| filename | 滑雪.exe | |
|---|---|---|
| size | 88850 (0x15b12) | |
| md5 | 57e882d469f143a221b1048081635363 | |
| type | MS-DOS executable, NE for MS Windows 3.x (EXE) | |
| mimetype | application/x-dosexec | |
| clamav | scan pending | |
| virustotal | → scan with virustotal.com | |
| histogram | ||
MZ Header
| signature | MZ |
| bytes_in_last_block | 0x130 |
| blocks_in_file | 3 |
| num_relocs | 0 |
| header_paragraphs | 0x20 |
| min_extra_paragraphs | 0 |
| max_extra_paragraphs | 0xffff |
| ss | 7 |
| sp | 0x100 |
| checksum | 0x4065 |
| ip | 0 |
| cs | 0 |
| reloc_table_offset | 0x40 |
| overlay_number | 0 |
| reserved0 | 1 |
| oem_id | 0 |
| oem_info | 0 |
| reserved2 | 0 |
| reserved3 | 0 |
| reserved4 | 0 |
| reserved5 | 0 |
| reserved6 | 0 |
| lfanew | 0x400 |
DOS stub
00000000: e8 53 00 54 68 69 73 20 70 72 6f 67 72 61 6d 20 |.S.This program | 00000010: 72 65 71 75 69 72 65 73 20 4d 69 63 72 6f 73 6f |requires Microso| 00000020: 66 74 20 57 69 6e 64 6f 77 73 2e 0d 0a 24 20 20 |ft Windows...$ | 00000030: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | | * 00000050: 20 20 20 20 20 20 5a 0e 1f b4 09 cd 21 b8 01 4c | Z.....!..L| 00000060: cd 21 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |.!..............| 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| * 00000200:
NE Header
| ne_magic | NE |
| ne_ver | 5 |
| ne_rev | 5 |
| ne_enttab | 0x526 |
| ne_cbenttab | 0x88 |
| ne_crc | 0x9ea0b2ef |
| ne_flags | 0x302 |
| ne_autodata | 2 |
| ne_heap | 0x4000 |
| ne_stack | 0x4000 |
| ne_csip | 0x151e1 |
| ne_sssp | 0x20000 |
| ne_cseg | 2 |
| ne_cmod | 3 |
| ne_cbnrestab | 0x3a |
| ne_segtab | 0x40 |
| ne_rsrctab | 0x50 |
| ne_restab | 0x508 |
| ne_modtab | 0x50f |
| ne_imptab | 0x515 |
| ne_nrestab | 0x9ae |
| ne_cmovent | 0x16 |
| ne_align | 4 |
| ne_cres | 0 |
| ne_exetyp | 2 |
| ne_flagsothers | 8 |
| ne_pretthunks | 0xa0 |
| ne_psegrefbytes | 0x1418 |
| ne_swaparea | 0 |
| ne_expver | 0x300 |
| id | lang | string |
|---|---|---|
| 1 | SkiFree | |
| 2 | Ski Paused ... Press F3 to continue | |
| 3 | Time: | |
| 4 | Dist: | |
| 5 | Speed: | |
| 6 | Style: | |
| 7 | 00:00:00.00 | |
| 8 | 0000m | |
| 9 | 0000m/s | |
| 10 | 0000000 | |
| 11 | %2u:%2.2u:%2.2u.%2.2u | |
| 12 | %5.2dm | |
| 13 | %5.2dm/s | |
| 14 | %7ld | |
| 15 | High Scores | |
| 16 | <-- that's you! | |
| 17 | <-- try again! |
| module_name | hint | ord | function_name |
|---|---|---|---|
| USER | 232 | ||
| USER | 107 | ||
| USER | 108 | ||
| USER | 109 | ||
| KERNEL | 128 | ||
| KERNEL | 129 | ||
| USER | 113 | ||
| KERNEL | 1 | ||
| USER | 114 | ||
| KERNEL | 5 | ||
| KERNEL | 6 | ||
| KERNEL | 7 | ||
| KERNEL | 137 | ||
| USER | 124 | ||
| USER | 125 | ||
| KERNEL | 15 | ||
| KERNEL | 16 | ||
| USER | 1 | ||
| KERNEL | 17 | ||
| USER | 5 | ||
| USER | 6 | ||
| KERNEL | 23 | ||
| KERNEL | 24 | ||
| USER | 13 | ||
| KERNEL | 30 | ||
| GDI | 29 | ||
| USER | 22 | ||
| GDI | 33 | ||
| GDI | 34 | ||
| USER | 31 | ||
| USER | 33 | ||
| USER | 420 | ||
| GDI | 45 | ||
| USER | 37 | ||
| USER | 39 | ||
| GDI | 48 | ||
| USER | 40 | ||
| USER | 41 | ||
| USER | 42 | ||
| GDI | 51 | ||
| USER | 44 | ||
| GDI | 52 | ||
| USER | 173 | ||
| USER | 174 | ||
| USER | 175 | ||
| USER | 176 | ||
| USER | 50 | ||
| USER | 53 | ||
| USER | 56 | ||
| USER | 57 | ||
| GDI | 68 | ||
| GDI | 69 | ||
| USER | 66 | ||
| USER | 68 | ||
| KERNEL | 88 | ||
| GDI | 80 | ||
| GDI | 82 | ||
| KERNEL | 90 | ||
| KERNEL | 91 | ||
| GDI | 87 | ||
| USER | 81 | ||
| GDI | 91 | ||
| USER | 83 | ||
| GDI | 93 | ||
| KERNEL | 115 |
| ord | segment | offset | function_name |
|---|---|---|---|
| 2 | 1 | 0x4c9a | WNDPROCMAIN |
| 1 | 1 | 0x3597 | TIMERPROCMAIN |
| 3 | 1 | 0x513c | WNDPROCSTATUS |
| module_name | Ski |
|---|---|
| module_description | Ski Free |
Scanning the drive for archives: 1 file, 88850 bytes (87 KiB) Errors: 1
offset:( 0x )| Please donate some bucks to keep this site up and running: | |
| Ko-fi | |
|---|---|
| Yandex.Money | |
| Thank you! | |
everything is OK