filename | rawshark.exe | |
---|---|---|
size | 116224 (0x1c600) | |
md5 | 78e290cb20744eaa86b2cfe87bbcc343 | |
type | PE32+ executable (console) x86-64, for MS Windows | |
mimetype | application/x-dosexec | |
clamav | OK | |
virustotal | → scan with virustotal.com | |
histogram |
MZ Header
signature | MZ |
bytes_in_last_block | 0x90 |
blocks_in_file | 3 |
num_relocs | 0 |
header_paragraphs | 4 |
min_extra_paragraphs | 0 |
max_extra_paragraphs | 0xffff |
ss | 0 |
sp | 0xb8 |
checksum | 0 |
ip | 0 |
cs | 0 |
reloc_table_offset | 0x40 |
overlay_number | 0 |
reserved0 | 0 |
oem_id | 0 |
oem_info | 0 |
reserved2 | 0 |
reserved3 | 0 |
reserved4 | 0 |
reserved5 | 0 |
reserved6 | 0 |
lfanew | 0x100 |
Rich Header
lib id | version | times used |
---|---|---|
150 | 20413 | 2 |
149 | 21022 | 2 |
132 | 21022 | 2 |
147 | 30729 | 4 |
147 | 21022 | 8 |
123 | 50727 | 7 |
1 | 0 | 245 |
131 | 21022 | 34 |
148 | 21022 | 1 |
145 | 21022 | 1 |
DOS stub
00000000: 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 |........!..L.!Th| 00000010: 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f |is program canno| 00000020: 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 |t be run in DOS | 00000030: 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 |mode....$.......|
PE Header
Packer / Compiler
Sections
Data Directory
type | name | size | cp | |
---|---|---|---|---|
ICON | #1 | 1384 | 1252 | |
ICON | #2 | 1736 | 1252 | |
ICON | #3 | 2216 | 1252 | |
ICON | #4 | 3752 | 1252 | |
ICON | #5 | 5672 | 1252 | |
GROUP_ICON | WIRESHARK_ICON | 76 | 1252 | |
VERSION | #1 | 900 | 1252 | |
MANIFEST | #1 | 600 | 1252 |
module_name | hint | ord | function_name |
---|---|---|---|
KERNEL32.dll | 652 | GlobalFree | |
KERNEL32.dll | 663 | GlobalUnlock | |
KERNEL32.dll | 655 | GlobalHandle | |
KERNEL32.dll | 656 | GlobalLock | |
KERNEL32.dll | 645 | GlobalAlloc | |
KERNEL32.dll | 585 | GetSystemInfo | |
KERNEL32.dll | 544 | GetProcAddress | |
KERNEL32.dll | 505 | GetModuleHandleW | |
KERNEL32.dll | 630 | GetVersionExW | |
KERNEL32.dll | 1135 | WaitNamedPipeW | |
KERNEL32.dll | 759 | LocalFree | |
KERNEL32.dll | 329 | FormatMessageW | |
KERNEL32.dll | 486 | GetLastError | |
KERNEL32.dll | 128 | CreateFileW | |
KERNEL32.dll | 1061 | Sleep | |
KERNEL32.dll | 591 | GetSystemTimeAsFileTime | |
KERNEL32.dll | 427 | GetCurrentProcessId | |
KERNEL32.dll | 430 | GetCurrentThreadId | |
KERNEL32.dll | 614 | GetTickCount | |
KERNEL32.dll | 846 | QueryPerformanceCounter | |
KERNEL32.dll | 905 | RtlCaptureContext | |
KERNEL32.dll | 912 | RtlLookupFunctionEntry | |
KERNEL32.dll | 919 | RtlVirtualUnwind | |
KERNEL32.dll | 715 | IsDebuggerPresent | |
KERNEL32.dll | 1049 | SetUnhandledExceptionFilter | |
KERNEL32.dll | 1090 | UnhandledExceptionFilter | |
KERNEL32.dll | 426 | GetCurrentProcess | |
KERNEL32.dll | 1073 | TerminateProcess | |
WS2_32.dll | 115 | ||
wiretap-1.6.0.dll | 60 | wtap_strerror | |
wiretap-1.6.0.dll | 44 | wtap_pcap_encap_to_wtap_encap | |
USER32.dll | 369 | GetSystemMetrics | |
libglib-2.0-0.dll | 508 | g_list_first | |
libglib-2.0-0.dll | 792 | g_realloc | |
libglib-2.0-0.dll | 33 | g_assertion_message | |
libglib-2.0-0.dll | 356 | g_hash_table_lookup | |
