ClientNetworkTransform.pdb
Overview
overview
10Static
static
3dll/Client...rm.dll
windows7-x64
1dll/Client...rm.dll
windows10-2004-x64
1dll/D3D12Core.dll
windows7-x64
1dll/D3D12Core.dll
windows10-2004-x64
1dll/d3dcom...47.dll
windows10-2004-x64
1dll/dbghelp.dll
windows10-2004-x64
1dll/libEGL.dll
windows7-x64
1dll/libEGL.dll
windows10-2004-x64
1dll/libGLESv2.dll
windows7-x64
1dll/libGLESv2.dll
windows10-2004-x64
1dll/libogg_64.dll
windows7-x64
1dll/libogg_64.dll
windows10-2004-x64
1dll/libvorbis_64.dll
windows7-x64
1dll/libvorbis_64.dll
windows10-2004-x64
1dll/libvor...64.dll
windows7-x64
1dll/libvor...64.dll
windows10-2004-x64
1dll/mscorlib.dll
windows7-x64
1dll/mscorlib.dll
windows10-2004-x64
1dll/msquic.dll
windows7-x64
1dll/msquic.dll
windows10-2004-x64
1dll/nvngx_deepdvc.dll
windows7-x64
1dll/nvngx_deepdvc.dll
windows10-2004-x64
1dll/nvngx_dlssg.dll
windows7-x64
1dll/nvngx_dlssg.dll
windows10-2004-x64
1launcher.exe
windows7-x64
10launcher.exe
windows10-2004-x64
10Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
dll/ClientNetworkTransform.dll
Resource
win7-20241010-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
dll/ClientNetworkTransform.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral3
Sample
dll/D3D12Core.dll
Resource
win7-20240729-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral4
Sample
dll/D3D12Core.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral5
Sample
dll/d3dcompiler_47.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral6
Sample
dll/dbghelp.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral7
Sample
dll/libEGL.dll
Resource
win7-20241010-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral8
Sample
dll/libEGL.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral9
Sample
dll/libGLESv2.dll
Resource
win7-20240903-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral10
Sample
dll/libGLESv2.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral11
Sample
dll/libogg_64.dll
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral12
Sample
dll/libogg_64.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral13
Sample
dll/libvorbis_64.dll
Resource
win7-20240903-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral14
Sample
dll/libvorbis_64.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral15
Sample
dll/libvorbisfile_64.dll
Resource
win7-20240708-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral16
Sample
dll/libvorbisfile_64.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral17
Sample
dll/mscorlib.dll
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral18
Sample
dll/mscorlib.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral19
Sample
dll/msquic.dll
Resource
win7-20241023-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral20
Sample
dll/msquic.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral21
Sample
dll/nvngx_deepdvc.dll
Resource
win7-20241010-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral22
Sample
dll/nvngx_deepdvc.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral23
Sample
dll/nvngx_dlssg.dll
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral24
Sample
dll/nvngx_dlssg.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
150 seconds
Behavioral task
behavioral25
Sample
launcher.exe
Resource
win7-20240903-en
windows7-x64
5 signatures
150 seconds
General
-
Target
7c5049b97fb6065b0797da5eca6c94578478cd87e4ae176c68a8bf17f6b03d4a.zip
-
Size
24.1MB
-
MD5
9a515545534c64fdfaaeac00594ac2e8
-
SHA1
c0922eef8a6d56767da589f8992a050ded4c93cc
-
SHA256
7c5049b97fb6065b0797da5eca6c94578478cd87e4ae176c68a8bf17f6b03d4a
-
SHA512
1a5d50b8126492cec4e717094643d494c71ac9b59a3e0729a03fe0d943e14bf193c9c6bb5ed8797df5b81c0cf9df90601f694beebb8555431de6a16dfc1da7f8
-
SSDEEP
393216:Xd3LKhLzFIj0MrO/z6VdegJqKCwBsI65dgmozIVBGeBbalMPhH2l6bfk7EQ2D:RKhLaj0sObGdeWFMgViQeB+qPS6bco
Score
3/10
Malware Config
Signatures
-
Unsigned PE 3 IoCs
Checks for missing Authenticode signature.
resource unpack001/dll/ClientNetworkTransform.dll unpack001/dll/mscorlib.dll unpack001/launcher.exe
Files
-
7c5049b97fb6065b0797da5eca6c94578478cd87e4ae176c68a8bf17f6b03d4a.zip.zip
Password: infected
-
dll/ClientNetworkTransform.dll.dll windows:4 windows x86 arch:x86
Password: infected
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 736B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/D3D12Core.dll.dll windows:6 windows x64 arch:x64
Password: infected
4928987102696a280994d367bd9459b4
Code Sign
33:00:00:03:4d:4e:91:a6:1a:28:b0:78:8f:00:00:00:00:03:4dCertificate
IssuerCN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before16-03-2023 18:43Not After14-03-2024 18:43SubjectCN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:0e:90:d2:00:00:00:00:00:03Certificate
IssuerCN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before08-07-2011 20:59Not After08-07-2026 21:09SubjectCN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
61:af:ec:08:3a:b5:cb:0f:23:97:f5:12:c8:6f:56:6c:24:f8:47:39:54:4f:e1:7c:e0:65:ee:7d:34:16:a5:4dSigner
Actual PE Digest61:af:ec:08:3a:b5:cb:0f:23:97:f5:12:c8:6f:56:6c:24:f8:47:39:54:4f:e1:7c:e0:65:ee:7d:34:16:a5:4dDigest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
D:\a\_work\1\s\build\windows\x64\bin\RelWithDebInfo\D3D12Core.pdb
Imports
api-ms-win-core-debug-l1-1-0
DebugBreak
OutputDebugStringW
OutputDebugStringA
IsDebuggerPresent
api-ms-win-core-util-l1-1-0
EncodePointer
DecodePointer
api-ms-win-core-handle-l1-1-0
CloseHandle
DuplicateHandle
api-ms-win-core-errorhandling-l1-1-0
RaiseException
GetLastError
UnhandledExceptionFilter
SetLastError
SetUnhandledExceptionFilter
api-ms-win-core-heap-l1-1-0
HeapReAlloc
HeapAlloc
HeapSize
HeapFree
GetProcessHeap
api-ms-win-core-synch-l1-1-0
ResetEvent
OpenSemaphoreW
LeaveCriticalSection
EnterCriticalSection
CreateEventExW
WaitForSingleObjectEx
WaitForSingleObject
ReleaseMutex
CreateMutexExW
ReleaseSRWLockExclusive
TryAcquireSRWLockShared
TryAcquireSRWLockExclusive
ReleaseSemaphore
TryEnterCriticalSection
AcquireSRWLockExclusive
AcquireSRWLockShared
ReleaseSRWLockShared
InitializeCriticalSectionAndSpinCount
CreateEventW
InitializeCriticalSectionEx
InitializeSRWLock
DeleteCriticalSection
CreateSemaphoreExW
CreateEventA
SetEvent
api-ms-win-core-processthreads-l1-1-0
GetCurrentProcessId
GetCurrentThreadId
SetThreadPriority
FlushProcessWriteBuffers
GetCurrentThread
GetExitCodeThread
ExitProcess
SwitchToThread
ResumeThread
ExitThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetStartupInfoW
GetCurrentProcess
CreateThread
TerminateProcess
OpenProcessToken
api-ms-win-core-threadpool-l1-2-0
CloseThreadpoolWork
CloseThreadpoolWait
SubmitThreadpoolWork
FreeLibraryWhenCallbackReturns
CreateThreadpoolWork
WaitForThreadpoolWaitCallbacks
WaitForThreadpoolTimerCallbacks
SetThreadpoolTimer
CreateThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolTimer
api-ms-win-core-libraryloader-l1-2-0
FreeLibraryAndExitThread
GetModuleFileNameA
LoadLibraryExW
GetModuleFileNameW
LoadLibraryExA
GetModuleHandleExW
GetModuleHandleW
FreeLibrary
GetProcAddress
api-ms-win-core-localization-l1-2-0
FormatMessageW
LCMapStringW
GetACP
GetLocaleInfoW
GetOEMCP
IsValidLocale
GetUserDefaultLCID
LCMapStringEx
FormatMessageA
GetLocaleInfoEx
IsValidCodePage
GetCPInfo
EnumSystemLocalesW
oleaut32
SysFreeString
api-ms-win-core-libraryloader-l1-2-1
LoadLibraryW
LoadLibraryA
api-ms-win-core-heap-l2-1-0
LocalFree
api-ms-win-core-rtlsupport-l1-1-0
RtlLookupFunctionEntry
RtlVirtualUnwind
RtlPcToFileHeader
RtlUnwind
RtlCaptureContext
RtlCaptureStackBackTrace
RtlUnwindEx
api-ms-win-core-apiquery-l2-1-0
IsApiSetImplemented
api-ms-win-core-profile-l1-1-0
QueryPerformanceFrequency
QueryPerformanceCounter
api-ms-win-core-processthreads-l1-1-1
GetCurrentProcessorNumber
GetProcessMitigationPolicy
IsProcessorFeaturePresent
api-ms-win-core-sysinfo-l1-1-0
GetTickCount64
GetTickCount
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
api-ms-win-core-memory-l1-1-0
VirtualQuery
VirtualProtect
MapViewOfFile
UnmapViewOfFile
VirtualFree
VirtualAlloc
api-ms-win-security-base-l1-1-0
PrivilegeCheck
AllocateLocallyUniqueId
api-ms-win-core-string-l1-1-0
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
CompareStringW
CompareStringEx
api-ms-win-core-psapi-l1-1-0
K32GetModuleInformation
api-ms-win-eventing-provider-l1-1-0
EventUnregister
EventSetInformation
EventWriteTransfer
EventRegister
api-ms-win-core-version-l1-1-0
GetFileVersionInfoExW
GetFileVersionInfoSizeExW
VerQueryValueW
ntdll
RtlIsCriticalSectionLockedByThread
api-ms-win-core-memory-l1-1-1
GetWriteWatch
api-ms-win-core-version-l1-1-1
GetFileVersionInfoSizeW
GetFileVersionInfoW
api-ms-win-core-registry-l1-1-0
RegOpenKeyExW
RegNotifyChangeKeyValue
RegCloseKey
RegQueryValueExA
RegGetValueW
RegOpenKeyExA
RegEnumKeyExA
api-ms-win-core-com-l1-1-0
CLSIDFromString
CoTaskMemFree
CoTaskMemAlloc
api-ms-win-core-windowserrorreporting-l1-1-1
WerUnregisterCustomMetadata
WerRegisterCustomMetadata
api-ms-win-core-quirks-l1-1-0
QuirkIsEnabled
api-ms-win-core-sysinfo-l1-2-0
