.php.ps1
-
Botnets PACK/H1N1 Loader/admin/app/models/Bot.php.js
-
Botnets PACK/H1N1 Loader/admin/app/models/Logs.php
-
Botnets PACK/H1N1 Loader/admin/app/models/Model.php.ps1
-
Botnets PACK/H1N1 Loader/admin/app/models/Task.php.js
-
Botnets PACK/H1N1 Loader/admin/app/models/TaskLogs.php
-
Botnets PACK/H1N1 Loader/admin/app/views/bots/index.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/layouts/application.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/layouts/errors.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/layouts/page_reload.js.php
-
Botnets PACK/H1N1 Loader/admin/app/views/login/index.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/logs/index.html.php.js
-
Botnets PACK/H1N1 Loader/admin/app/views/stats/index.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/tasks/_task.form.html.php.js
-
Botnets PACK/H1N1 Loader/admin/app/views/tasks/delete.js.php
-
Botnets PACK/H1N1 Loader/admin/app/views/tasks/edit.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/tasks/index.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/tasks/logs.html.php
-
Botnets PACK/H1N1 Loader/admin/app/views/tasks/new.html.php
-
Botnets PACK/H1N1 Loader/admin/bootstrap/config.php.example
-
Botnets PACK/H1N1 Loader/admin/bootstrap/init.php
-
Botnets PACK/H1N1 Loader/admin/crontab/cron.php
-
Botnets PACK/H1N1 Loader/admin/dump.sql
-
Botnets PACK/H1N1 Loader/admin/gate.php.js
-
Botnets PACK/H1N1 Loader/admin/install.php.js
-
Botnets PACK/H1N1 Loader/admin/install.txt
-
Botnets PACK/H1N1 Loader/admin/lib/Config.php
-
Botnets PACK/H1N1 Loader/admin/lib/Core.php
-
Botnets PACK/H1N1 Loader/admin/lib/DownloadFile.php
-
Botnets PACK/H1N1 Loader/admin/lib/Helpers.php
-
Botnets PACK/H1N1 Loader/admin/lib/RC4.php
-
Botnets PACK/H1N1 Loader/admin/lib/SxGeo.dat
-
Botnets PACK/H1N1 Loader/admin/lib/SxGeo.php
-
Botnets PACK/H1N1 Loader/admin/php.ini
-
Botnets PACK/H1N1 Loader/admin/public/404.html
-
Botnets PACK/H1N1 Loader/admin/public/css/app.css
-
Botnets PACK/H1N1 Loader/admin/public/css/bootstrap.min.css
-
Botnets PACK/H1N1 Loader/admin/public/css/flags.css
-
Botnets PACK/H1N1 Loader/admin/public/css/font-awesome.min.css
-
Botnets PACK/H1N1 Loader/admin/public/fonts/FontAwesome.otf
-
Botnets PACK/H1N1 Loader/admin/public/fonts/fontawesome-webfont.eot
-
Botnets PACK/H1N1 Loader/admin/public/fonts/fontawesome-webfont.svg.xml
-
Botnets PACK/H1N1 Loader/admin/public/fonts/fontawesome-webfont.ttf
-
Botnets PACK/H1N1 Loader/admin/public/fonts/fontawesome-webfont.woff
-
Botnets PACK/H1N1 Loader/admin/public/fonts/fontawesome-webfont.woff2
-
Botnets PACK/H1N1 Loader/admin/public/fonts/glyphicons-halflings-regular.eot
-
Botnets PACK/H1N1 Loader/admin/public/fonts/glyphicons-halflings-regular.svg.xml
-
Botnets PACK/H1N1 Loader/admin/public/fonts/glyphicons-halflings-regular.ttf
-
Botnets PACK/H1N1 Loader/admin/public/fonts/glyphicons-halflings-regular.woff
-
Botnets PACK/H1N1 Loader/admin/public/fonts/glyphicons-halflings-regular.woff2
-
Botnets PACK/H1N1 Loader/admin/public/images/browsers.txt
-
Botnets PACK/H1N1 Loader/admin/public/images/d.gif.gif
-
Botnets PACK/H1N1 Loader/admin/public/images/del.gif.gif
-
Botnets PACK/H1N1 Loader/admin/public/images/flags.png.png
-
Botnets PACK/H1N1 Loader/admin/public/images/i.gif.gif
-
Botnets PACK/H1N1 Loader/admin/public/images/logo.jpg.jpg
-
Botnets PACK/H1N1 Loader/admin/public/images/pic.png.png
-
Botnets PACK/H1N1 Loader/admin/public/images/transparent.gif.gif
-
Botnets PACK/H1N1 Loader/admin/public/js/app.js.js
-
Botnets PACK/H1N1 Loader/admin/public/js/bootstrap.min.js.js
-
Botnets PACK/H1N1 Loader/admin/public/js/jquery-2.1.3.min.js.js
-
Botnets PACK/H1N1 Loader/admin/public/js/jquery-ui.min.js.js
-
Botnets PACK/H1N1 Loader/admin/tmp/logs/errors.log
-
Botnets PACK/H1N1 Loader/admin/vendor/autoload.php
-
Botnets PACK/H1N1 Loader/admin/vendor/composer/ClassLoader.php.ps1
-
Botnets PACK/H1N1 Loader/admin/vendor/composer/autoload_classmap.php
-
Botnets PACK/H1N1 Loader/admin/vendor/composer/autoload_namespaces.php
-
Botnets PACK/H1N1 Loader/admin/vendor/composer/autoload_psr4.php
-
Botnets PACK/H1N1 Loader/admin/vendor/composer/autoload_real.php
-
Botnets PACK/H1N1 Loader/classic.jar.zip
-
skin/classic/aero/global/Filepicker.png.png
-
skin/classic/aero/global/about.css
-
skin/classic/aero/global/alerts/alert.css
-
skin/classic/aero/global/appPicker.css
-
skin/classic/aero/global/arrow.css
-
skin/classic/aero/global/arrow/arrow-dn-dis.gif.gif
-
skin/classic/aero/global/arrow/arrow-dn-hov.gif.gif
-
skin/classic/aero/global/arrow/arrow-dn-sharp.gif.gif
-
skin/classic/aero/global/arrow/arrow-dn.gif.gif
-
skin/classic/aero/global/arrow/arrow-down.png.png
-
skin/classic/aero/global/arrow/arrow-lft-dis.gif.gif
-
skin/classic/aero/global/arrow/arrow-lft-hov.gif.gif
-
skin/classic/aero/global/arrow/arrow-lft-sharp-end.gif.gif
-
skin/classic/aero/global/arrow/arrow-lft-sharp.gif.gif
-
skin/classic/aero/global/arrow/arrow-lft.gif.gif
-
skin/classic/aero/global/arrow/arrow-rit-dis.gif.gif
-
skin/classic/aero/global/arrow/arrow-rit-hov.gif.gif
-
skin/classic/aero/global/arrow/arrow-rit-sharp-end.gif.gif
-
skin/classic/aero/global/arrow/arrow-rit-sharp.gif.gif
-
skin/classic/aero/global/arrow/arrow-rit.gif.gif
-
skin/classic/aero/global/arrow/arrow-up-dis.gif.gif
-
skin/classic/aero/global/arrow/arrow-up-hov.gif.gif
-
skin/classic/aero/global/arrow/arrow-up-sharp.gif.gif
-
skin/classic/aero/global/arrow/arrow-up.gif.gif
-
skin/classic/aero/global/autocomplete.css
-
skin/classic/aero/global/button.css
-
skin/classic/aero/global/checkbox.css
-
skin/classic/aero/global/checkbox/cbox-check-dis.gif.gif
-
skin/classic/aero/global/checkbox/cbox-check.gif.gif
-
skin/classic/aero/global/colorpicker.css
-
skin/classic/aero/global/commonDialog.css
-
skin/classic/aero/global/config.css
-
skin/classic/aero/global/console/bullet-error.png.png
-
skin/classic/aero/global/console/bullet-question.png.png
-
skin/classic/aero/global/console/bullet-warning.png.png
-
skin/classic/aero/global/console/console-error-caret.gif.gif
-
skin/classic/aero/global/console/console-error-dash.gif.gif
-
skin/classic/aero/global/console/console-toolbar.png.png
-
skin/classic/aero/global/console/console.css
-
skin/classic/aero/global/console/itemSelected.png.png
-
skin/classic/aero/global/customizeToolbar.css
-
skin/classic/aero/global/datetimepicker.css
-
skin/classic/aero/global/dialog.css
-
skin/classic/aero/global/dirListing/dirListing.css
-
skin/classic/aero/global/dirListing/folder.png.png
-
skin/classic/aero/global/dirListing/local.png.png
-
skin/classic/aero/global/dirListing/remote.png.png
-
skin/classic/aero/global/dirListing/up.png.png
-
skin/classic/aero/global/dropmarker.css
-
skin/classic/aero/global/expander.css
-
skin/classic/aero/global/filefield.css
-
skin/classic/aero/global/filepicker.css
-
skin/classic/aero/global/findBar.css
-
skin/classic/aero/global/global.css
-
skin/classic/aero/global/globalBindings.xml.xml
-
skin/classic/aero/global/groupbox.css
-
skin/classic/aero/global/icons/Close.gif.gif
-
skin/classic/aero/global/icons/Error.png.png
-
skin/classic/aero/global/icons/Landscape.png.png
-
skin/classic/aero/global/icons/Minimize.gif.gif
-
skin/classic/aero/global/icons/Portrait.png.png
-
skin/classic/aero/global/icons/Print-preview.png.png
-
skin/classic/aero/global/icons/Question.png.png
-
skin/classic/aero/global/icons/Restore.gif.gif
-
skin/classic/aero/global/icons/Search-close.png.png
-
skin/classic/aero/global/icons/Search-glass.png.png
-
skin/classic/aero/global/icons/Warning.png.png
-
skin/classic/aero/global/icons/autoscroll.png.png
-
skin/classic/aero/global/icons/blacklist_favicon.png.png
-
skin/classic/aero/global/icons/blacklist_large.png.png
-
skin/classic/aero/global/icons/close.png.png
-
skin/classic/aero/global/icons/closeSidebar.png.png
-
skin/classic/aero/global/icons/collapse.png.png
-
skin/classic/aero/global/icons/error-16.png.png
-
skin/classic/aero/global/icons/error-24.png.png
-
skin/classic/aero/global/icons/error-48.png.png
-
skin/classic/aero/global/icons/error-64.png.png
-
skin/classic/aero/global/icons/expand.png.png
-
skin/classic/aero/global/icons/find.png.png
-
skin/classic/aero/global/icons/folder-item.png.png
-
skin/classic/aero/global/icons/information-16.png.png
-
skin/classic/aero/global/icons/information-24.png.png
-
skin/classic/aero/global/icons/information-32.png.png
-
skin/classic/aero/global/icons/information-48.png.png
-
skin/classic/aero/global/icons/information-64.png.png
-
skin/classic/aero/global/icons/loading_16.png.png
-
skin/classic/aero/global/icons/notfound.png.png
-
skin/classic/aero/global/icons/notloading_16.png.png
-
skin/classic/aero/global/icons/question-16.png.png
-
skin/classic/aero/global/icons/question-24.png.png
-
skin/classic/aero/global/icons/question-48.png.png
-
skin/classic/aero/global/icons/question-64.png.png
-
skin/classic/aero/global/icons/sslWarning.png.png
-
skin/classic/aero/global/icons/warning-16.png.png
-
skin/classic/aero/global/icons/warning-24.png.png
-
skin/classic/aero/global/icons/warning-64.png.png
-
skin/classic/aero/global/icons/warning-large.png.png
-
skin/classic/aero/global/icons/windowControls.png.png
-
skin/classic/aero/global/icons/wrap.png.png
-
skin/classic/aero/global/linkTree.css
-
skin/classic/aero/global/listbox.css
-
skin/classic/aero/global/media/error.png.png
-
skin/classic/aero/global/media/muteButton.png.png
-
skin/classic/aero/global/media/pauseButton.png.png
-
skin/classic/aero/global/media/playButton.png.png
-
skin/classic/aero/global/media/scrubberThumb.png.png
-
skin/classic/aero/global/media/scrubberThumbWide.png.png
-
skin/classic/aero/global/media/throbber.png.png
-
skin/classic/aero/global/media/unmuteButton.png.png
-
skin/classic/aero/global/media/videocontrols.css
-
skin/classic/aero/global/media/volumeThumb.png.png
-
skin/classic/aero/global/menu.css
-
skin/classic/aero/global/menulist.css
-
skin/classic/aero/global/netError.css
-
skin/classic/aero/global/notification.css
-
skin/classic/aero/global/numberbox.css
-
skin/classic/aero/global/passwordmgr.css
-
skin/classic/aero/global/popup.css
-
skin/classic/aero/global/preferences.css
-
skin/classic/aero/global/printPageSetup.css
-
skin/classic/aero/global/printPreview.css
-
skin/classic/aero/global/printpreview/arrow-left-end.png.png
-
skin/classic/aero/global/printpreview/arrow-left.png.png
-
skin/classic/aero/global/printpreview/arrow-right-end.png.png
-
skin/classic/aero/global/printpreview/arrow-right.png.png
-
skin/classic/aero/global/progressmeter.css
-
skin/classic/aero/global/radio.css
-
skin/classic/aero/global/radio/radio-check-dis.gif.gif
-
skin/classic/aero/global/radio/radio-check.gif.gif
-
skin/classic/aero/global/resizer.css
-
skin/classic/aero/global/richlistbox.css
-
skin/classic/aero/global/scale.css
-
skin/classic/aero/global/scrollbar/slider.gif.gif
-
skin/classic/aero/global/scrollbars.css
-
skin/classic/aero/global/scrollbox.css
-
skin/classic/aero/global/spinbuttons.css
-
skin/classic/aero/global/splitter.css
-
skin/classic/aero/global/splitter/grip-hrz-after.gif.gif
-
skin/classic/aero/global/splitter/grip-hrz-before.gif.gif
-
skin/classic/aero/global/splitter/grip-vrt-after.gif.gif
-
skin/classic/aero/global/splitter/grip-vrt-before.gif.gif
-
skin/classic/aero/global/tabbox.css
-
skin/classic/aero/global/textbox.css
-
skin/classic/aero/global/toolbar.css
-
skin/classic/aero/global/toolbar/Lighten.png.png
-
skin/classic/aero/global/toolbar/chevron.gif.gif
-
skin/classic/aero/global/toolbar/spring.png.png
-
skin/classic/aero/global/toolbarbutton.css
-
skin/classic/aero/global/tree.css
-
skin/classic/aero/global/tree/columnpicker.gif.gif
-
skin/classic/aero/global/tree/sort-asc-classic.png.png
-
skin/classic/aero/global/tree/sort-asc.png.png
-
skin/classic/aero/global/tree/sort-dsc-classic.png.png
-
skin/classic/aero/global/tree/sort-dsc.png.png
-
skin/classic/aero/global/tree/twisty-clsd-hover-rtl.png.png
-
skin/classic/aero/global/tree/twisty-clsd-hover.png.png
-
skin/classic/aero/global/tree/twisty-clsd-rtl.png.png
-
skin/classic/aero/global/tree/twisty-clsd.png.png
-
skin/classic/aero/global/tree/twisty-open-hover-rtl.png.png
-
skin/classic/aero/global/tree/twisty-open-hover.png.png
-
skin/classic/aero/global/tree/twisty-open-rtl.png.png
-
skin/classic/aero/global/tree/twisty-open.png.png
-
skin/classic/aero/global/wizard.css
-
skin/classic/aero/mozapps/downloads/downloadButtons.png.png
-
skin/classic/aero/mozapps/downloads/downloadIcon.png.png
-
skin/classic/aero/mozapps/downloads/downloads.css
-
skin/classic/aero/mozapps/downloads/unknownContentType.css
-
skin/classic/aero/mozapps/extensions/about.css
-
skin/classic/aero/mozapps/extensions/blocklist.css
-
skin/classic/aero/mozapps/extensions/eula.css
-
skin/classic/aero/mozapps/extensions/extensionIcons.png.png
-
skin/classic/aero/mozapps/extensions/extensions.css
-
skin/classic/aero/mozapps/extensions/itemDisabledFader.png.png
-
skin/classic/aero/mozapps/extensions/itemEnabledFader.png.png
-
skin/classic/aero/mozapps/extensions/notifyBadges.png.png
-
skin/classic/aero/mozapps/extensions/ratings.png.png
-
skin/classic/aero/mozapps/extensions/themeGeneric.png.png
-
skin/classic/aero/mozapps/extensions/update.css
-
skin/classic/aero/mozapps/extensions/viewButtons.png.png
-
skin/classic/aero/mozapps/handling/handling.css
-
skin/classic/aero/mozapps/passwordmgr/key.png.png
-
skin/classic/aero/mozapps/places/defaultFavicon.png.png
-
skin/classic/aero/mozapps/places/tagContainerIcon.png.png
-
skin/classic/aero/mozapps/plugins/pluginBlocked-16.png.png
-
skin/classic/aero/mozapps/plugins/pluginBlocked.png.png
-
skin/classic/aero/mozapps/plugins/pluginDisabled.png.png
-
skin/classic/aero/mozapps/plugins/pluginGeneric-16.png.png
-
skin/classic/aero/mozapps/plugins/pluginGeneric.png.png
-
skin/classic/aero/mozapps/plugins/pluginInstallerWizard.css
-
skin/classic/aero/mozapps/plugins/pluginOutdated-16.png.png
-
skin/classic/aero/mozapps/plugins/pluginProblem.css
-
skin/classic/aero/mozapps/profile/profileSelection.css
-
skin/classic/aero/mozapps/profile/profileicon.png.png
-
skin/classic/aero/mozapps/update/downloadButtons.png.png
-
skin/classic/aero/mozapps/update/update.png.png
-
skin/classic/aero/mozapps/update/updates.css
-
skin/classic/aero/mozapps/viewsource/viewsource.css
-
skin/classic/aero/mozapps/xpinstall/xpinstallConfirm.css
-
skin/classic/aero/mozapps/xpinstall/xpinstallItemGeneric.png.png
-
skin/classic/global/Filepicker.png.png
-
skin/classic/global/about.css
-
skin/classic/global/alerts/alert.css
-
skin/classic/global/appPicker.css
-
skin/classic/global/arrow.css
-
skin/classic/global/arrow/arrow-dn-dis.gif.gif
-
skin/classic/global/arrow/arrow-dn-hov.gif.gif
-
skin/classic/global/arrow/arrow-dn-sharp.gif.gif
-
skin/classic/global/arrow/arrow-dn.gif.gif
-
skin/classic/global/arrow/arrow-down.png.png
-
skin/classic/global/arrow/arrow-lft-dis.gif.gif
-
skin/classic/global/arrow/arrow-lft-hov.gif.gif
-
skin/classic/global/arrow/arrow-lft-sharp-end.gif.gif
-
skin/classic/global/arrow/arrow-lft-sharp.gif.gif
-
skin/classic/global/arrow/arrow-lft.gif.gif
-
skin/classic/global/arrow/arrow-rit-dis.gif.gif
-
skin/classic/global/arrow/arrow-rit-hov.gif.gif
-
skin/classic/global/arrow/arrow-rit-sharp-end.gif.gif
-
skin/classic/global/arrow/arrow-rit-sharp.gif.gif
-
skin/classic/global/arrow/arrow-rit.gif.gif
-
skin/classic/global/arrow/arrow-up-dis.gif.gif
-
skin/classic/global/arrow/arrow-up-hov.gif.gif
-
skin/classic/global/arrow/arrow-up-sharp.gif.gif
-
skin/classic/global/arrow/arrow-up.gif.gif
-
skin/classic/global/autocomplete.css
-
skin/classic/global/button.css
-
skin/classic/global/checkbox.css
-
skin/classic/global/checkbox/cbox-check-dis.gif.gif
-
skin/classic/global/checkbox/cbox-check.gif.gif
-
skin/classic/global/colorpicker.css
-
skin/classic/global/commonDialog.css
-
skin/classic/global/config.css
-
skin/classic/global/console/bullet-error.png.png
-
skin/classic/global/console/bullet-question.png.png
-
skin/classic/global/console/bullet-warning.png.png
-
skin/classic/global/console/console-error-caret.gif.gif
-
skin/classic/global/console/console-error-dash.gif.gif
-
skin/classic/global/console/console-toolbar.png.png
-
skin/classic/global/console/console.css
-
skin/classic/global/console/itemSelected.png.png
-
skin/classic/global/customizeToolbar.css
-
skin/classic/global/datetimepicker.css
-
skin/classic/global/dialog.css
-
skin/classic/global/dirListing/dirListing.css
-
skin/classic/global/dirListing/folder.png.png
-
skin/classic/global/dirListing/local.png.png
-
skin/classic/global/dirListing/remote.png.png
-
skin/classic/global/dirListing/up.png.png
-
skin/classic/global/dropmarker.css
-
skin/classic/global/expander.css
-
skin/classic/global/filefield.css
-
skin/classic/global/filepicker.css
-
skin/classic/global/findBar.css
-
skin/classic/global/global.css
-
skin/classic/global/globalBindings.xml.xml
-
skin/classic/global/groupbox.css
-
skin/classic/global/icons/Close.gif.gif
-
skin/classic/global/icons/Error.png.png
-
skin/classic/global/icons/Landscape.png.png
-
skin/classic/global/icons/Minimize.gif.gif
-
skin/classic/global/icons/Portrait.png.png
-
skin/classic/global/icons/Print-preview.png.png
-
skin/classic/global/icons/Question.png.png
-
skin/classic/global/icons/Restore.gif.gif
-
skin/classic/global/icons/Search-close.png.png
-
skin/classic/global/icons/Search-glass.png.png
-
skin/classic/global/icons/Warning.png.png
-
skin/classic/global/icons/autoscroll.png.png
-
skin/classic/global/icons/blacklist_favicon.png.png
-
skin/classic/global/icons/blacklist_large.png.png
-
skin/classic/global/icons/close.png.png
-
skin/classic/global/icons/closeSidebar.png.png
-
skin/classic/global/icons/collapse.png.png
-
skin/classic/global/icons/error-16.png.png
-
skin/classic/global/icons/error-24.png.png
-
skin/classic/global/icons/error-48.png.png
-
skin/classic/global/icons/error-64.png.png
-
skin/classic/global/icons/expand.png.png
-
skin/classic/global/icons/find.png.png
-
skin/classic/global/icons/folder-item.png.png
-
skin/classic/global/icons/information-16.png.png
-
skin/classic/global/icons/information-24.png.png
-
skin/classic/global/icons/information-32.png.png
-
skin/classic/global/icons/information-48.png.png
-
skin/classic/global/icons/information-64.png.png
-
skin/classic/global/icons/loading_16.png.png
-
skin/classic/global/icons/notfound.png.png
-
skin/classic/global/icons/notloading_16.png.png
-
skin/classic/global/icons/question-16.png.png
-
skin/classic/global/icons/question-24.png.png
-
skin/classic/global/icons/question-48.png.png
-
skin/classic/global/icons/question-64.png.png
-
skin/classic/global/icons/sslWarning.png.png
-
skin/classic/global/icons/warning-16.png.png
-
skin/classic/global/icons/warning-24.png.png
-
skin/classic/global/icons/warning-64.png.png
-
skin/classic/global/icons/warning-large.png.png
-
skin/classic/global/icons/windowControls.png.png
-
skin/classic/global/icons/wrap.png.png
-
skin/classic/global/linkTree.css
-
skin/classic/global/listbox.css
-
skin/classic/global/media/error.png.png
-
skin/classic/global/media/muteButton.png.png
-
skin/classic/global/media/pauseButton.png.png
-
skin/classic/global/media/playButton.png.png
-
skin/classic/global/media/scrubberThumb.png.png
-
skin/classic/global/media/scrubberThumbWide.png.png
-
skin/classic/global/media/throbber.png.png
-
skin/classic/global/media/unmuteButton.png.png
-
skin/classic/global/media/videocontrols.css
-
skin/classic/global/media/volumeThumb.png.png
-
skin/classic/global/menu.css
-
skin/classic/global/menulist.css
-
skin/classic/global/netError.css
-
skin/classic/global/notification.css
-
skin/classic/global/numberbox.css
-
skin/classic/global/passwordmgr.css
-
skin/classic/global/popup.css
-
skin/classic/global/preferences.css
-
skin/classic/global/printPageSetup.css
-
skin/classic/global/printPreview.css
-
skin/classic/global/printpreview/arrow-left-end.png.png
-
skin/classic/global/printpreview/arrow-left.png.png
-
skin/classic/global/printpreview/arrow-right-end.png.png
-
skin/classic/global/printpreview/arrow-right.png.png
-
skin/classic/global/progressmeter.css
-
skin/classic/global/radio.css
-
skin/classic/global/radio/radio-check-dis.gif.gif
-
skin/classic/global/radio/radio-check.gif.gif
-
skin/classic/global/resizer.css
-
skin/classic/global/richlistbox.css
-
skin/classic/global/scale.css
-
skin/classic/global/scrollbar/slider.gif.gif
-
skin/classic/global/scrollbars.css
-
skin/classic/global/scrollbox.css
-
skin/classic/global/spinbuttons.css
-
skin/classic/global/splitter.css
-
skin/classic/global/splitter/grip-hrz-after.gif.gif
-
skin/classic/global/splitter/grip-hrz-before.gif.gif
-
skin/classic/global/splitter/grip-vrt-after.gif.gif
-
skin/classic/global/splitter/grip-vrt-before.gif.gif
-
skin/classic/global/tabbox.css
-
skin/classic/global/textbox.css
-
skin/classic/global/toolbar.css
-
skin/classic/global/toolbar/Lighten.png.png
-
skin/classic/global/toolbar/chevron.gif.gif
-
skin/classic/global/toolbar/spring.png.png
-
skin/classic/global/toolbarbutton.css
-
