Cuckoo Sandbox

PE Compile Time

2025-08-06 23:40:32

PDB Path

C:\Users\jordan\Downloads\usermode-master (2)\usermode-master\x64\Release\Valex_External.pdb

PE Imphash

38190b3b4592ee47e0e16d31af1fba93

Sections

Name	Virtual Address	Virtual Size	Size of Raw Data	Entropy
.text	0x00001000	0x002598ec	0x00259a00	6.49431117409
.rdata	0x0025b000	0x0009c41c	0x0009c600	6.46139977428
.data	0x002f8000	0x000a3518	0x000a1000	6.33086684816
.pdata	0x0039c000	0x00015444	0x00015600	6.31522333645
.rsrc	0x003b2000	0x00029558	0x00029600	2.2514368806
.reloc	0x003dc000	0x00001d50	0x00001e00	5.38634260023

Resources

Name	Offset	Size	Language	Sub-language	File type
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_ICON	0x003d9a50	0x000018f5	LANG_ENGLISH	SUBLANG_ENGLISH_US	PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
RT_GROUP_ICON	0x003db348	0x00000084	LANG_ENGLISH	SUBLANG_ENGLISH_US	data
RT_MANIFEST	0x003db3d0	0x00000188	LANG_ENGLISH	SUBLANG_ENGLISH_US	XML 1.0 document, ASCII text, with CRLF line terminators

Imports

Library KERNEL32.dll:

• 0x14025b198 Process32NextW

• 0x14025b1a0 Process32FirstW

• 0x14025b1a8 SetConsoleMode

• 0x14025b1b0 SetConsoleTitleW

• 0x14025b1b8 GetThreadContext

• 0x14025b1c0 OpenProcess

• 0x14025b1c8 GetCurrentProcess

• 0x14025b1d0 CreateToolhelp32Snapshot

• 0x14025b1d8 K32GetModuleInformation

• 0x14025b1e0 ReadProcessMemory

• 0x14025b1e8 WriteProcessMemory

• 0x14025b1f0 CloseHandle

• 0x14025b1f8 Process32Next

• 0x14025b200 GetLastError

• 0x14025b208 OutputDebugStringW

• 0x14025b210 InitializeSListHead

• 0x14025b218 GetSystemTimeAsFileTime

• 0x14025b220 IsProcessorFeaturePresent

• 0x14025b228 SetUnhandledExceptionFilter

• 0x14025b230 UnhandledExceptionFilter

• 0x14025b238 RtlVirtualUnwind

• 0x14025b240 RtlLookupFunctionEntry

• 0x14025b248 RtlCaptureContext

• 0x14025b250 WakeAllConditionVariable

• 0x14025b258 SleepConditionVariableSRW

• 0x14025b260 GetLocaleInfoEx

• 0x14025b268 Module32First

• 0x14025b270 GetFileInformationByHandleEx

• 0x14025b278 AreFileApisANSI

• 0x14025b280 SetFileInformationByHandle

• 0x14025b288 TerminateProcess

• 0x14025b290 GetTickCount

• 0x14025b298 IsDebuggerPresent

• 0x14025b2a0 VirtualQuery

• 0x14025b2a8 Module32Next

• 0x14025b2b0 Process32First

• 0x14025b2b8 FormatMessageA

• 0x14025b2c0 LocalFree

• 0x14025b2c8 GlobalFindAtomA

• 0x14025b2d0 GetFileAttributesExW

• 0x14025b2d8 FindNextFileW

• 0x14025b2e0 FindFirstFileExW

• 0x14025b2e8 FindFirstFileW

• 0x14025b2f0 FindClose

• 0x14025b2f8 CreateDirectoryW

• 0x14025b300 GetCurrentDirectoryW

• 0x14025b308 InitializeCriticalSection

• 0x14025b310 QueryFullProcessImageNameW

• 0x14025b318 GetModuleHandleW

• 0x14025b320 GetModuleFileNameW

• 0x14025b328 CreateFileMappingW

• 0x14025b330 VirtualProtect

• 0x14025b338 CreateThread

• 0x14025b340 HeapSize

• 0x14025b348 HeapDestroy

• 0x14025b350 AddVectoredExceptionHandler

• 0x14025b358 CreateFileW

• 0x14025b360 CreateFileMappingA

• 0x14025b368 UnmapViewOfFile

• 0x14025b370 MapViewOfFile

• 0x14025b378 GetProcessHeap

• 0x14025b380 HeapFree

• 0x14025b388 HeapReAlloc

• 0x14025b390 HeapAlloc

• 0x14025b398 GetFileSizeEx

• 0x14025b3a0 CreateFileA

• 0x14025b3a8 VerifyVersionInfoW

• 0x14025b3b0 SleepEx

• 0x14025b3b8 WaitForMultipleObjects

• 0x14025b3c0 PeekNamedPipe

• 0x14025b3c8 ReadFile

• 0x14025b3d0 GetFileType

• 0x14025b3d8 WaitForSingleObjectEx

• 0x14025b3e0 MoveFileExA

• 0x14025b3e8 FormatMessageW

• 0x14025b3f0 SetLastError

• 0x14025b3f8 GetEnvironmentVariableA

• 0x14025b400 GetSystemDirectoryA

• 0x14025b408 CreateEventA

• 0x14025b410 WaitForSingleObject

• 0x14025b418 SetEvent

• 0x14025b420 DeleteCriticalSection

• 0x14025b428 InitializeCriticalSectionEx

• 0x14025b430 LeaveCriticalSection

• 0x14025b438 EnterCriticalSection

• 0x14025b440 AcquireSRWLockExclusive

• 0x14025b448 ReleaseSRWLockExclusive

• 0x14025b450 GetConsoleWindow

• 0x14025b458 GetCurrentProcessId

• 0x14025b460 GetCurrentThread

• 0x14025b468 GetFileAttributesA

• 0x14025b470 GetTimeZoneInformation

• 0x14025b478 GetConsoleMode

• 0x14025b480 GetCurrentThreadId

• 0x14025b488 WriteFile

• 0x14025b490 WriteConsoleA

• 0x14025b498 GetModuleFileNameA

• 0x14025b4a0 GlobalUnlock

• 0x14025b4a8 WideCharToMultiByte

• 0x14025b4b0 GlobalLock

• 0x14025b4b8 GlobalFree

• 0x14025b4c0 GlobalAlloc

• 0x14025b4c8 FreeLibrary

• 0x14025b4d0 VerSetConditionMask

• 0x14025b4d8 GetProcAddress

• 0x14025b4e0 LoadLibraryA

• 0x14025b4e8 MultiByteToWideChar

• 0x14025b4f0 GetModuleHandleA

• 0x14025b4f8 QueryPerformanceCounter

• 0x14025b500 GetSystemInfo

• 0x14025b508 QueryPerformanceFrequency

• 0x14025b510 Sleep

• 0x14025b518 DeleteFileA

• 0x14025b520 GetStdHandle

• 0x14025b528 SetConsoleTitleA

• 0x14025b530 SetConsoleTextAttribute

• 0x14025b538 GetConsoleScreenBufferInfo

Library USER32.dll:

• 0x14025b898 ReleaseCapture

• 0x14025b8a0 SetWindowPos

• 0x14025b8a8 DispatchMessageA

• 0x14025b8b0 GetWindowRect

• 0x14025b8b8 SetWindowDisplayAffinity

• 0x14025b8c0 GetMonitorInfoA

• 0x14025b8c8 MoveWindow

• 0x14025b8d0 GetClientRect

• 0x14025b8d8 IsWindowUnicode

• 0x14025b8e0 DefWindowProcA

• 0x14025b8e8 SetCursorPos

• 0x14025b8f0 CreateWindowExA

• 0x14025b8f8 SetLayeredWindowAttributes

• 0x14025b900 TranslateMessage

• 0x14025b908 PeekMessageA

• 0x14025b910 GetWindowLongPtrA

• 0x14025b918 UnregisterClassA

• 0x14025b920 PostQuitMessage

• 0x14025b928 SetWindowLongPtrA

• 0x14025b930 RegisterClassExA

• 0x14025b938 SetForegroundWindow

• 0x14025b940 GetAsyncKeyState

• 0x14025b948 GetCursorPos

• 0x14025b950 SendInput

• 0x14025b958 ShowWindow

• 0x14025b960 FindWindowA

• 0x14025b968 SetCapture

• 0x14025b970 GetForegroundWindow

• 0x14025b978 TrackMouseEvent

• 0x14025b980 ClientToScreen

• 0x14025b988 GetCapture

• 0x14025b990 ScreenToClient

• 0x14025b998 MonitorFromWindow

• 0x14025b9a0 LoadCursorA

• 0x14025b9a8 GetKeyState

• 0x14025b9b0 SetClipboardData

• 0x14025b9b8 GetClipboardData

• 0x14025b9c0 EmptyClipboard

• 0x14025b9c8 MessageBoxA

• 0x14025b9d0 CloseClipboard

• 0x14025b9d8 OpenClipboard

• 0x14025b9e0 SetCursor

Library ADVAPI32.dll:

• 0x14025b000 SystemFunction036

• 0x14025b008 CopySid

• 0x14025b010 SetSecurityInfo

• 0x14025b018 RegDeleteKeyA

• 0x14025b020 RegCreateKeyExA

• 0x14025b028 IsValidSid

• 0x14025b030 InitializeAcl

• 0x14025b038 GetTokenInformation

• 0x14025b040 GetLengthSid

• 0x14025b048 AddAccessAllowedAce

• 0x14025b050 OpenProcessToken

• 0x14025b058 CryptEncrypt

• 0x14025b060 CryptImportKey

• 0x14025b068 CryptDestroyKey

• 0x14025b070 CryptDestroyHash

• 0x14025b078 CryptHashData

• 0x14025b080 CryptCreateHash

• 0x14025b088 QueryServiceStatus

• 0x14025b090 CloseServiceHandle

• 0x14025b098 OpenSCManagerA

• 0x14025b0a0 StartServiceA

• 0x14025b0a8 OpenServiceA

• 0x14025b0b0 CryptGetHashParam

• 0x14025b0b8 CryptAcquireContextA

• 0x14025b0c0 CryptReleaseContext

• 0x14025b0c8 ConvertSidToStringSidA

Library SHELL32.dll:

• 0x14025b870 ShellExecuteA

• 0x14025b878 SHGetFolderPathA

Library ole32.dll:

• 0x14025c0c0 CoCreateInstance

• 0x14025c0c8 CoUninitialize

• 0x14025c0d0 CoInitialize

Library MSVCP140.dll:

• 0x14025b548 _Cnd_signal

• 0x14025b550 _Query_perf_frequency

• 0x14025b558 ?_Throw_Cpp_error@std@@YAXH@Z

• 0x14025b560 ?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

• 0x14025b568 ?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A

• 0x14025b570 ?_Winerror_map@std@@YAHH@Z

• 0x14025b578 ?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A

• 0x14025b580 ?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z

• 0x14025b588 ?id@?$ctype@D@std@@2V0locale@2@A

• 0x14025b590 ?_Syserror_map@std@@YAPEBDH@Z

• 0x14025b598 _Mtx_lock

• 0x14025b5a0 _Cnd_do_broadcast_at_thread_exit

• 0x14025b5a8 _Query_perf_counter

• 0x14025b5b0 _Thrd_detach

• 0x14025b5b8 _Xtime_get_ticks

• 0x14025b5c0 _Thrd_join

• 0x14025b5c8 _Mtx_unlock

• 0x14025b5d0 ?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

• 0x14025b5d8 ?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ

• 0x14025b5e0 ?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z

• 0x14025b5e8 ?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z

• 0x14025b5f0 ?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z

• 0x14025b5f8 ?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ

• 0x14025b600 ?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z

• 0x14025b608 ?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z

• 0x14025b610 ?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

• 0x14025b618 ?getloc@ios_base@std@@QEBA?AVlocale@2@XZ

• 0x14025b620 ?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

• 0x14025b628 ?always_noconv@codecvt_base@std@@QEBA_NXZ

• 0x14025b630 ?id@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A

• 0x14025b638 ?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

• 0x14025b640 ?put@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AEAVios_base@2@DPEBUtm@@PEBD3@Z