GetNativeSystemInfo
api-ms-win-core-file-l1-1-0
GetFileSize
SetFileInformationByHandle
CreateFileA
GetFileSizeEx
SetFilePointerEx
ReadFile
FindClose
WriteFile
FindNextFileW
GetFileType
FlushFileBuffers
GetFileTime
FindFirstFileExW
CreateFileW
api-ms-win-core-processthreads-l1-1-3
SetThreadDescription
user32
UnregisterClassA
api-ms-win-core-synch-l1-2-0
Sleep
SleepConditionVariableSRW
WakeConditionVariable
SleepConditionVariableCS
WakeAllConditionVariable
InitializeConditionVariable
InitOnceExecuteOnce
api-ms-win-core-fibers-l1-1-0
FlsGetValue
FlsAlloc
FlsFree
FlsSetValue
api-ms-win-core-file-l2-1-0
GetFileInformationByHandleEx
CreateSymbolicLinkW
api-ms-win-core-interlocked-l1-1-0
InterlockedPushEntrySList
InterlockedFlushSList
InitializeSListHead
api-ms-win-core-processenvironment-l1-1-0
GetCommandLineW
GetCommandLineA
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetStdHandle
GetEnvironmentStringsW
api-ms-win-core-file-l1-2-0
GetTempPathW
api-ms-win-core-fibers-l1-1-1
IsThreadAFiber
api-ms-win-core-datetime-l1-1-0
GetDateFormatW
GetTimeFormatW
api-ms-win-core-console-l1-1-0
GetConsoleMode
ReadConsoleW
SetConsoleCtrlHandler
GetConsoleOutputCP
WriteConsoleW
api-ms-win-core-timezone-l1-1-0
GetTimeZoneInformation
Exports
Exports
D3D12GetInterface
D3D12SDKVersion
Sections
.text Size: 2.9MB - Virtual size: 2.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text_hf Size: 550KB - Virtual size: 550KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 121KB - Virtual size: 162KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 271KB - Virtual size: 271KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.DDIData Size: 512B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 79KB - Virtual size: 79KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 52KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/d3dcompiler_47.dll.dll windows:10 windows x64 arch:x64
Password: infected
4004e7f7eff525b82926d9696cb4db19
Code Sign
33:00:00:00:c3:3b:b8:10:d6:ab:75:9c:84:00:00:00:00:00:c3Certificate
IssuerCN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before07-09-2016 17:58Not After07-09-2018 17:58SubjectCN=Microsoft Time-Stamp Service,OU=AOC+OU=nCipher DSE ESN:D236-37DA-9761,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageTimeStamping
33:00:00:01:79:7c:2e:57:4e:52:e1:ca:d6:00:01:00:00:01:79Certificate
IssuerCN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before11-08-2017 20:11Not After11-08-2018 20:11SubjectCN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:33:26:1a:00:00:00:00:00:31Certificate
IssuerCN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6dNot Before31-08-2010 22:19Not After31-08-2020 22:29SubjectCN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
61:16:68:34:00:00:00:00:00:1cCertificate
IssuerCN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6dNot Before03-04-2007 12:53Not After03-04-2021 13:03SubjectCN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:ccCertificate
IssuerCN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before12-09-2017 18:07Not After12-09-2018 18:07SubjectCN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:0c:52:4c:00:00:00:00:00:03Certificate
IssuerCN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before06-07-2010 20:40Not After06-07-2025 20:50SubjectCN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
90:ac:68:cf:5d:17:21:66:80:b3:3a:75:5a:f7:9b:a8:cf:a4:a9:ea:0a:d8:7f:7f:64:68:e2:b3:93:a4:eb:9aSigner
Actual PE Digest90:ac:68:cf:5d:17:21:66:80:b3:3a:75:5a:f7:9b:a8:cf:a4:a9:ea:0a:d8:7f:7f:64:68:e2:b3:93:a4:eb:9aDigest Algorithmsha256PE Digest Matchestruefa:90:fa:70:4f:be:7b:a4:ac:bd:95:97:95:be:bb:d0:a7:a6:8b:11Signer
Actual PE Digestfa:90:fa:70:4f:be:7b:a4:ac:bd:95:97:95:be:bb:d0:a7:a6:8b:11Digest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
D3DCompiler_47.pdb
Imports
msvcrt
_unlock
_lock
??1type_info@@UEAA@XZ
strncpy_s
malloc
_strnicmp
atoi
isdigit
__C_specific_handler
_initterm
_amsg_exit
_XcptFilter
_callnewh
_isnan
_purecall
__isascii
_clearfp
_controlfp
_strdup
_mbstrlen
_vsnwprintf
strtoul
isxdigit
isalpha
atof
strchr
setlocale
strnlen
__dllonexit
modf
isspace
wcsncmp
wcsncpy_s
_wcsicmp
memcpy
memset
fclose
bsearch
qsort
strcat_s
strstr
_onexit
memcmp
strcmp
_snwprintf_s
__unDName
fread
fseek
_wfsopen
wcstoul
_fileno
sscanf_s
_filelengthi64
towlower
_wcsnicmp
_wsplitpath_s
wcscpy_s
wcsncat_s
wcsrchr
swprintf_s
_wfullpath
_wmakepath_s
_time64
_chsize_s
_close
_read
_write
_lseeki64
_get_osfhandle
_open_osfhandle
_wcsdup
wcscat_s
ftell
_mbscmp
_memicmp
_wgetenv
toupper
_atoi64
_errno
strtod
__CxxFrameHandler3
_strtoui64
?terminate@@YAXXZ
_CxxThrowException
tan
strrchr
tolower
_finite
_fpclass
memmove
strcpy_s
memcpy_s
isalnum
getenv
free
_stricmp
sprintf_s
_vsnprintf
strncmp
_wsopen
acos
asin
atan
atan2
ceil
cos
cosh
exp
floor
floorf
fmod
log
pow
sin
sinh
sqrt
tanh
kernel32
GetModuleFileNameA
GetEnvironmentVariableA
HeapCreate
lstrcmpiA
CreateFileA
SetLastError
FlushViewOfFile
MapViewOfFileEx
SetFilePointer
InitializeCriticalSectionAndSpinCount
ExpandEnvironmentStringsW
DeviceIoControl
SetFilePointerEx
SetEndOfFile
GetFileType
DeleteFileW
SetFileAttributesW
LCMapStringW
GetFileAttributesW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
LocalFree
LocalAlloc
LoadLibraryExW
DisableThreadLibraryCalls
MultiByteToWideChar
WideCharToMultiByte
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
HeapAlloc
GetProcessHeap
HeapFree
WriteFile
FreeLibrary
VirtualFree
VirtualAlloc
GetSystemInfo
CreateFileW
GetLastError
GetFileSizeEx
ReadFile
CloseHandle
Sleep
TlsAlloc
TlsSetValue
HeapDestroy
TlsGetValue
TlsFree
GetFullPathNameW
GetFullPathNameA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
GetProcAddress
advapi32
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW
CryptDestroyHash
RegCloseKey
rpcrt4
UuidCreate
Exports
Exports
D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute
Sections
.text Size: 3.1MB - Virtual size: 3.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 868KB - Virtual size: 867KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 38KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 125KB - Virtual size: 124KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/dbghelp.dll.dll windows:10 windows x64 arch:x64
Password: infected
a85654ad1c6f02f9037c7fb457c5ed50
Code Sign
33:00:00:02:cc:8e:b5:96:a6:bd:d1:c9:4e:00:00:00:00:02:ccCertificate
IssuerCN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before12-05-2022 20:46Not After11-05-2023 20:46SubjectCN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:0e:90:d2:00:00:00:00:00:03Certificate
IssuerCN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before08-07-2011 20:59Not After08-07-2026 21:09SubjectCN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
f0:cb:35:15:5c:d7:eb:90:cb:54:82:c5:db:7b:b2:9b:6b:59:10:a8:a5:04:de:da:07:94:0a:74:dd:04:99:c8Signer
Actual PE Digestf0:cb:35:15:5c:d7:eb:90:cb:54:82:c5:db:7b:b2:9b:6b:59:10:a8:a5:04:de:da:07:94:0a:74:dd:04:99:c8Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
dbghelp.pdb
Imports
api-ms-win-crt-string-l1-1-0
memset
strcspn
strncmp
wcsncmp
strnlen
strlen
strcmp
wcscmp
wcsnlen
api-ms-win-crt-time-l1-1-0
_ctime64
_time64
api-ms-win-crt-locale-l1-1-0
_unlock_locales
_lock_locales
api-ms-win-crt-runtime-l1-1-0
__doserrno
_initterm
_initterm_e
api-ms-win-crt-private-l1-1-0
_o__filelengthi64
_o__free_base
_o__fullpath
_o__initialize_narrow_environment
_o__initialize_onexit_table
_o__invalid_parameter_noinfo
_o__invalid_parameter_noinfo_noreturn
_o__itoa_s
_o__lseeki64
_o__ltoa
_o__malloc_base
_o__mbscmp
_o__memicmp
_o__open_osfhandle
_o__purecall
_o__read
_o__register_onexit_function
_o__seh_filter_dll
_o__splitpath_s
_o__stricmp
_o__strlwr
_o__strnicmp
_o__aligned_malloc
_o__wcsdup
_o__wcsicmp
_o__wcslwr
_o__wcsnicmp
_o__wctime64
_o__wdupenv_s
_o__wfsopen
_o__wfullpath
_o__wgetenv
_o__wmakepath_s
_o__wsplitpath_s
_o__wtoi
_o_abort
_o_atoi
_o_atol
_o_bsearch
_o_calloc
_o_ceilf
_o_fclose
_o_fflush
_o_fread
_o_free
_o_frexp
_o_fseek
_o_ftell
_o_isspace
_o_iswprint
_o_iswspace
_o_iswxdigit
_o_localeconv
_o_malloc
_o_qsort
_o_realloc
_o_setlocale
_o_strcat_s
_o_strcpy_s
_o_strncat_s
_o_strncpy_s
_o_terminate
_o_tolower
_o_towlower
_o_wcscat_s
_o_wcscpy_s
_o_wcsncat_s
_o_wcsncpy_s
_o_wcstoul
_o_wmemcpy_s
__uncaught_exception
_o__aligned_free
_CxxThrowException
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsscanf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsprintf
_o___stdio_common_vsnwprintf_s
_o___stdio_common_vsnprintf_s
_o__execute_onexit_table
_o___stdio_common_vfprintf
_o__errno
_o___std_type_info_destroy_list
_o___std_exception_destroy
_o___std_exception_copy
_o___pctype_func
_o__crt_atexit
_o__configure_narrow_argv
_o__close
_o__cexit
_o__calloc_base
_o__callnewh
_o____mb_cur_max_func
_o____lc_locale_name_func
_o____lc_codepage_func
wcsrchr
strstr
wcsstr
wcschr
__C_specific_handler
__CxxFrameHandler3
strchr
memcpy
memmove
memcmp
__unDName
strrchr