libglib-2.0-0.dll | 717 | g_ptr_array_free | |
libglib-2.0-0.dll | 1011 | g_strescape | |
libglib-2.0-0.dll | 935 | g_snprintf | |
libglib-2.0-0.dll | 28 | g_ascii_table | |
libglib-2.0-0.dll | 581 | g_malloc_n | |
libglib-2.0-0.dll | 343 | g_hash_table_destroy | |
libglib-2.0-0.dll | 715 | g_ptr_array_add | |
libglib-2.0-0.dll | 718 | g_ptr_array_new | |
libglib-2.0-0.dll | 350 | g_hash_table_insert | |
libglib-2.0-0.dll | 358 | g_hash_table_new | |
libglib-2.0-0.dll | 996 | g_str_hash | |
libglib-2.0-0.dll | 993 | g_str_equal | |
libglib-2.0-0.dll | 1055 | g_strlcat | |
libglib-2.0-0.dll | 23 | g_ascii_strncasecmp | |
libglib-2.0-0.dll | 913 | g_slist_foreach | |
libglib-2.0-0.dll | 1064 | g_strsplit | |
libglib-2.0-0.dll | 1038 | g_string_new | |
libglib-2.0-0.dll | 1032 | g_string_free | |
libglib-2.0-0.dll | 1010 | g_strerror | |
libglib-2.0-0.dll | 541 | g_log_set_handler | |
libglib-2.0-0.dll | 1049 | g_string_truncate | |
libglib-2.0-0.dll | 727 | g_ptr_array_set_size | |
libglib-2.0-0.dll | 1035 | g_string_insert_c | |
libglib-2.0-0.dll | 578 | g_malloc | |
libglib-2.0-0.dll | 535 | g_log | |
libglib-2.0-0.dll | 1016 | g_string_append_printf | |
libglib-2.0-0.dll | 1013 | g_string_append | |
libglib-2.0-0.dll | 1007 | g_strdup_printf | |
libglib-2.0-0.dll | 502 | g_list_append | |
libglib-2.0-0.dll | 1006 | g_strdup | |
libglib-2.0-0.dll | 321 | g_free | |
libglib-2.0-0.dll | 21 | g_ascii_strcasecmp | |
libglib-2.0-0.dll | 37 | g_assertion_message_expr | |
libglib-2.0-0.dll | 914 | g_slist_free | |
libglib-2.0-0.dll | 509 | g_list_foreach | |
libglib-2.0-0.dll | 1046 | g_string_printf | |
libglib-2.0-0.dll | 907 | g_slist_append | |
libglib-2.0-0.dll | 510 | g_list_free | |
libgmodule-2.0-0.dll | 7 | g_module_symbol | |
libgmodule-2.0-0.dll | 1 | g_module_close | |
libwsutil.dll | 34 | ws_stdio_fopen | |
libwsutil.dll | 39 | ws_stdio_rename | |
libwsutil.dll | 38 | ws_stdio_remove | |
libwsutil.dll | 41 | ws_stdio_unlink | |
libwsutil.dll | 26 | utf_16to8 | |
libwsutil.dll | 20 | relinquish_special_privs_perm | |
libwsutil.dll | 18 | optind | |
libwsutil.dll | 16 | optarg | |
libwsutil.dll | 6 | getopt | |
libwsutil.dll | 8 | init_process_policies | |
libwsutil.dll | arg_list_utf_16to8 | ||
libwsutil.dll | 27 | utf_8to16 | |
libwsutil.dll | 33 | ws_module_open | |
libwireshark.dll | 709 | prefs_register_modules | |
libwireshark.dll | 401 | epan_init | |
libwireshark.dll | 874 | register_all_protocols | |
libwireshark.dll | 873 | register_all_protocol_handoffs | |
libwireshark.dll | 1041 | timestamp_set_seconds_type | |
libwireshark.dll | 1040 | timestamp_set_precision | |
libwireshark.dll | 1042 | timestamp_set_type | |
libwireshark.dll | 619 | init_progfile_dir | |
libwireshark.dll | 440 | find_dissector | |
libwireshark.dll | 465 | frame_data_cleanup | |
libwireshark.dll | 390 | epan_dissect_cleanup | |
libwireshark.dll | 175 | dfilter_apply_edt | |
libwireshark.dll | 468 | frame_data_set_after_dissect | |
libwireshark.dll | 1009 | tap_push_tapped_queue | |
libwireshark.dll | 397 | epan_dissect_run | |
libwireshark.dll | 469 | frame_data_set_before_dissect | |
libwireshark.dll | 1010 | tap_queue_init | |
libwireshark.dll | 396 | epan_dissect_prime_dfilter | |