skin/classic/global/tree.css
-
skin/classic/global/tree/columnpicker.gif.gif
-
skin/classic/global/tree/sort-asc-classic.png.png
-
skin/classic/global/tree/sort-asc.png.png
-
skin/classic/global/tree/sort-dsc-classic.png.png
-
skin/classic/global/tree/sort-dsc.png.png
-
skin/classic/global/tree/twisty-clsd.png.png
-
skin/classic/global/tree/twisty-open.png.png
-
skin/classic/global/wizard.css
-
skin/classic/mozapps/downloads/downloadButtons.png.png
-
skin/classic/mozapps/downloads/downloadIcon.png.png
-
skin/classic/mozapps/downloads/downloads.css
-
skin/classic/mozapps/downloads/unknownContentType.css
-
skin/classic/mozapps/extensions/about.css
-
skin/classic/mozapps/extensions/blocklist.css
-
skin/classic/mozapps/extensions/eula.css
-
skin/classic/mozapps/extensions/extensionIcons.png.png
-
skin/classic/mozapps/extensions/extensions.css
-
skin/classic/mozapps/extensions/itemDisabledFader.png.png
-
skin/classic/mozapps/extensions/itemEnabledFader.png.png
-
skin/classic/mozapps/extensions/notifyBadges.png.png
-
skin/classic/mozapps/extensions/ratings.png.png
-
skin/classic/mozapps/extensions/themeGeneric.png.png
-
skin/classic/mozapps/extensions/update.css
-
skin/classic/mozapps/extensions/viewButtons.png.png
-
skin/classic/mozapps/handling/handling.css
-
skin/classic/mozapps/passwordmgr/key.png.png
-
skin/classic/mozapps/places/defaultFavicon.png.png
-
skin/classic/mozapps/places/tagContainerIcon.png.png
-
skin/classic/mozapps/plugins/pluginBlocked-16.png.png
-
skin/classic/mozapps/plugins/pluginBlocked.png.png
-
skin/classic/mozapps/plugins/pluginDisabled.png.png
-
skin/classic/mozapps/plugins/pluginGeneric-16.png.png
-
skin/classic/mozapps/plugins/pluginGeneric.png.png
-
skin/classic/mozapps/plugins/pluginInstallerWizard.css
-
skin/classic/mozapps/plugins/pluginOutdated-16.png.png
-
skin/classic/mozapps/plugins/pluginProblem.css
-
skin/classic/mozapps/profile/profileSelection.css
-
skin/classic/mozapps/profile/profileicon.png.png
-
skin/classic/mozapps/update/downloadButtons.png.png
-
skin/classic/mozapps/update/update.png.png
-
skin/classic/mozapps/update/updates.css
-
skin/classic/mozapps/viewsource/viewsource.css
-
skin/classic/mozapps/xpinstall/xpinstallConfirm.css
-
skin/classic/mozapps/xpinstall/xpinstallItemGeneric.png.png
-
Botnets PACK/H1N1 Loader/nssckbi.dll.dll windows:4 windows x86 arch:x86
56ed15a990d58148d7b09af9a12bb6bd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\builds\moz2_slave\rel-192-xr-w32-bld\build\obj-firefox\nss\nssckbi\nssckbi.pdb
Imports
plc4
PL_strlen
plds4
PL_ArenaAllocate
PL_HashTableEnumerateEntries
PL_HashTableLookup
PL_HashTableRemove
PL_HashTableAdd
PL_HashTableDestroy
PL_CompareValues
PL_NewHashTable
PL_FinishArenaPool
PL_InitArenaPool
nspr4
PR_CallOnce
PR_GetThreadPrivate
PR_SetThreadPrivate
PR_NewThreadPrivateIndex
PR_Free
PR_Calloc
PR_Unlock
PR_Lock
PR_DestroyLock
PR_NewLock
mozcrt19
_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_adjust_fdiv
_amsg_exit
memcpy
memset
memcmp
memmove
_encode_pointer
_malloc_crt
free
_encoded_null
_decode_pointer
_initterm
_initterm_e
kernel32
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
Exports
Exports
C_GetFunctionList
Sections
.text Size: 40KB - Virtual size: 38KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 248KB - Virtual size: 245KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 776B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/H1N1 Loader/sqlite3/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/H1N1 Loader/sqlite3/LICENCE.dat.zip
-
Botnets PACK/H1N1 Loader/sqlite3/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/H1N1 Loader/sqlite3/NcaSvc.exe.exe windows:4 windows x86 arch:x86
caa5c2e6259bcc05327db73e643ed340
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
UpdateWindow
TranslateMessage
SystemParametersInfoA
ShowWindow
SendMessageA
RegisterClassExA
PostQuitMessage
MessageBoxW
LoadIconA
LoadCursorA
GetWindowTextA
GetMessageA
DispatchMessageA
DefWindowProcA
CreateWindowExA
kernel32
lstrlenA
lstrcpyA
lstrcatW
lstrcatA
WriteFile
VirtualFree
VirtualAlloc
SizeofResource
LockResource
LocalFree
LocalAlloc
LoadResource
GetModuleHandleA
CloseHandle
CreateFileW
ExitProcess
FindResourceA
FreeResource
GetCommandLineA
GetCurrentDirectoryW
gdi32
CreateFontIndirectA
Sections
.text Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 1008B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 292B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/L0rdix Cracked [XakFor.Net].exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 179KB - Virtual size: 179KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/WinTypes.dll.dll windows:10 windows x64 arch:x64
554a9752315ac45d1da4038f3cb03786
Code Sign
33:00:00:02:32:41:fb:59:99:6d:cc:4d:ff:00:00:00:00:02:32Certificate
IssuerCN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before02-05-2019 21:24Not After02-05-2020 21:24SubjectCN=Microsoft Windows,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:07:76:56:00:00:00:00:00:08Certificate
IssuerCN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before19-10-2011 18:41Not After19-10-2026 18:51SubjectCN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
64:3a:7f:9e:f1:65:88:66:32:6b:ca:65:61:ab:64:9a:d6:ad:fa:df:9f:b2:96:45:f5:c5:20:05:c0:c5:0e:18Signer
Actual PE Digest64:3a:7f:9e:f1:65:88:66:32:6b:ca:65:61:ab:64:9a:d6:ad:fa:df:9f:b2:96:45:f5:c5:20:05:c0:c5:0e:18Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
WinTypes.pdb
Imports
api-ms-win-crt-runtime-l1-1-0
_initterm_e
_initterm
api-ms-win-crt-string-l1-1-0
wcscmp
memset
wcsncmp
api-ms-win-crt-private-l1-1-0
_o__initialize_narrow_environment
_o__initialize_onexit_table
_o__invalid_parameter_noinfo
_o__invalid_parameter_noinfo_noreturn
_o__purecall
_o__recalloc
_o__register_onexit_function
_o__seh_filter_dll
memmove
_o__wcsnicmp
_o_free
_o_isdigit
_o_malloc
_o_terminate
_o_toupper
_o_towupper
_o_wcscat_s
_o_wcscpy_s
_o_wcsncat_s
_o_wcstoul
__C_specific_handler
_CxxThrowException
wcsrchr
wcschr
_o__execute_onexit_table
_o__errno
_o__crt_atexit
_o__configure_narrow_argv
_o__cexit
_o__callnewh
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsnprintf_s
_o___std_type_info_destroy_list
_o___std_exception_destroy
_o___std_exception_copy
__std_terminate
__CxxFrameHandler3
memcmp
memcpy
combase
ord16
ord25
CStdStubBuffer_CountRefs
ord8
ord7
CStdStubBuffer_QueryInterface
ord18
ord12
ord6
ord22
ord14
ord15
ord17
ord26
ord2
ord21
CStdStubBuffer_Connect
ord13
ord11
CStdStubBuffer2_Connect
CStdStubBuffer_IsIIDSupported
ord32
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
ord20
ord9
ord19
ord90
ord28
ord29
ord27
ord30
ord23
ord5
ord34
ord33
ord24
CStdStubBuffer_AddRef
CStdStubBuffer2_QueryInterface
CStdStubBuffer2_Disconnect
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer2_CountRefs
CStdStubBuffer_Invoke
NdrCStdStubBuffer_Release
NdrCStdStubBuffer2_Release
ord10
api-ms-win-core-libraryloader-l1-2-0
GetModuleHandleW
GetModuleHandleExW
GetProcAddress
FreeLibrary
GetModuleFileNameW
GetModuleFileNameA
api-ms-win-core-synch-l1-1-0
AcquireSRWLockShared
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionEx
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
ResetEvent
CreateEventW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
CreateSemaphoreExW
ReleaseSemaphore
InitializeCriticalSection
CreateMutexExW
ReleaseSRWLockShared
WaitForSingleObject
SetEvent
OpenSemaphoreW
WaitForSingleObjectEx
ReleaseMutex
api-ms-win-core-heap-l1-1-0
GetProcessHeap
HeapAlloc
HeapFree
api-ms-win-core-errorhandling-l1-1-0
UnhandledExceptionFilter
RaiseException
GetLastError
SetUnhandledExceptionFilter
SetLastError
api-ms-win-core-processthreads-l1-1-0
TerminateProcess
GetCurrentProcess
GetCurrentProcessId
OpenProcessToken
GetCurrentThreadId
api-ms-win-core-localization-l1-2-0
FormatMessageW
api-ms-win-core-debug-l1-1-0
IsDebuggerPresent
OutputDebugStringW
DebugBreak
api-ms-win-core-handle-l1-1-0
CloseHandle
api-ms-win-core-winrt-string-l1-1-0
WindowsPromoteStringBuffer
WindowsCreateString
WindowsPreallocateStringBuffer
WindowsStringHasEmbeddedNull
WindowsCreateStringReference
WindowsDuplicateString
WindowsDeleteString
HSTRING_UserUnmarshal
WindowsDeleteStringBuffer
HSTRING_UserUnmarshal64
WindowsGetStringRawBuffer
HSTRING_UserSize
WindowsIsStringEmpty
HSTRING_UserMarshal
HSTRING_UserFree64
WindowsGetStringLen
HSTRING_UserSize64
HSTRING_UserMarshal64
HSTRING_UserFree
api-ms-win-core-winrt-error-l1-1-0
GetRestrictedErrorInfo
RoTransformError
RoOriginateErrorW
SetRestrictedErrorInfo
RoOriginateError
api-ms-win-eventing-provider-l1-1-0
EventUnregister
EventSetInformation
EventProviderEnabled
EventRegister
EventWriteTransfer
EventActivityIdControl
api-ms-win-core-threadpool-l1-2-0
CloseThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CreateThreadpoolTimer
SetThreadpoolTimer
api-ms-win-core-synch-l1-2-0
InitOnceExecuteOnce
Sleep
InitOnceInitialize
InitOnceBeginInitialize
InitOnceComplete
api-ms-win-core-util-l1-1-0
EncodePointer
DecodePointer
api-ms-win-core-rtlsupport-l1-1-0
RtlLookupFunctionEntry
RtlCaptureContext
RtlVirtualUnwind
api-ms-win-core-processthreads-l1-1-1
OpenProcess
IsProcessorFeaturePresent
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
api-ms-win-core-sysinfo-l1-1-0
GetTickCount
GetWindowsDirectoryW
GetSystemDirectoryW
GetSystemTimeAsFileTime
api-ms-win-core-interlocked-l1-1-0
InitializeSListHead
InterlockedFlushSList
api-ms-win-core-registry-l1-1-0
RegGetValueW
rpcrt4
NdrOleFree
NdrStubCall3
IUnknown_QueryInterface_Proxy
NdrOleAllocate
NdrStubForwardingFunction
NdrDllCanUnloadNow
IUnknown_Release_Proxy
NdrDllGetClassObject
IUnknown_AddRef_Proxy
api-ms-win-core-winrt-error-l1-1-1
IsErrorPropagationEnabled
RoGetMatchingRestrictedErrorInfo
RoOriginateLanguageException
RoReportFailedDelegate
api-ms-win-core-winrt-l1-1-0
RoActivateInstance
RoGetActivationFactory
api-ms-win-core-file-l1-1-0
FindClose
FindNextFileW
GetFileAttributesW
FindFirstFileW
api-ms-win-core-wow64-l1-1-0
Wow64DisableWow64FsRedirection
IsWow64Process
Wow64RevertWow64FsRedirection
api-ms-win-core-path-l1-1-0
PathCchRemoveFileSpec
api-ms-win-core-string-l1-1-0
MultiByteToWideChar
CompareStringEx
WideCharToMultiByte
api-ms-win-security-base-l1-1-0
GetTokenInformation
bcryptprimitives
ProcessPrng
ntdll
RtlDeleteElementGenericTableAvl
RtlInitializeGenericTableAvl
RtlLookupElementGenericTableAvl
RtlInsertElementGenericTableAvl
api-ms-win-core-heap-l2-1-0
LocalAlloc
api-ms-win-core-delayload-l1-1-1
ResolveDelayLoadedAPI
api-ms-win-core-delayload-l1-1-0
DelayLoadFailureHook
api-ms-win-core-apiquery-l1-1-0
ApiSetQueryApiSetPresence
Exports
Exports
DllCanUnloadNow
DllGetActivationFactory
DllGetClassObject
RoCreateNonAgilePropertySet
RoCreatePropertySetSerializer
RoGetBufferMarshaler
RoGetMetaDataFile
RoIsApiContractMajorVersionPresent
RoIsApiContractPresent
RoParseTypeName
RoResolveNamespace
Sections
.text Size: 462KB - Virtual size: 461KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 744KB - Virtual size: 743KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 40KB - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 160B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 86KB - Virtual size: 86KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/dnlib.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
B:\Projekty\dnlib\src\obj\Release\dnlib.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 956B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/LICENCE.dat.zip
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/dnlib.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
B:\Projekty\dnlib\src\obj\Release\dnlib.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 956B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/en-US/xpti.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
l% Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 399KB - Virtual size: 398KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 264KB - Virtual size: 263KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
-
Botnets PACK/L0rdix Cracked [XakFor.Net]/ffmpeg.dll.dll windows:5 windows x64 arch:x64
8107c8aa045ec766ceebc74b2f03a5b5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\projects\libchromiumcontent\src\out-x64\static_library\ffmpeg.dll.pdb
Imports
advapi32
CryptReleaseContext
CryptGenRandom
CryptAcquireContextW
kernel32
InitOnceBeginInitialize
InitOnceComplete
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
CloseHandle
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
WaitForSingleObjectEx
GetCurrentProcess
GetProcessAffinityMask
GetStdHandle
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
Sleep
GetSystemTimeAsFileTime
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
vcruntime140
memset
__std_type_info_destroy_list
__C_specific_handler
memchr
memcpy
memcmp
strrchr
memmove
strchr
strstr
api-ms-win-crt-runtime-l1-1-0
_beginthreadex
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
_errno
abort
api-ms-win-crt-stdio-l1-1-0
fputs
__stdio_common_vsscanf
__stdio_common_vfprintf
_isatty
__acrt_iob_func
__stdio_common_vsprintf
api-ms-win-crt-convert-l1-1-0
atoi
strtod
strtol
strtoul
strtoll
api-ms-win-crt-string-l1-1-0
strspn
strncmp
strcmp
api-ms-win-crt-math-l1-1-0
round
pow
hypot
atan2
acos
asin
_dclass
fabs
sinh
tan
tanh
lrintf
llrint
trunc
ceil
floor
exp
atan
ldexp
exp2
sqrt
sin
cos
log
cosh
frexp
atan2f
atanf
cosf
sinf
sqrtf
log2f
powf
cbrtf
cbrt
api-ms-win-crt-time-l1-1-0
_localtime64
_gmtime64
clock
strftime
_mktime64
api-ms-win-crt-heap-l1-1-0
malloc
_aligned_free
_aligned_malloc
_aligned_realloc
free
api-ms-win-crt-environment-l1-1-0
getenv
api-ms-win-crt-utility-l1-1-0
bsearch
Exports
Exports
av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_buffer_create
av_buffer_get_opaque
av_dict_free
av_dict_get
av_dict_set
av_frame_alloc
av_frame_free
av_frame_unref
av_free
av_get_bytes_per_sample
av_get_cpu_flags
av_image_check_size
av_image_fill_linesizes
av_index_search_timestamp
av_init_packet
av_lockmgr_register
av_log_default_callback
av_log_format_line
av_log_set_callback
av_log_set_level
av_malloc
av_max_alloc
av_new_packet
av_opt_get_int
av_packet_copy_props
av_packet_get_side_data
av_packet_split_side_data
av_packet_unref
av_rdft_calc
av_rdft_end
av_rdft_init
av_read_frame
av_register_all
av_register_bitstream_filter
av_rescale_q
av_samples_get_buffer_size
av_seek_frame
av_strerror
avcodec_align_dimensions
avcodec_alloc_context3
avcodec_close
avcodec_decode_audio4
avcodec_decode_video2
avcodec_descriptor_get
avcodec_descriptor_next
avcodec_fill_audio_frame
avcodec_find_decoder
avcodec_flush_buffers
avcodec_free_context
avcodec_get_name
avcodec_open2
avcodec_parameters_to_context
avformat_alloc_context
avformat_close_input
avformat_find_stream_info
avformat_free_context
avformat_open_input
avio_alloc_context
avio_close
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 419KB - Virtual size: 418KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 9KB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rodata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gfids Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/LiteHTTP-master/LiteDB/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/LiteHTTP-master/LiteDB/LICENCE.dat.zip
-
Botnets PACK/LiteHTTP-master/LiteDB/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/LiteHTTP-master/LiteDB/README.md
-
Botnets PACK/LiteHTTP-master/LiteDB/all.exe.exe .ps1 windows:4 windows x86 arch:x86 polyglot
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
c:\Users\Dave\Documents\Visual Studio 2013\Projects\LiteHTTP Builder\LiteHTTP Builder\obj\x86\Release\LiteHTTP Builder.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 54KB - Virtual size: 53KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 115KB - Virtual size: 114KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/LiteHTTP-master/LiteHTTP Builder.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 172KB - Virtual size: 172KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/LiteHTTP-master/README.md
-
Botnets PACK/LiteHTTP-master/sys.ini
-
Botnets PACK/LiteHTTP-master/user32.dll.dll windows:10 windows x64 arch:x64
63e7bd072c2cd3402682cfbb77326f78
Code Sign
33:00:00:02:32:41:fb:59:99:6d:cc:4d:ff:00:00:00:00:02:32Certificate
IssuerCN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before02-05-2019 21:24Not After02-05-2020 21:24SubjectCN=Microsoft Windows,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:07:76:56:00:00:00:00:00:08Certificate
IssuerCN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before19-10-2011 18:41Not After19-10-2026 18:51SubjectCN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
c7:85:ff:73:ab:01:51:a0:d8:c3:07:f3:20:34:57:ba:7a:12:13:4d:e0:f0:fd:42:4a:73:53:63:0c:40:42:f1Signer
Actual PE Digestc7:85:ff:73:ab:01:51:a0:d8:c3:07:f3:20:34:57:ba:7a:12:13:4d:e0:f0:fd:42:4a:73:53:63:0c:40:42:f1Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
user32.pdb
Imports
win32u
NtUserGetClipboardFormatName
NtUserRegisterWindowMessage
NtUserGetKeyNameText
NtUserMapVirtualKeyEx
NtUserEnumDisplayDevices
NtUserGetClassInfoEx
NtUserChangeDisplaySettings
NtUserRemoveProp
NtUserUnregisterClass
NtUserEnumDisplaySettings
NtUserGetAltTabInfo
NtUserSetClassLong
NtUserGetMessage
NtUserGetKeyboardLayoutName
NtUserDrawCaptionTemp
NtUserSetProp
NtUserVkKeyScanEx
NtUserCallMsgFilter
NtUserCallHwndLockSafe
NtUserSetImeOwnerWindow
NtUserNotifyIMEStatus
NtUserUpdateInputContext
NtUserCountClipboardFormats
NtUserGetPriorityClipboardFormat
NtUserGetClipboardOwner
NtUserGetClipboardSequenceNumber
NtUserGetClipboardViewer
NtUserSetClipboardViewer
NtUserChangeClipboardChain
NtUserAddClipboardFormatListener
NtUserRemoveClipboardFormatListener
NtUserGetUpdatedClipboardFormats
NtUserSetWindowCompositionAttribute
NtUserWOWCleanup
NtUserTranslateAccelerator
NtUserGetClipboardData
NtUserSetClipboardData
NtUserDrawIconEx
NtUserGetUpdateRgn
NtUserGetUpdateRect
NtUserWaitForInputIdle
NtUserMsgWaitForMultipleObjectsEx
NtUserWaitForMsgAndEvent
NtUserSetObjectInformation
NtUserCreateWindowStation
NtUserOpenWindowStation
NtUserCreateDesktopEx
NtUserOpenDesktop
NtUserSwitchDesktop
NtUserYieldTask
NtUserGetMenuIndex
NtUserCallHwndOpt
NtUserUnloadKeyboardLayout
NtUserGetKeyboardLayout
NtUserPostThreadMessage
NtUserGetProcessDpiAwarenessContext
NtUserSetProcessDpiAwarenessContext
NtUserGetDpiForMonitor
NtUserShutdownBlockReasonCreate
NtUserGetCurrentDpiInfoForWindow
NtUserCallHwndSafe
NtUserTransformPoint
NtUserSystemParametersInfoForDpi
NtCreateCompositionInputSink
NtUserCreatePalmRejectionDelayZone
NtUserDestroyPalmRejectionDelayZone
NtUserSystemParametersInfo
NtUserGetProp
NtUserGetHDevName
NtUserGetRawInputDeviceInfo
NtUserUpdatePerUserSystemParameters
NtUserEvent
NtUserGetWOWClass
NtUserConvertMemHandle
NtUserCreateLocalMemHandle
NtUserSetWindowsHookEx
NtUserSetWinEventHook
NtUserNotifyWinEvent
NtUserRegisterUserApiHook
NtUserDrawCaption
NtUserGetAsyncKeyState
NtUserGetKeyState
NtUserOpenClipboard
NtUserPeekMessage
NtUserSetWindowLong
NtUserTranslateMessage
NtUserSetWindowRgn
NtUserSetWindowRgnEx
NtUserInternalGetWindowText
NtUserInternalGetWindowIcon
NtUserSetWindowStationUser
NtUserSetSystemCursor
NtUserFindExistingCursorIcon
NtUserSetCursorIconData
NtUserDefSetText
NtUserToUnicodeEx
NtUserLoadKeyboardLayoutEx
NtUserModifyWindowTouchCapability
NtUserPaintDesktop
NtUserEnableMenuItem
NtUserCallNextHookEx
NtGdiDdDDIEscape
NtUserDisplayConfigGetDeviceInfo
NtUserGetDisplayConfigBufferSizes
NtUserSetDisplayConfig
NtUserQueryDisplayConfig
NtUserDisplayConfigSetDeviceInfo
NtUserFunctionalizeDisplayConfig
NtUserRegisterClassExWOW
NtUserFindWindowEx
NtUserUpdateLayeredWindow
NtUserSBGetParms
NtUserSetScrollInfo
NtUserGetClassName
NtUserTransformRect
NtUserTestForInteractiveUser
NtUserEnableScrollBar
NtMITSetLastInputRecipient
NtMITSetInputDelegationMode
NtMITGetCursorUpdateHandle
NtMITSynthesizeTouchInput
NtUserHwndSetRedirectionInfo
NtUserHwndQueryRedirectionInfo
NtUserSetSysColors
NtUserGetOpenClipboardWindow
NtUserActivateKeyboardLayout
NtUserSetThreadDesktop
NtUserCallTwoParam
NtUserCallNoParam
NtUserCallHwnd
NtUserModifyUserStartupInfoFlags
NtUserMNDragLeave
NtUserMNDragOver
NtUserDrawMenuBarTemp
NtUserThunkedMenuInfo
NtUserCheckMenuItem
NtUserMinMaximize
NtUserSetWindowLongPtr
NtUserCheckAccessForIntegrityLevel
NtUserScrollWindowEx
NtUserCallHwndParamLock
NtUserDeferWindowPosAndBand
NtUserInitializeClientPfnArrays
NtUserProcessConnect
gDispatchTableValues
NtUserDisableProcessWindowFiltering
NtUserSetProcessUIAccessZorder
NtUserGetRawInputBuffer
NtUserScrollDC
NtUserSetSystemTimer
NtUserCloseClipboard
NtUserEmptyClipboard
NtUserIsClipboardFormatAvailable
NtUserShowCaret
NtUserCreateCaret
NtUserHideCaret
NtUserGetControlColor
NtUserSetCursor
NtUserSetThreadState
NtUserQueryWindow
NtUserFillWindow
NtUserDdeInitialize
NtUserUpdateInstance
NtUserConsoleControl
NtUserSetInformationThread
NtUserSetParent
NtUserReleaseDC
NtUserCallHwndParamLockSafe
NtUserPostMessage
NtUserGetTouchInputInfo
NtUserLockCursor
NtUserLinkDpiCursor
NtUserGetRequiredCursorSizes