__unDNameEx
api-ms-win-core-file-l1-1-0
ReadFile
CreateFileA
FindClose
RemoveDirectoryW
CreateDirectoryW
DeleteFileW
SetEndOfFile
SetFilePointer
GetFullPathNameW
GetFileSize
GetFileAttributesW
CreateFileW
SetFilePointerEx
CreateDirectoryA
GetFileType
WriteFile
FindNextFileW
SetFileAttributesW
SetFileTime
FindFirstFileW
GetFileAttributesA
GetFinalPathNameByHandleW
GetFileInformationByHandle
GetFileSizeEx
api-ms-win-core-errorhandling-l1-1-0
SetUnhandledExceptionFilter
SetErrorMode
GetLastError
SetLastError
RaiseException
UnhandledExceptionFilter
api-ms-win-core-synch-l1-1-0
InitializeCriticalSectionEx
OpenProcess
LeaveCriticalSection
EnterCriticalSection
TryAcquireSRWLockExclusive
InitializeCriticalSection
ReleaseSRWLockExclusive
InitializeCriticalSectionAndSpinCount
InitializeSRWLock
ReleaseSRWLockShared
AcquireSRWLockExclusive
DeleteCriticalSection
AcquireSRWLockShared
api-ms-win-core-processenvironment-l1-1-0
SetEnvironmentVariableA
GetEnvironmentVariableW
ExpandEnvironmentStringsW
api-ms-win-core-misc-l1-1-0
LocalFree
FormatMessageW
LocalAlloc
Sleep
api-ms-win-core-debug-l1-1-0
DebugBreak
OutputDebugStringW
IsDebuggerPresent
OutputDebugStringA
api-ms-win-core-handle-l1-1-0
CloseHandle
DuplicateHandle
api-ms-win-core-processthreads-l1-1-0
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TerminateProcess
GetCurrentThread
OpenThreadToken
TlsGetValue
GetCurrentProcessId
TlsFree
api-ms-win-core-heap-l1-1-0
HeapAlloc
HeapFree
GetProcessHeap
HeapReAlloc
api-ms-win-core-sysinfo-l1-1-0
GetVersionExA
GetSystemInfo
GetSystemDirectoryW
GetSystemTime
GetSystemTimeAsFileTime
GetTickCount
SystemTimeToFileTime
api-ms-win-core-libraryloader-l1-1-0
GetModuleFileNameW
LoadLibraryExW
FreeLibrary
GetModuleHandleA
GetProcAddress
GetModuleHandleW
LoadLibraryExA
GetModuleHandleExW
api-ms-win-security-base-l1-1-0
ImpersonateSelf
GetFileSecurityW
RevertToSelf
AccessCheck
api-ms-win-core-string-l1-1-0
MultiByteToWideChar
GetStringTypeW
WideCharToMultiByte
api-ms-win-core-memory-l1-1-0
VirtualFree
VirtualQuery
MapViewOfFile
CreateFileMappingW
UnmapViewOfFile
VirtualAlloc
VirtualProtect
MapViewOfFileEx
ReadProcessMemory
api-ms-win-core-rtlsupport-l1-1-0
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
api-ms-win-core-util-l1-1-0
EncodePointer
DecodePointer
api-ms-win-core-localization-l1-1-0
LCMapStringW
LCMapStringEx
api-ms-win-core-interlocked-l1-1-0
InitializeSListHead
api-ms-win-core-com-l1-1-0
CoTaskMemFree
CoTaskMemAlloc
oleaut32
SysFreeString
ntdll
RtlUTF8ToUnicodeN
RtlRunOnceExecuteOnce
api-ms-win-downlevel-kernel32-l2-1-0
CreateFileMappingA
api-ms-win-core-localregistry-l1-1-0
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
api-ms-win-core-io-l1-1-0
DeviceIoControl
api-ms-win-core-threadpool-l1-1-0
CreateThreadpoolWork
CloseThreadpoolWork
WaitForThreadpoolWorkCallbacks
SubmitThreadpoolWork
api-ms-win-core-sysinfo-l1-2-0
GetNativeSystemInfo
Exports
Exports
DbgHelpCreateUserDump
DbgHelpCreateUserDumpW
EnumDirTree
EnumDirTreeW
EnumerateLoadedModules
EnumerateLoadedModules64
EnumerateLoadedModulesEx
EnumerateLoadedModulesExW
EnumerateLoadedModulesW64
ExtensionApiVersion
FindDebugInfoFile
FindDebugInfoFileEx
FindDebugInfoFileExW
FindExecutableImage
FindExecutableImageEx
FindExecutableImageExW
FindFileInPath
FindFileInSearchPath
GetSymLoadError
GetTimestampForLoadedLibrary
ImageDirectoryEntryToData
ImageDirectoryEntryToDataEx
ImageNtHeader
ImageRvaToSection
ImageRvaToVa
ImagehlpApiVersion
ImagehlpApiVersionEx
MakeSureDirectoryPathExists
MiniDumpReadDumpStream
MiniDumpWriteDump
RangeMapAddPeImageSections
RangeMapCreate
RangeMapFree
RangeMapRead
RangeMapRemove
RangeMapWrite
RemoveInvalidModuleList
ReportSymbolLoadSummary
SearchTreeForFile
SearchTreeForFileW
SetCheckUserInterruptShared
SetSymLoadError
StackWalk
StackWalk2
StackWalk64
StackWalkEx
SymAddSourceStream
SymAddSourceStreamA
SymAddSourceStreamW
SymAddSymbol
SymAddSymbolW
SymAddrIncludeInlineTrace
SymAllocDiaString
SymCleanup
SymCompareInlineTrace
SymDeleteSymbol
SymDeleteSymbolW
SymEnumLines
SymEnumLinesW
SymEnumProcesses
SymEnumSourceFileTokens
SymEnumSourceFiles
SymEnumSourceFilesW
SymEnumSourceLines
SymEnumSourceLinesW
SymEnumSym
SymEnumSymbols
SymEnumSymbolsEx
SymEnumSymbolsExW
SymEnumSymbolsForAddr
SymEnumSymbolsForAddrW
SymEnumSymbolsW
SymEnumTypes
SymEnumTypesByName
SymEnumTypesByNameW
SymEnumTypesW
SymEnumerateModules
SymEnumerateModules64
SymEnumerateModulesW64
SymEnumerateSymbols
SymEnumerateSymbols64
SymEnumerateSymbolsW
SymEnumerateSymbolsW64
SymFindDebugInfoFile
SymFindDebugInfoFileW
SymFindExecutableImage
SymFindExecutableImageW
SymFindFileInPath
SymFindFileInPathW
SymFreeDiaString
SymFromAddr
SymFromAddrW
SymFromIndex
SymFromIndexW
SymFromInlineContext
SymFromInlineContextW
SymFromName
SymFromNameW
SymFromToken
SymFromTokenW
SymFunctionTableAccess
SymFunctionTableAccess64
SymFunctionTableAccess64AccessRoutines
SymGetDiaSession
SymGetDiaSource
SymGetExtendedOption
SymGetFileLineOffsets64
SymGetHomeDirectory
SymGetHomeDirectoryW
SymGetLineFromAddr
SymGetLineFromAddr64
SymGetLineFromAddrEx
SymGetLineFromAddrW64
SymGetLineFromInlineContext
SymGetLineFromInlineContextW
SymGetLineFromName
SymGetLineFromName64
SymGetLineFromNameEx
SymGetLineFromNameW64
SymGetLineNext
SymGetLineNext64
SymGetLineNextEx
SymGetLineNextW64
SymGetLinePrev
SymGetLinePrev64
SymGetLinePrevEx
SymGetLinePrevW64
SymGetModuleBase
SymGetModuleBase64
SymGetModuleInfo
SymGetModuleInfo64
SymGetModuleInfoW
SymGetModuleInfoW64
SymGetOmapBlockBase
SymGetOmaps
SymGetOptions
SymGetParentWindow
SymGetScope
SymGetScopeW
SymGetSearchPath
SymGetSearchPathW
SymGetSourceFile
SymGetSourceFileChecksum
SymGetSourceFileChecksumW
SymGetSourceFileFromToken
SymGetSourceFileFromTokenByTokenName
SymGetSourceFileFromTokenByTokenNameW
SymGetSourceFileFromTokenW
SymGetSourceFileToken
SymGetSourceFileTokenByTokenName
SymGetSourceFileTokenByTokenNameW
SymGetSourceFileTokenW
SymGetSourceFileW
SymGetSourceVarFromToken
SymGetSourceVarFromTokenW
SymGetSymFromAddr
SymGetSymFromAddr64
SymGetSymFromName
SymGetSymFromName64
SymGetSymNext
SymGetSymNext64
SymGetSymPrev
SymGetSymPrev64
SymGetSymbolFile
SymGetSymbolFileW
SymGetTypeFromName
SymGetTypeFromNameW
SymGetTypeInfo
SymGetTypeInfoEx
SymGetUnwindInfo
SymInitialize
SymInitializeW
SymLoadModule
SymLoadModule64
SymLoadModuleEx
SymLoadModuleExW
SymMatchFileName
SymMatchFileNameW
SymMatchString
SymMatchStringA
SymMatchStringW
SymNext
SymNextW
SymPrev
SymPrevW
SymQueryInlineTrace
SymRefreshModuleList
SymRegisterCallback
SymRegisterCallback64
SymRegisterCallbackW64
SymRegisterFunctionEntryCallback
SymRegisterFunctionEntryCallback64
SymRegisterGetSourcePathPartCallback
SymRegisterSourceFileUrlListCallback
SymSearch
SymSearchW
SymSetContext
SymSetDiaSession
SymSetExtendedOption
SymSetHomeDirectory
SymSetHomeDirectoryW
SymSetOptions
SymSetParentWindow
SymSetScopeFromAddr
SymSetScopeFromIndex
SymSetScopeFromInlineContext
SymSetSearchPath
SymSetSearchPathW
SymSetServiceManager
SymSrvDeltaName
SymSrvDeltaNameW
SymSrvGetFileIndexInfo
SymSrvGetFileIndexInfoW
SymSrvGetFileIndexString
SymSrvGetFileIndexStringW
SymSrvGetFileIndexes
SymSrvGetFileIndexesW
SymSrvGetSupplement
SymSrvGetSupplementW
SymSrvIsStore
SymSrvIsStoreW
SymSrvStoreFile
SymSrvStoreFileW
SymSrvStoreSupplement
SymSrvStoreSupplementW
SymUnDName
SymUnDName64
SymUnloadModule
SymUnloadModule64
UnDecorateSymbolName
UnDecorateSymbolNameW
WinDbgExtensionDllInit
_EFN_DumpImage
block
chksym
dbghelp
dh
fptr
homedir
inlinedbg
itoldyouso
lmi
lminfo
omap
optdbgdump
optdbgdumpaddr
srcfiles
stack_force_ebp
stackdbg
sym
vc7fpo
Sections
.text Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 396KB - Virtual size: 394KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 80KB - Virtual size: 78KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 4KB - Virtual size: 56B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.mrdata Size: 16KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/libEGL.dll.dll windows:5 windows x64 arch:x64
Password: infected
585861b958c9f1fe9cc0324e1020a230
Code Sign
77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate
IssuerCN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BENot Before28-07-2020 00:00Not After28-07-2030 00:00SubjectCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BEExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
59:dd:d2:bf:a6:72:e1:01:5a:f0:0f:f1Certificate
IssuerCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BENot Before16-05-2024 13:07Not After17-05-2025 13:07SubjectSERIALNUMBER=556821-8225,CN=Coffee Stain Studios AB,O=Coffee Stain Studios AB,STREET=Hertig Johans Gata 6,L=Skövde,ST=Västra Götaland,C=SE,1.2.840.113549.1.9.1=#0c14637373697440636f66666565737461696e2e7365,1.3.6.1.4.1.311.60.2.1.3=#13025345,2.5.4.15=#131450726976617465204f7267616e697a6174696f6eExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before26-09-2024 00:00Not After25-11-2035 23:59SubjectCN=DigiCert Timestamp 2024,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