libwireshark.dll | 394 | epan_dissect_init | |
libwireshark.dll | 467 | frame_data_init | |
libwireshark.dll | 894 | register_tap_listener | |
libwireshark.dll | 772 | proto_registrar_get_byname | |
libwireshark.dll | 719 | prefs_set_pref | |
libwireshark.dll | 1176 | val_to_str | |
libwireshark.dll | 1178 | val_to_str_ext | |
libwireshark.dll | 922 | rval_to_str | |
libwireshark.dll | 490 | fvalue_get_sinteger | |
libwireshark.dll | 422 | except_throw | |
libwireshark.dll | 383 | ep_strdup_printf | |
libwireshark.dll | 869 | read_prefs | |
libwireshark.dll | 492 | fvalue_string_repr_len | |
libwireshark.dll | 1032 | tfs_true_false | |
libwireshark.dll | 433 | file_open_error_message | |
libwireshark.dll | 656 | nstime_set_unset | |
libwireshark.dll | 618 | init_dissection | |
libwireshark.dll | 78 | cleanup_dissection | |
libwireshark.dll | 748 | proto_is_protocol_enabled | |
libwireshark.dll | 742 | proto_get_protocol_filter_name | |
libwireshark.dll | 739 | proto_get_id_by_filter_name | |
libwireshark.dll | 726 | proto_can_toggle_protocol | |
libwireshark.dll | 779 | proto_set_decoding | |
libwireshark.dll | 778 | proto_set_cant_toggle | |
libwireshark.dll | 543 | get_datafile_path | |
libwireshark.dll | 557 | get_persconffile_path | |
libwireshark.dll | 398 | epan_get_compiled_version_info | |
libwireshark.dll | 694 | prefs_apply_all | |
libwireshark.dll | 967 | start_requested_stats | |
libwireshark.dll | 39 | build_column_format_array | |
libwireshark.dll | 176 | dfilter_compile | |
libwireshark.dll | 179 | dfilter_error_msg | |
libwireshark.dll | 389 | epan_cleanup | |
libwireshark.dll | 659 | nstime_to_msec | |
libwireshark.dll | 687 | p_get_proto_data | |
libwireshark.dll | 444 | find_protocol_by_id | |
libwireshark.dll | 652 | nstime_delta | |
libwireshark.dll | 609 | host_ip_af | |
libwireshark.dll | 658 | nstime_sum | |
libwireshark.dll | 657 | nstime_set_zero | |
libwireshark.dll | 495 | gbl_resolv_flags | |
libwireshark.dll | 494 | fvalue_to_string_repr | |
libwireshark.dll | 999 | string_to_name_resolve | |
libwireshark.dll | 365 | ep_alloc | |
libwireshark.dll | 376 | ep_strbuf_new | |
libwireshark.dll | 378 | ep_strbuf_printf | |
libwireshark.dll | 374 | ep_strbuf_append_printf | |
libwireshark.dll | 366 | ep_alloc0 | |
libwireshark.dll | 8 | EBCDIC_to_ASCII1 | |
libwireshark.dll | 541 | get_data_source_name | |
libwireshark.dll | 1107 | tvb_length | |
libwireshark.dll | 1108 | tvb_length_remaining | |
libwireshark.dll | 1101 | tvb_get_ptr | |
libwireshark.dll | 734 | proto_frame | |
libwireshark.dll | 733 | proto_find_finfo | |
libwireshark.dll | 607 | hf_frame_number | |
libwireshark.dll | 606 | hf_frame_len | |
libwireshark.dll | 605 | hf_frame_capture_len | |
libwireshark.dll | 604 | hf_frame_arrival_time | |
libwireshark.dll | 487 | fvalue_get | |
libwireshark.dll | 19 | abs_time_to_str | |
libwireshark.dll | 608 | hf_text_only | |
libwireshark.dll | 728 | proto_construct_match_selected_string | |
libwireshark.dll | 491 | fvalue_get_uinteger | |
libwireshark.dll | 542 | get_datafile_dir | |
libwireshark.dll | 752 | proto_item_fill_label | |
libwireshark.dll | 729 | proto_data | |
libwireshark.dll | 662 | num_tree_types | |