NtUserGetCursorFrameInfo
NtUserGetIconInfo
NtUserDestroyAcceleratorTable
NtUserReportInertia
NtUserGetHimetricScaleFactorFromPixelLocation
NtUserRegisterEdgy
NtUserRegisterPointerInputTarget
NtUserGetPointerInfoList
NtUserGetCPD
NtUserCallOneParam
NtUserValidateTimerCallback
NtUserDispatchMessage
NtUserAutoPromoteMouseInPointer
NtUserGetDManipHookInitFunction
NtUserCallHwndLock
NtUserSetMenu
NtUserSetMenuFlagRtoL
NtUserThunkedMenuItemInfo
NtUserSetWindowsHookAW
NtUserUnhookWindowsHookEx
NtUserRealWaitMessageEx
NtUserRealInternalGetMessage
NtUserMessageCall
NtUserInjectGesture
NtUserGetGestureExtArgs
NtUserGetGestureInfo
NtUserBuildNameList
NtUserBuildPropList
NtUserBuildHwndList
NtUserGetAtomName
NtUserCallHwndParam
NtUserAlterWindowStyle
NtUserSetWindowFNID
NtUserBitBltSysBmp
NtUserGetOemBitmapSize
NtUserGetIconSize
NtUserGetThreadState
NtUserGetDC
NtUserGetControlBrush
NtUserDestroyCursor
NtUserCreateEmptyCursorObject
NtUserSetImeHotKey
NtUserGetImeHotKey
NtUserWindowFromPoint
NtUserWindowFromPhysicalPoint
NtUserWindowFromDC
NtUserWaitMessage
NtUserWaitForRedirectionStartComplete
NtUserSetClassLongPtr
NtUserWaitAvailableMessageEx
NtUserValidateRect
NtUserUserHandleGrantAccess
NtUserUpdateWindowTrackingInfo
NtUserUpdateWindowInputSinkHints
NtUserUpdateDefaultDesktopThumbnail
NtUserUnregisterUserApiHook
NtUserUnregisterSessionPort
NtUserUnregisterHotKey
NtUserUnlockWindowStation
NtUserUnhookWinEvent
NtUserUndelegateInput
NtUserTrackPopupMenuEx
NtUserTrackMouseEvent
NtUserSoundSentry
NtUserSlicerControl
NtUserDiscardPointerFrameMessages
NtUserSignalRedirectionStartComplete
NtUserShutdownBlockReasonQuery
NtUserShutdownReasonDestroy
NtUserShowWindowAsync
NtUserShowWindow
NtUserShowSystemCursor
NtUserShowScrollBar
NtUserShowCursor
NtUserSetWindowWord
NtUserSetWindowShowState
NtUserSetWindowPos
NtUserSetWindowPlacement
NtUserSetWindowGroup
NtUserSetWindowFeedbackSetting
NtUserSetWindowDisplayAffinity
NtUserSetWindowCompositionTransition
NtUserSetWindowBand
NtUserSetWindowArrangement
NtUserSetThreadInputBlocked
NtUserSetTargetForResourceBrokering
NtUserSetSystemMenu
NtUserSetShellWindowEx
NtSetShellCursorState
NtUserSetProcessWindowStation
NtUserSetProcessRestrictionExemption
NtUserSetProcessMousewheelRoutingMode
NtUserSetProcessInteractionFlags
NtUserSetPrecisionTouchPadConfiguration
NtSetPointerDeviceInputSpace
NtUserSetMirrorRendering
NtUserSetMenuDefaultItem
NtUserSetMenuContextHelpId
NtUserMagSetContextInformation
NtUserSetMagnificationDesktopMagnifierOffsetsDWMUpdated
NtUserSetLayeredWindowAttributes
NtUserSetKeyboardState
NtUserSetInternalWindowPos
NtUserSetInteractiveCtrlRotationAngle
NtUserSetInteractiveControlFocus
NtUserSetGestureConfig
NtUserSetForegroundWindowForApplication
NtUserSetFocus
NtUserSetFeatureReportResponse
NtUserSetFallbackForeground
NtUserSetDisplayMapping
NtUserSetDisplayAutoRotationPreferences
NtUserSetDialogControlDpiChangeBehavior
NtUserSetDesktopColorTransform
NtUserSetCursorPos
NtSetCursorInputSpace
NtUserSetCursorContents
NtUserSetCoreWindowPartner
NtUserSetCoreWindow
NtUserSetTimer
NtUserSetClassWord
NtUserSetChildWindowNoActivate
NtUserSetCapture
NtUserSetCalibrationData
NtUserSetBrokeredForeground
NtUserSetBridgeWindowChild
NtUserSetAutoRotation
NtUserSetActiveWindow
NtUserSetActiveProcessForMonitor
NtUserSetActivationFilter
NtUserSendInteractiveControlHapticsReport
NtUserSendInput
NtUserSendEventMessage
NtUserRestoreWindowDpiChanges
NtUserResolveDesktopForWOW
NtUserRequestMoveSizeOperation
NtUserRemoveVisualIdentifier
NtUserRemoveMenu
NtUserReleaseDwmHitTestWaiters
NtUserRegisterTouchPadCapable
NtUserRegisterTouchHitTestingWindow
NtUserRegisterTasklist
NtUserRegisterShellPTPListener
NtUserRegisterSessionPort
NtUserRegisterServicesProcess
NtUserRegisterRawInputDevices
NtUserRegisterPointerDeviceNotifications
NtUserRegisterHotKey
NtUserRegisterErrorReportingDialog
NtUserRegisterDManipHook
NtUserRegisterBSDRWindow
NtUserRedrawWindow
NtUserRealChildWindowFromPoint
NtRIMUpdateInputObserverRegistration
NtRIMUnregisterForInput
NtRIMSetTestModeStatus
NtRIMSetExtendedDeviceProperty
NtRIMRemoveInputObserver
NtRIMRegisterForInput
NtRIMReadInput
NtRIMOnTimerNotification
NtRIMOnPnpNotification
NtRIMObserveNextInput
NtRIMGetSourceProcessId
NtRIMGetPhysicalDeviceRect
NtRIMGetDevicePropertiesLockfree
NtRIMGetDeviceProperties
NtRIMGetDevicePreparsedDataLockfree
NtRIMGetDevicePreparsedData
NtRIMFreeInputBuffer
NtRIMEnableMonitorMappingForDevice
NtRIMDeviceIoControl
NtRIMAreSiblingDevices
NtRIMAddInputObserver
NtUserQuerySendMessage
NtUserQueryBSDRWindow
NtUserQueryActivationObject
NtUserPromotePointer
NtUserProcessInkFeedbackCommand
NtUserPrintWindow
NtUserPerMonitorDPIPhysicalToLogicalPoint
NtUserPhysicalToLogicalPoint
NtUserPhysicalToLogicalDpiPointForWindow
NtUserPaintMonitor
NtUserPaintMenuBar
NtUserOpenThreadDesktop
NtUserOpenInputDesktop
NtUserNavigateFocus
NtUserMoveWindow
NtUserMenuItemFromPoint
NtMapVisualRelativePoints
NtUserMapPointsByVisualIdentifier
NtUserLogicalToPerMonitorDPIPhysicalPoint
NtUserLogicalToPhysicalPoint
NtUserLogicalToPhysicalDpiPointForWindow
NtUserLockWorkStation
NtUserLockWindowUpdate
NtUserLockWindowStation
NtUserLayoutCompleted
NtUserKillTimer
NtUserIsWindowGDIScaledDpiMessageEnabled
NtUserIsWindowBroadcastingDpiToChildren
NtUserIsTouchWindow
NtUserIsTopLevelWindow
NtUserIsResizeLayoutSynchronizationEnabled
NtIsOneCoreTransformMode
NtUserIsNonClientDpiScalingEnabled
NtUserIsMouseInputEnabled
NtUserIsMouseInPointerEnabled
NtUserIsChildWindowDpiMessageEnabled
NtUserInvalidateRgn
NtUserInvalidateRect
NtUserInteractiveControlQueryUsage
NtUserInjectTouchInput
NtUserInjectPointerInput
NtUserInjectMouseInput
NtUserInjectKeyboardInput
NtUserInjectGenericHidInput
NtUserInjectDeviceInput
NtUserInitializeTouchInjection
NtUserInitializePointerDeviceInjectionEx
NtUserInitializePointerDeviceInjection
NtUserInitializeInputDeviceInjection
NtUserInitializeGenericHidInjection
NtUserInheritWindowMonitor
NtUserImpersonateDdeClientWindow
NtUserHungWindowFromGhostWindow
NtUserHiliteMenuItem
NtUserHidePointerContactVisualization
NtUserHandleDelegatedInput
NtUserGhostWindowFromHungWindow
NtUserGetWindowRgnEx
NtUserGetWindowProcessHandle
NtUserGetWindowPlacement
NtUserGetWindowMinimizeRect
NtUserGetWindowGroupId
NtUserGetWindowFeedbackSetting
NtUserGetWindowDisplayAffinity
NtUserGetWindowDC
NtUserGetWindowCompositionInfo
NtUserGetWindowCompositionAttribute
NtUserGetWindowBand
NtUserGetObjectInformation
NtUserGetUniformSpaceMapping
NtUserGetTouchValidationStatus
NtUserGetTopLevelWindow
NtUserGetTitleBarInfo
NtUserGetThreadDesktop
NtUserGetSystemMenu
NtUserGetSystemDpiForProcess
NtUserGetScrollBarInfo
NtUserGetResizeDCompositionSynchronizationObject
NtUserGetRegisteredRawInputDevices
NtUserGetRawPointerDeviceData
NtUserGetRawInputDeviceList
NtUserGetRawInputData
NtUserGetQueueStatusReadonly
NtUserGetProcessWindowStation
NtUserGetProcessUIContextInformation
NtUserGetPrecisionTouchPadConfiguration
NtUserGetPointerType
NtUserGetPointerProprietaryId
NtUserGetPointerInputTransform
NtUserGetPointerFrameTimes
NtUserGetPointerDevices
NtUserGetPointerDeviceRects
NtUserGetPointerDeviceProperties
NtUserGetPointerDeviceOrientation
NtUserGetPointerDeviceCursors
NtUserGetPointerDevice
NtUserGetPointerCursorId
NtUserGetPhysicalDeviceRect
NtUserGetOwnerTransformedMonitorRect
NtUserGetMouseMovePointsEx
NtUserGetMenuItemRect
NtUserGetMenuBarInfo
NtUserMagGetContextInformation
NtUserGetListBoxInfo
NtUserGetLayeredWindowAttributes
NtUserGetKeyboardState
NtUserGetKeyboardLayoutList
NtUserGetInternalWindowPos
NtUserGetInteractiveCtrlSupportedWaveforms
NtUserGetInteractiveControlInfo
NtUserGetInteractiveControlDeviceInfo
NtUserGetInputLocaleInfo
NtUserGetInputContainerId
NtUserGetGuiResources
NtUserGetGestureConfig
NtUserGetGUIThreadInfo
NtUserGetForegroundWindow
NtUserGetExtendedPointerDeviceProperty
NtUserGetDoubleClickTime
NtUserGetDisplayAutoRotationPreferencesByProcessId
NtUserGetDisplayAutoRotationPreferences
NtUserGetDesktopID
NtUserGetDCEx
NtUserGetCursorInfo
NtUserGetCursor
NtUserGetCurrentInputMessageSource
NtUserGetComboBoxInfo
NtUserGetClipboardAccessToken
NtUserGetClipCursor
NtUserGetCaretPos
NtUserGetCaretBlinkTime
NtUserGetCIMSSM
NtUserGetAutoRotationState
NtUserGetAncestor
NtUserGetActiveProcessesDpis
NtUserFrostCrashedWindow
NtUserForceWindowToDpiForTest
NtUserFlashWindowEx
NtUserExcludeUpdateRgn
NtUserEnumDisplayMonitors
NtUserEndPaint
NtUserEndMenu
NtUserEndDeferWindowPosEx
NtUserEnableWindowResizeOptimization
NtUserEnableWindowGroupPolicy
NtUserEnableWindowGDIScaledDpiMessage
NtUserEnableTouchPad
NtUserEnableSoftwareCursorForScreenCapture
NtUserEnableResizeLayoutSynchronization
NtEnableOneCoreTransformMode
NtUserEnableNonClientDpiScaling
NtUserEnableMouseInputForCursorSuppression
NtUserEnableMouseInPointer
ntdll
memcpy
memcmp
wcscmp
toupper
RtlSetLastWin32Error
NlsAnsiCodePage
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
_wtoi
NtPowerInformation
RtlMultiByteToUnicodeSize
LdrFlushAlternateResourceModules
RtlRaiseException
NtYieldExecution
NtDeleteValueKey
NtSetValueKey
NtCreateKey
wcstoul
NtVdmControl
RtlFreeUnicodeString
RtlCreateUnicodeStringFromAsciiz
NtOpenDirectoryObject
NtSetSecurityObject
NtQuerySecurityObject
NtQueryInformationProcess
wcstol
ZwQueryWnfStateData
wcsncmp
wcsnlen
RtlDeleteHashTable
RtlInitStrongEnumerationHashTable
RtlLookupEntryHashTable
RtlStronglyEnumerateEntryHashTable
strnlen
RtlInsertEntryHashTable
RtlInitEnumerationHashTable
RtlRemoveEntryHashTable
strncmp
RtlEndStrongEnumerationHashTable
RtlCreateHashTable
RtlEndEnumerationHashTable
RtlEnumerateEntryHashTable
RtlQueryPackageClaims
RtlInitAnsiString
RtlAnsiStringToUnicodeString
RtlCompareUnicodeString
wcsncpy_s
iswspace
qsort
RtlImageNtHeader
wcsrchr
RtlPcToFileHeader
NtRaiseHardError
NtCallbackReturn
wcsncat_s
RtlRetrieveNtUserPfn
RtlInitializeNtUserPfn
_stricmp
RtlGetIntegerAtom
RtlDeleteCriticalSection
RtlResetNtUserPfn
RtlQueryInformationActiveActivationContext
RtlQueryElevationFlags
NtQuerySystemInformation
RtlInitializeCriticalSection
RtlEqualUnicodeString
LdrQueryImageFileExecutionOptions
isspace
CsrClientConnectToServer
sscanf_s
strrchr
strcpy_s
RtlSizeHeap
RtlGetThreadLangIdByIndex
RtlRunEncodeUnicodeString
RtlRunDecodeUnicodeString
_wcsicmp
RtlReAllocateHeap
RtlNtStatusToDosError
RtlGetActiveConsoleId
CsrFreeCaptureBuffer
CsrClientCallServer
CsrAllocateMessagePointer
CsrAllocateCaptureBuffer
NtOpenProcessToken
NtOpenThreadToken
RtlFreeSid
NtQueryInformationToken
RtlAllocateAndInitializeSid
NtQueryVirtualMemory
_vsnwprintf
RtlUnicodeToMultiByteSize
RtlIsThreadWithinLoaderCallout
RtlReleaseActivationContext
RtlFindActivationContextSectionString
RtlDeactivateActivationContextUnsafeFast
RtlActivateActivationContextUnsafeFast
RtlUnicodeToMultiByteN
RtlMultiByteToUnicodeN
RtlEnterCriticalSection
RtlLeaveCriticalSection
__C_specific_handler
wcscat_s
wcscpy_s
NtQueryValueKey
NtEnumerateKey
NtClose
NtOpenKey
RtlOpenCurrentUser
RtlUnicodeStringToInteger
RtlInitUnicodeString
swprintf_s
RtlFreeHeap
RtlAllocateHeap
memset
memmove
api-ms-win-core-localization-l1-2-0
IsDBCSLeadByteEx
GetLocaleInfoW
GetACP
GetOEMCP
GetSystemDefaultLangID
IsDBCSLeadByte
GetCPInfo
IsValidLocale
ConvertDefaultLocale
GetUserDefaultLCID
GetThreadLocale
api-ms-win-core-registry-l1-1-0
RegOpenKeyExW
RegQueryInfoKeyW
RegDeleteKeyExW
RegGetValueW
RegEnumValueW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
RegSetValueExW
api-ms-win-core-heap-l2-1-0
LocalAlloc
LocalLock
LocalUnlock
GlobalAlloc
LocalFree
LocalReAlloc
GlobalFree
api-ms-win-core-libraryloader-l1-2-0
GetProcAddress
GetModuleFileNameA
FindResourceExW
FreeLibrary
LoadLibraryExW
EnumResourceNamesExW
GetModuleFileNameW
GetModuleHandleA
SizeofResource
LoadResource
GetModuleHandleExW
GetModuleHandleW
DisableThreadLibraryCalls
api-ms-win-eventing-provider-l1-1-0
EventUnregister
EventRegister
EventActivityIdControl
EventWriteTransfer
EventWrite
EventSetInformation
EventProviderEnabled
api-ms-win-core-processthreads-l1-1-0
GetCurrentProcess
GetCurrentThread
ProcessIdToSessionId
GetCurrentProcessId
CreateThread
CreateProcessW
GetExitCodeThread
GetCurrentThreadId
TerminateProcess
ExitThread
api-ms-win-core-synch-l1-1-0
AcquireSRWLockExclusive
EnterCriticalSection
InitializeSRWLock
SetEvent
OpenEventW
AcquireSRWLockShared
LeaveCriticalSection
ReleaseSRWLockExclusive
ReleaseSRWLockShared
api-ms-win-core-string-l1-1-0
CompareStringW
GetStringTypeW
CompareStringOrdinal
MultiByteToWideChar
FoldStringW
WideCharToMultiByte
api-ms-win-core-sysinfo-l1-1-0
GetSystemDirectoryW
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
GetVersionExW
GetTickCount
api-ms-win-security-base-l1-1-0
CheckTokenMembership
api-ms-win-core-handle-l1-1-0
CloseHandle
api-ms-win-core-errorhandling-l1-1-0
GetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
api-ms-win-core-string-l2-1-0
CharLowerBuffW
CharPrevW
IsCharLowerW
IsCharAlphaNumericW
IsCharAlphaW
CharLowerW
IsCharUpperW
CharUpperBuffW
CharUpperW
CharNextW
api-ms-win-core-synch-l1-2-0
Sleep
api-ms-win-core-processenvironment-l1-1-0
GetCurrentDirectoryW
ExpandEnvironmentStringsW
SetCurrentDirectoryW
SearchPathW
api-ms-win-core-file-l1-1-0
FindClose
GetLogicalDrives
SetFileTime
GetFileSize
FindFirstFileW
FindNextFileW
ReadFile
CreateFileW
api-ms-win-core-processthreads-l1-1-1
GetProcessMitigationPolicy
api-ms-win-core-memory-l1-1-0
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
OpenFileMappingW
MapViewOfFileEx
VirtualQueryEx
api-ms-win-core-profile-l1-1-0
QueryPerformanceFrequency
QueryPerformanceCounter
api-ms-win-core-heap-l1-1-0
HeapFree
GetProcessHeap
api-ms-win-core-memory-l1-1-3
SetProcessValidCallTargets
api-ms-win-core-privateprofile-l1-1-0
GetPrivateProfileStringW
WritePrivateProfileStringW
api-ms-win-core-atoms-l1-1-0
AddAtomW
GlobalGetAtomNameA
DeleteAtom
GlobalDeleteAtom
AddAtomA
GetAtomNameA
GlobalGetAtomNameW
GlobalAddAtomA
GlobalFindAtomW
GetAtomNameW
GlobalAddAtomW
GlobalFindAtomA
api-ms-win-core-heap-obsolete-l1-1-0
GlobalLock
LocalSize
GlobalHandle
GlobalSize
GlobalUnlock
GlobalFlags
GlobalReAlloc
api-ms-win-core-string-obsolete-l1-1-0
lstrcmpiW
lstrlenA
lstrlenW
api-ms-win-core-localization-obsolete-l1-2-0
GetStringTypeA
api-ms-win-core-stringansi-l1-1-0
CharUpperA
IsCharUpperA
CharLowerA
IsCharLowerA
IsCharAlphaNumericA
CharUpperBuffA
CharLowerBuffA
CharPrevExA
CharPrevA
CharNextA
CharNextExA
IsCharAlphaA
api-ms-win-core-sidebyside-l1-1-0
QueryActCtxSettingsW
api-ms-win-core-kernel32-private-l1-1-0
RegisterWaitForInputIdle
kernelbase
LoadStringBaseExW
WTSGetServiceSessionId
api-ms-win-core-kernel32-legacy-l1-1-0
FindResourceExA
MulDiv
api-ms-win-core-appinit-l1-1-0
LoadAppInitDlls
gdi32
SetStretchBltMode
SetBkMode
SelectObject
IntersectClipRect
SetTextAlign
GetTextAlign
GetStockObject
SetBkColor
SetTextColor
GetObjectW
GetBkColor
GetLayout
GdiGetBitmapBitsSize
GetMapMode
GetHFONT
ExtSelectClipRgn
GetClipRgn
SetGraphicsMode
GetDCOrgEx
GdiTrackHDelete
GdiFixUpHandle
GdiPrinterThunk
GdiLoadType1Fonts
GdiAddFontResourceW
GetRgnBox
ExtCreateRegion
GetRegionData
EnableEUDC
TextOutA
GdiReleaseDC
GdiConvertBitmapV5
GdiConvertToDevmodeW
GetClipBox
MirrorRgn
OffsetRgn
CreateRectRgnIndirect
SetRectRgn
CombineRgn
CreateRectRgn
GetBoundsRect
SetLayout
PlayEnhMetaFile
ExcludeClipRect
StretchBlt
Ellipse
CreateEllipticRgn
Rectangle
CreatePen
CreateBrushIndirect
PolyPatBlt
SetViewportOrgEx
GetViewportOrgEx
GetCurrentObject
GetTextCharacterExtra
SetTextCharacterExtra
SetLayoutWidth
GdiConvertAndCheckDC
SetBoundsRect
CreateSolidBrush
GdiProcessSetup
GdiDllInitialize
CopyEnhMetaFileW
CopyMetaFileW
SetPaletteEntries
CreatePalette
GetPaletteEntries
DeleteEnhMetaFile
DeleteMetaFile
GetPixel
GetTextCharsetInfo
QueryFontAssocStatus
ExtTextOutA
GetCharWidthInfo
GetCharWidthA
GetTextExtentPointA
GetTextFaceW
GetCharABCWidthsW
GetCharABCWidthsA
SetBrushOrgEx
GetDCDpiScaleValue
GetTextFaceAliasW
EnumFontsW
CreateFontIndirectW
TranslateCharsetInfo
GdiCreateLocalEnhMetaFile
GdiCreateLocalMetaFilePict
GdiConvertEnhMetaFile
GdiConvertMetaFilePict
GetTextColor
GetTextMetricsW
TextOutW
GetWindowExtEx
GetViewportExtEx
GetBkMode
GdiGetCharDimensions
GetTextCharset
GdiGetCodePage
GetTextExtentPointW
ExtTextOutW
RestoreDC
OffsetWindowOrgEx
SaveDC
GetObjectType
GetDIBits
SetDIBits
GetDIBColorTable
CreateDIBSection
PatBlt
CreateCompatibleBitmap
CreateDIBitmap
CreateDCW
GdiTrackHCreate
DeleteDC
BitBlt
CreateCompatibleDC
DeleteObject
CreateBitmap
GdiValidateHandle
StretchDIBits
GetDeviceCaps
api-ms-win-core-delayload-l1-1-1
ResolveDelayLoadedAPI
api-ms-win-core-delayload-l1-1-0
DelayLoadFailureHook
api-ms-win-core-apiquery-l1-1-0
ApiSetQueryApiSetPresence
Exports
Exports
ActivateKeyboardLayout
AddClipboardFormatListener
AddVisualIdentifier
AdjustWindowRect
AdjustWindowRectEx
AdjustWindowRectExForDpi
AlignRects
AllowForegroundActivation
AllowSetForegroundWindow
AnimateWindow
AnyPopup
AppendMenuA
AppendMenuW
AreDpiAwarenessContextsEqual
ArrangeIconicWindows
AttachThreadInput
BeginDeferWindowPos
BeginPaint
BlockInput
BringWindowToTop
BroadcastSystemMessage
BroadcastSystemMessageA
BroadcastSystemMessageExA
BroadcastSystemMessageExW
BroadcastSystemMessageW
BuildReasonArray
CalcMenuBar
CalculatePopupWindowPosition
CallMsgFilter
CallMsgFilterA
CallMsgFilterW
CallNextHookEx
CallWindowProcA
CallWindowProcW
CancelShutdown
CascadeChildWindows
CascadeWindows
ChangeClipboardChain
ChangeDisplaySettingsA
ChangeDisplaySettingsExA
ChangeDisplaySettingsExW
ChangeDisplaySettingsW
ChangeMenuA
ChangeMenuW
ChangeWindowMessageFilter
ChangeWindowMessageFilterEx
CharLowerA
CharLowerBuffA
CharLowerBuffW
CharLowerW
CharNextA
CharNextExA
CharNextW
CharPrevA
CharPrevExA
CharPrevW
CharToOemA
CharToOemBuffA
CharToOemBuffW
CharToOemW
CharUpperA
CharUpperBuffA
CharUpperBuffW
CharUpperW
CheckBannedOneCoreTransformApi
CheckDBCSEnabledExt
CheckDlgButton
CheckMenuItem
CheckMenuRadioItem
CheckProcessForClipboardAccess
CheckProcessSession
CheckRadioButton
CheckWindowThreadDesktop
ChildWindowFromPoint
ChildWindowFromPointEx
CliImmSetHotKey
ClientThreadSetup
ClientToScreen
ClipCursor
CloseClipboard
CloseDesktop
CloseGestureInfoHandle
CloseTouchInputHandle
CloseWindow
CloseWindowStation
ConsoleControl
ControlMagnification
CopyAcceleratorTableA
CopyAcceleratorTableW
CopyIcon
CopyImage
CopyRect
CountClipboardFormats
CreateAcceleratorTableA
CreateAcceleratorTableW
CreateCaret
CreateCursor
CreateDCompositionHwndTarget
CreateDesktopA
CreateDesktopExA
CreateDesktopExW
CreateDesktopW
CreateDialogIndirectParamA
CreateDialogIndirectParamAorW
CreateDialogIndirectParamW
CreateDialogParamA
CreateDialogParamW
CreateIcon
CreateIconFromResource
CreateIconFromResourceEx
CreateIconIndirect
CreateMDIWindowA
CreateMDIWindowW
CreateMenu
CreatePopupMenu
CreateSyntheticPointerDevice
CreateSystemThreads
CreateWindowExA
CreateWindowExW
CreateWindowInBand
CreateWindowInBandEx
CreateWindowIndirect
CreateWindowStationA
CreateWindowStationW
CsrBroadcastSystemMessageExW
CtxInitUser32
DdeAbandonTransaction
DdeAccessData
DdeAddData
DdeClientTransaction
DdeCmpStringHandles
DdeConnect
DdeConnectList
DdeCreateDataHandle
DdeCreateStringHandleA
DdeCreateStringHandleW
DdeDisconnect
DdeDisconnectList
DdeEnableCallback
DdeFreeDataHandle
DdeFreeStringHandle
DdeGetData
DdeGetLastError
DdeGetQualityOfService
DdeImpersonateClient
DdeInitializeA
DdeInitializeW
DdeKeepStringHandle
DdeNameService
DdePostAdvise
DdeQueryConvInfo
DdeQueryNextServer
DdeQueryStringA
DdeQueryStringW
DdeReconnect
DdeSetQualityOfService
DdeSetUserHandle
DdeUnaccessData
DdeUninitialize
DefDlgProcA
DefDlgProcW
DefFrameProcA
DefFrameProcW
DefMDIChildProcA
DefMDIChildProcW
DefRawInputProc
DefWindowProcA
DefWindowProcW
DeferWindowPos
DeferWindowPosAndBand
DelegateInput
DeleteMenu
DeregisterShellHookWindow
DestroyAcceleratorTable
DestroyCaret
DestroyCursor
DestroyDCompositionHwndTarget
DestroyIcon
DestroyMenu
DestroyReasons
DestroySyntheticPointerDevice
DestroyWindow
DialogBoxIndirectParamA
DialogBoxIndirectParamAorW
DialogBoxIndirectParamW
DialogBoxParamA
DialogBoxParamW
DisableProcessWindowsGhosting
DispatchMessageA
DispatchMessageW
DisplayConfigGetDeviceInfo
DisplayConfigSetDeviceInfo
DisplayExitWindowsWarnings
DlgDirListA
DlgDirListComboBoxA
DlgDirListComboBoxW
DlgDirListW
DlgDirSelectComboBoxExA
DlgDirSelectComboBoxExW
DlgDirSelectExA
DlgDirSelectExW
DoSoundConnect
DoSoundDisconnect
DragDetect
DragObject
DrawAnimatedRects
DrawCaption
DrawCaptionTempA
DrawCaptionTempW
DrawEdge
DrawFocusRect
DrawFrame
DrawFrameControl
DrawIcon
DrawIconEx
DrawMenuBar
DrawMenuBarTemp
DrawStateA
DrawStateW
DrawTextA
DrawTextExA
DrawTextExW
DrawTextW
DwmGetDxRgn
DwmGetDxSharedSurface
DwmGetRemoteSessionOcclusionEvent
DwmGetRemoteSessionOcclusionState
DwmKernelShutdown
DwmKernelStartup
DwmLockScreenUpdates
DwmValidateWindow
EditWndProc
EmptyClipboard
EnableMenuItem
EnableMouseInPointer
EnableNonClientDpiScaling
EnableOneCoreTransformMode
EnableScrollBar
EnableSessionForMMCSS
EnableWindow
EndDeferWindowPos
EndDeferWindowPosEx
EndDialog
EndMenu
EndPaint
EndTask
EnterReaderModeHelper
EnumChildWindows
EnumClipboardFormats
EnumDesktopWindows