93:be:bc:ec:0a:29:14:e0:93:af:48:39:51:f4:74:3e:b9:5b:ec:07:d2:0b:b0:75:fa:9a:cb:05:ce:8c:ed:5fSigner
Actual PE Digest93:be:bc:ec:0a:29:14:e0:93:af:48:39:51:f4:74:3e:b9:5b:ec:07:d2:0b:b0:75:fa:9a:cb:05:ce:8c:ed:5fDigest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
libEGL.dll.pdb
Imports
kernel32
AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
Exports
Exports
eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglClientWaitSyncKHR
eglCopyBuffers
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreateNativeClientBufferANDROID
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurface
eglCreatePlatformWindowSurfaceEXT
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureANGLE
eglCreateSync
eglCreateSyncKHR
eglCreateWindowSurface
eglDebugMessageControlKHR
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglDestroySyncKHR
eglDupNativeFenceFDANDROID
eglGetCompositorTimingANDROID
eglGetCompositorTimingSupportedANDROID
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetFrameTimestampSupportedANDROID
eglGetFrameTimestampsANDROID
eglGetMscRateANGLE
eglGetNativeClientBufferANDROID
eglGetNextFrameIdANDROID
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncAttribKHR
eglGetSyncValuesCHROMIUM
eglHandleGPUSwitchANGLE
eglInitialize
eglLabelObjectKHR
eglMakeCurrent
eglPostSubBufferNV
eglPresentationTimeANDROID
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDebugKHR
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribANGLE
eglQueryDisplayAttribEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQueryStringiANGLE
eglQuerySurface
eglQuerySurfacePointerANGLE
eglReacquireHighPowerGPUANGLE
eglReleaseDeviceANGLE
eglReleaseHighPowerGPUANGLE
eglReleaseTexImage
eglReleaseThread
eglSetBlobCacheFuncsANDROID
eglSignalSyncKHR
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageKHR
eglSwapBuffersWithFrameTokenANGLE
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync
eglWaitSyncKHR
Sections
.text Size: 271KB - Virtual size: 271KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 91KB - Virtual size: 90KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 15KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.00cfg Size: 512B - Virtual size: 40B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gehcont Size: 512B - Virtual size: 80B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 289B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.voltbl Size: 512B - Virtual size: 56B
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/libGLESv2.dll.dll windows:5 windows x64 arch:x64
Password: infected
62b94bd6c48f8e0f6d82aa2752720dbe
Code Sign
77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate
IssuerCN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BENot Before28-07-2020 00:00Not After28-07-2030 00:00SubjectCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BEExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
59:dd:d2:bf:a6:72:e1:01:5a:f0:0f:f1Certificate
IssuerCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BENot Before16-05-2024 13:07Not After17-05-2025 13:07SubjectSERIALNUMBER=556821-8225,CN=Coffee Stain Studios AB,O=Coffee Stain Studios AB,STREET=Hertig Johans Gata 6,L=Skövde,ST=Västra Götaland,C=SE,1.2.840.113549.1.9.1=#0c14637373697440636f66666565737461696e2e7365,1.3.6.1.4.1.311.60.2.1.3=#13025345,2.5.4.15=#131450726976617465204f7267616e697a6174696f6eExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before26-09-2024 00:00Not After25-11-2035 23:59SubjectCN=DigiCert Timestamp 2024,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
9c:c8:bd:6a:3d:58:59:6d:91:d4:39:e8:aa:2a:e6:c1:64:26:2a:55:f2:43:72:3a:06:d7:63:12:98:94:2e:13Signer
Actual PE Digest9c:c8:bd:6a:3d:58:59:6d:91:d4:39:e8:aa:2a:e6:c1:64:26:2a:55:f2:43:72:3a:06:d7:63:12:98:94:2e:13Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
libGLESv2.dll.pdb
Imports
user32
CreateWindowExA
CreateWindowExW
DefWindowProcA
DestroyWindow
GetClassInfoA
GetClientRect
GetDC
GetWindowThreadProcessId
InvalidateRect
IsIconic
IsWindow
LoadCursorA
RegisterClassA
ReleaseDC
UnregisterClassA
WindowFromDC
kernel32
AcquireSRWLockExclusive
AcquireSRWLockShared
CloseHandle
CompareStringW
CreateEventW
CreateFileW
CreateMutexW
CreateThread
DeleteCriticalSection
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
dxgi
CreateDXGIFactory
CreateDXGIFactory1
gdi32
ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers
Exports
Exports
??0PlatformMethods@angle@@QEAA@XZ
??4PlatformMethods@angle@@QEAAAEAU01@$$QEAU01@@Z
??4PlatformMethods@angle@@QEAAAEAU01@AEBU01@@Z
ANGLEGetDisplayPlatform
ANGLEResetDisplayPlatform
EGL_BindAPI
EGL_BindTexImage
EGL_ChooseConfig
EGL_ClientWaitSync
EGL_ClientWaitSyncKHR
EGL_CopyBuffers
EGL_CreateContext
EGL_CreateDeviceANGLE
EGL_CreateImage
EGL_CreateImageKHR
EGL_CreateNativeClientBufferANDROID
EGL_CreatePbufferFromClientBuffer
EGL_CreatePbufferSurface
EGL_CreatePixmapSurface
EGL_CreatePlatformPixmapSurface
EGL_CreatePlatformPixmapSurfaceEXT
EGL_CreatePlatformWindowSurface
EGL_CreatePlatformWindowSurfaceEXT
EGL_CreateStreamKHR
EGL_CreateStreamProducerD3DTextureANGLE
EGL_CreateSync
EGL_CreateSyncKHR
EGL_CreateWindowSurface
EGL_DebugMessageControlKHR
EGL_DestroyContext
EGL_DestroyImage
EGL_DestroyImageKHR
EGL_DestroyStreamKHR
EGL_DestroySurface
EGL_DestroySync
EGL_DestroySyncKHR
EGL_DupNativeFenceFDANDROID
EGL_GetCompositorTimingANDROID
EGL_GetCompositorTimingSupportedANDROID
EGL_GetConfigAttrib
EGL_GetConfigs
EGL_GetCurrentContext
EGL_GetCurrentDisplay
EGL_GetCurrentSurface
EGL_GetDisplay
EGL_GetError
EGL_GetFrameTimestampSupportedANDROID
EGL_GetFrameTimestampsANDROID
EGL_GetMscRateANGLE
EGL_GetNativeClientBufferANDROID
EGL_GetNextFrameIdANDROID
EGL_GetPlatformDisplay
EGL_GetPlatformDisplayEXT
EGL_GetProcAddress
EGL_GetSyncAttrib
EGL_GetSyncAttribKHR
EGL_GetSyncValuesCHROMIUM
EGL_HandleGPUSwitchANGLE
EGL_Initialize
EGL_LabelObjectKHR
EGL_MakeCurrent
EGL_PostSubBufferNV
EGL_PresentationTimeANDROID
EGL_ProgramCacheGetAttribANGLE
EGL_ProgramCachePopulateANGLE
EGL_ProgramCacheQueryANGLE
EGL_ProgramCacheResizeANGLE
EGL_QueryAPI
EGL_QueryContext
EGL_QueryDebugKHR
EGL_QueryDeviceAttribEXT
EGL_QueryDeviceStringEXT
EGL_QueryDisplayAttribANGLE
EGL_QueryDisplayAttribEXT
EGL_QueryStreamKHR
EGL_QueryStreamu64KHR
EGL_QueryString
EGL_QueryStringiANGLE
EGL_QuerySurface
EGL_QuerySurfacePointerANGLE
EGL_ReacquireHighPowerGPUANGLE
EGL_ReleaseDeviceANGLE
EGL_ReleaseHighPowerGPUANGLE
EGL_ReleaseTexImage
EGL_ReleaseThread
EGL_SetBlobCacheFuncsANDROID
EGL_SignalSyncKHR
EGL_StreamAttribKHR
EGL_StreamConsumerAcquireKHR
EGL_StreamConsumerGLTextureExternalAttribsNV
EGL_StreamConsumerGLTextureExternalKHR
EGL_StreamConsumerReleaseKHR
EGL_StreamPostD3DTextureANGLE
EGL_SurfaceAttrib
EGL_SwapBuffers
EGL_SwapBuffersWithDamageKHR
EGL_SwapBuffersWithFrameTokenANGLE
EGL_SwapInterval
EGL_Terminate
EGL_WaitClient
EGL_WaitGL
EGL_WaitNative
EGL_WaitSync
EGL_WaitSyncKHR
GL_ActiveShaderProgram
GL_ActiveShaderProgramContextANGLE
GL_ActiveShaderProgramEXT
GL_ActiveShaderProgramEXTContextANGLE
GL_ActiveTexture
GL_ActiveTextureContextANGLE
GL_AlphaFunc
GL_AlphaFuncContextANGLE
GL_AlphaFuncx
GL_AlphaFuncxContextANGLE
GL_AttachShader
GL_AttachShaderContextANGLE
GL_BeginQuery
GL_BeginQueryContextANGLE
GL_BeginQueryEXT
GL_BeginQueryEXTContextANGLE
GL_BeginTransformFeedback
GL_BeginTransformFeedbackContextANGLE
GL_BindAttribLocation
GL_BindAttribLocationContextANGLE
GL_BindBuffer
GL_BindBufferBase
GL_BindBufferBaseContextANGLE
GL_BindBufferContextANGLE
GL_BindBufferRange
GL_BindBufferRangeContextANGLE
GL_BindFragDataLocationEXT
GL_BindFragDataLocationEXTContextANGLE
GL_BindFragDataLocationIndexedEXT
GL_BindFragDataLocationIndexedEXTContextANGLE
GL_BindFramebuffer
GL_BindFramebufferContextANGLE
GL_BindFramebufferOES
GL_BindFramebufferOESContextANGLE
GL_BindImageTexture
GL_BindImageTextureContextANGLE
GL_BindProgramPipeline
GL_BindProgramPipelineContextANGLE
GL_BindProgramPipelineEXT
GL_BindProgramPipelineEXTContextANGLE
GL_BindRenderbuffer
GL_BindRenderbufferContextANGLE
GL_BindRenderbufferOES
GL_BindRenderbufferOESContextANGLE
GL_BindSampler
GL_BindSamplerContextANGLE
GL_BindTexture
GL_BindTextureContextANGLE
GL_BindTransformFeedback
GL_BindTransformFeedbackContextANGLE
GL_BindUniformLocationCHROMIUM
GL_BindUniformLocationCHROMIUMContextANGLE
GL_BindVertexArray
GL_BindVertexArrayContextANGLE
GL_BindVertexArrayOES
GL_BindVertexArrayOESContextANGLE
GL_BindVertexBuffer
GL_BindVertexBufferContextANGLE
GL_BlendBarrier
GL_BlendBarrierContextANGLE
GL_BlendColor
GL_BlendColorContextANGLE
GL_BlendEquation
GL_BlendEquationContextANGLE
GL_BlendEquationSeparate
GL_BlendEquationSeparateContextANGLE
GL_BlendEquationSeparatei
GL_BlendEquationSeparateiContextANGLE
GL_BlendEquationSeparateiEXT
GL_BlendEquationSeparateiEXTContextANGLE
GL_BlendEquationSeparateiOES
GL_BlendEquationSeparateiOESContextANGLE
GL_BlendEquationi
GL_BlendEquationiContextANGLE
GL_BlendEquationiEXT
GL_BlendEquationiEXTContextANGLE
GL_BlendEquationiOES