libwireshark.dll | 1044 | tree_is_expanded | |
libwireshark.dll | 838 | proto_tree_children_foreach | |
libwireshark.dll | 861 | range_convert_str | |
libwireshark.dll | 1180 | value_is_in_range | |
libwireshark.dll | 863 | range_empty | |
libwireshark.dll | 736 | proto_get_first_protocol | |
libwireshark.dll | 735 | proto_get_finfo_ptr_array | |
libwireshark.dll | 740 | proto_get_next_protocol | |
libwireshark.dll | 524 | get_addr_name | |
MSVCR90.dll | 1094 | _write | |
MSVCR90.dll | 301 | _decode_pointer | |
MSVCR90.dll | 740 | _onexit | |
MSVCR90.dll | 573 | _lock | |
MSVCR90.dll | 133 | __dllonexit | |
MSVCR90.dll | 932 | _unlock | |
MSVCR90.dll | 67 | void __cdecl terminate(void) ?terminate@@YAXXZ | |
MSVCR90.dll | 131 | __crt_debugger_hook | |
MSVCR90.dll | 188 | __set_app_type | |
MSVCR90.dll | 311 | _encode_pointer | |
MSVCR90.dll | 354 | _fmode | |
MSVCR90.dll | 264 | _commode | |
MSVCR90.dll | 191 | __setusermatherr | |
MSVCR90.dll | 265 | _configthreadlocale | |
MSVCR90.dll | 463 | _initterm_e | |
MSVCR90.dll | 462 | _initterm | |
MSVCR90.dll | 145 | __initenv | |
MSVCR90.dll | 249 | _cexit | |
MSVCR90.dll | 326 | _exit | |
MSVCR90.dll | 85 | _XcptFilter | |
MSVCR90.dll | 89 | __C_specific_handler | |
MSVCR90.dll | 144 | __getmainargs | |
MSVCR90.dll | 226 | _amsg_exit | |
MSVCR90.dll | 1354 | vfprintf | |
MSVCR90.dll | 805 | _setmode | |
MSVCR90.dll | 742 | _open_osfhandle | |
MSVCR90.dll | 1139 | abort | |
MSVCR90.dll | 1322 | strncmp | |
MSVCR90.dll | 146 | __iob_func | |
MSVCR90.dll | 1294 | setlocale | |
MSVCR90.dll | 1274 | printf | |
MSVCR90.dll | 1176 | fflush | |
MSVCR90.dll | 1172 | fabs | |
MSVCR90.dll | 1207 | fwrite | |
MSVCR90.dll | 1263 | memcmp | |
MSVCR90.dll | 1212 | getenv | |
MSVCR90.dll | 1331 | strtok | |
MSVCR90.dll | 1311 | strcmp | |
MSVCR90.dll | 747 | _popen | |
MSVCR90.dll | 743 | _pclose | |
MSVCR90.dll | 1276 | putc | |
MSVCR90.dll | 1190 | fputc | |
MSVCR90.dll | 904 | _time64 | |
MSVCR90.dll | 571 | _localtime64 | |
MSVCR90.dll | 1143 | asctime | |
MSVCR90.dll | 1319 | strlen | |
MSVCR90.dll | 1191 | fputs | |
MSVCR90.dll | 1268 | memset | |
MSVCR90.dll | 1188 | fprintf | |
MSVCR90.dll | 1210 | getc | |
MSVCR90.dll | 1228 | isspace | |
MSVCR90.dll | 1175 | ferror | |
MSVCR90.dll | 1352 | ungetc | |
MSVCR90.dll | 1173 | fclose | |
MSVCR90.dll | 317 | _errno | |
MSVCR90.dll | 1333 | strtol | |
MSVCR90.dll | 1169 | exit | |
MSVCR90.dll | 1264 | memcpy | |
MSVCR90.dll | 1310 | strchr | |
MSVCR90.dll | 1329 | strstr | |
MSVCR90.dll | 762 | _read |
StringTable 040904b0
CompanyName | The Wireshark developer community |
FileDescription | Rawshark |
FileVersion | 1.6.4 |
InternalName | Rawshark 1.6.4 |
LegalCopyright | Copyright © 2000 Gerald Combs <gerald@wireshark.org>, Gilbert Ramirez <gram@alumni.rice.edu> and others |
OriginalFilename | Rawshark.exe |
ProductName | Rawshark |
ProductVersion | 1.6.4 |
VS_FIXEDFILEINFO
FileVersion | 1.6.4.39941 |
ProductVersion | 1.6.4.39941 |
StrucVersion | 0x10000 |
FileFlagsMask | 0 |
FileFlags | 0 |
FileOS | 0x40004 |
FileType | 1 |
FileSubtype | 0 |
Please donate some bucks to keep this site up and running: | |
Ko-fi | |
---|---|
Yandex.Money | |
Thank you! |
everything is OK