EnumDesktopsA
EnumDesktopsW
EnumDisplayDevicesA
EnumDisplayDevicesW
EnumDisplayMonitors
EnumDisplaySettingsA
EnumDisplaySettingsExA
EnumDisplaySettingsExW
EnumDisplaySettingsW
EnumPropsA
EnumPropsExA
EnumPropsExW
EnumPropsW
EnumThreadWindows
EnumWindowStationsA
EnumWindowStationsW
EnumWindows
EqualRect
EvaluateProximityToPolygon
EvaluateProximityToRect
ExcludeUpdateRgn
ExitWindowsEx
FillRect
FindWindowA
FindWindowExA
FindWindowExW
FindWindowW
FlashWindow
FlashWindowEx
FrameRect
FreeDDElParam
FrostCrashedWindow
GetActiveWindow
GetAltTabInfo
GetAltTabInfoA
GetAltTabInfoW
GetAncestor
GetAppCompatFlags
GetAppCompatFlags2
GetAsyncKeyState
GetAutoRotationState
GetAwarenessFromDpiAwarenessContext
GetCIMSSM
GetCapture
GetCaretBlinkTime
GetCaretPos
GetClassInfoA
GetClassInfoExA
GetClassInfoExW
GetClassInfoW
GetClassLongA
GetClassLongPtrA
GetClassLongPtrW
GetClassLongW
GetClassNameA
GetClassNameW
GetClassWord
GetClientRect
GetClipCursor
GetClipboardAccessToken
GetClipboardData
GetClipboardFormatNameA
GetClipboardFormatNameW
GetClipboardOwner
GetClipboardSequenceNumber
GetClipboardViewer
GetComboBoxInfo
GetCurrentInputMessageSource
GetCursor
GetCursorFrameInfo
GetCursorInfo
GetCursorPos
GetDC
GetDCEx
GetDesktopID
GetDesktopWindow
GetDialogBaseUnits
GetDialogControlDpiChangeBehavior
GetDialogDpiChangeBehavior
GetDisplayAutoRotationPreferences
GetDisplayConfigBufferSizes
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
GetDlgItemTextW
GetDoubleClickTime
GetDpiAwarenessContextForProcess
GetDpiForMonitorInternal
GetDpiForSystem
GetDpiForWindow
GetDpiFromDpiAwarenessContext
GetExtendedPointerDeviceProperty
GetFocus
GetForegroundWindow
GetGUIThreadInfo
GetGestureConfig
GetGestureExtraArgs
GetGestureInfo
GetGuiResources
GetIconInfo
GetIconInfoExA
GetIconInfoExW
GetInputDesktop
GetInputLocaleInfo
GetInputState
GetInternalWindowPos
GetKBCodePage
GetKeyNameTextA
GetKeyNameTextW
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutList
GetKeyboardLayoutNameA
GetKeyboardLayoutNameW
GetKeyboardState
GetKeyboardType
GetLastActivePopup
GetLastInputInfo
GetLayeredWindowAttributes
GetListBoxInfo
GetMagnificationDesktopColorEffect
GetMagnificationDesktopMagnification
GetMagnificationDesktopSamplingMode
GetMagnificationLensCtxInformation
GetMenu
GetMenuBarInfo
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuDefaultItem
GetMenuInfo
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuItemInfoW
GetMenuItemRect
GetMenuState
GetMenuStringA
GetMenuStringW
GetMessageA
GetMessageExtraInfo
GetMessagePos
GetMessageTime
GetMessageW
GetMonitorInfoA
GetMonitorInfoW
GetMouseMovePointsEx
GetNextDlgGroupItem
GetNextDlgTabItem
GetOpenClipboardWindow
GetParent
GetPhysicalCursorPos
GetPointerCursorId
GetPointerDevice
GetPointerDeviceCursors
GetPointerDeviceOrientation
GetPointerDeviceProperties
GetPointerDeviceRects
GetPointerDevices
GetPointerFrameArrivalTimes
GetPointerFrameInfo
GetPointerFrameInfoHistory
GetPointerFramePenInfo
GetPointerFramePenInfoHistory
GetPointerFrameTimes
GetPointerFrameTouchInfo
GetPointerFrameTouchInfoHistory
GetPointerInfo
GetPointerInfoHistory
GetPointerInputTransform
GetPointerPenInfo
GetPointerPenInfoHistory
GetPointerTouchInfo
GetPointerTouchInfoHistory
GetPointerType
GetPriorityClipboardFormat
GetProcessDefaultLayout
GetProcessDpiAwarenessInternal
GetProcessUIContextInformation
GetProcessWindowStation
GetProgmanWindow
GetPropA
GetPropW
GetQueueStatus
GetRawInputBuffer
GetRawInputData
GetRawInputDeviceInfoA
GetRawInputDeviceInfoW
GetRawInputDeviceList
GetRawPointerDeviceData
GetReasonTitleFromReasonCode
GetRegisteredRawInputDevices
GetScrollBarInfo
GetScrollInfo
GetScrollPos
GetScrollRange
GetSendMessageReceiver
GetShellChangeNotifyWindow
GetShellWindow
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemDpiForProcess
GetSystemMenu
GetSystemMetrics
GetSystemMetricsForDpi
GetTabbedTextExtentA
GetTabbedTextExtentW
GetTaskmanWindow
GetThreadDesktop
GetThreadDpiAwarenessContext
GetThreadDpiHostingBehavior
GetTitleBarInfo
GetTopLevelWindow
GetTopWindow
GetTouchInputInfo
GetUnpredictedMessagePos
GetUpdateRect
GetUpdateRgn
GetUpdatedClipboardFormats
GetUserObjectInformationA
GetUserObjectInformationW
GetUserObjectSecurity
GetWinStationInfo
GetWindow
GetWindowBand
GetWindowCompositionAttribute
GetWindowCompositionInfo
GetWindowContextHelpId
GetWindowDC
GetWindowDisplayAffinity
GetWindowDpiAwarenessContext
GetWindowDpiHostingBehavior
GetWindowFeedbackSetting
GetWindowInfo
GetWindowLongA
GetWindowLongPtrA
GetWindowLongPtrW
GetWindowLongW
GetWindowMinimizeRect
GetWindowModuleFileName
GetWindowModuleFileNameA
GetWindowModuleFileNameW
GetWindowPlacement
GetWindowProcessHandle
GetWindowRect
GetWindowRgn
GetWindowRgnBox
GetWindowRgnEx
GetWindowTextA
Sections
.text Size: 533KB - Virtual size: 533KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 128KB - Virtual size: 127KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 27KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 240B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 900KB - Virtual size: 900KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/CookComputing.XmlRpcV2.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 108KB - Virtual size: 105KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 1008B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/Loki_original.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 177KB - Virtual size: 176KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/MRG.Controls.UI.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\Documents and Settings\i811827\Desktop\Desktop\MRGLoadingCircleSrc\LoadingCircle\MRG.Controls.UI\obj\Debug\MRG.Controls.UI.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 904B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/NReadability.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
d:\ImmStuff\Projects\Complete\NReadability\trunk\Src\NReadability\NReadability\obj\Release\NReadability.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 39KB - Virtual size: 38KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 864B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/Panel/PvqDq929BSx_A_D_M1n_a.php
-
Botnets PACK/Loki 1.8/Panel/fre.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/chart.class.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/geoip/GeoIP.dat
-
Botnets PACK/Loki 1.8/Panel/inc/class/geoip/geoip.inc
-
Botnets PACK/Loki 1.8/Panel/inc/class/login.class.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/misc.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/mysqli.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pBarcode128.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pBarcode39.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pBubble.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pCache.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pData.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pDraw.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pImage.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pIndicator.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pPie.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pRadar.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pScatter.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pSplit.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pSpring.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pStock.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/class/pSurface.class.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/Bedizen.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/Forgotte.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/GeosansLight.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/MankSans.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/Silkscreen.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/advent_light.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/calibri.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/pf_arma_five.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pCharts/fonts/verdana.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_32bit.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_alftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_anyclient.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_becky.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_bitkinex.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_bitvise.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_blazeftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_checkmail.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_cred.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_cyberduck.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_easyftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_expandrive.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_far.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_filezilla.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_firefox.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_fjsftp.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_flashfxp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_fling.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_folder.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_foxmail.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_freshftp.php.js
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ftpbox.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ftpgetter.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ftpinfo.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ftpnavigator.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ftpnow.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ftpshell.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_fullsync.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_fulltiltpoker.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_gmailnp.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_goftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_incredimail.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_keepass.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_linesftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_mailer.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_mailspeaker.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_myftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_netdrive.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_netfile.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_nexusfile.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_notefly.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_notezilla.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_novaftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_npass.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_nppftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_odin.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_opera.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_operamail.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_outlook.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_pidgin.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_pocomail.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_pokerstars.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_putty.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_qupzilla.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_securefx.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_sftpnetdrive.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_sherrodftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_smartftp.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_staffftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_steed.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_stickies.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_stickynotes.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_stickypad.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_superputty.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_syncovery.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_thunderbird.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_tododesklist.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_trojita.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_trulymail.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_twcommander.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ultrafxp.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_vnc.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_wallet.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_winbox.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_winftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_winkey.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_winscp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ws_ftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_xftp.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/pass_module/Module_ymail.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/class/wallet.class.php
-
Botnets PACK/Loki 1.8/Panel/inc/class/worker.class.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/lang.db.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/bot.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/command.inc.php.ps1
-
Botnets PACK/Loki 1.8/Panel/inc/page/data.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/dump.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/error.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/header.inc.php.html .js polyglot
-
Botnets PACK/Loki 1.8/Panel/inc/page/login.inc.php.html
-
Botnets PACK/Loki 1.8/Panel/inc/page/main.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/report.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/settings.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/page/wallet.inc.php
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/45-degree-fabric.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/cloth-alike.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/debut_light.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/grey-sandbag.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/kinda-jean.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/notebook.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/backgrounds/polyester-lite.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/fonts/DJB Almost Perfect.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/fonts/times_new_yorker.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/style/Captcha/fonts/waltographUI.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootbox.min.js.js
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap-lightbox.min.css
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap-lightbox.min.js.js
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap-select.js.js
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap-select.min.css
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap-table.css
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap-table.js.js
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap.css
-
Botnets PACK/Loki 1.8/Panel/inc/style/bootstrap.min.js.js
-
Botnets PACK/Loki 1.8/Panel/inc/style/core.js.js
-
Botnets PACK/Loki 1.8/Panel/inc/style/fonts/glyphicons-halflings-regular.eot
-
Botnets PACK/Loki 1.8/Panel/inc/style/fonts/glyphicons-halflings-regular.svg.xml
-
Botnets PACK/Loki 1.8/Panel/inc/style/fonts/glyphicons-halflings-regular.ttf
-
Botnets PACK/Loki 1.8/Panel/inc/style/fonts/glyphicons-halflings-regular.woff
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/1.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/10.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/100.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/101.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/102.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/103.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/104.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/105.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/106.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/107.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/108.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/109.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/110.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/111.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/112.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/113.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/114.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/115.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/116.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/12.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/121.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/123.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/124.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/125.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/126.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/127.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/128.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/129.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/13.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/14.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/15.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/16.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/17.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/18.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/19.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/2.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/20.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/200.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/201.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/202.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/21.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/22.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/23.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/24.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/25.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/26.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/27.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/28.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/29.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/3.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/30.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/31.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/32.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/33.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/34.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/35.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/36.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/37.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/38.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/39.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/4.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/40.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/41.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/42.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/43.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/44.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/45.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/46.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/47.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/48.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/49.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/5.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/50.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/51.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/52.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/53.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/54.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/55.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/56.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/57.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/58.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/59.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/6.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/60.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/61.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/62.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/63.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/64.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/65.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/66.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/67.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/68.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/69.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/7.