filename | Aimbot_C-Bug_64Bit.exe | |
---|---|---|
size | 592896 (0x90c00) | |
md5 | f44bd1253cc5e086dda0bc79c1cce7a3 | |
type | MS-DOS executable PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows, MZ for MS-DOS | |
mimetype | application/x-dosexec | |
clamav | OK | |
virustotal | → scan with virustotal.com | |
histogram |
MZ Header
signature | MZ |
bytes_in_last_block | 0x40 |
blocks_in_file | 1 |
num_relocs | 0 |
header_paragraphs | 2 |
min_extra_paragraphs | 0 |
max_extra_paragraphs | 0xffff |
ss | 0 |
sp | 0xb8 |
checksum | 0 |
ip | 0 |
cs | 0 |
reloc_table_offset | 0xa |
overlay_number | 0 |
reserved0 | 0xeba1f0e00000000 |
oem_id | 0xb400 |
oem_info | 0xcd09 |
reserved2 | 0x4c01b821 |
reserved3 | 0x695721cd |
reserved4 | 0x2034366e |
reserved5 | 0x4558452e |
reserved6 | 0x240a0d2e |
lfanew | 0x40 |
PE Header
Sections
name | va | vsize | raw size | flags | |
---|---|---|---|---|---|
.MPRESS1 | 0x1000 | 0x13c000 | 0x63e00 | RWX CODE IDATA UDATA | |
.MPRESS2 | 0x13d000 | 0xe80 | 0x1000 | RWX CODE IDATA UDATA | |
.rsrc | 0x13e000 | 0x2bbc4 | 0x2bc00 | RW- IDATA |
Data Directory
TLS
raw start | raw end | index | callbks | zero fill | flags | |
---|---|---|---|---|---|---|
0x14013de78 | 0x14013de80 | 0x14013de68 | 0 | 0 | 0 |
module_name | hint | ord | function_name |
---|---|---|---|
KERNEL32 | GetModuleHandleA | ||
KERNEL32 | GetProcAddress | ||
WSOCK32.dll | 116 | ||
WINMM.dll | mixerOpen | ||
VERSION.dll | VerQueryValueW | ||
COMCTL32.dll | ImageList_Create | ||
PSAPI.DLL | GetModuleBaseNameW | ||
USER32.dll | GetDC | ||
GDI32.dll | BitBlt | ||
COMDLG32.dll | GetOpenFileNameW | ||
ADVAPI32.dll | RegCloseKey | ||
SHELL32.dll | DragFinish | ||
ole32.dll | CoGetObject | ||
OLEAUT32.dll | 20 |
StringTable 040904b0
FileDescription | |
FileVersion | 1.1.23.05 |
InternalName | |
LegalCopyright | |
OriginalFilename | |
ProductName | |
ProductVersion | 1.1.23.05 |
VS_FIXEDFILEINFO
FileVersion | 1.1.23.5 |
ProductVersion | 1.1.23.5 |
StrucVersion | 0x10000 |
FileFlagsMask | 0x17 |
FileFlags | 0 |
FileOS | 4 |
FileType | 1 |
FileSubtype | 0 |
Please donate some bucks to keep this site up and running: | |
Ko-fi | |
---|---|
Yandex.Money | |
Thank you! |
[?] ignoring invalid PEdump::BITMAPINFOHEADER
[?] can't find file_offset of VA 0x13b46c
[?] can't find file_offset of VA 0x13b734
[?] can't find file_offset of VA 0x13b81c
[?] can't find file_offset of VA 0x13b864
[?] can't find file_offset of VA 0x107000