GL_BlendEquationiOESContextANGLE
GL_BlendFunc
GL_BlendFuncContextANGLE
GL_BlendFuncSeparate
GL_BlendFuncSeparateContextANGLE
GL_BlendFuncSeparatei
GL_BlendFuncSeparateiContextANGLE
GL_BlendFuncSeparateiEXT
GL_BlendFuncSeparateiEXTContextANGLE
GL_BlendFuncSeparateiOES
GL_BlendFuncSeparateiOESContextANGLE
GL_BlendFunci
GL_BlendFunciContextANGLE
GL_BlendFunciEXT
GL_BlendFunciEXTContextANGLE
GL_BlendFunciOES
GL_BlendFunciOESContextANGLE
GL_BlitFramebuffer
GL_BlitFramebufferANGLE
GL_BlitFramebufferANGLEContextANGLE
GL_BlitFramebufferContextANGLE
GL_BlitFramebufferNV
GL_BlitFramebufferNVContextANGLE
GL_BufferData
GL_BufferDataContextANGLE
GL_BufferStorageEXT
GL_BufferStorageEXTContextANGLE
GL_BufferStorageExternalEXT
GL_BufferStorageExternalEXTContextANGLE
GL_BufferStorageMemEXT
GL_BufferStorageMemEXTContextANGLE
GL_BufferSubData
GL_BufferSubDataContextANGLE
GL_CheckFramebufferStatus
GL_CheckFramebufferStatusContextANGLE
GL_CheckFramebufferStatusOES
GL_CheckFramebufferStatusOESContextANGLE
GL_Clear
GL_ClearBufferfi
GL_ClearBufferfiContextANGLE
GL_ClearBufferfv
GL_ClearBufferfvContextANGLE
GL_ClearBufferiv
GL_ClearBufferivContextANGLE
GL_ClearBufferuiv
GL_ClearBufferuivContextANGLE
GL_ClearColor
GL_ClearColorContextANGLE
GL_ClearColorx
GL_ClearColorxContextANGLE
GL_ClearContextANGLE
GL_ClearDepthf
GL_ClearDepthfContextANGLE
GL_ClearDepthx
GL_ClearDepthxContextANGLE
GL_ClearStencil
GL_ClearStencilContextANGLE
GL_ClientActiveTexture
GL_ClientActiveTextureContextANGLE
GL_ClientWaitSync
GL_ClientWaitSyncContextANGLE
GL_ClipControlEXT
GL_ClipControlEXTContextANGLE
GL_ClipPlanef
GL_ClipPlanefContextANGLE
GL_ClipPlanex
GL_ClipPlanexContextANGLE
GL_Color4f
GL_Color4fContextANGLE
GL_Color4ub
GL_Color4ubContextANGLE
GL_Color4x
GL_Color4xContextANGLE
GL_ColorMask
GL_ColorMaskContextANGLE
GL_ColorMaski
GL_ColorMaskiContextANGLE
GL_ColorMaskiEXT
GL_ColorMaskiEXTContextANGLE
GL_ColorMaskiOES
GL_ColorMaskiOESContextANGLE
GL_ColorPointer
GL_ColorPointerContextANGLE
GL_CompileShader
GL_CompileShaderContextANGLE
GL_CompressedCopyTextureCHROMIUM
GL_CompressedCopyTextureCHROMIUMContextANGLE
GL_CompressedTexImage2D
GL_CompressedTexImage2DContextANGLE
GL_CompressedTexImage2DRobustANGLE
GL_CompressedTexImage2DRobustANGLEContextANGLE
GL_CompressedTexImage3D
GL_CompressedTexImage3DContextANGLE
GL_CompressedTexImage3DOES
GL_CompressedTexImage3DOESContextANGLE
GL_CompressedTexImage3DRobustANGLE
GL_CompressedTexImage3DRobustANGLEContextANGLE
GL_CompressedTexSubImage2D
GL_CompressedTexSubImage2DContextANGLE
GL_CompressedTexSubImage2DRobustANGLE
GL_CompressedTexSubImage2DRobustANGLEContextANGLE
GL_CompressedTexSubImage3D
GL_CompressedTexSubImage3DContextANGLE
GL_CompressedTexSubImage3DOES
GL_CompressedTexSubImage3DOESContextANGLE
GL_CompressedTexSubImage3DRobustANGLE
GL_CompressedTexSubImage3DRobustANGLEContextANGLE
GL_CopyBufferSubData
GL_CopyBufferSubDataContextANGLE
GL_CopyImageSubData
GL_CopyImageSubDataContextANGLE
GL_CopyImageSubDataEXT
GL_CopyImageSubDataEXTContextANGLE
GL_CopyImageSubDataOES
GL_CopyImageSubDataOESContextANGLE
GL_CopySubTexture3DANGLE
GL_CopySubTexture3DANGLEContextANGLE
GL_CopySubTextureCHROMIUM
GL_CopySubTextureCHROMIUMContextANGLE
GL_CopyTexImage2D
GL_CopyTexImage2DContextANGLE
GL_CopyTexSubImage2D
GL_CopyTexSubImage2DContextANGLE
GL_CopyTexSubImage3D
GL_CopyTexSubImage3DContextANGLE
GL_CopyTexSubImage3DOES
GL_CopyTexSubImage3DOESContextANGLE
GL_CopyTexture3DANGLE
GL_CopyTexture3DANGLEContextANGLE
GL_CopyTextureCHROMIUM
GL_CopyTextureCHROMIUMContextANGLE
GL_CoverageModulationCHROMIUM
GL_CoverageModulationCHROMIUMContextANGLE
GL_CreateMemoryObjectsEXT
GL_CreateMemoryObjectsEXTContextANGLE
GL_CreateProgram
GL_CreateProgramContextANGLE
GL_CreateShader
GL_CreateShaderContextANGLE
GL_CreateShaderProgramv
GL_CreateShaderProgramvContextANGLE
GL_CreateShaderProgramvEXT
GL_CreateShaderProgramvEXTContextANGLE
GL_CullFace
GL_CullFaceContextANGLE
GL_CurrentPaletteMatrixOES
GL_CurrentPaletteMatrixOESContextANGLE
GL_DebugMessageCallback
GL_DebugMessageCallbackContextANGLE
GL_DebugMessageCallbackKHR
GL_DebugMessageCallbackKHRContextANGLE
GL_DebugMessageControl
GL_DebugMessageControlContextANGLE
GL_DebugMessageControlKHR
GL_DebugMessageControlKHRContextANGLE
GL_DebugMessageInsert
GL_DebugMessageInsertContextANGLE
GL_DebugMessageInsertKHR
GL_DebugMessageInsertKHRContextANGLE
GL_DeleteBuffers
GL_DeleteBuffersContextANGLE
GL_DeleteFencesNV
GL_DeleteFencesNVContextANGLE
GL_DeleteFramebuffers
GL_DeleteFramebuffersContextANGLE
GL_DeleteFramebuffersOES
GL_DeleteFramebuffersOESContextANGLE
GL_DeleteMemoryObjectsEXT
GL_DeleteMemoryObjectsEXTContextANGLE
GL_DeleteProgram
GL_DeleteProgramContextANGLE
GL_DeleteProgramPipelines
GL_DeleteProgramPipelinesContextANGLE
GL_DeleteProgramPipelinesEXT
GL_DeleteProgramPipelinesEXTContextANGLE
GL_DeleteQueries
GL_DeleteQueriesContextANGLE
GL_DeleteQueriesEXT
GL_DeleteQueriesEXTContextANGLE
GL_DeleteRenderbuffers
GL_DeleteRenderbuffersContextANGLE
GL_DeleteRenderbuffersOES
GL_DeleteRenderbuffersOESContextANGLE
GL_DeleteSamplers
GL_DeleteSamplersContextANGLE
GL_DeleteSemaphoresEXT
GL_DeleteSemaphoresEXTContextANGLE
GL_DeleteShader
GL_DeleteShaderContextANGLE
GL_DeleteSync
GL_DeleteSyncContextANGLE
GL_DeleteTextures
GL_DeleteTexturesContextANGLE
GL_DeleteTransformFeedbacks
GL_DeleteTransformFeedbacksContextANGLE
GL_DeleteVertexArrays
GL_DeleteVertexArraysContextANGLE
GL_DeleteVertexArraysOES
GL_DeleteVertexArraysOESContextANGLE
GL_DepthFunc
GL_DepthFuncContextANGLE
GL_DepthMask
GL_DepthMaskContextANGLE
GL_DepthRangef
GL_DepthRangefContextANGLE
GL_DepthRangex
GL_DepthRangexContextANGLE
GL_DetachShader
GL_DetachShaderContextANGLE
GL_Disable
GL_DisableClientState
GL_DisableClientStateContextANGLE
GL_DisableContextANGLE
GL_DisableExtensionANGLE
GL_DisableExtensionANGLEContextANGLE
GL_DisableVertexAttribArray
GL_DisableVertexAttribArrayContextANGLE
GL_Disablei
GL_DisableiContextANGLE
GL_DisableiEXT
GL_DisableiEXTContextANGLE
GL_DisableiOES
GL_DisableiOESContextANGLE
GL_DiscardFramebufferEXT
GL_DiscardFramebufferEXTContextANGLE
GL_DispatchCompute
GL_DispatchComputeContextANGLE
GL_DispatchComputeIndirect
GL_DispatchComputeIndirectContextANGLE
GL_DrawArrays
GL_DrawArraysContextANGLE
GL_DrawArraysIndirect
GL_DrawArraysIndirectContextANGLE
GL_DrawArraysInstanced
GL_DrawArraysInstancedANGLE
GL_DrawArraysInstancedANGLEContextANGLE
GL_DrawArraysInstancedBaseInstanceANGLE
GL_DrawArraysInstancedBaseInstanceANGLEContextANGLE
GL_DrawArraysInstancedContextANGLE
GL_DrawArraysInstancedEXT
GL_DrawArraysInstancedEXTContextANGLE
GL_DrawBuffers
GL_DrawBuffersContextANGLE
GL_DrawBuffersEXT
GL_DrawBuffersEXTContextANGLE
GL_DrawElements
GL_DrawElementsBaseVertex
GL_DrawElementsBaseVertexContextANGLE
GL_DrawElementsBaseVertexEXT
GL_DrawElementsBaseVertexEXTContextANGLE
GL_DrawElementsBaseVertexOES
GL_DrawElementsBaseVertexOESContextANGLE
GL_DrawElementsContextANGLE
GL_DrawElementsIndirect
GL_DrawElementsIndirectContextANGLE
GL_DrawElementsInstanced
GL_DrawElementsInstancedANGLE
GL_DrawElementsInstancedANGLEContextANGLE
GL_DrawElementsInstancedBaseVertex
GL_DrawElementsInstancedBaseVertexBaseInstanceANGLE
GL_DrawElementsInstancedBaseVertexBaseInstanceANGLEContextANGLE
GL_DrawElementsInstancedBaseVertexContextANGLE
GL_DrawElementsInstancedBaseVertexEXT
GL_DrawElementsInstancedBaseVertexEXTContextANGLE
GL_DrawElementsInstancedBaseVertexOES
GL_DrawElementsInstancedBaseVertexOESContextANGLE
GL_DrawElementsInstancedContextANGLE
GL_DrawElementsInstancedEXT
GL_DrawElementsInstancedEXTContextANGLE
GL_DrawRangeElements
GL_DrawRangeElementsBaseVertex
GL_DrawRangeElementsBaseVertexContextANGLE
GL_DrawRangeElementsBaseVertexEXT
GL_DrawRangeElementsBaseVertexEXTContextANGLE
GL_DrawRangeElementsBaseVertexOES
GL_DrawRangeElementsBaseVertexOESContextANGLE
GL_DrawRangeElementsContextANGLE
GL_DrawTexfOES
GL_DrawTexfOESContextANGLE
GL_DrawTexfvOES
GL_DrawTexfvOESContextANGLE
GL_DrawTexiOES
GL_DrawTexiOESContextANGLE
GL_DrawTexivOES
GL_DrawTexivOESContextANGLE
GL_DrawTexsOES
GL_DrawTexsOESContextANGLE
GL_DrawTexsvOES
GL_DrawTexsvOESContextANGLE
GL_DrawTexxOES
GL_DrawTexxOESContextANGLE
GL_DrawTexxvOES
GL_DrawTexxvOESContextANGLE
GL_EGLImageTargetRenderbufferStorageOES
GL_EGLImageTargetRenderbufferStorageOESContextANGLE
GL_EGLImageTargetTexture2DOES
GL_EGLImageTargetTexture2DOESContextANGLE
GL_Enable
GL_EnableClientState
GL_EnableClientStateContextANGLE
GL_EnableContextANGLE
GL_EnableVertexAttribArray
GL_EnableVertexAttribArrayContextANGLE
GL_Enablei
GL_EnableiContextANGLE
GL_EnableiEXT
GL_EnableiEXTContextANGLE
GL_EnableiOES
GL_EnableiOESContextANGLE
GL_EndQuery
GL_EndQueryContextANGLE
GL_EndQueryEXT
GL_EndQueryEXTContextANGLE
GL_EndTransformFeedback
GL_EndTransformFeedbackContextANGLE
GL_FenceSync
GL_FenceSyncContextANGLE
GL_Finish
GL_FinishContextANGLE
Sections