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/70.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/71.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/72.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/73.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/74.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/75.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/76.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/77.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/78.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/79.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/8.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/80.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/81.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/82.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/84.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/85.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/86.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/87.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/88.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/89.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/9.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/90.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/91.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/92.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/93.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/94.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/95.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/96.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/97.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/98.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/99.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/read.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/screen.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w0.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w1.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w10.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w11.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w12.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w13.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w14.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w15.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w16.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w17.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w18.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w19.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w2.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w20.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w21.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w22.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w23.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w24.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w25.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w26.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w27.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w28.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w29.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w3.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w30.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w31.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w32.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w33.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w34.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w4.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w5.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w6.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w7.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w8.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/w9.ico
-
Botnets PACK/Loki 1.8/Panel/inc/style/icon/x.png.png
-
Botnets PACK/Loki 1.8/Panel/inc/style/jquery-2.1.1.min.js.js
-
Botnets PACK/Loki 1.8/Panel/install.php.js
-
Botnets PACK/Loki 1.8/SgmlReaderDll.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 128KB - Virtual size: 125KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/comm.jar.zip .js polyglot
-
Botnets PACK/Loki 1.8/config.bdsproj
-
Botnets PACK/Loki 1.8/xpinstal/CookComputing.XmlRpcV2.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 108KB - Virtual size: 105KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 1008B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/xpinstal/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/xpinstal/LICENCE.dat.zip
-
Botnets PACK/Loki 1.8/xpinstal/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/xpinstal/MRG.Controls.UI.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\Documents and Settings\i811827\Desktop\Desktop\MRGLoadingCircleSrc\LoadingCircle\MRG.Controls.UI\obj\Debug\MRG.Controls.UI.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 904B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/xpinstal/NReadability.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
d:\ImmStuff\Projects\Complete\NReadability\trunk\Src\NReadability\NReadability\obj\Release\NReadability.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 39KB - Virtual size: 38KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 864B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/xpinstal/SgmlReaderDll.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 128KB - Virtual size: 125KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Loki 1.8/xpinstal/ieproxy.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.vmprote Size: 27KB - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.Resolut Size: 266KB - Virtual size: 265KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.Resolut Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pandora/Panel_admin.PNG.png
-
Botnets PACK/Pandora/nvml.dll.dll windows:6 windows x64 arch:x64
1550e82f915742e28c03f6fbd80a9b4b
Code Sign
62:e7:45:e9:21:65:21:3c:97:1f:5c:49:0a:ea:12:a5Certificate
IssuerCN=Symantec Class 3 SHA256 Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=USNot Before09-07-2018 00:00Not After09-07-2021 23:59SubjectCN=NVIDIA Corporation,OU=IT-MIS,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8Certificate
IssuerCN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=USNot Before22-07-2014 00:00Not After21-07-2024 23:59SubjectCN=Symantec Class 3 SHA256 Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
61:2d:23:cb:00:00:00:00:00:21Certificate
IssuerCN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before22-02-2011 19:46Not After22-02-2021 19:56SubjectCN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66Certificate
IssuerCN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before22-10-2014 00:00Not After22-10-2024 00:00SubjectCN=DigiCert Timestamp Responder,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1bCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before10-11-2006 00:00Not After10-11-2021 00:00SubjectCN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
33:00:00:00:97:d7:9f:85:90:6e:a3:18:a4:00:00:00:00:00:97Certificate
IssuerCN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before11-03-2020 17:47Not After05-03-2021 17:47SubjectCN=Microsoft Windows Hardware Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:0b:aa:c1:00:00:00:00:00:09Certificate
IssuerCN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before18-04-2012 23:48Not After18-04-2027 23:58SubjectCN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0d:50:5e:ab:4e:97:35:d1:f3:9f:28:eb:e2:4c:d2:71:7f:d5:58:26:23:4e:cd:94:c0:94:f9:81:49:6b:4b:72Signer
Actual PE Digest0d:50:5e:ab:4e:97:35:d1:f3:9f:28:eb:e2:4c:d2:71:7f:d5:58:26:23:4e:cd:94:c0:94:f9:81:49:6b:4b:72Digest Algorithmsha256PE Digest Matchestrue0d:50:5e:ab:4e:97:35:d1:f3:9f:28:eb:e2:4c:d2:71:7f:d5:58:26:23:4e:cd:94:c0:94:f9:81:49:6b:4b:72Signer
Actual PE Digest0d:50:5e:ab:4e:97:35:d1:f3:9f:28:eb:e2:4c:d2:71:7f:d5:58:26:23:4e:cd:94:c0:94:f9:81:49:6b:4b:72Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
advapi32
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegCloseKey
RegSetValueExA
RegGetValueA
gdi32
DeleteDC
CreateDCA
setupapi
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiOpenDevRegKey
SetupDiClassGuidsFromNameExA
psapi
GetModuleFileNameExA
kernel32
SetEndOfFile
ReadConsoleW
ReadFile
GetCurrentDirectoryW
PeekNamedPipe
GetFileInformationByHandle
GetCurrentThreadId
Sleep
CloseHandle
ResetEvent
CreateEventA
WaitForMultipleObjects
GetLastError
OpenProcess
FormatMessageA
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemTimeAsFileTime
VerSetConditionMask
CreateFileA
DeviceIoControl
VerifyVersionInfoA
GetEnvironmentVariableA
SetEnvironmentVariableA
LockFileEx
UnlockFileEx
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCurrentProcessId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetLocalTime
FreeLibrary
GetProcAddress
LoadLibraryA
CreateFileW
GetFileAttributesW
GetFullPathNameW
OutputDebugStringW
SetLastError
GetSystemDirectoryW
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
LocalAlloc
LocalFree
VerifyVersionInfoW
FileTimeToSystemTime
HeapFree
HeapAlloc
MultiByteToWideChar
WideCharToMultiByte
SetStdHandle
GetFileType
IsDebuggerPresent
IsProcessorFeaturePresent
HeapReAlloc
GetCommandLineA
EncodePointer
DecodePointer
GetProcessHeap
ExitProcess
GetModuleHandleExW
AreFileApisANSI
GetStdHandle
WriteFile
RtlUnwindEx
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
FlushFileBuffers
GetConsoleCP
GetConsoleMode
FindClose
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
GetStartupInfoW
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapSize
SetFilePointerEx
GetStringTypeW
CompareStringW
LCMapStringW
WriteConsoleW
FileTimeToLocalFileTime
Exports
Exports
nvmlComputeInstanceDestroy
nvmlComputeInstanceGetInfo
nvmlComputeInstanceGetInfo_v2
nvmlDeviceClearAccountingPids
nvmlDeviceClearCpuAffinity
nvmlDeviceClearEccErrorCounts
nvmlDeviceCreateGpuInstance
nvmlDeviceDiscoverGpus
nvmlDeviceFreezeNvLinkUtilizationCounter
nvmlDeviceGetAPIRestriction
nvmlDeviceGetAccountingBufferSize
nvmlDeviceGetAccountingMode
nvmlDeviceGetAccountingPids
nvmlDeviceGetAccountingStats
nvmlDeviceGetActiveVgpus
nvmlDeviceGetApplicationsClock
nvmlDeviceGetArchitecture
nvmlDeviceGetAttributes
nvmlDeviceGetAttributes_v2
nvmlDeviceGetAutoBoostedClocksEnabled
nvmlDeviceGetBAR1MemoryInfo
nvmlDeviceGetBoardId
nvmlDeviceGetBoardPartNumber
nvmlDeviceGetBrand
nvmlDeviceGetBridgeChipInfo
nvmlDeviceGetClock
nvmlDeviceGetClockInfo
nvmlDeviceGetComputeInstanceId
nvmlDeviceGetComputeMode
nvmlDeviceGetComputeRunningProcesses
nvmlDeviceGetComputeRunningProcesses_v2
nvmlDeviceGetCount
nvmlDeviceGetCount_v2
nvmlDeviceGetCpuAffinity
nvmlDeviceGetCpuAffinityWithinScope
nvmlDeviceGetCreatableVgpus
nvmlDeviceGetCudaComputeCapability
nvmlDeviceGetCurrPcieLinkGeneration
nvmlDeviceGetCurrPcieLinkWidth
nvmlDeviceGetCurrentClocksThrottleReasons
nvmlDeviceGetDecoderUtilization
nvmlDeviceGetDefaultApplicationsClock
nvmlDeviceGetDetailedEccErrors
nvmlDeviceGetDeviceHandleFromMigDeviceHandle
nvmlDeviceGetDisplayActive
nvmlDeviceGetDisplayMode
nvmlDeviceGetDriverModel
nvmlDeviceGetEccMode
nvmlDeviceGetEncoderCapacity
nvmlDeviceGetEncoderSessions
nvmlDeviceGetEncoderStats
nvmlDeviceGetEncoderUtilization
nvmlDeviceGetEnforcedPowerLimit
nvmlDeviceGetFBCSessions
nvmlDeviceGetFBCStats
nvmlDeviceGetFanSpeed
nvmlDeviceGetFanSpeed_v2
nvmlDeviceGetFieldValues
nvmlDeviceGetGpuInstanceById
nvmlDeviceGetGpuInstanceId
nvmlDeviceGetGpuInstancePossiblePlacements
nvmlDeviceGetGpuInstanceProfileInfo
nvmlDeviceGetGpuInstanceRemainingCapacity
nvmlDeviceGetGpuInstances
nvmlDeviceGetGpuOperationMode
nvmlDeviceGetGraphicsRunningProcesses
nvmlDeviceGetGraphicsRunningProcesses_v2
nvmlDeviceGetGridLicensableFeatures
nvmlDeviceGetGridLicensableFeatures_v2
nvmlDeviceGetGridLicensableFeatures_v3
nvmlDeviceGetHandleByIndex
nvmlDeviceGetHandleByIndex_v2
nvmlDeviceGetHandleByPciBusId
nvmlDeviceGetHandleByPciBusId_v2
nvmlDeviceGetHandleBySerial
nvmlDeviceGetHandleByUUID
nvmlDeviceGetHostVgpuMode
nvmlDeviceGetIndex
nvmlDeviceGetInforomConfigurationChecksum
nvmlDeviceGetInforomImageVersion
nvmlDeviceGetInforomVersion
nvmlDeviceGetMPSComputeRunningProcesses
nvmlDeviceGetMaxClockInfo
nvmlDeviceGetMaxCustomerBoostClock
nvmlDeviceGetMaxMigDeviceCount
nvmlDeviceGetMaxPcieLinkGeneration
nvmlDeviceGetMaxPcieLinkWidth
nvmlDeviceGetMemoryAffinity
nvmlDeviceGetMemoryErrorCounter
nvmlDeviceGetMemoryInfo
nvmlDeviceGetMigDeviceHandleByIndex
nvmlDeviceGetMigMode
nvmlDeviceGetMinorNumber
nvmlDeviceGetMultiGpuBoard
nvmlDeviceGetName
nvmlDeviceGetNvLinkCapability
nvmlDeviceGetNvLinkErrorCounter
nvmlDeviceGetNvLinkRemotePciInfo
nvmlDeviceGetNvLinkRemotePciInfo_v2
nvmlDeviceGetNvLinkState
nvmlDeviceGetNvLinkUtilizationControl
nvmlDeviceGetNvLinkUtilizationCounter
nvmlDeviceGetNvLinkVersion
nvmlDeviceGetP2PStatus
nvmlDeviceGetPciInfo
nvmlDeviceGetPciInfo_v2
nvmlDeviceGetPciInfo_v3
nvmlDeviceGetPcieReplayCounter
nvmlDeviceGetPcieThroughput
nvmlDeviceGetPerformanceState
nvmlDeviceGetPersistenceMode
nvmlDeviceGetPgpuMetadataString
nvmlDeviceGetPowerManagementDefaultLimit
nvmlDeviceGetPowerManagementLimit
nvmlDeviceGetPowerManagementLimitConstraints
nvmlDeviceGetPowerManagementMode
nvmlDeviceGetPowerState
nvmlDeviceGetPowerUsage
nvmlDeviceGetProcessUtilization
nvmlDeviceGetRemappedRows
nvmlDeviceGetRetiredPages
nvmlDeviceGetRetiredPagesPendingStatus
nvmlDeviceGetRetiredPages_v2
nvmlDeviceGetRowRemapperHistogram
nvmlDeviceGetSamples
nvmlDeviceGetSerial
nvmlDeviceGetSupportedClocksThrottleReasons
nvmlDeviceGetSupportedEventTypes
nvmlDeviceGetSupportedGraphicsClocks
nvmlDeviceGetSupportedMemoryClocks
nvmlDeviceGetSupportedVgpus
nvmlDeviceGetTemperature
nvmlDeviceGetTemperatureThreshold
nvmlDeviceGetTopologyCommonAncestor
nvmlDeviceGetTopologyNearestGpus
nvmlDeviceGetTotalEccErrors
nvmlDeviceGetTotalEnergyConsumption
nvmlDeviceGetUUID
nvmlDeviceGetUtilizationRates
nvmlDeviceGetVbiosVersion
nvmlDeviceGetVgpuMetadata
nvmlDeviceGetVgpuProcessUtilization
nvmlDeviceGetVgpuUtilization
nvmlDeviceGetViolationStatus
nvmlDeviceGetVirtualizationMode
nvmlDeviceIsMigDeviceHandle
nvmlDeviceModifyDrainState
nvmlDeviceOnSameBoard
nvmlDeviceQueryDrainState
nvmlDeviceRegisterEvents
nvmlDeviceRemoveGpu
nvmlDeviceRemoveGpu_v2
nvmlDeviceResetApplicationsClocks
nvmlDeviceResetGpuLockedClocks
nvmlDeviceResetNvLinkErrorCounters
nvmlDeviceResetNvLinkUtilizationCounter
nvmlDeviceSetAPIRestriction
nvmlDeviceSetAccountingMode
nvmlDeviceSetApplicationsClocks
nvmlDeviceSetAutoBoostedClocksEnabled
nvmlDeviceSetComputeMode
nvmlDeviceSetCpuAffinity
nvmlDeviceSetDefaultAutoBoostedClocksEnabled
nvmlDeviceSetDriverModel
nvmlDeviceSetEccMode
nvmlDeviceSetGpuLockedClocks
nvmlDeviceSetGpuOperationMode
nvmlDeviceSetMigMode
nvmlDeviceSetNvLinkUtilizationControl
nvmlDeviceSetPersistenceMode
nvmlDeviceSetPowerManagementLimit
nvmlDeviceSetVirtualizationMode
nvmlDeviceValidateInforom
nvmlErrorString
nvmlEventSetCreate
nvmlEventSetFree
nvmlEventSetWait
nvmlEventSetWait_v2
nvmlGetBlacklistDeviceCount
nvmlGetBlacklistDeviceInfoByIndex
nvmlGetVgpuCompatibility
nvmlGetVgpuVersion
nvmlGpuInstanceCreateComputeInstance
nvmlGpuInstanceDestroy
nvmlGpuInstanceGetComputeInstanceById
nvmlGpuInstanceGetComputeInstanceProfileInfo
nvmlGpuInstanceGetComputeInstanceRemainingCapacity
nvmlGpuInstanceGetComputeInstances
nvmlGpuInstanceGetInfo
nvmlInit
nvmlInitWithFlags
nvmlInit_v2
nvmlInternalGetExportTable
nvmlSetVgpuVersion
nvmlShutdown
nvmlSystemGetCudaDriverVersion
nvmlSystemGetCudaDriverVersion_v2
nvmlSystemGetDriverVersion
nvmlSystemGetHicVersion
nvmlSystemGetNVMLVersion
nvmlSystemGetProcessName
nvmlSystemGetTopologyGpuSet
nvmlUnitGetCount
nvmlUnitGetDevices
nvmlUnitGetFanSpeedInfo
nvmlUnitGetHandleByIndex
nvmlUnitGetLedState
nvmlUnitGetPsuInfo
nvmlUnitGetTemperature
nvmlUnitGetUnitInfo
nvmlUnitSetLedState
nvmlVgpuInstanceClearAccountingPids
nvmlVgpuInstanceGetAccountingMode
nvmlVgpuInstanceGetAccountingPids
nvmlVgpuInstanceGetAccountingStats
nvmlVgpuInstanceGetEccMode
nvmlVgpuInstanceGetEncoderCapacity
nvmlVgpuInstanceGetEncoderSessions
nvmlVgpuInstanceGetEncoderStats
nvmlVgpuInstanceGetFBCSessions
nvmlVgpuInstanceGetFBCStats
nvmlVgpuInstanceGetFbUsage
nvmlVgpuInstanceGetFrameRateLimit
nvmlVgpuInstanceGetLicenseStatus
nvmlVgpuInstanceGetMdevUUID
nvmlVgpuInstanceGetMetadata
nvmlVgpuInstanceGetType
nvmlVgpuInstanceGetUUID
nvmlVgpuInstanceGetVmDriverVersion
nvmlVgpuInstanceGetVmID
nvmlVgpuInstanceSetEncoderCapacity
nvmlVgpuTypeGetClass
nvmlVgpuTypeGetDeviceID
nvmlVgpuTypeGetFrameRateLimit
nvmlVgpuTypeGetFramebufferSize
nvmlVgpuTypeGetGpuInstanceProfileId
nvmlVgpuTypeGetLicense
nvmlVgpuTypeGetMaxInstances
nvmlVgpuTypeGetMaxInstancesPerVm
nvmlVgpuTypeGetName
nvmlVgpuTypeGetNumDisplayHeads
nvmlVgpuTypeGetResolution
Sections
.text Size: 721KB - Virtual size: 721KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 204KB - Virtual size: 203KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 11KB - Virtual size: 2.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 896B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pandora/pandora.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 175KB - Virtual size: 175KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pandora/pandora.sql
-
Botnets PACK/Pandora/panel/404.php
-
Botnets PACK/Pandora/panel/admin.php
-
Botnets PACK/Pandora/panel/aut.php
-
Botnets PACK/Pandora/panel/config.php
-
Botnets PACK/Pandora/panel/core.php
-
Botnets PACK/Pandora/panel/geo_ip.dat
-
Botnets PACK/Pandora/panel/geo_ip.php
-
Botnets PACK/Pandora/panel/help.php
-
Botnets PACK/Pandora/panel/images/Thumbs.db
-
Botnets PACK/Pandora/panel/images/background.jpg.jpg
-
Botnets PACK/Pandora/panel/images/button.png.png
-
Botnets PACK/Pandora/panel/images/input_text.png.png
-
Botnets PACK/Pandora/panel/images/left_block.png.png
-
Botnets PACK/Pandora/panel/images/logo.png.png
-
Botnets PACK/Pandora/panel/images/menu.png.png
-
Botnets PACK/Pandora/panel/images/right_block.png.png
-
Botnets PACK/Pandora/panel/images/shadow.png.png
-
Botnets PACK/Pandora/panel/images/textarea.png.png
-
Botnets PACK/Pandora/panel/img/afghanistan.png.png
-
Botnets PACK/Pandora/panel/img/albania.png.png
-
Botnets PACK/Pandora/panel/img/algeria.png.png
-
Botnets PACK/Pandora/panel/img/american_samoa.png.png
-
Botnets PACK/Pandora/panel/img/andorra.png.png
-
Botnets PACK/Pandora/panel/img/angola.png.png
-
Botnets PACK/Pandora/panel/img/anguilla.png.png
-
Botnets PACK/Pandora/panel/img/antigua_and_barbuda.png.png
-
Botnets PACK/Pandora/panel/img/argentina.png.png
-
Botnets PACK/Pandora/panel/img/armenia.png.png
-
Botnets PACK/Pandora/panel/img/aruba.png.png
-
Botnets PACK/Pandora/panel/img/australia.png.png
-
Botnets PACK/Pandora/panel/img/austria.png.png
-
Botnets PACK/Pandora/panel/img/azerbaijan.png.png
-
Botnets PACK/Pandora/panel/img/bahamas.png.png
-
Botnets PACK/Pandora/panel/img/bahrain.png.png
-
Botnets PACK/Pandora/panel/img/bangladesh.png.png
-
Botnets PACK/Pandora/panel/img/barbados.png.png
-
Botnets PACK/Pandora/panel/img/belarus.png.png
-
Botnets PACK/Pandora/panel/img/belgium.png.png
-
Botnets PACK/Pandora/panel/img/belize.png.png
-
Botnets PACK/Pandora/panel/img/benin.png.png
-
Botnets PACK/Pandora/panel/img/bermuda.png.png
-
Botnets PACK/Pandora/panel/img/bhutan.png.png
-
Botnets PACK/Pandora/panel/img/bolivia.png.png
-
Botnets PACK/Pandora/panel/img/bosnia_and_herzegovina.png.png
-
Botnets PACK/Pandora/panel/img/botswana.png.png
-
Botnets PACK/Pandora/panel/img/brazil.png.png
-
Botnets PACK/Pandora/panel/img/british_indian_ocean_territory.png.png
-
Botnets PACK/Pandora/panel/img/british_virgin_islands.png.png
-
Botnets PACK/Pandora/panel/img/brunei.png.png
-
Botnets PACK/Pandora/panel/img/bulgaria.png.png
-
Botnets PACK/Pandora/panel/img/burkina_faso.png.png
-
Botnets PACK/Pandora/panel/img/burma.png.png
-
Botnets PACK/Pandora/panel/img/burundi.png.png
-
Botnets PACK/Pandora/panel/img/cambodia.png.png
-
Botnets PACK/Pandora/panel/img/cameroon.png.png
-
Botnets PACK/Pandora/panel/img/canada.png.png
-
Botnets PACK/Pandora/panel/img/cape_verde.png.png
-
Botnets PACK/Pandora/panel/img/cayman_islands.png.png
-
Botnets PACK/Pandora/panel/img/central_african_republic.png.png
-
Botnets PACK/Pandora/panel/img/chad.png.png
-
Botnets PACK/Pandora/panel/img/chile.png.png
-
Botnets PACK/Pandora/panel/img/china.png.png
-
Botnets PACK/Pandora/panel/img/colombia.png.png
-
Botnets PACK/Pandora/panel/img/comoros.png.png
-
Botnets PACK/Pandora/panel/img/congo_republic.png.png
-
Botnets PACK/Pandora/panel/img/cook_islands.png.png
-
Botnets PACK/Pandora/panel/img/costa_rica.png.png
-
Botnets PACK/Pandora/panel/img/cote_divoire.png.png
-
Botnets PACK/Pandora/panel/img/croatia.png.png
-
Botnets PACK/Pandora/panel/img/cuba.png.png
-
Botnets PACK/Pandora/panel/img/cyprus.png.png
-
Botnets PACK/Pandora/panel/img/czech_republic.png.png
-
Botnets PACK/Pandora/panel/img/democratic_republic_congo.png.png
-
Botnets PACK/Pandora/panel/img/denmark.png.png
-
Botnets PACK/Pandora/panel/img/djibouti.png.png
-
Botnets PACK/Pandora/panel/img/dominica.png.png
-
Botnets PACK/Pandora/panel/img/dominican_republic.png.png
-
Botnets PACK/Pandora/panel/img/east_timor.png.png
-
Botnets PACK/Pandora/panel/img/ecuador.png.png
-
Botnets PACK/Pandora/panel/img/egypt.png.png
-
Botnets PACK/Pandora/panel/img/el_salvador.png.png
-
Botnets PACK/Pandora/panel/img/england.png.png
-
Botnets PACK/Pandora/panel/img/english_mini.png.png
-
Botnets PACK/Pandora/panel/img/equatorial_guinea.png.png
-
Botnets PACK/Pandora/panel/img/eritrea.png.png
-
Botnets PACK/Pandora/panel/img/estonia.png.png
-
Botnets PACK/Pandora/panel/img/ethiopia.png.png
-
Botnets PACK/Pandora/panel/img/falkland_islands.png.png
-
Botnets PACK/Pandora/panel/img/faroe_islands.png.png
-
Botnets PACK/Pandora/panel/img/fiji.png.png
-
Botnets PACK/Pandora/panel/img/finland.png.png
-
Botnets PACK/Pandora/panel/img/france.png.png
-
Botnets PACK/Pandora/panel/img/french_polynesia.png.png
-
Botnets PACK/Pandora/panel/img/gabon.png.png
-
Botnets PACK/Pandora/panel/img/gambia.png.png
-
Botnets PACK/Pandora/panel/img/georgia.png.png
-
Botnets PACK/Pandora/panel/img/german_mini.png.png
-
Botnets PACK/Pandora/panel/img/germany.png.png
-
Botnets PACK/Pandora/panel/img/ghana.png.png
-
Botnets PACK/Pandora/panel/img/gibraltar.png.png
-
Botnets PACK/Pandora/panel/img/greece.png.png
-
Botnets PACK/Pandora/panel/img/greenland.png.png
-
Botnets PACK/Pandora/panel/img/grenada.png.png
-
Botnets PACK/Pandora/panel/img/guam.png.png
-
Botnets PACK/Pandora/panel/img/guatemala.png.png
-
Botnets PACK/Pandora/panel/img/guernsey.png.png
-
Botnets PACK/Pandora/panel/img/guinea.png.png
-
Botnets PACK/Pandora/panel/img/guinea_bissau.png.png
-
Botnets PACK/Pandora/panel/img/guyana.png.png
-
Botnets PACK/Pandora/panel/img/haiti.png.png
-
Botnets PACK/Pandora/panel/img/honduras.png.png
-
Botnets PACK/Pandora/panel/img/hong_kong.png.png
-
Botnets PACK/Pandora/panel/img/hungary.png.png
-
Botnets PACK/Pandora/panel/img/iceland.png.png
-
Botnets PACK/Pandora/panel/img/index.php
-
Botnets PACK/Pandora/panel/img/india.png.png
-
Botnets PACK/Pandora/panel/img/indonesia.png.png
-
Botnets PACK/Pandora/panel/img/iran.png.png
-
Botnets PACK/Pandora/panel/img/iraq.png.png
-
Botnets PACK/Pandora/panel/img/ireland.png.png
-
Botnets PACK/Pandora/panel/img/isle_of_man.png.png
-
Botnets PACK/Pandora/panel/img/israel.png.png
-
Botnets PACK/Pandora/panel/img/italy.png.png
-
Botnets PACK/Pandora/panel/img/jamaica.png.png
-
Botnets PACK/Pandora/panel/img/japan.png.png
-
Botnets PACK/Pandora/panel/img/jersey.png.png
-
Botnets PACK/Pandora/panel/img/jordan.png.png
-
Botnets PACK/Pandora/panel/img/kazakhstan.png.png
-
Botnets PACK/Pandora/panel/img/kenya.png.png
-
Botnets PACK/Pandora/panel/img/kiribati.png.png
-
Botnets PACK/Pandora/panel/img/kuwait.png.png
-
Botnets PACK/Pandora/panel/img/kyrgyzstan.png.png
-
Botnets PACK/Pandora/panel/img/laos.png.png
-
Botnets PACK/Pandora/panel/img/latvia.png.png
-
Botnets PACK/Pandora/panel/img/lebanon.png.png
-
Botnets PACK/Pandora/panel/img/lesotho.png.png
-
Botnets PACK/Pandora/panel/img/liberia.png.png
-
Botnets PACK/Pandora/panel/img/libya.png.png
-
Botnets PACK/Pandora/panel/img/liechtenstein.png.png
-
Botnets PACK/Pandora/panel/img/lithuania.png.png
-
Botnets PACK/Pandora/panel/img/luxembourg.png.png
-
Botnets PACK/Pandora/panel/img/macau.png.png
-
Botnets PACK/Pandora/panel/img/macedonia.png.png
-
Botnets PACK/Pandora/panel/img/madagascar.png.png
-
Botnets PACK/Pandora/panel/img/malawi.png.png
-
Botnets PACK/Pandora/panel/img/malaysia.png.png
-
Botnets PACK/Pandora/panel/img/maledives.png.png
-
Botnets PACK/Pandora/panel/img/mali.png.png
-
Botnets PACK/Pandora/panel/img/malta.png.png
-
Botnets PACK/Pandora/panel/img/marshall_islands.png.png
-
Botnets PACK/Pandora/panel/img/martinique.png.png
-
Botnets PACK/Pandora/panel/img/mauretania.png.png
-
Botnets PACK/Pandora/panel/img/mauritius.png.png
-
Botnets PACK/Pandora/panel/img/mexico.png.png
-
Botnets PACK/Pandora/panel/img/micronesia.png.png
-
Botnets PACK/Pandora/panel/img/moldova.png.png
-
Botnets PACK/Pandora/panel/img/monaco.png.png
-
Botnets PACK/Pandora/panel/img/mongolia.png.png
-
Botnets PACK/Pandora/panel/img/montserrat.png.png
-
Botnets PACK/Pandora/panel/img/morocco.png.png
-
Botnets PACK/Pandora/panel/img/mozambique.png.png
-
Botnets PACK/Pandora/panel/img/namibia.png.png
-
Botnets PACK/Pandora/panel/img/nauru.png.png
-
Botnets PACK/Pandora/panel/img/nepal.png.png
-
Botnets PACK/Pandora/panel/img/netherlands.png.png
-
Botnets PACK/Pandora/panel/img/netherlands_antilles.png.png
-
Botnets PACK/Pandora/panel/img/new_zealand.png.png
-
Botnets PACK/Pandora/panel/img/nicaragua.png.png
-
Botnets PACK/Pandora/panel/img/niger.png.png
-
Botnets PACK/Pandora/panel/img/nigeria.png.png
-
Botnets PACK/Pandora/panel/img/niue.png.png
-
Botnets PACK/Pandora/panel/img/norfolk_island.png.png
-
Botnets PACK/Pandora/panel/img/north_korea.png.png
-
Botnets PACK/Pandora/panel/img/northern_mariana_islands.png.png
-
Botnets PACK/Pandora/panel/img/norway.png.png
-
Botnets PACK/Pandora/panel/img/oman.png.png
-
Botnets PACK/Pandora/panel/img/pakistan.png.png
-
Botnets PACK/Pandora/panel/img/palau.png.png
-
Botnets PACK/Pandora/panel/img/panama.png.png
-
Botnets PACK/Pandora/panel/img/papua_new_guinea.png.png
-
Botnets PACK/Pandora/panel/img/paraguay.png.png
-
Botnets PACK/Pandora/panel/img/peru.png.png
-
Botnets PACK/Pandora/panel/img/philippines.png.png
-
Botnets PACK/Pandora/panel/img/pitcairn_islands.png.png
-
Botnets PACK/Pandora/panel/img/poland.png.png
-
Botnets PACK/Pandora/panel/img/portugal.png.png
-
Botnets PACK/Pandora/panel/img/puerto_rico.png.png
-
Botnets PACK/Pandora/panel/img/qatar.png.png
-
Botnets PACK/Pandora/panel/img/question.png.png
-
Botnets PACK/Pandora/panel/img/romania.png.png
-
Botnets PACK/Pandora/panel/img/russia.png.png
-
Botnets PACK/Pandora/panel/img/russian.png.png
-
Botnets PACK/Pandora/panel/img/russian_mini.png.png
-
Botnets PACK/Pandora/panel/img/rwanda.png.png
-
Botnets PACK/Pandora/panel/img/saint_helena.png.png
-
Botnets PACK/Pandora/panel/img/saint_kitts_and_nevis.png.png
-
Botnets PACK/Pandora/panel/img/saint_lucia.png.png
-
Botnets PACK/Pandora/panel/img/saint_pierre_and_miquelon.png.png
-
Botnets PACK/Pandora/panel/img/saint_vincent_and_the_grenadines.png.png
-
Botnets PACK/Pandora/panel/img/samoa.png.png
-
Botnets PACK/Pandora/panel/img/san_marino.png.png
-
Botnets PACK/Pandora/panel/img/sao_tome_and_principe.png.png
-
Botnets PACK/Pandora/panel/img/saudi_arabia.png.png
-
Botnets PACK/Pandora/panel/img/scotland.png.png
-
Botnets PACK/Pandora/panel/img/senegal.png.png
-
Botnets PACK/Pandora/panel/img/serbia_montenegro.png.png
-
Botnets PACK/Pandora/panel/img/seychelles.png.png
-
Botnets PACK/Pandora/panel/img/sierra_leone.png.png
-
Botnets PACK/Pandora/panel/img/singapore.png.png
-
Botnets PACK/Pandora/panel/img/slovakia.png.png
-
Botnets PACK/Pandora/panel/img/slovenia.png.png
-
Botnets PACK/Pandora/panel/img/solomon_islands.png.png
-
Botnets PACK/Pandora/panel/img/somalia.png.png
-
Botnets PACK/Pandora/panel/img/south_africa.png.png
-
Botnets PACK/Pandora/panel/img/south_georgia.png.png
-
Botnets PACK/Pandora/panel/img/south_korea.png.png
-
Botnets PACK/Pandora/panel/img/spain.png.png
-
Botnets PACK/Pandora/panel/img/sri_lanka.png.png
-
Botnets PACK/Pandora/panel/img/sudan.png.png
-
Botnets PACK/Pandora/panel/img/suriname.png.png
-
Botnets PACK/Pandora/panel/img/swaziland.png.png
-
Botnets PACK/Pandora/panel/img/sweden.png.png
-
Botnets PACK/Pandora/panel/img/switzerland.png.png
-
Botnets PACK/Pandora/panel/img/syria.png.png
-
Botnets PACK/Pandora/panel/img/taiwan.png.png
-
Botnets PACK/Pandora/panel/img/tajikistan.png.png
-
Botnets PACK/Pandora/panel/img/tanzania.png.png
-
Botnets PACK/Pandora/panel/img/thailand.png.png
-
Botnets PACK/Pandora/panel/img/tibet.png.png
-
Botnets PACK/Pandora/panel/img/togo.png.png
-
Botnets PACK/Pandora/panel/img/tonga.png.png
-
Botnets PACK/Pandora/panel/img/trinidad_and_tobago.png.png
-
Botnets PACK/Pandora/panel/img/tunisia.png.png
-
Botnets PACK/Pandora/panel/img/turkey.png.png
-
Botnets PACK/Pandora/panel/img/turkmenistan.png.png
-
Botnets PACK/Pandora/panel/img/turks_and_caicos_islands.png.png
-
Botnets PACK/Pandora/panel/img/tuvalu.png.png
-
Botnets PACK/Pandora/panel/img/uganda.png.png
-
Botnets PACK/Pandora/panel/img/ukraine.png.png
-
Botnets PACK/Pandora/panel/img/united_arab_emirates.png.png
-
Botnets PACK/Pandora/panel/img/united_kingdom.png.png
-
Botnets PACK/Pandora/panel/img/uruguay.png.png
-
Botnets PACK/Pandora/panel/img/usa.png.png
-
Botnets PACK/Pandora/panel/img/uzbekistan.png.png
-
Botnets PACK/Pandora/panel/img/vanuatu.png.png
-
Botnets PACK/Pandora/panel/img/vatican_city.png.png
-
Botnets PACK/Pandora/panel/img/venezuela.png.png
-
Botnets PACK/Pandora/panel/img/vietnam.png.png
-
Botnets PACK/Pandora/panel/img/virgin_islands.png.png
-
Botnets PACK/Pandora/panel/img/wales.png.png
-
Botnets PACK/Pandora/panel/img/wallis_and_futuna.png.png
-
Botnets PACK/Pandora/panel/img/yemen.png.png
-
Botnets PACK/Pandora/panel/img/zambia.png.png
-
Botnets PACK/Pandora/panel/img/zimbabwe.png.png
-
Botnets PACK/Pandora/panel/index.php
-
Botnets PACK/Pandora/panel/information.php
-
Botnets PACK/Pandora/panel/login.php
-
Botnets PACK/Pandora/panel/m_d.php
-
Botnets PACK/Pandora/panel/style.css
-
Botnets PACK/Pandora/rdpcorets.dll.dll regsvr32 windows:10 windows x64 arch:x64
a18681cf7fc4526bce25b48ecb511ef1
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
RdpCoreTS.pdb
Imports
msvcrt
fclose
_wcsnicmp
floorf
log
wcsncmp
swprintf_s
wprintf
vswprintf_s
wcscpy_s
_CxxThrowException
_vsnwprintf
isalpha
swscanf
_amsg_exit
_aligned_free
_wcsicmp
fwrite
fprintf
malloc
free
wcscat_s
wcsnlen
_callnewh
_purecall
printf
ceilf
_wfopen
_strnicmp
calloc
?terminate@@YAXXZ
memcmp
memcpy
_lock
_XcptFilter
??1exception@@UEAA@XZ
??0exception@@QEAA@AEBV0@@Z
_vsnprintf_s
??0exception@@QEAA@XZ
strncpy_s
strnlen
sprintf_s
qsort
??1type_info@@UEAA@XZ
_initterm
__CxxFrameHandler3
wcschr
wcsncpy_s
memcpy_s
wcsrchr
memmove_s
_stricmp
_unlock
__dllonexit
memmove
memset
_wtoi
__C_specific_handler
_onexit
sqrt
_wfopen_s
_errno
pow
sqrtf
vsprintf_s
realloc
_aligned_malloc
wcscmp
oleaut32
UnRegisterTypeLi
LoadTypeLi
SysStringLen
SysFreeString
RegisterTypeLi
VarUI4FromStr
VariantCopy
VariantClear
SysAllocStringByteLen
VariantInit
SysAllocString
SysStringByteLen
api-ms-win-core-synch-l1-1-0
CreateEventW
EnterCriticalSection
SetEvent
WaitForMultipleObjectsEx
ReleaseSemaphore
InitializeSRWLock
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
InitializeCriticalSectionEx
InitializeCriticalSectionAndSpinCount
ReleaseMutex
WaitForSingleObjectEx
AcquireSRWLockExclusive
AcquireSRWLockShared
ResetEvent
CreateSemaphoreExW
CreateMutexExW
OpenSemaphoreW
ReleaseSRWLockExclusive
ReleaseSRWLockShared
api-ms-win-core-errorhandling-l1-1-0
SetErrorMode
SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError
RaiseException
api-ms-win-core-processthreads-l1-1-0
SuspendThread
GetExitCodeThread
GetCurrentProcessId
TerminateProcess
CreateThread
GetCurrentThreadId
ResumeThread
GetCurrentProcess
api-ms-win-core-synch-l1-2-0
SleepConditionVariableCS
WakeAllConditionVariable
SleepConditionVariableSRW
Sleep
InitializeConditionVariable
api-ms-win-core-handle-l1-1-0
CloseHandle
api-ms-win-core-libraryloader-l1-2-0
GetProcAddress
LoadResource
GetModuleHandleExW
GetModuleHandleExA
DisableThreadLibraryCalls
FindResourceExW
FreeLibrary
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameA
GetModuleFileNameW
SizeofResource
api-ms-win-core-registry-l1-1-0
RegEnumValueW
RegCreateKeyExW
RegEnumKeyExW
RegFlushKey
RegSetValueExW
RegOpenKeyExW
RegDeleteValueW
RegQueryInfoKeyW
RegGetValueW
RegNotifyChangeKeyValue
RegCloseKey
RegQueryValueExW
api-ms-win-core-com-l1-1-0
CLSIDFromString
PropVariantClear
CoCreateGuid
CoCreateInstance
CoTaskMemRealloc
StringFromGUID2
IIDFromString
PropVariantCopy
CoTaskMemAlloc
CoTaskMemFree
api-ms-win-core-sysinfo-l1-2-0
VerSetConditionMask
api-ms-win-core-kernel32-legacy-l1-1-1
VerifyVersionInfoW
api-ms-win-eventing-classicprovider-l1-1-0
GetTraceEnableLevel
GetTraceLoggerHandle
TraceMessage
GetTraceEnableFlags
UnregisterTraceGuids
RegisterTraceGuidsW
api-ms-win-service-management-l1-1-0
StartServiceW
OpenServiceW
OpenSCManagerW
CloseServiceHandle
api-ms-win-eventing-provider-l1-1-0
EventWriteTransfer
EventSetInformation
EventWrite
EventUnregister
EventRegister
EventActivityIdControl
ws2_32
closesocket
iphlpapi
GetAdapterIndex
api-ms-win-core-libraryloader-l1-2-1
LoadLibraryW
api-ms-win-core-file-l1-1-0
FindClose
GetFileAttributesW
FindNextFileW
FindFirstFileW
ReadFile
CreateDirectoryW
WriteFile
SetFilePointerEx
ReadFileEx
DeleteFileW
WriteFileEx
GetTempFileNameW
GetFileInformationByHandle
CreateFileW
api-ms-win-core-kernel32-legacy-l1-1-0
RegisterWaitForSingleObject
WTSGetActiveConsoleSessionId
MoveFileW
BindIoCompletionCallback
ntdll
RtlNtStatusToDosError
RtlInitializeGenericTable
RtlEnumerateGenericTable
RtlDeleteElementGenericTable
WinSqmAddToStream
WinSqmSetDWORD
WinSqmEndSession
WinSqmStartSession
WinSqmIsOptedIn
RtlIpv4StringToAddressW
RtlInitUnicodeString
NtCreateFile
RtlLookupElementGenericTable
RtlInsertElementGenericTable
NtQuerySystemInformation
RtlIpv6StringToAddressW
api-ms-win-core-io-l1-1-0
GetOverlappedResult
CancelIoEx
DeviceIoControl
api-ms-win-core-threadpool-legacy-l1-1-0
ChangeTimerQueueTimer
DeleteTimerQueueTimer
UnregisterWaitEx
CreateTimerQueueTimer
api-ms-win-core-heap-l2-1-0
LocalFree
GlobalFree
LocalAlloc
GlobalAlloc
api-ms-win-security-sddl-l1-1-0
ConvertStringSecurityDescriptorToSecurityDescriptorW
api-ms-win-security-trustee-l1-1-0
BuildTrusteeWithSidW
BuildSecurityDescriptorW
api-ms-win-security-base-l1-1-0
AllocateAndInitializeSid
EqualSid
CreateWellKnownSid
FreeSid
SetSecurityDescriptorDacl
GetSecurityDescriptorLength
AccessCheckAndAuditAlarmW
InitializeSecurityDescriptor
MakeSelfRelativeSD
ImpersonateLoggedOnUser
RevertToSelf
api-ms-win-core-string-l1-1-0
WideCharToMultiByte
MultiByteToWideChar
CompareStringW
api-ms-win-core-heap-l1-1-0
GetProcessHeap
HeapFree
HeapAlloc
api-ms-win-core-localization-l1-2-0
FormatMessageW
GetCPInfo
IsDBCSLeadByte
api-ms-win-core-debug-l1-1-0
DebugBreak
OutputDebugStringW
IsDebuggerPresent
OutputDebugStringA
api-ms-win-core-rtlsupport-l1-1-0
RtlLookupFunctionEntry
RtlCompareMemory
RtlCaptureContext
RtlVirtualUnwind
api-ms-win-core-threadpool-l1-2-0
WaitForThreadpoolTimerCallbacks
CreateThreadpoolTimer
CloseThreadpoolTimer
SetThreadpoolTimer
api-ms-win-core-sysinfo-l1-1-0
GetTickCount
GetSystemTimeAsFileTime
GetSystemDirectoryW
GetSystemTime
GetTickCount64
api-ms-win-security-isolatedcontainer-l1-1-1
IsProcessInWDAGContainer
api-ms-win-core-synch-l1-2-1
WaitForMultipleObjects
crypt32
CryptProtectMemory
CryptUnprotectMemory
api-ms-win-core-string-l2-1-0
CharNextW
api-ms-win-core-string-obsolete-l1-1-0
lstrcmpiW
api-ms-win-core-stringansi-l1-1-0
CharNextA
CharPrevA
api-ms-win-core-processenvironment-l1-1-0
ExpandEnvironmentStringsW
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
QueryPerformanceFrequency
pdh
PdhCollectQueryData
PdhAddCounterW
PdhOpenQueryW
PdhCloseQuery
PdhGetRawCounterValue
user32
UnionRect
LoadCursorW
DispatchMessageW
GetWindowThreadProcessId
GetMessageW
UnregisterDeviceNotification
IsClipboardFormatAvailable
UnregisterClassW
RegisterDeviceNotificationW
UnregisterClassA
CreateWindowExW
RegisterClassW
CopyRect
SetRect
GetClipboardFormatNameW
PostMessageW
SetWindowLongPtrW
RegisterClipboardFormatW
SendMessageW
GetWindowLongPtrW
DefWindowProcW
DestroyWindow
regapi
RegWinstationQuerySecurityConfig_Merged
rfxvmt
RfxVmtCloseChannel
RfxVmtWriteChannel
RfxVmtReadChannel
RfxVmtCreateChannel
RfxVmtGetDataAvailableEvent
rdpbase
RDPBASE_CreateInstance
?RdpPerfLoggerStaticTerminate@@YAXXZ
RDPServerStackDiagnostics_Unregister
?RdpPerfLoggerStaticInitialize@@YAXXZ
RDPServerStackDiagnostics_Register
RdpX_Threading_CreateCriticalSection
PAL_System_Sleep
RdpX_AtomicDecrement32
RdpX_AtomicIncrement32
PAL_System_AtomicCompareAndExchangePointer
RDPServerStackDiagnostics_LogDisconnect
RDPServerStackDiagnostics_LogFailure
RDPServerStackDiagnostics_LogCheckpoint
RDPWSStreamConnector_CreateInstance
PAL_System_CritSecInit
RDPENCORE_AddGlobalObject
PAL_System_SwitchToThread
RDPAPI_GetGlobalObject
PAL_System_AtomicCompareAndExchange
TSCreateCoreEvents
RDPENCHLPREG_ReadValueDWORD
PAL_System_CritSecLeave
PAL_System_CritSecEnter
PAL_System_AtomicIncrement
PAL_System_AtomicDecrement
PAL_System_CritSecTerminate
TSAlloc
TSFree
PAL_System_CritSecIsLockedByCurrentThread
TRC_TraceBufferW
MemCopyAligned_SSE
MemMoveReverseAligned_SSE
GetSupportedSSELevel_SSE
PAL_System_GetNumberOfProcessors
?NSRunLengthDecode@@YAKPEBEKPEAEK@Z
PAL_System_MemFree
RdpX_GetActivityIdPrefix
RgnlibBA_CreateInstance
RDPAPI_GetGenericCounter
CRDPCaps_CreateInstance
PAL_System_CritSecTryEnter
RDPAPI_GetLongCounter
PAL_System_ThreadGetId
PAL_System_MemAlloc
rdpserverbase
?GetGfxPipeSettingBOOL@@YAJPEAGHPEAH@Z
?LogRDPGraphicsFirstNonBlackFramePostLogon@RDPGraphicsTraceLogging@@YAXI@Z
RDPSERVERBASE_CreateInstance
?LogRDPGraphicsFirstNonBlackFrame@RDPGraphicsTraceLogging@@YAX_K@Z
?LogRDPGraphicsError@RDPGraphicsTraceLogging@@YAXU_GUID@@IIJ@Z
?LogRDPGraphicsSubsampleFailure@RDPGraphicsTraceLogging@@YAXJI@Z
?GetGraphicsSourceContext@RdpSurface@@QEAAJPEAPEAUIRdpGFXSourceUpdateContext@@@Z
RDPEncryptionTraceLogging_Register
?RDPGraphicsTraceLogging_Unregister@RDPGraphicsTraceLogging@@YAXXZ
RDPEncryptionTraceLogging_Unregister
?LogRDPGraphicsVOBRHint@RDPGraphicsTraceLogging@@YAXI_KII@Z
?LogRDPGraphicsSubsampleAdapter@RDPGraphicsTraceLogging@@YAXPEBGII@Z
?GetEncodingPixelMap@RdpSurface@@QEAAJPEAPEAVPixelMap@@@Z
?RDPGraphicsTraceLogging_Register@RDPGraphicsTraceLogging@@YAJXZ
?GetGfxPipeSettingUINT@@YAJPEAGIPEAI@Z
api-ms-win-security-provider-l1-1-0
GetSecurityInfo
SetEntriesInAclW
rpcrt4
RpcBindingSetOption
RpcBindingFree
RpcBindingFromStringBindingW
RpcStringBindingComposeW
RpcStringFreeW
RpcBindingSetAuthInfoExW
UuidCreate
I_RpcExceptionFilter
UuidToStringW
NdrClientCall3
api-ms-win-core-namedpipe-l1-1-0
CreateNamedPipeW
ConnectNamedPipe
WaitNamedPipeW
PeekNamedPipe
DisconnectNamedPipe
SetNamedPipeHandleState
api-ms-win-core-shlwapi-legacy-l1-1-0
PathUnquoteSpacesW
PathGetDriveNumberW
PathQuoteSpacesW
PathSkipRootW
PathIsUNCW
PathFindExtensionW
api-ms-win-core-url-l1-1-0
UrlIsW
userenv
ExpandEnvironmentStringsForUserW
api-ms-win-core-perfcounters-l1-1-0
PerfDeleteInstance
PerfIncrementULongCounterValue
PerfSetCounterSetInfo
PerfCreateInstance
PerfStartProviderEx
PerfStopProvider
PerfSetULongCounterValue
api-ms-win-eventing-controller-l1-1-0
EnableTraceEx2
ControlTraceW
StartTraceW
api-ms-win-core-comm-l1-1-0
SetCommTimeouts
api-ms-win-core-io-l1-1-1
CancelIo
api-ms-win-core-memory-l1-1-0
OpenFileMappingW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
api-ms-win-core-processthreads-l1-1-1
IsProcessorFeaturePresent
OpenProcess
gdi32
GetObjectW
DeleteObject
CreatePalette
GetMetaFileBitsEx
GetStockObject
GetPaletteEntries
SetMetaFileBitsEx
CreateMetaFileW
PlayMetaFile
CloseMetaFile
DeleteMetaFile
d3d11
D3D11CreateDevice
tlscsp
ord1
ord3
ord4
ord7
ord2
api-ms-win-core-heap-obsolete-l1-1-0
GlobalUnlock
GlobalSize
GlobalLock
api-ms-win-core-psapi-l1-1-0
K32GetModuleFileNameExW
api-ms-win-core-winrt-l1-1-0
RoGetActivationFactory
api-ms-win-core-winrt-string-l1-1-0
WindowsDeleteString
WindowsCreateStringReference
api-ms-win-core-delayload-l1-1-1
ResolveDelayLoadedAPI
api-ms-win-core-delayload-l1-1-0
DelayLoadFailureHook
api-ms-win-core-path-l1-1-0
PathCchCanonicalize
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
RFX_CreateGFXService
RFX_CreatePluginFactory
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 235KB - Virtual size: 235KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 33KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 184B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 62KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pandora/xpinstal/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pandora/xpinstal/LICENCE.dat.zip
-
Botnets PACK/Pandora/xpinstal/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pandora/xpinstal/Panel_admin.PNG.png
-
Botnets PACK/Pandora/xpinstal/pandora.sql
-
Botnets PACK/Pandora/xpinstal/sxs.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 150KB - Virtual size: 149KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 6KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 12B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/Config.inc
-
Botnets PACK/Pony 1.9/Help.txt
-
Botnets PACK/Pony 1.9/Pony.ini
-
Botnets PACK/Pony 1.9/PonyBuilder.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 178KB - Virtual size: 178KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/PonySrc/3DES/3DES.ppj
-
Botnets PACK/Pony 1.9/PonySrc/3DES/3DES.ppx.xml
-
Botnets PACK/Pony 1.9/PonySrc/3DES/3DES.tag
-
Botnets PACK/Pony 1.9/PonySrc/3DES/d3des.c
-
Botnets PACK/Pony 1.9/PonySrc/3DES/d3des.h
-
Botnets PACK/Pony 1.9/PonySrc/Crypto.asm
-
Botnets PACK/Pony 1.9/PonySrc/NetCode.asm