.text Size: 4.6MB - Virtual size: 4.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 253KB - Virtual size: 6.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 157KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.00cfg Size: 512B - Virtual size: 40B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gehcont Size: 512B - Virtual size: 88B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 305B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.voltbl Size: 512B - Virtual size: 70B
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/libogg_64.dll.dll windows:6 windows x64 arch:x64
Password: infected
3c3debc2ef7563148ac298f37a8145f3
Code Sign
77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate
IssuerCN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BENot Before28-07-2020 00:00Not After28-07-2030 00:00SubjectCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BEExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
59:dd:d2:bf:a6:72:e1:01:5a:f0:0f:f1Certificate
IssuerCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BENot Before16-05-2024 13:07Not After17-05-2025 13:07SubjectSERIALNUMBER=556821-8225,CN=Coffee Stain Studios AB,O=Coffee Stain Studios AB,STREET=Hertig Johans Gata 6,L=Skövde,ST=Västra Götaland,C=SE,1.2.840.113549.1.9.1=#0c14637373697440636f66666565737461696e2e7365,1.3.6.1.4.1.311.60.2.1.3=#13025345,2.5.4.15=#131450726976617465204f7267616e697a6174696f6eExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before26-09-2024 00:00Not After25-11-2035 23:59SubjectCN=DigiCert Timestamp 2024,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
6d:b4:2c:ed:ea:18:ba:2d:7c:61:79:48:9b:58:22:eb:84:83:e9:66:13:c0:c2:5c:a5:f1:e5:5d:c1:60:76:f1Signer
Actual PE Digest6d:b4:2c:ed:ea:18:ba:2d:7c:61:79:48:9b:58:22:eb:84:83:e9:66:13:c0:c2:5c:a5:f1:e5:5d:c1:60:76:f1Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
E:\Code\TBurnsVS2015\UE4\Engine\Source\Binaries\Win64\libogg_64.pdb
Imports
vcruntime140
__std_type_info_destroy_list
__C_specific_handler
__telemetry_main_return_trigger
__telemetry_main_invoke_trigger
memmove
memset
memcpy
memchr
api-ms-win-crt-heap-l1-1-0
free
realloc
malloc
api-ms-win-crt-runtime-l1-1-0
_crt_atexit
_execute_onexit_table
_register_onexit_function
_cexit
_initialize_narrow_environment
_seh_filter_dll
_initterm_e
_initterm
terminate
_initialize_onexit_table
_crt_at_quick_exit
kernel32
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetModuleHandleW
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
Exports
Exports
ogg_packet_clear
ogg_page_bos
ogg_page_checksum_set
ogg_page_continued
ogg_page_eos
ogg_page_granulepos
ogg_page_packets
ogg_page_pageno
ogg_page_serialno
ogg_page_version
ogg_stream_clear
ogg_stream_destroy
ogg_stream_eos
ogg_stream_flush
ogg_stream_init
ogg_stream_packetin
ogg_stream_packetout
ogg_stream_packetpeek
ogg_stream_pagein
ogg_stream_pageout
ogg_stream_reset
ogg_stream_reset_serialno
ogg_sync_buffer
ogg_sync_clear
ogg_sync_destroy
ogg_sync_init
ogg_sync_pageout
ogg_sync_pageseek
ogg_sync_reset
ogg_sync_wrote
oggpackB_adv
oggpackB_adv1
oggpackB_bits
oggpackB_bytes
oggpackB_get_buffer
oggpackB_look
oggpackB_look1
oggpackB_read
oggpackB_read1
oggpackB_readinit
oggpackB_reset
oggpackB_write
oggpackB_writealign
oggpackB_writeclear
oggpackB_writecopy
oggpackB_writeinit
oggpackB_writetrunc
oggpack_adv
oggpack_adv1
oggpack_bits
oggpack_bytes
oggpack_get_buffer
oggpack_look
oggpack_look1
oggpack_read
oggpack_read1
oggpack_readinit
oggpack_reset
oggpack_write
oggpack_writealign
oggpack_writeclear
oggpack_writecopy
oggpack_writeinit
oggpack_writetrunc
Sections
.text Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 513B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.00cfg Size: 512B - Virtual size: 283B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 233B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/libvorbis_64.dll.dll windows:6 windows x64 arch:x64
Password: infected
bb8beedbff4e95bc2364cca7408a6c49
Code Sign
77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate
IssuerCN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BENot Before28-07-2020 00:00Not After28-07-2030 00:00SubjectCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BEExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
59:dd:d2:bf:a6:72:e1:01:5a:f0:0f:f1Certificate
IssuerCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BENot Before16-05-2024 13:07Not After17-05-2025 13:07SubjectSERIALNUMBER=556821-8225,CN=Coffee Stain Studios AB,O=Coffee Stain Studios AB,STREET=Hertig Johans Gata 6,L=Skövde,ST=Västra Götaland,C=SE,1.2.840.113549.1.9.1=#0c14637373697440636f66666565737461696e2e7365,1.3.6.1.4.1.311.60.2.1.3=#13025345,2.5.4.15=#131450726976617465204f7267616e697a6174696f6eExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before26-09-2024 00:00Not After25-11-2035 23:59SubjectCN=DigiCert Timestamp 2024,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ae:d9:74:c3:52:07:a0:10:f1:f8:f9:34:84:60:cd:f7:27:a2:4d:41:28:52:08:22:2f:bc:98:39:51:a5:da:daSigner
Actual PE Digestae:d9:74:c3:52:07:a0:10:f1:f8:f9:34:84:60:cd:f7:27:a2:4d:41:28:52:08:22:2f:bc:98:39:51:a5:da:daDigest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
libogg_64
oggpack_readinit
oggpack_read
oggpack_look
oggpack_adv
oggpack_writeinit
oggpack_writeclear
oggpack_write
oggpack_writetrunc
oggpack_reset
oggpack_get_buffer
oggpack_bytes
vcruntime140
memcpy
memset
memmove
__telemetry_main_invoke_trigger
__std_type_info_destroy_list
__C_specific_handler
__telemetry_main_return_trigger
api-ms-win-crt-heap-l1-1-0
malloc
realloc
calloc
free
api-ms-win-crt-runtime-l1-1-0
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_seh_filter_dll
_initterm_e
exit
_initterm
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-string-l1-1-0
toupper
api-ms-win-crt-math-l1-1-0
sinf
cosf
exp
log
pow
cos
atan
sin
ldexp
kernel32
GetCurrentThreadId
GetSystemTimeAsFileTime
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeSListHead
IsDebuggerPresent
GetCurrentProcessId
DisableThreadLibraryCalls
Exports
Exports
_floor_P
_mapping_P
_residue_P
vorbis_analysis
vorbis_analysis_blockout
vorbis_analysis_buffer
vorbis_analysis_headerout
vorbis_analysis_init
vorbis_analysis_wrote
vorbis_bitrate_addblock
vorbis_bitrate_flushpacket
vorbis_block_clear
vorbis_block_init
vorbis_comment_add
vorbis_comment_add_tag
vorbis_comment_clear
vorbis_comment_init
vorbis_comment_query
vorbis_comment_query_count
vorbis_commentheader_out
vorbis_dsp_clear
vorbis_encode_ctl
vorbis_encode_init
vorbis_encode_init_vbr
vorbis_encode_setup_init
vorbis_encode_setup_managed
vorbis_encode_setup_vbr
vorbis_granule_time
vorbis_info_blocksize
vorbis_info_clear
vorbis_info_init
vorbis_packet_blocksize
vorbis_synthesis
vorbis_synthesis_blockin
vorbis_synthesis_halfrate
vorbis_synthesis_halfrate_p
vorbis_synthesis_headerin
vorbis_synthesis_idheader
vorbis_synthesis_init
vorbis_synthesis_lapout
vorbis_synthesis_pcmout
vorbis_synthesis_read
vorbis_synthesis_restart
vorbis_synthesis_trackonly
vorbis_version_string
vorbis_window
Sections
.text Size: 128KB - Virtual size: 127KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/libvorbisfile_64.dll.dll windows:6 windows x64 arch:x64
b12af25010b95ce995fb040ce984ef7f
Code Sign
77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate
IssuerCN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BENot Before28-07-2020 00:00Not After28-07-2030 00:00SubjectCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BEExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
59:dd:d2:bf:a6:72:e1:01:5a:f0:0f:f1Certificate
IssuerCN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BENot Before16-05-2024 13:07Not After17-05-2025 13:07SubjectSERIALNUMBER=556821-8225,CN=Coffee Stain Studios AB,O=Coffee Stain Studios AB,STREET=Hertig Johans Gata 6,L=Skövde,ST=Västra Götaland,C=SE,1.2.840.113549.1.9.1=#0c14637373697440636f66666565737461696e2e7365,1.3.6.1.4.1.311.60.2.1.3=#13025345,2.5.4.15=#131450726976617465204f7267616e697a6174696f6eExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before26-09-2024 00:00Not After25-11-2035 23:59SubjectCN=DigiCert Timestamp 2024,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
c2:cd:b0:a6:a6:ba:22:d2:46:99:61:88:7b:3f:7d:f4:2b:8e:f4:dc:3d:a0:11:dc:91:16:e9:b6:f9:57:5f:25Signer
Actual PE Digestc2:cd:b0:a6:a6:ba:22:d2:46:99:61:88:7b:3f:7d:f4:2b:8e:f4:dc:3d:a0:11:dc:91:16:e9:b6:f9:57:5f:25Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
libogg_64
ogg_page_continued
ogg_stream_reset_serialno
ogg_stream_reset
ogg_stream_clear
ogg_stream_init
ogg_page_bos
ogg_page_eos
ogg_page_granulepos
ogg_page_serialno
ogg_sync_init
ogg_stream_packetpeek
ogg_stream_packetout
ogg_stream_pagein
ogg_sync_pageseek
ogg_sync_wrote
ogg_sync_buffer
ogg_sync_reset
ogg_sync_clear
libvorbis_64
vorbis_info_init
vorbis_info_clear
vorbis_info_blocksize
vorbis_comment_init
vorbis_comment_clear
vorbis_block_init
vorbis_window
vorbis_synthesis_halfrate_p
vorbis_synthesis_halfrate
vorbis_packet_blocksize
vorbis_synthesis_read
vorbis_synthesis_lapout
vorbis_synthesis_pcmout
vorbis_synthesis_blockin
vorbis_synthesis_trackonly
vorbis_synthesis
vorbis_synthesis_restart
vorbis_synthesis_init