-
Botnets PACK/Pony 1.9/PonySrc/PasswordModules.asm
-
Botnets PACK/Pony 1.9/PonySrc/Pony.asm
-
Botnets PACK/Pony 1.9/PonySrc/Pony.rc
-
Botnets PACK/Pony 1.9/PonySrc/Utils.asm.vbs
-
Botnets PACK/Pony 1.9/PonySrc/WordList.asm
-
Botnets PACK/Pony 1.9/build.bat
-
Botnets PACK/Pony 1.9/ctypes.jsm.js
-
Botnets PACK/Pony 1.9/masm32/bin/brcc32.exe.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Exports
Exports
@EVENTMGRINIT$QUL
__DebuggerHookData
__GetExceptDLLinfo
Sections
CODE Size: 42KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/masm32/bin/cvtres.exe.exe windows:5 windows x86 arch:x86
30333ef5a2dd21199d66d4427807be6f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
msvcrt
time
_tzset
fclose
_fsopen
_makepath
_splitpath
_strnicmp
_stricmp
calloc
free
fread
ftell
fseek
fwrite
vprintf
wcscmp
fprintf
puts
printf
strncpy
sprintf
_exit
_XcptFilter
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
exit
__p__iob
_chsize
kernel32
LoadLibraryA
GetProcAddress
Sections
.text Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/masm32/bin/cw3220mt.dll.dll windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
Exports
Exports
@$badd$qpxcrx6string
@$bdele$qpv
@$bdiv$qdr7complex
@$bdiv$qr7complext1
@$bdla$qpv
@$blsh$qr7ostreamr3bcd
@$blsh$qr7ostreamr7complex
@$blsh$qr7ostreamrx6string
@$bmul$qr7complext1
@$bnew$qui
@$bnew$quipv
@$bnwa$qui
@$bnwa$quipv
@$brsh$qr7istreamr3bcd
@$brsh$qr7istreamr6string
@$brsh$qr7istreamr7complex
@TDiagBase@Message$qpxct1t1t1ul
@TDiagBase@Out
@TDiagBase@Output$qpxc
@TDiagBase@Trace$qpxct1t1ul
@TDiagBase@Warn$qpxct1t1ul
@TDiagGroupDef@Flags
@TDiagGroupDef@Name
@TDiagGroupDef@Trace$qucpxct2ul
@TDiagGroupDef@Warn$qucpxct2ul
@TRegexp@$basg$qpxc
@TRegexp@$basg$qrx7TRegexp
@TRegexp@$bctr$qpxc
@TRegexp@$bctr$qrx7TRegexp
@TRegexp@$bdtr$qv
@TRegexp@copy_pattern$qrx7TRegexp
@TRegexp@find$xqrx6stringpuiui
@TRegexp@gen_pattern$qpxc
@TRegexp@maxpat
@TRegexp@status$qv
@TStringRef@$bctr$qcui
@TStringRef@$bctr$qp11HINSTANCE__uii
@TStringRef@$bctr$qpxcuit1uiui
@TStringRef@$bdtr$qv
@TStringRef@check_freeboard$qv
@TStringRef@grow_to$qui
@TStringRef@read_to_delim$qr7istreamc
@TStringRef@read_token$qr7istream
@TStringRef@reserve$qui
@TStringRef@round_capacity$qui
@TStringRef@splice$quiuipxcui
@TSubString@$basg$qrx6string
@TSubString@$bcall$qui
@TSubString@$beql$xqpxc
@TSubString@assert_element$xqui
@TSubString@to_lower$qv
@TSubString@to_upper$qv
@_CatchCleanup$qv
@_ReThrowException$quipuc
@_ThrowException$qpvt1t1t1uiuiuipuc
@__DynamicCast$qpvt1t1t1i
@__GetTypeInfo$qpvt1t1t1
@__ThrowExceptionName$qv
@__ThrowFileName$qv
@__ThrowLineNumber$qv
@__lockDebuggerData$qv
@__unlockDebuggerData$qv
@_cast_memptr$qpvt1uiuiui
@_vector_apply_$qpvt1uiuiuit1
@_vector_vapply_$qpvt1uiuiuit1
@abs$qr7complex
@acos$qr7complex
@arg$qr7complex
@asin$qr7complex
@atan$qr7complex
@complex@$brdiv$qr7complex
@complex@$brmul$qr7complex
@conbuf@$bctr$qv
@conbuf@current
@conbuf@makeActive$qv
@conbuf@makeInactive$qv
@conbuf@overflow$qi
@conbuf@swap$qv
@constream@$bctr$qv
@constream@isCon_
@cos$qr7complex
@cosh$qr7complex
@dec$qr3ios
@endl$qr7ostream
@ends$qr7ostream
@exp$qr7complex
@filebuf@$bctr$qi
@filebuf@$bctr$qipci
@filebuf@$bctr$qv
@filebuf@$bdtr$qv
@filebuf@attach$qi
@filebuf@close$qv
@filebuf@lock$qv
@filebuf@open$qpxcii
@filebuf@openprot
@filebuf@overflow$qi
@filebuf@seekoff$ql12ios@seek_diri
@filebuf@setbuf$qpci
@filebuf@sync$qv
@filebuf@underflow$qv
@filebuf@unlock$qv
@flush$qr7ostream
@fstream@$bctr$qi
@fstream@$bctr$qipci
@fstream@$bctr$qpxcii
@fstream@$bctr$qv
@fstream@$bdtr$qv
@fstreambase@$bctr$qi
@fstreambase@$bctr$qipci
@fstreambase@$bctr$qpxcii
@fstreambase@$bctr$qv
@fstreambase@$bdtr$qv
@fstreambase@attach$qi
@fstreambase@close$qv
@fstreambase@open$qpxcii
@fstreambase@setbuf$qpci
@getline$qr7istreamr6string
@getline$qr7istreamr6stringc
@hex$qr3ios
@ifstream@$bctr$qi
@ifstream@$bctr$qipci
@ifstream@$bctr$qpxcii
@ifstream@$bctr$qv
@ifstream@$bdtr$qv
@ios@$bctr$qp9streambuf
@ios@$bctr$qv
@ios@$bdtr$qv
@ios@adjustfield
@ios@basefield
@ios@bitalloc$qv
@ios@clear$qi
@ios@flags$ql
@ios@floatfield
@ios@init$qp9streambuf
@ios@iword$qi
@ios@nextbit
@ios@pword$qi
@ios@setf$ql
@ios@setf$qll
@ios@setstate$qi
@ios@skip$qi
@ios@stdioflush
@ios@sync_with_stdio$qv
@ios@tie$qp7ostream
@ios@unsetf$ql
@ios@usercount
@ios@usersize$qi
@ios@xalloc$qv
@iostream@$bctr$qp9streambuf
@iostream@$bctr$qv
@iostream@$bdtr$qv
@iostream_withassign@$basg$qp9streambuf
@iostream_withassign@$basg$qr3ios
@iostream_withassign@$bctr$qv
@iostream_withassign@$bdtr$qv
@istream@$bctr$qiip7ostream
@istream@$bctr$qipci
@istream@$bctr$qp9streambuf
@istream@$bctr$qp9streambufip7ostream
@istream@$bctr$qv
@istream@$bdtr$qv
@istream@$brsh$qp9streambuf
@istream@$brsh$qpc
@istream@$brsh$qpqr3ios$r3ios
@istream@$brsh$qr4bool
@istream@$brsh$qrc
@istream@$brsh$qrd
@istream@$brsh$qrf
@istream@$brsh$qrg
@istream@$brsh$qri
@istream@$brsh$qrl
@istream@$brsh$qrs
@istream@$brsh$qruc
@istream@$brsh$qrui
@istream@$brsh$qrul
@istream@$brsh$qrus
@istream@$brsh$qrzc
@istream@do_get$qv
@istream@eatwhite$qv
@istream@get$qpcic
@istream@get$qr9streambufc
@istream@get$qrc
@istream@get$qruc
@istream@get$qrzc
@istream@get$qv
@istream@getline$qpcic
@istream@ignore$qii
@istream@ipfx$qi
@istream@putback$qc
@istream@read$qpci
@istream@seekg$ql
@istream@seekg$ql12ios@seek_dir
@istream@tellg$qv
@istream_withassign@$basg$qp9streambuf
@istream_withassign@$basg$qr7istream
@istream_withassign@$bctr$qv
@istream_withassign@$bdtr$qv
@istrstream@$bctr$qpc
@istrstream@$bctr$qpci
@istrstream@$bctr$qpuc
@istrstream@$bctr$qpuci
@istrstream@$bctr$qpzc
@istrstream@$bctr$qpzci
@istrstream@$bdtr$qv
@lock$qr3ios
@log$qr7complex
@log10$qr7complex
@norm$qr7complex
@oct$qr3ios
@ofstream@$bctr$qi
@ofstream@$bctr$qipci
@ofstream@$bctr$qpxcii
@ofstream@$bctr$qv
@ofstream@$bdtr$qv
@ostream@$bctr$qi
@ostream@$bctr$qipc
@ostream@$bctr$qp9streambuf
@ostream@$bctr$qv
@ostream@$bdtr$qv
@ostream@$blsh$q4bool
@ostream@$blsh$qc
@ostream@$blsh$qg
@ostream@$blsh$ql
@ostream@$blsh$qp9streambuf
@ostream@$blsh$qpqr3ios$r3ios
@ostream@$blsh$qpv
@ostream@$blsh$qul
@ostream@do_opfx$qv
@ostream@do_osfx$qv
@ostream@flush$qv
@ostream@outstr$qpxct1
@ostream@seekp$ql
@ostream@seekp$ql12ios@seek_dir
@ostream@tellp$qv
@ostream@write$qpxci
@ostream_withassign@$basg$qp9streambuf
@ostream_withassign@$basg$qr7ostream
@ostream_withassign@$bctr$qv
@ostream_withassign@$bdtr$qv
@ostrstream@$bctr$qpcii
@ostrstream@$bctr$qpucii
@ostrstream@$bctr$qpzcii
@ostrstream@$bctr$qv
@ostrstream@$bdtr$qv
@pow$qdr7complex
@pow$qr7complexd
@pow$qr7complext1
@resetiosflags$ql
@set_new_handler$qpqv$v
@setbase$qi
@setfill$qi
@setiosflags$ql
@setprecision$qi
@setw$qi
@sin$qr7complex
@sinh$qr7complex
@sqrt$qr7complex
@std@$blsh$qr7ostreamrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%
@std@$brsh$qr7istreamr74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$basg$qc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$basg$qpxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$basg$qrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$bctr$qpxcrx18std@%allocator$tc%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$bctr$qpxct1rx18std@%allocator$tc%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$bctr$qpxcuirx18std@%allocator$tc%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$bctr$qrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%uiuirx18std@%allocator$tc%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$bctr$quicrx18std@%allocator$tc%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$brplu$qc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$brplu$qpxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$brplu$qrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@$bsubs$qui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@append$qpxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@append$qpxct1
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@append$qpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@append$qrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%uiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@assign$qpxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@assign$qpxct1
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@assign$qpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@assign$qrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%uiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@assign$quic
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@at$qui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@at$xqui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@c_str$xqv
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@capacity$xqv
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@clobber$qui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@compare$xqpcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@compare$xqpcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@compare$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%uiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@copy$qpcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@copy$xqv
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find$xqcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find$xqpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find$xqpxcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%ui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_not_of$xqcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_not_of$xqpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_not_of$xqpxcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_not_of$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%ui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_of$xqcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_of$xqpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_of$xqpxcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_first_of$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%ui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_not_of$xqcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_not_of$xqpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_not_of$xqpxcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_not_of$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%ui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_of$xqcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_of$xqpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_of$xqpxcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@find_last_of$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%ui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@getRep$quiuir18std@%allocator$tc%
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@insert$qpcpxct2
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@insert$qpcuic
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@insert$quipxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@insert$quipxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@insert$quirx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%uiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@insert$quiuic
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@npos
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@remove$qpc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@remove$qpct1
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$qpct1pxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$qpct1pxct3
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$qpct1pxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$qpct1uic
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$quiuipxc
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$quiuipxcuiuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace$quiuiuic
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@replace_aux$quiuirx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%uiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@reserve$qui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@resize$qui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@resize$quic
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@rfind$xqcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@rfind$xqpxcui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@rfind$xqpxcuiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@rfind$xqrx74std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%ui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@substr$xquiui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@unSafeClone$qui
@std@%basic_string$tc$t27std@%string_char_traits$tc%$t18std@%allocator$tc%%@unSafeClone$qv
@std@%numeric_limits$t4bool%@digits
@std@%numeric_limits$t4bool%@digits10
@std@%numeric_limits$t4bool%@has_denorm
@std@%numeric_limits$t4bool%@has_infinity
@std@%numeric_limits$t4bool%@has_quiet_NaN
@std@%numeric_limits$t4bool%@has_signaling_NaN
@std@%numeric_limits$t4bool%@is_bounded
@std@%numeric_limits$t4bool%@is_exact
@std@%numeric_limits$t4bool%@is_iec559
@std@%numeric_limits$t4bool%@is_integer
@std@%numeric_limits$t4bool%@is_modulo
@std@%numeric_limits$t4bool%@is_signed
@std@%numeric_limits$t4bool%@is_specialized
@std@%numeric_limits$t4bool%@max_exponent
@std@%numeric_limits$t4bool%@max_exponent10
@std@%numeric_limits$t4bool%@min_exponent
@std@%numeric_limits$t4bool%@min_exponent10
@std@%numeric_limits$t4bool%@radix
@std@%numeric_limits$t4bool%@round_style
@std@%numeric_limits$t4bool%@tinyness_before
@std@%numeric_limits$t4bool%@traps
@std@%numeric_limits$tb%@digits
@std@%numeric_limits$tb%@digits10
@std@%numeric_limits$tb%@has_denorm
@std@%numeric_limits$tb%@has_infinity
@std@%numeric_limits$tb%@has_quiet_NaN
@std@%numeric_limits$tb%@has_signaling_NaN
@std@%numeric_limits$tb%@is_bounded
@std@%numeric_limits$tb%@is_exact
@std@%numeric_limits$tb%@is_iec559
@std@%numeric_limits$tb%@is_integer
@std@%numeric_limits$tb%@is_modulo
@std@%numeric_limits$tb%@is_signed
@std@%numeric_limits$tb%@is_specialized
@std@%numeric_limits$tb%@max$qv
@std@%numeric_limits$tb%@max_exponent
@std@%numeric_limits$tb%@max_exponent10
@std@%numeric_limits$tb%@min$qv
@std@%numeric_limits$tb%@min_exponent
@std@%numeric_limits$tb%@min_exponent10
@std@%numeric_limits$tb%@radix
@std@%numeric_limits$tb%@round_style
@std@%numeric_limits$tb%@tinyness_before
@std@%numeric_limits$tb%@traps
@std@%numeric_limits$tc%@digits
@std@%numeric_limits$tc%@digits10
@std@%numeric_limits$tc%@has_denorm
@std@%numeric_limits$tc%@has_infinity
@std@%numeric_limits$tc%@has_quiet_NaN
@std@%numeric_limits$tc%@has_signaling_NaN
@std@%numeric_limits$tc%@is_bounded
@std@%numeric_limits$tc%@is_exact
@std@%numeric_limits$tc%@is_iec559
@std@%numeric_limits$tc%@is_integer
@std@%numeric_limits$tc%@is_modulo
@std@%numeric_limits$tc%@is_signed
@std@%numeric_limits$tc%@is_specialized
@std@%numeric_limits$tc%@max_exponent
@std@%numeric_limits$tc%@max_exponent10
@std@%numeric_limits$tc%@min_exponent
@std@%numeric_limits$tc%@min_exponent10
@std@%numeric_limits$tc%@radix
@std@%numeric_limits$tc%@round_style
@std@%numeric_limits$tc%@tinyness_before
@std@%numeric_limits$tc%@traps
@std@%numeric_limits$td%@denorm_min$qv
@std@%numeric_limits$td%@digits
@std@%numeric_limits$td%@digits10
@std@%numeric_limits$td%@has_denorm
@std@%numeric_limits$td%@has_infinity
@std@%numeric_limits$td%@has_quiet_NaN
@std@%numeric_limits$td%@has_signaling_NaN
@std@%numeric_limits$td%@infinity$qv
@std@%numeric_limits$td%@is_bounded
@std@%numeric_limits$td%@is_exact
@std@%numeric_limits$td%@is_iec559
@std@%numeric_limits$td%@is_integer
@std@%numeric_limits$td%@is_modulo
@std@%numeric_limits$td%@is_signed
@std@%numeric_limits$td%@is_specialized
@std@%numeric_limits$td%@max_exponent
@std@%numeric_limits$td%@max_exponent10
@std@%numeric_limits$td%@min_exponent
@std@%numeric_limits$td%@min_exponent10
@std@%numeric_limits$td%@quiet_NaN$qv
@std@%numeric_limits$td%@radix
@std@%numeric_limits$td%@round_error$qv
@std@%numeric_limits$td%@round_style
@std@%numeric_limits$td%@signaling_NaN$qv
@std@%numeric_limits$td%@tinyness_before
@std@%numeric_limits$td%@traps
@std@%numeric_limits$tf%@denorm_min$qv
@std@%numeric_limits$tf%@digits
@std@%numeric_limits$tf%@digits10
@std@%numeric_limits$tf%@has_denorm
@std@%numeric_limits$tf%@has_infinity
@std@%numeric_limits$tf%@has_quiet_NaN
@std@%numeric_limits$tf%@has_signaling_NaN
@std@%numeric_limits$tf%@infinity$qv
@std@%numeric_limits$tf%@is_bounded
@std@%numeric_limits$tf%@is_exact
@std@%numeric_limits$tf%@is_iec559
@std@%numeric_limits$tf%@is_integer
@std@%numeric_limits$tf%@is_modulo
@std@%numeric_limits$tf%@is_signed
@std@%numeric_limits$tf%@is_specialized
@std@%numeric_limits$tf%@max_exponent
@std@%numeric_limits$tf%@max_exponent10
@std@%numeric_limits$tf%@min_exponent
@std@%numeric_limits$tf%@min_exponent10
@std@%numeric_limits$tf%@quiet_NaN$qv
@std@%numeric_limits$tf%@radix
@std@%numeric_limits$tf%@round_error$qv
@std@%numeric_limits$tf%@round_style
@std@%numeric_limits$tf%@signaling_NaN$qv
@std@%numeric_limits$tf%@tinyness_before
@std@%numeric_limits$tf%@traps
@std@%numeric_limits$tg%@denorm_min$qv
@std@%numeric_limits$tg%@digits
@std@%numeric_limits$tg%@digits10
@std@%numeric_limits$tg%@has_denorm
@std@%numeric_limits$tg%@has_infinity
@std@%numeric_limits$tg%@has_quiet_NaN
@std@%numeric_limits$tg%@has_signaling_NaN
@std@%numeric_limits$tg%@infinity$qv
@std@%numeric_limits$tg%@is_bounded
@std@%numeric_limits$tg%@is_exact
@std@%numeric_limits$tg%@is_iec559
@std@%numeric_limits$tg%@is_integer
@std@%numeric_limits$tg%@is_modulo
@std@%numeric_limits$tg%@is_signed
@std@%numeric_limits$tg%@is_specialized
@std@%numeric_limits$tg%@max_exponent
@std@%numeric_limits$tg%@max_exponent10
@std@%numeric_limits$tg%@min_exponent
@std@%numeric_limits$tg%@min_exponent10
@std@%numeric_limits$tg%@quiet_NaN$qv
@std@%numeric_limits$tg%@radix
@std@%numeric_limits$tg%@round_error$qv
@std@%numeric_limits$tg%@round_style
@std@%numeric_limits$tg%@signaling_NaN$qv
@std@%numeric_limits$tg%@tinyness_before
@std@%numeric_limits$tg%@traps
@std@%numeric_limits$ti%@digits
@std@%numeric_limits$ti%@digits10
@std@%numeric_limits$ti%@has_denorm
@std@%numeric_limits$ti%@has_infinity
@std@%numeric_limits$ti%@has_quiet_NaN
@std@%numeric_limits$ti%@has_signaling_NaN
@std@%numeric_limits$ti%@is_bounded
@std@%numeric_limits$ti%@is_exact
@std@%numeric_limits$ti%@is_iec559
@std@%numeric_limits$ti%@is_integer
@std@%numeric_limits$ti%@is_modulo
@std@%numeric_limits$ti%@is_signed
@std@%numeric_limits$ti%@is_specialized
@std@%numeric_limits$ti%@max_exponent
@std@%numeric_limits$ti%@max_exponent10
@std@%numeric_limits$ti%@min_exponent
@std@%numeric_limits$ti%@min_exponent10
@std@%numeric_limits$ti%@radix
@std@%numeric_limits$ti%@round_style
Sections
CODE Size: 154KB - Virtual size: 156KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 26KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 47KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/masm32/bin/ml.exe.exe windows:4 windows x86 arch:x86
001d916f8076bfa4ad7d718c39ead207
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
VirtualFree
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetLastError
SetFilePointer
WriteFile
ReadFile
CloseHandle
GetFileType
CreateFileA
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
DeleteFileA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
MultiByteToWideChar
RtlUnwind
HeapSize
HeapAlloc
HeapReAlloc
GetModuleFileNameA
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
SetConsoleCtrlHandler
VirtualAlloc
SetStdHandle
SetHandleCount
GetStdHandle
GetStartupInfoA
SetEndOfFile
WideCharToMultiByte
UnhandledExceptionFilter
SetEnvironmentVariableW
SetEnvironmentVariableA
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
FindNextFileA
FindFirstFileA
FindClose
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
FlushFileBuffers
GetProcAddress
LoadLibraryA
GetFileAttributesA
Sections
.text Size: 260KB - Virtual size: 256KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 169KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TblSeg Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
Botnets PACK/Pony 1.9/masm32/bin/polib.exe.exe windows:4 windows x86 arch:x86
7010310e12b72d212082eadeffa5b681
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15-06-2007 00:00Not After14-06-2012 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04-12-2003 00:00Not After03-12-2013 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
44:e6:0e:98Certificate
IssuerCN=CryptGuard Signing Root CA,OU=CPS Incorporated by Reference+OU=cryptguard.com,O=CryptGuard Certification Authority,L=Regina,ST=Saskatchewan,C=CA,1.2.840.113549.1.9.1=#0c197369676e726f6f74636140637279707467756172642e636f6d,2.5.4.46=#13203665653032393830336235653131646139653135303030326135643563353162Not Before18-08-2006 19:01Not After17-08-2011 19:01SubjectCN=smorgasbordet.com,O=Pelle Orinius,L=Stockholm,C=SE,1.2.840.113549.1.9.1=#0c1770656c6c6540736d6f72676173626f726465742e636f6dExtended Key Usages
ExtKeyUsageCodeSigning
ExtKeyUsageClientAuth
Key Usages
KeyUsageDigitalSignature
KeyUsageKeyEncipherment
KeyUsageDataEncipherment
02Certificate
IssuerCN=CryptGuard Authoritative Root CA,OU=CPS Incorporated by Reference+OU=cryptguard.com,O=CryptGuard Certification Authority,L=Regina,ST=Saskatchewan,C=CA,1.2.840.113549.1.9.1=#0c1961757468726f6f74636140637279707467756172642e636f6d,2.5.4.46=#13203665653032393830336235653131646139653135303030326135643563353162Not Before07-11-2005 00:01Not After01-11-2030 00:01SubjectCN=CryptGuard Signing Root CA,OU=CPS Incorporated by Reference+OU=cryptguard.com,O=CryptGuard Certification Authority,L=Regina,ST=Saskatchewan,C=CA,1.2.840.113549.1.9.1=#0c197369676e726f6f74636140637279707467756172642e636f6d,2.5.4.46=#13203665653032393830336235653131646139653135303030326135643563353162Extended Key Usages
ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
ExtKeyUsageEmailProtection
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageKeyEncipherment
KeyUsageDataEncipherment
KeyUsageKeyAgreement
KeyUsageCertSign
KeyUsageCRLSign
0d:fa:c8:54:01:5a:9f:b2:3f:c8:43:c5:71:fb:d5:74:36:f4:99:abSigner
Actual PE Digest0d:fa:c8:54:01:5a:9f:b2:3f:c8:43:c5:71:fb:d5:74:36:f4:99:abDigest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCommandLineA
GetCurrentProcess
GetCurrentThread
DuplicateHandle
SetConsoleCtrlHandler
SetFileApisToOEM
GetTempPathA
GetTickCount
FormatMessageA
LocalAlloc
LocalFree
SuspendThread
CreateFileA
GetLastError
CreateFileMappingA
MapViewOfFile
GetSystemInfo
GetVersionExA
MapViewOfFileEx
Sleep
UnmapViewOfFile
CloseHandle
GetFileSize
SetFilePointer
SetEndOfFile
GetThreadPriority
SetThreadPriority
GetPriorityClass
SetPriorityClass
VirtualQuery
GetSystemTimeAsFileTime
FindFirstFileA
FindNextFileA
FindClose
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
ExitProcess
VirtualAlloc
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
HeapValidate
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetConsoleMode
GetConsoleOutputCP
WriteFile
SetStdHandle
DeleteFileA
MultiByteToWideChar
WideCharToMultiByte
ReadFile
GetConsoleCP
GetTimeZoneInformation
CopyFileA
user32
CharToOemA
Sections
.text Size: 59KB - Virtual size: 58KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/masm32/bin/polink.exe.exe windows:4 windows x86 arch:x86
adc26f0753c46200166f04992fa39dc8
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15-06-2007 00:00Not After14-06-2012 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04-12-2003 00:00Not After03-12-2013 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
24Certificate
IssuerCN=StartCom Certification Authority,OU=Secure Digital Certificate Signing,O=StartCom Ltd.,C=ILNot Before24-10-2007 22:01Not After24-10-2017 22:01SubjectCN=StartCom Class 2 Primary Intermediate Object CA,OU=Secure Digital Certificate Signing,O=StartCom Ltd.,C=ILKey Usages
KeyUsageCertSign
KeyUsageCRLSign
01:2fCertificate
IssuerCN=StartCom Class 2 Primary Intermediate Object CA,OU=Secure Digital Certificate Signing,O=StartCom Ltd.,C=ILNot Before01-05-2010 06:21Not After01-05-2012 18:52SubjectCN=Per Orinius,OU=StartCom Verified Certificate Member,L=Stockholm,ST=Stockholms,C=SE,1.2.840.113549.1.9.1=#0c1770656c6c6540736d6f72676173626f726465742e636f6d,2.5.4.13=#13173138383839322d673032525a4a6b3746774c3936397a77Extended Key Usages
ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
Key Usages
KeyUsageDigitalSignature
01Certificate
IssuerCN=StartCom Certification Authority,OU=Secure Digital Certificate Signing,O=StartCom Ltd.,C=ILNot Before17-09-2006 19:46Not After17-09-2036 19:46SubjectCN=StartCom Certification Authority,OU=Secure Digital Certificate Signing,O=StartCom Ltd.,C=ILKey Usages
KeyUsageDigitalSignature
KeyUsageKeyEncipherment
KeyUsageKeyAgreement
KeyUsageCertSign
KeyUsageCRLSign
28:d8:18:4d:59:99:5f:ab:79:77:58:29:5a:bb:4b:79:bc:1a:9c:a8Signer
Actual PE Digest28:d8:18:4d:59:99:5f:ab:79:77:58:29:5a:bb:4b:79:bc:1a:9c:a8Digest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCommandLineA
GetCurrentProcess
GetCurrentThread
DuplicateHandle
SetConsoleCtrlHandler
GetTempPathA
GetTickCount
FormatMessageA
LocalAlloc
LocalFree
SuspendThread
CreateFileA
GetLastError
CreateFileMappingA
MapViewOfFile
GetSystemInfo
GetVersionExA
MapViewOfFileEx
Sleep
UnmapViewOfFile
CloseHandle
GetFileSize
SetFilePointer
SetEndOfFile
GetThreadPriority
SetThreadPriority
GetPriorityClass
SetPriorityClass
VirtualQuery
GetFullPathNameA
DeleteFileA
CopyFileA
WideCharToMultiByte
ReadFile
LoadLibraryA
FreeLibrary
GetProcAddress
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
FindFirstFileA
FindClose
FindNextFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
ExitProcess
VirtualAlloc
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
HeapValidate
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
MultiByteToWideChar
GetConsoleMode
GetConsoleOutputCP
WriteFile
SetStdHandle
GetSystemTime
GetTimeZoneInformation
user32
CharToOemA
Sections
.text Size: 117KB - Virtual size: 116KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 26KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/masm32/bin/rw32core.dll.dll windows:1 windows x86 arch:x86
d04cfae182fd220798ccee7cc2da47d6
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
GetEnvironmentVariableA
GlobalLock
DeleteFileA
GlobalMemoryStatus
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
EnterCriticalSection
CreateFileA
FreeEnvironmentStringsA
IsDBCSLeadByte
FreeResource
GetACP
GetCPInfo
GetCurrentDirectoryA
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
FindFirstFileA
GetFileAttributesW
GlobalReAlloc
LeaveCriticalSection
LoadLibraryA
IsValidCodePage
GetFileSize
GetFullPathNameA
GetLastError
GetLocalTime
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalAlloc
GlobalFlags
GetEnvironmentStrings
FindResourceA
GlobalUnlock
GlobalSize
GetFileAttributesA
CreateFileW
ExitProcess
CloseHandle
GetFileType
FreeLibrary
GetFileTime
LoadResource
IsDBCSLeadByteEx
LocalAlloc
LocalFree
LockResource
MoveFileA
MultiByteToWideChar
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SizeofResource
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteFile
_lread
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA
GlobalFree
user32
wsprintfA
LoadStringA
IsCharAlphaNumericA
IsCharAlphaA
EnumThreadWindows
CreateIcon
CreateCursor
MessageBoxA
CharUpperA
CharNextA
Exports
Exports
@RxCompileStatusImpl@AddAutodepend$qqspxcri
@RxCompileStatusImpl@BatchUpdateBegin$qqsv
@RxCompileStatusImpl@BatchUpdateEnd$qqsv
@RxCompileStatusImpl@ErrorOrWarning$qqs11RWErrorTypepxcll5RCERRt2ri
@RxCompileStatusImpl@SetCurrentSource$qqspxcri
@RxCompileStatusImpl@SetCurrentThing$qqspxct1ri
@RxCompileStatusImpl@SetLineNumbers$qqsllri
@RxCompileStatusImpl@TrackCurrentStatus$qqsi
@RxCompileStatusImpl@TrackingCurrentStatus$qqsri
@RxCookieBehavior@_CanChangeRef$qqs10FILEFORMATri
@RxCookieBehavior@_CanMoveTo$qqsp10RWCOOKIE__i10RWMOVEENUMri
@RxCookieBehavior@_CanSaveAs$qqs10FILEFORMATri
@RxCookieBehavior@_GetAttributes$qqsr12RWCOOKIEATTR
@RxCookieBehavior@_GetIndex$qqsri
@RxCookieBehavior@_GetName$qqsp9IRxString
@RxCookieBehavior@_GetNameSource$qqsp9IRxString
@RxCookieBehavior@_GetParent$qqsrp10RWCOOKIE__
@RxCookieBehavior@_GetString$qqsp9IRxString
@RxCookieBehavior@_GetTypeName$qqsp9IRxString
@RxCookieBehavior@_GetTypeNameSource$qqsp9IRxString
@RxCookieBehavior@_IsChildOf$qqsp10RWCOOKIE__r4bool
@RxCookieBehavior@_IsParentOf$qqsp10RWCOOKIE__r4bool
@RxCookieBehavior@_MoveTo$qqsp10RWCOOKIE__i10RWMOVEENUM
@RxCookieBehavior@_SaveAs$qqspxc10FILEFORMATi
@RxCookieImpl@QueryInterface$qqsrx5_GUIDppv
@RxCoreFactory@CreateInstance$qqsp8IUnknownrx5_GUIDppv
@RxCoreFactory@LockServer$qqsi
@RxFieldImpl@GetBin$qqsp7IRxBlob
@RxFieldImpl@GetSource$qqsp9IRxString
@RxFieldImpl@GetSourceLength$qqsrui
@RxFieldImpl@QueryInterface$qqsrx5_GUIDppv
@RxFieldImpl@SetBin$qqspxvi
@RxFieldImpl@SetSource$qqspxc
@RxItemImpl@ChangeType$qqspxc
@RxItemImpl@DeleteItem$qqsi
@RxItemImpl@FindField$qqspxcrp8IRxField
@RxItemImpl@GetAppExpHandle$qqsrul
@RxItemImpl@GetBin$qqsp7IRxBlob
@RxItemImpl@GetCookieIndex$qqsp10RWCOOKIE__ri
@RxItemImpl@GetField$qqsirp8IRxField
@RxItemImpl@GetItem$qqsirp7IRxItem
@RxItemImpl@GetNumFields$qqsrui
@RxItemImpl@GetNumItems$qqsrui
@RxItemImpl@GetRTName$qqsp9IRxString
@RxItemImpl@GetSource$qqsp9IRxStringiii
@RxItemImpl@InsertItem$qqsripxc
@RxItemImpl@MoveItem$qqsii
@RxItemImpl@OkToDelete$qqsr4bool
@RxItemImpl@QueryInterface$qqsrx5_GUIDppv
@RxItemImpl@SetBin$qqspxvi
@RxItemImpl@SetSource$qqspxc
@RxProjectImpl@AddFileToProject$qqs10FILEFORMATpxc
@RxProjectImpl@CanCreateSymbol$qqspxc
@RxProjectImpl@CanSaveAs$qqs10FILEFORMATri
@RxProjectImpl@CanSetIncludePath$qqspxci
@RxProjectImpl@DeleteCookie$qqsp10RWCOOKIE__i
@RxProjectImpl@FindFile$qqspxcrp10RWCOOKIE__
@RxProjectImpl@FindResType$qqspxcrp10RWCOOKIE__
@RxProjectImpl@FindStrtableItem$qqsususrp7IRxItem
@RxProjectImpl@FindSymbol$qqspxcrp9IRxSymbol
@RxProjectImpl@GetAutoExeName$qqsp9IRxString
@RxProjectImpl@GetAutoIdMode$qqsri
@RxProjectImpl@GetAutoResName$qqsp9IRxString
@RxProjectImpl@GetBackupMode$qqsri
@RxProjectImpl@GetBlobApi$qqsrp7IRxBlob
@RxProjectImpl@GetCookieApi$qqsp10RWCOOKIE__rp9IRxCookie
@RxProjectImpl@GetDefaultLanguage$qqsrus
@RxProjectImpl@GetEditorName$qqsp9IRxString
@RxProjectImpl@GetFilter$qqsr8RXFILTER
@RxProjectImpl@GetFirstChild$qqsp10RWCOOKIE__rp10RWCOOKIE__
@RxProjectImpl@GetFirstItem$qqsrp10RWCOOKIE__
@RxProjectImpl@GetHFile$qqsrp10RWCOOKIE__
@RxProjectImpl@GetIDSortType$qqsr12RWIDSORTTYPE
@RxProjectImpl@GetIncludePath$qqsp9IRxString
@RxProjectImpl@GetLastError$qqsr6RWSERR
@RxProjectImpl@GetLastErrorString$qqsp9IRxString
@RxProjectImpl@GetNextSibling$qqsp10RWCOOKIE__rp10RWCOOKIE__
@RxProjectImpl@GetNotifyApi$qqsrp9IRxNotify
@RxProjectImpl@GetRCFile$qqsrp10RWCOOKIE__
@RxProjectImpl@GetSlaveMode$qqsri
@RxProjectImpl@GetSortType$qqsr10RWSORTTYPE
@RxProjectImpl@GetStringApi$qqsrp9IRxString
@RxProjectImpl@InitRxProject$qqsxp12RXINITSTRUCT
@RxProjectImpl@Is32Res$qqspxcri
@RxProjectImpl@IsAppExpertProject$qqsri
@RxProjectImpl@IsFileInProject$qqspxcri
@RxProjectImpl@IsPE$qqspxcri
@RxProjectImpl@New$qqsv
@RxProjectImpl@NewResType$qqspxcrp10IRxResType
@RxProjectImpl@NewSymbol$qqspxct1p10RWCOOKIE__rp9IRxSymbol
@RxProjectImpl@Open$qqsv
@RxProjectImpl@OpenOptimize$qqspxci
@RxProjectImpl@ParseString$qqspxcip7IRxBlob
@RxProjectImpl@PasteResData$qqspvp10RWCOOKIE__t2rp11IRxResource
@RxProjectImpl@Save$qqsv
@RxProjectImpl@SaveAs$qqspxc10FILEFORMAT
@RxProjectImpl@SaveOptimize$qqspxc
@RxProjectImpl@SetAutoExeName$qqspxc
@RxProjectImpl@SetAutoIdMode$qqsi
@RxProjectImpl@SetAutoResName$qqspxc
@RxProjectImpl@SetBackupMode$qqsi
@RxProjectImpl@SetCompileStatusApi$qqsp16IRxCompileStatus
@RxProjectImpl@SetDefaultLanguage$qqsus
@RxProjectImpl@SetEditorName$qqspxc
@RxProjectImpl@SetFilter$qqs8RXFILTER
@RxProjectImpl@SetHFile$qqsp10RWCOOKIE__
@RxProjectImpl@SetIDSortType$qqs12RWIDSORTTYPE
@RxProjectImpl@SetIncludePath$qqspxc
@RxProjectImpl@SetMBCSFlag$qqsi
@RxProjectImpl@SetNotifyApi$qqsp9IRxNotify
@RxProjectImpl@SetRCFile$qqsp10RWCOOKIE__
@RxProjectImpl@SetSlaveMode$qqsi
@RxProjectImpl@SetSortType$qqs10RWSORTTYPE
@RxProjectImpl@SetSubstitutionString$qqspxc
@RxProjectImpl@SetUICallbackApi$qqsp13IRxUICallback
@RxProjectImpl@SymbolExists$qqspxcri
@RxProjectImpl@UndoDeleteRes$qqspvrp11IRxResource
@RxResTypeImpl@AddBinFileToProject$qqspxc
@RxResTypeImpl@FindResourceA$qqspxcusrp11IRxResource
@RxResTypeImpl@NewBinRes$qqsrp11IRxResourcepxcpxvui
@RxResTypeImpl@NewRes$qqsrp11IRxResourcepxc
@RxResTypeImpl@QueryInterface$qqsrx5_GUIDppv
@RxResTypeImpl@UniqueResId$qqsrulus
@RxResTypeImpl@UniqueResName$qqsp9IRxStringus
@RxResourceImpl@CanMakeSource$qqsr24IRxResource@RWSourceType
@RxResourceImpl@CopyResData$qqsrpv
@RxResourceImpl@GetCharacteristics$qqsrul
@RxResourceImpl@GetLanguage$qqsrus
@RxResourceImpl@GetMemFlags$qqsrus
@RxResourceImpl@GetOwner$qqsrp11IRxResource
@RxResourceImpl@GetType$qqsrp10IRxResType
@RxResourceImpl@GetVersion$qqsrul
@RxResourceImpl@MakeResDeleteUndo$qqsrpv
@RxResourceImpl@QueryInterface$qqsrx5_GUIDppv
@RxResourceImpl@SetCharacteristics$qqsul
@RxResourceImpl@SetLanguage$qqsus
@RxResourceImpl@SetMemFlags$qqsus
@RxResourceImpl@SetName$qqspxc
@RxResourceImpl@SetVersion$qqsul
@RxResourceImpl@UniqueItemId$qqsri
@RxSymbolImpl@GetUsage$qqsirp9IRxCookie
@RxSymbolImpl@GetUsageCount$qqsri
@RxSymbolImpl@GetValue$qqsp9IRxString
@RxSymbolImpl@QueryInterface$qqsrx5_GUIDppv
@RxSymbolImpl@SetName$qqspxc
@RxSymbolImpl@SetValue$qqspxc
ACCELDECOMPHOOK
ACCELKEYFROMBIN
ACCELVERSIONHOOK
BITMAP3COMPOUNDHOOK
BITMAP3LOADHOOK
BITMAP3SAVEHOOK
BITMAP3VERSIONHOOK
BLOCKDECOMPHOOK
CURSOR3COMPOUNDHOOK
CURSOR3CONVERTHOOK
CURSOR3LOADHANDLER
CURSOR3SAVEHOOK
CURSOR3VERSIONHOOK
DIALOG3COMPOUNDHOOK
DIALOGDECOMPHOOK
DIALOGVERSION3HOOK
DLGINITSRCHOOK
DllCanUnloadNow
DllGetClassObject
FONT3VERSIONHOOK
FONTSPECDECOMPHOOK
GENACCELKEY
GENBUTTONSTYLE
GENCOMBOSTYLE
GENCONTROLSTYLE
GENDIALOGSTYLE
GENEDITSTYLE
GENEXSTYLE
GENFFFLAGS
GENFFMASK
GENFFOS
GENFFSUBTYPE
GENFFTYPE
GENHELPID
GENLISTBOXSTYLE
GENMENU3COMMAND
GENMENU3OPTSFIELD
GENMENU3TEXTFIELD
GENMENU4COMMAND
GENMENU4STATEFIELD
GENMENU4TYPEFIELD
GENSCROLLBARSTYLE
GENSTATICSTYLE
GENVERSIONRES
GenResVHandle
GenResVHandleNOTNT
GetIOHooks
ICON3COMPOUNDHOOK
ICON3CONVERTHOOK
ICON3LOADHANDLER
ICON3SAVEHOOK
ICON3VERSIONHOOK
IDELIBMAIN
MENU3COMPOUNDHOOK
MENU3DECOMPHOOK
MENU3LOADHOOK
MENU3OPTSHOOK
MENU3VERSIONHOOK
MENU4HELPIDHOOK
MENU4VERSIONHOOK
MakeAControlName
RC_CONTROLSTYLESRC
RC_GENWINSTYLE
SetIOHooks
VERSIONDECOMPHOOK
Sections
CODE Size: 492KB - Virtual size: 496KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 52KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TLS Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 10KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 26KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 208KB - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
Botnets PACK/Pony 1.9/masm32/bin/upx.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 1.2MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 281KB - Virtual size: 284KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
Botnets PACK/Pony 1.9/masm32/include/advapi32.inc
-
Botnets PACK/Pony 1.9/masm32/include/colib.inc
-
Botnets PACK/Pony 1.9/masm32/include/crypt32.inc
-
Botnets PACK/Pony 1.9/masm32/include/kernel32.inc.vbs
-
Botnets PACK/Pony 1.9/masm32/include/oaidl.inc
-
Botnets PACK/Pony 1.9/masm32/include/ole32.inc
-
Botnets PACK/Pony 1.9/masm32/include/oleaut32.inc
-
Botnets PACK/Pony 1.9/masm32/include/shell32.inc
-
Botnets PACK/Pony 1.9/masm32/include/shlwapi.inc
-
Botnets PACK/Pony 1.9/masm32/include/urlmon.inc
-
Botnets PACK/Pony 1.9/masm32/include/user32.inc
-
Botnets PACK/Pony 1.9/masm32/include/userenv.inc
-
Botnets PACK/Pony 1.9/masm32/include/windows.inc
-
Botnets PACK/Pony 1.9/masm32/include/winextra.inc
-
Botnets PACK/Pony 1.9/masm32/include/wininet.inc
-
Botnets PACK/Pony 1.9/masm32/include/wsock32.inc
-
Botnets PACK/Pony 1.9/masm32/lib/3DES.lib
-
Botnets PACK/Pony 1.9/masm32/lib/advapi32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/aplib.lib
-
Botnets PACK/Pony 1.9/masm32/lib/crypt32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/kernel32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/ntdll.lib
-
Botnets PACK/Pony 1.9/masm32/lib/ole32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/oleaut32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/shell32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/shlwapi.lib
-
Botnets PACK/Pony 1.9/masm32/lib/urlmon.lib
-
Botnets PACK/Pony 1.9/masm32/lib/user32.lib
-
Botnets PACK/Pony 1.9/masm32/lib/userenv.lib
-
Botnets PACK/Pony 1.9/masm32/lib/wininet.lib
-
Botnets PACK/Pony 1.9/masm32/lib/wsock32.lib
-
Botnets PACK/Pony 1.9/pb.bat
-
Botnets PACK/Pony 1.9/pb.cmd
-
Botnets PACK/Pony 1.9/secproc.dll.dll windows:10 windows x86 arch:x86
1b3ad66a3bd78a19068f0e837f379b1e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
secproc.pdb
Imports
msvcrt
??1exception@@UAE@XZ
?what@exception@@UBEPBDXZ
_CxxThrowException
_XcptFilter
_amsg_exit
wcsncmp
_wcstoi64
??0exception@@QAE@ABQBD@Z
memcpy
wcsrchr
_wcsnicmp
wcsstr
wcstol
wcscpy_s
_wcsicmp
??0exception@@QAE@ABV0@@Z
_initterm
_lock
_unlock
__dllonexit
wcstombs
_onexit
??1type_info@@UAE@XZ
_callnewh
malloc
free
memmove
__CxxFrameHandler3
_purecall
_except_handler4_common
memcmp
memset
api-ms-win-core-memory-l1-1-0
VirtualProtect
VirtualAlloc
VirtualFree
api-ms-win-core-errorhandling-l1-1-0
RaiseException
GetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
api-ms-win-core-synch-l1-1-0
LeaveCriticalSection
InitializeCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateMutexA
ReleaseMutex
WaitForSingleObject
api-ms-win-core-processthreads-l1-1-0
GetCurrentThread
GetCurrentProcessId
GetCurrentThreadId
TerminateProcess
GetCurrentProcess
api-ms-win-core-libraryloader-l1-2-0
FreeLibrary
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
GetProcAddress
DisableThreadLibraryCalls
api-ms-win-core-errorhandling-l1-1-2
RaiseFailFastException
api-ms-win-core-handle-l1-1-0
CloseHandle
api-ms-win-eventing-classicprovider-l1-1-0
GetTraceLoggerHandle
GetTraceEnableLevel
TraceMessage
UnregisterTraceGuids
GetTraceEnableFlags
api-ms-win-core-sysinfo-l1-1-0
GetSystemTimeAsFileTime
GetSystemTime
GetSystemWindowsDirectoryW
GetSystemDirectoryW
GetTickCount
GetVersionExA
api-ms-win-core-file-l1-1-0
GetLogicalDriveStringsW
GetFileAttributesExW
GetDriveTypeW
GetVolumeInformationW
CreateFileA
CreateFileW
SetFilePointer
SetFileTime
GetFileTime
CompareFileTime
ReadFile
WriteFile
api-ms-win-core-com-l1-1-0
CoTaskMemFree
api-ms-win-core-timezone-l1-1-0
FileTimeToSystemTime
SystemTimeToFileTime
api-ms-win-core-heap-l2-1-0
LocalFree
crypt32
CertVerifyCertificateChainPolicy
CryptUnprotectData
api-ms-win-core-version-l1-1-0
GetFileVersionInfoExW
VerQueryValueW
GetFileVersionInfoSizeExW
api-ms-win-core-libraryloader-l1-2-1
LoadLibraryW
api-ms-win-core-synch-l1-2-0
Sleep
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
cryptsp
CryptDestroyHash
CryptSetKeyParam
CryptSetHashParam
CryptExportKey
CryptHashData
CryptAcquireContextW
CryptGenKey
CryptDeriveKey
CryptCreateHash
CryptDecrypt
CryptGenRandom
CryptEncrypt
CryptContextAddRef
CryptReleaseContext
CryptSignHashA
CryptDestroyKey
CryptImportKey
CryptDuplicateKey
CryptGetKeyParam
CryptGetHashParam
CryptVerifySignatureA
CryptGetDefaultProviderW
api-ms-win-eventing-obsolete-l1-1-0
RegisterTraceGuidsA
api-ms-win-core-toolhelp-l1-1-0
CreateToolhelp32Snapshot
Module32FirstW
Module32NextW
wintrust
WTHelperProvDataFromStateData
WTHelperGetProvSignerFromChain
WinVerifyTrust
msdrm
DRMGetUnboundLicenseAttributeCount
DRMGetUnboundLicenseObject
DRMGetUnboundLicenseAttribute
DRMGetUnboundLicenseObjectCount
DRMCloseQueryHandle
DRMParseUnboundLicense
api-ms-win-core-registry-l1-1-0
RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegOpenKeyExA
api-ms-win-core-io-l1-1-0
DeviceIoControl
api-ms-win-core-delayload-l1-1-1
ResolveDelayLoadedAPI
api-ms-win-core-delayload-l1-1-0
DelayLoadFailureHook
Exports
Exports
SPAttest
SPBindLicense
SPCheckEnvironmentSecurity
SPCloseHandle
SPCommit
SPCreateDecryptor
SPCreateEnablingPrincipal
SPCreateEncryptor
SPCreatePCE
SPCreateSecurityProcessor
SPDecrypt
SPDecryptFinal
SPDecryptUpdate
SPEnableAndEncrypt
SPEnablePublishingLicense
SPEncrypt
SPEncryptFinal
SPEncryptUpdate
SPGetBoundRightKey
SPGetCurrentTime
SPGetInfo
SPGetLicenseAttribute
SPGetLicenseAttributeCount
SPGetLicenseObject
SPGetLicenseObjectCount
SPGetProcAddress
SPIsActivated
SPLoadLibrary
SPRegisterRevocationList
SPSign
Sections
.text Size: 321KB - Virtual size: 321KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/sys/Config.inc
-
Botnets PACK/Pony 1.9/sys/Help.txt
-
Botnets PACK/Pony 1.9/sys/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/sys/LICENCE.dat.zip
-
Botnets PACK/Pony 1.9/sys/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Pony 1.9/sys/Pony.ini
-
Botnets PACK/Pony 1.9/sys/WPFToolkit.exe.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 2.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 29KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
Botnets PACK/Pony 1.9/sys/build.bat
-
Botnets PACK/Pony 1.9/sys/pb.bat
-
Botnets PACK/Pony 1.9/sys/pb.cmd
-
Botnets PACK/Smoke Loader Original Stub/NetUtil.jsm.js
-
Botnets PACK/Smoke Loader Original Stub/dependentlibs.list
-
Botnets PACK/Smoke Loader Original Stub/nssdbm3/CoreShell.exe.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
Botnets PACK/Smoke Loader Original Stub/nssdbm3/Ionic.Zip.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
c:\DotNetZip\Zip\obj\Debug\Ionic.Zip.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 478KB - Virtual size: 477KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Smoke Loader Original Stub/nssdbm3/LICENCE.dat.zip
-
Botnets PACK/Smoke Loader Original Stub/nssdbm3/Launcher.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Botnets PACK/Smoke Loader Original Stub/smokeloader.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\thorson\Desktop\Launcher1\Launcher\Launcher\obj\Debug\LUNCHER CRACKING.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 215KB - Virtual size: 215KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