vorbis_synthesis_headerin
vorbis_synthesis_idheader
vorbis_dsp_clear
vorbis_block_clear
vcruntime140
__std_type_info_destroy_list
__C_specific_handler
__telemetry_main_return_trigger
__telemetry_main_invoke_trigger
memset
memcpy
api-ms-win-crt-heap-l1-1-0
free
malloc
realloc
calloc
api-ms-win-crt-runtime-l1-1-0
_initialize_narrow_environment
_seh_filter_dll
_initialize_onexit_table
_initterm
_errno
_register_onexit_function
_execute_onexit_table
_crt_atexit
_initterm_e
_cexit
api-ms-win-crt-stdio-l1-1-0
fseek
fread
fopen
fclose
ftell
kernel32
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
Exports
Exports
ov_bitrate
ov_bitrate_instant
ov_clear
ov_comment
ov_crosslap
ov_fopen
ov_halfrate
ov_halfrate_p
ov_info
ov_open
ov_open_callbacks
ov_pcm_seek
ov_pcm_seek_lap
ov_pcm_seek_page
ov_pcm_seek_page_lap
ov_pcm_tell
ov_pcm_total
ov_raw_seek
ov_raw_seek_lap
ov_raw_tell
ov_raw_total
ov_read
ov_read_float
ov_seekable
ov_serialnumber
ov_streams
ov_test
ov_test_callbacks
ov_test_open
ov_time_seek
ov_time_seek_lap
ov_time_seek_page
ov_time_seek_page_lap
ov_time_tell
ov_time_total
Sections
.text Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/mscorlib.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 4.4MB - Virtual size: 4.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 1024B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/msquic.dll.dll windows:6 windows x64 arch:x64
8ed6b48c4ed6aedb3c082252b3ad5662
Code Sign
33:00:00:02:cb:b7:75:39:fb:02:71:42:36:00:00:00:00:02:cbCertificate
IssuerCN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before12-05-2022 20:45Not After11-05-2023 20:45SubjectCN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USExtended Key Usages
ExtKeyUsageCodeSigning
61:0e:90:d2:00:00:00:00:00:03Certificate
IssuerCN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before08-07-2011 20:59Not After08-07-2026 21:09SubjectCN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
cc:01:27:4e:17:e2:83:db:80:5b:e6:1f:c3:eb:b3:5a:5c:9e:95:5d:21:92:23:14:b5:8b:9f:8b:0b:07:06:ceSigner
Actual PE Digestcc:01:27:4e:17:e2:83:db:80:5b:e6:1f:c3:eb:b3:5a:5c:9e:95:5d:21:92:23:14:b5:8b:9f:8b:0b:07:06:ceDigest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\__w\1\s\artifacts\bin\windows\x64_Release_openssl\msquic.pdb
Imports
winmm
timeGetDevCaps
ws2_32
WSAGetLastError
setsockopt
htonl
getsockopt
connect
GetAddrInfoW
WSARecv
WSAStartup
getsockname
socket
WSASocketW
shutdown
WSASend
WSASetLastError
send
recv
WSACleanup
FreeAddrInfoW
bind
WSAIoctl
closesocket
ntdll
RtlNtStatusToDosError
RtlInitUnicodeString
RtlCaptureContext
RtlLookupFunctionEntry
RtlUnwindEx
NtSetInformationThread
RtlVirtualUnwind
bcrypt
BCryptGenRandom
ncrypt
NCryptGetProperty
NCryptFreeObject
crypt32
CertGetNameStringA
CertGetCertificateContextProperty
CertFindCertificateInStore
CertDuplicateCertificateContext
CertEnumCertificatesInStore
CertFreeCertificateContext
CryptAcquireCertificatePrivateKey
CertCreateCertificateChainEngine
CertVerifyCertificateChainPolicy
CertOpenStore
CertFreeCertificateChain
CertSetCertificateContextProperty
PFXExportCertStoreEx
CertCloseStore
CertAddCertificateContextToStore
CertFreeCertificateChainEngine
CertGetCertificateChain
CertCreateContext
iphlpapi
SetCurrentThreadCompartmentId
GetCurrentThreadCompartmentId
advapi32
EventWriteTransfer
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegNotifyChangeKeyValue
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
EventRegister
EventUnregister
kernel32
SystemTimeToFileTime
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SwitchToFiber
DeleteFiber
CreateFiber
GetSystemTime
FindFirstFileW
FindNextFileW
WideCharToMultiByte
GetStdHandle
GetEnvironmentVariableW
GetFileType
WriteFile
ConvertThreadToFiber
SetLastError
Sleep
GetQueuedCompletionStatusEx
FindClose
CloseThreadpoolWait
GetCurrentProcessId
GetConsoleMode
SetConsoleMode
ReadConsoleA
ReadConsoleW
PostQueuedCompletionStatus
LoadLibraryA
GetProcAddress
FreeLibrary
CreateIoCompletionPort
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
InterlockedFlushSList
LoadLibraryExW
ConvertFiberToThread
GetCurrentProcessorNumberEx
EnterCriticalSection
GetSystemTimeAdjustment
LeaveCriticalSection
InitializeCriticalSection
GetMaximumProcessorCount
GetActiveProcessorCount
DeleteCriticalSection
GetModuleHandleW
GetSystemTimeAsFileTime
QueryPerformanceCounter
InitializeSListHead
InterlockedPopEntrySList
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockShared
InterlockedPushEntrySList
QueryDepthSList
WaitForSingleObject
CloseHandle
CreateEventA
GetCurrentThreadId
SetEvent
ResetEvent
SetThreadPriority
GetLastError
CreateThread
SetThreadIdealProcessor
SetThreadGroupAffinity
HeapCreate
HeapFree
MultiByteToWideChar
GetLogicalProcessorInformationEx
QueryPerformanceFrequency
HeapAlloc
HeapDestroy
GlobalMemoryStatusEx
VirtualAlloc
WaitForThreadpoolWaitCallbacks
CreateThreadpoolWait
SetThreadpoolWait
VirtualFree
SetFileCompletionNotificationModes
user32
GetUserObjectInformationW
MessageBoxW
GetProcessWindowStation
api-ms-win-crt-stdio-l1-1-0
_setmode
ftell
__stdio_common_vswprintf
fread
__stdio_common_vsscanf
_fileno
fgets
__acrt_iob_func
__stdio_common_vfprintf
ferror
feof
_wfopen
fopen
fclose
fputs
fseek
fwrite
__stdio_common_vsprintf
__stdio_common_vsnprintf_s
fflush
api-ms-win-crt-string-l1-1-0
strncpy
wcsncmp
strspn
strcspn
isspace
_stricmp
strncmp
memset
_strnicmp
strnlen
strcmp
api-ms-win-crt-convert-l1-1-0
strtoul
strtol
mbstowcs_s
atoi
api-ms-win-crt-time-l1-1-0
_time64
_gmtime64_s
api-ms-win-crt-runtime-l1-1-0
_configure_narrow_argv
terminate
strerror_s
signal
_initterm
_errno
_crt_atexit
_execute_onexit_table
_initterm_e
_register_onexit_function
_initialize_onexit_table
_seh_filter_dll
abort
_initialize_narrow_environment
raise
_cexit
_exit
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-heap-l1-1-0
calloc
free
realloc
malloc
api-ms-win-crt-filesystem-l1-1-0
_stat64i32
api-ms-win-crt-environment-l1-1-0
getenv
Exports
Exports
MsQuicClose
MsQuicOpenVersion
Sections
.text Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 563KB - Virtual size: 563KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 69KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 256B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/nvngx_deepdvc.dll.dll windows:6 windows x64 arch:x64
b836af8d11963f3ee39ed15fbb5b6861
Code Sign
08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before29-04-2021 00:00Not After28-04-2036 23:59SubjectCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
06:36:af:b1:da:06:ca:97:91:38:8b:36:e2:58:d0:48Certificate
IssuerCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USNot Before17-10-2022 00:00Not After15-10-2025 23:59SubjectCN=NVIDIA Corporation,OU=1-G,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before14-07-2023 00:00Not After13-10-2034 23:59SubjectCN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
76:6b:60:16:b7:5b:86:c1:54:04:4a:c7:c0:4e:8f:6c:e5:b4:9d:11:f5:d3:ee:66:1b:8f:cb:b7:27:68:2c:2aSigner
Actual PE Digest76:6b:60:16:b7:5b:86:c1:54:04:4a:c7:c0:4e:8f:6c:e5:b4:9d:11:f5:d3:ee:66:1b:8f:cb:b7:27:68:2c:2aDigest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\dvs\p4\build\sw\devrel\libdev\NGX\snippets\rel_tot\source\features\deepDVC\_out\wddm_amd64_release\default_sdk\nvngx_deepdvc.pdb
Imports
advapi32
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
user32
GetWindowThreadProcessId
MessageBoxA
nvcuda
cuTexObjectCreate
cuLaunchKernel
cuArrayCreate_v2
cuMemcpyHtoDAsync_v2
cuTexObjectGetResourceDesc
cuMemAlloc_v2
cuModuleGetFunction
cuModuleUnload
cuModuleLoadData
cuGetErrorString
cuTexObjectDestroy
cuSurfObjectCreate
cuSurfObjectDestroy
cuMemFree_v2
kernel32
WriteConsoleW
SetEndOfFile
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
HeapSize
SetFilePointerEx
GetFileSizeEx
MultiByteToWideChar
WideCharToMultiByte
VerSetConditionMask
CreateFileW
GetFileAttributesW
GetFullPathNameW
CloseHandle
GetLastError
SetLastError
GetSystemDirectoryW
FreeLibrary
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
GetModuleHandleExA
GetProcAddress
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
VerifyVersionInfoW
GetStdHandle
OutputDebugStringA
GetCurrentProcessId
GetModuleHandleA
WriteConsoleA
GetConsoleWindow
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
Sleep
LoadLibraryExA
GetEnvironmentVariableA
FindClose
QueryPerformanceCounter
QueryPerformanceFrequency
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryEnterCriticalSection
SetEvent
ResetEvent
GetCurrentProcess
SwitchToThread
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InitializeCriticalSectionEx
WaitForSingleObjectEx
EncodePointer
DecodePointer
LCMapStringEx
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetSystemTimeAsFileTime
GetCPInfo
GetStringTypeW
InitializeCriticalSectionAndSpinCount
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
GetConsoleOutputCP
RtlPcToFileHeader
RaiseException
RtlUnwindEx
InterlockedFlushSList
GetFileType
ReadFile
ExitProcess
GetModuleHandleExW
SetStdHandle
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetConsoleMode
ReadConsoleW
FlushFileBuffers
WriteFile
RtlUnwind
Exports
Exports
NVSDK_NGX_D3D11_CreateFeature
NVSDK_NGX_D3D11_EvaluateFeature
NVSDK_NGX_D3D11_Init
NVSDK_NGX_D3D11_Init_Ext
NVSDK_NGX_D3D11_PopulateParameters_Impl
NVSDK_NGX_D3D11_ReleaseFeature
NVSDK_NGX_D3D11_Shutdown
NVSDK_NGX_D3D11_Shutdown1
NVSDK_NGX_D3D12_CreateFeature
NVSDK_NGX_D3D12_EvaluateFeature
NVSDK_NGX_D3D12_Init
NVSDK_NGX_D3D12_Init_Ext
NVSDK_NGX_D3D12_PopulateParameters_Impl
NVSDK_NGX_D3D12_ReleaseFeature
NVSDK_NGX_D3D12_Shutdown
NVSDK_NGX_D3D12_Shutdown1
NVSDK_NGX_GetAPIVersion
NVSDK_NGX_GetApplicationId
NVSDK_NGX_GetDriverVersion
NVSDK_NGX_GetDriverVersionEx
NVSDK_NGX_GetGPUArchitecture
NVSDK_NGX_GetSnippetVersion
NVSDK_NGX_PopulateParameters
NVSDK_NGX_SetInfoCallback
NVSDK_NGX_SetTelemetryEvaluateCallback
NVSDK_NGX_VULKAN_CreateFeature
NVSDK_NGX_VULKAN_CreateFeature1
NVSDK_NGX_VULKAN_EvaluateFeature
NVSDK_NGX_VULKAN_Init
NVSDK_NGX_VULKAN_Init_Ext
NVSDK_NGX_VULKAN_Init_Ext2
NVSDK_NGX_VULKAN_PopulateParameters_Impl
NVSDK_NGX_VULKAN_ReleaseFeature
NVSDK_NGX_VULKAN_Shutdown
NVSDK_NGX_VULKAN_Shutdown1
NvOptimusEnablementCuda
Sections
.text Size: 557KB - Virtual size: 556KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11.2MB - Virtual size: 11.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128KB - Virtual size: 229KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
dll/nvngx_dlssg.dll.dll windows:6 windows x64 arch:x64
6e64ae387056a0a5c43e222e3f424aaa
Code Sign
08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before29-04-2021 00:00Not After28-04-2036 23:59SubjectCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
06:36:af:b1:da:06:ca:97:91:38:8b:36:e2:58:d0:48Certificate
IssuerCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USNot Before17-10-2022 00:00Not After15-10-2025 23:59SubjectCN=NVIDIA Corporation,OU=1-G,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before14-07-2023 00:00Not After13-10-2034 23:59SubjectCN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23-03-2022 00:00Not After22-03-2037 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01-08-2022 00:00Not After09-11-2031 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ee:4a:92:61:06:69:d5:ad:53:f8:64:20:c8:f0:ed:a0:04:58:52:5b:7e:0e:c8:05:5e:4a:55:76:00:2f:3b:01Signer
Actual PE Digestee:4a:92:61:06:69:d5:ad:53:f8:64:20:c8:f0:ed:a0:04:58:52:5b:7e:0e:c8:05:5e:4a:55:76:00:2f:3b:01Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
C:\dvs\p4\build\sw\devrel\libdev\NGX\snippets\rel_tot\source\features\dlssg\_out\wddm_amd64_release\default\nvngx_dlssg.pdb
Imports
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
advapi32
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
user32
MessageBoxA
GetWindowThreadProcessId
vulkan-1
vkWaitSemaphores
vkGetSemaphoreCounterValue
vkDestroySemaphore
vkCreateSemaphore
vkFreeCommandBuffers
vkAllocateCommandBuffers
vkDestroyCommandPool
vkCreateCommandPool
vkGetDeviceQueue
vkGetPhysicalDeviceQueueFamilyProperties
vkResetCommandBuffer
vkEndCommandBuffer
vkBeginCommandBuffer
vkResetCommandPool
vkResetFences
vkQueueWaitIdle
vkQueueSubmit
vkGetPhysicalDeviceFeatures2
vkGetImageMemoryRequirements
vkGetPhysicalDeviceProperties2
vkDestroyImageView
vkGetDeviceProcAddr
nvcuda
cuDestroyExternalSemaphore
cuMipmappedArrayGetLevel
cuWaitExternalSemaphoresAsync
cuSignalExternalSemaphoresAsync
cuImportExternalSemaphore
cuStreamDestroy_v2
cuStreamCreate
cuCtxGetCurrent
cuCtxPopCurrent_v2
cuMipmappedArrayDestroy
cuCtxDestroy_v2
cuCtxCreate_v2
cuDeviceGetAttribute
cuDeviceGetLuid
cuDeviceGetCount
cuDeviceGet
cuDriverGetVersion
cuInit
cuGetErrorName
cuImportExternalMemory
cuExternalMemoryGetMappedMipmappedArray
cuMemcpy2DAsync_v2
cuSurfObjectDestroy
cuDestroyExternalMemory
cuSurfObjectCreate
cuCtxPushCurrent_v2
kernel32
FreeEnvironmentStringsW
GetProcessHeap
WriteConsoleW
ResetEvent
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
GetExitCodeProcess
GetTimeZoneInformation
HeapSize
GetFileSizeEx
GetConsoleOutputCP
WriteFile
FlushFileBuffers
ReadConsoleW
GetConsoleMode
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetCurrentDirectoryW
SetEnvironmentVariableW
SetStdHandle
ExitProcess
GetModuleHandleExW
ExitThread
CreateThread
ReadFile
GetFileType
GetDriveTypeW
InterlockedFlushSList
RtlUnwindEx
RaiseException
RtlPcToFileHeader
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
MultiByteToWideChar
WideCharToMultiByte
VerSetConditionMask
CreateFileW
GetFileAttributesW
GetFullPathNameW
CloseHandle
GetLastError
SetLastError
CreateProcessW
GetSystemDirectoryW
FreeLibrary
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
GetModuleHandleExA
GetProcAddress
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
VerifyVersionInfoW
GetStdHandle
OutputDebugStringA
GetCurrentProcessId
GetModuleHandleA
WriteConsoleA
GetConsoleWindow
WaitForSingleObject
CreateEventA
CreateFileA
GetFinalPathNameByHandleA
LoadLibraryA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
Sleep
LoadLibraryExA
GetEnvironmentVariableA
FindClose
QueryPerformanceCounter
QueryPerformanceFrequency
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryEnterCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SetEvent
RtlUnwind
GetCurrentProcess
SwitchToThread
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibraryAndExitThread
FormatMessageA
InitializeCriticalSectionEx
WaitForSingleObjectEx
GetExitCodeThread
SleepConditionVariableSRW
CreateDirectoryW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
SetEndOfFile
SetFilePointerEx
AreFileApisANSI
EncodePointer
DecodePointer
LCMapStringEx
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetSystemTimeAsFileTime
CompareStringEx
GetCPInfo
GetStringTypeW
InitializeCriticalSectionAndSpinCount
CreateEventW
Exports
Exports
NVSDK_NGX_CUDA_CreateFeature
NVSDK_NGX_CUDA_EvaluateFeature
NVSDK_NGX_CUDA_GetScratchBufferSize
NVSDK_NGX_CUDA_Init
NVSDK_NGX_CUDA_ReleaseFeature
NVSDK_NGX_CUDA_Shutdown
NVSDK_NGX_D3D11_CreateFeature
NVSDK_NGX_D3D11_EvaluateFeature
NVSDK_NGX_D3D11_GetFeatureRequirements
NVSDK_NGX_D3D11_GetScratchBufferSize
NVSDK_NGX_D3D11_Init
NVSDK_NGX_D3D11_PopulateParameters_Impl
NVSDK_NGX_D3D11_ReleaseFeature
NVSDK_NGX_D3D11_Shutdown
NVSDK_NGX_D3D12_CreateFeature
NVSDK_NGX_D3D12_EvaluateFeature
NVSDK_NGX_D3D12_GetFeatureRequirements
NVSDK_NGX_D3D12_GetScratchBufferSize
NVSDK_NGX_D3D12_Init
NVSDK_NGX_D3D12_Init_Ext
NVSDK_NGX_D3D12_PopulateParameters_Impl
NVSDK_NGX_D3D12_ReleaseFeature
NVSDK_NGX_D3D12_Shutdown
NVSDK_NGX_D3D12_Shutdown1
NVSDK_NGX_GetAPIVersion
NVSDK_NGX_GetApplicationId
NVSDK_NGX_GetDriverVersion
NVSDK_NGX_GetDriverVersionEx
NVSDK_NGX_GetGPUArchitecture
NVSDK_NGX_GetSnippetVersion
NVSDK_NGX_SetInfoCallback
NVSDK_NGX_SetTelemetryEvaluateCallback
NVSDK_NGX_VULKAN_CreateFeature
NVSDK_NGX_VULKAN_CreateFeature1
NVSDK_NGX_VULKAN_EvaluateFeature
NVSDK_NGX_VULKAN_GetFeatureRequirements
NVSDK_NGX_VULKAN_GetScratchBufferSize
NVSDK_NGX_VULKAN_Init
NVSDK_NGX_VULKAN_Init_Ext
NVSDK_NGX_VULKAN_Init_Ext2
NVSDK_NGX_VULKAN_PopulateParameters_Impl
NVSDK_NGX_VULKAN_ReleaseFeature
NVSDK_NGX_VULKAN_Shutdown
NVSDK_NGX_VULKAN_Shutdown1
NvOptimusEnablementCuda
Sections
.text Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6.4MB - Virtual size: 6.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1.3MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 45KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.nv_fatb Size: 15KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.nvFatBi Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
launcher.exe.exe windows:6 windows x86 arch:x86
9cbefe68f395e67356e2a5d8d1b285c0
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
WriteFile
WriteConsoleW
WaitForMultipleObjects
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
SwitchToThread
SuspendThread
SetWaitableTimer
SetUnhandledExceptionFilter
SetProcessPriorityBoost
SetEvent
SetErrorMode
SetConsoleCtrlHandler
ResumeThread
PostQueuedCompletionStatus
LoadLibraryA
LoadLibraryW
SetThreadContext
GetThreadContext
GetSystemInfo
GetSystemDirectoryA
GetStdHandle
GetQueuedCompletionStatusEx
GetProcessAffinityMask
GetProcAddress
GetEnvironmentStringsW
GetConsoleMode
FreeEnvironmentStringsW
ExitProcess
DuplicateHandle
CreateWaitableTimerExW
CreateThread
CreateIoCompletionPort
CreateFileA
CreateEventA
CloseHandle
AddVectoredExceptionHandler
Sections
.text Size: 3.2MB - Virtual size: 3.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3.4MB - Virtual size: 3.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1.1MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1024B - Virtual size: 988B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 250KB - Virtual size: 249KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.symtab Size: 512B - Virtual size: 4B
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 54KB - Virtual size: 54KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