• 0x14025b648 ?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

• 0x14025b650 ?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z

• 0x14025b658 ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

• 0x14025b660 _Mtx_trylock

• 0x14025b668 _Thrd_yield

• 0x14025b670 ?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z

• 0x14025b678 ?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z

• 0x14025b680 ?_Xinvalid_argument@std@@YAXPEBD@Z

• 0x14025b688 ??7ios_base@std@@QEBA_NXZ

• 0x14025b690 ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z

• 0x14025b698 ?_Random_device@std@@YAIXZ

• 0x14025b6a0 ?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ

• 0x14025b6a8 ?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z

• 0x14025b6b0 ??1_Locinfo@std@@QEAA@XZ

• 0x14025b6b8 ?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ

• 0x14025b6c0 ??0_Locinfo@std@@QEAA@PEBD@Z

• 0x14025b6c8 ?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ

• 0x14025b6d0 ?_Getfalse@_Locinfo@std@@QEBAPEBDXZ

• 0x14025b6d8 ?_Gettrue@_Locinfo@std@@QEBAPEBDXZ

• 0x14025b6e0 ?_Incref@facet@locale@std@@UEAAXXZ

• 0x14025b6e8 ?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ

• 0x14025b6f0 ??0facet@locale@std@@IEAA@_K@Z

• 0x14025b6f8 ?_Xbad_function_call@std@@YAXXZ

• 0x14025b700 ?_Xout_of_range@std@@YAXPEBD@Z

• 0x14025b708 ?_Xbad_alloc@std@@YAXXZ

• 0x14025b710 ?good@ios_base@std@@QEBA_NXZ

• 0x14025b718 ??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

• 0x14025b720 ??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ

• 0x14025b728 ?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z

• 0x14025b730 ?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

• 0x14025b738 ?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z

• 0x14025b740 ?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

• 0x14025b748 ?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z

• 0x14025b750 ?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

• 0x14025b758 ?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ

• 0x14025b760 ?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

• 0x14025b768 ?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

• 0x14025b770 ??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ

• 0x14025b778 ??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

• 0x14025b780 ??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ

• 0x14025b788 ??1facet@locale@std@@MEAA@XZ

• 0x14025b790 ?id@?$numpunct@D@std@@2V0locale@2@A

• 0x14025b798 ?_Id_cnt@id@locale@std@@0HA

• 0x14025b7a0 ?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z

• 0x14025b7a8 ?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ

• 0x14025b7b0 ??0_Lockit@std@@QEAA@H@Z

• 0x14025b7b8 ??1_Lockit@std@@QEAA@XZ

• 0x14025b7c0 _Thrd_id

• 0x14025b7c8 ??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ

• 0x14025b7d0 ??Bios_base@std@@QEBA_NXZ

• 0x14025b7d8 ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z

• 0x14025b7e0 ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

• 0x14025b7e8 ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z

• 0x14025b7f0 ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ

• 0x14025b7f8 ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ

• 0x14025b800 ?_Xlength_error@std@@YAXPEBD@Z

• 0x14025b808 ?uncaught_exceptions@std@@YAHXZ

• 0x14025b810 ?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ

• 0x14025b818 ??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

• 0x14025b820 ??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

• 0x14025b828 ??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

• 0x14025b830 ??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ

• 0x14025b838 ?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ

Library D3DCOMPILER_43.dll:

• 0x14025b160 D3DCompile

Library dwmapi.dll:

• 0x14025c0b0 DwmExtendFrameIntoClientArea

Library IMM32.dll:

• 0x14025b170 ImmReleaseContext

• 0x14025b178 ImmSetCompositionWindow

• 0x14025b180 ImmGetContext

• 0x14025b188 ImmSetCandidateWindow

Library d3d11.dll:

• 0x14025c0a0 D3D11CreateDeviceAndSwapChain

Library bcrypt.dll:

• 0x14025c090 BCryptGenRandom

Library Normaliz.dll:

• 0x14025b848 IdnToUnicode

• 0x14025b850 IdnToAscii

Library WLDAP32.dll:

• 0x14025baa8 None

• 0x14025bab0 None

• 0x14025bab8 None

• 0x14025bac0 None

• 0x14025bac8 None

• 0x14025bad0 None

• 0x14025bad8 None

• 0x14025bae0 None

• 0x14025bae8 None

• 0x14025baf0 None

• 0x14025baf8 None

• 0x14025bb00 None

• 0x14025bb08 None

• 0x14025bb10 None

• 0x14025bb18 None

• 0x14025bb20 None

• 0x14025bb28 None

• 0x14025bb30 None

Library CRYPT32.dll:

• 0x14025b0d8 CertFreeCertificateChain

• 0x14025b0e0 CertGetCertificateChain

• 0x14025b0e8 CertFreeCertificateChainEngine

• 0x14025b0f0 CertCreateCertificateChainEngine

• 0x14025b0f8 CryptQueryObject

• 0x14025b100 CertGetNameStringA

• 0x14025b108 CertFindExtension

• 0x14025b110 CertAddCertificateContextToStore

• 0x14025b118 CryptDecodeObjectEx

• 0x14025b120 PFXImportCertStore

• 0x14025b128 CryptStringToBinaryA

• 0x14025b130 CertFreeCertificateContext

• 0x14025b138 CertFindCertificateInStore

• 0x14025b140 CertEnumCertificatesInStore

• 0x14025b148 CertCloseStore

• 0x14025b150 CertOpenStore

Library WS2_32.dll:

• 0x14025bb40 getsockopt

• 0x14025bb48 ioctlsocket

• 0x14025bb50 getpeername

• 0x14025bb58 sendto

• 0x14025bb60 WSACloseEvent

• 0x14025bb68 freeaddrinfo

• 0x14025bb70 getaddrinfo

• 0x14025bb78 recv

• 0x14025bb80 listen

• 0x14025bb88 htonl

• 0x14025bb90 send

• 0x14025bb98 WSACreateEvent

• 0x14025bba0 getsockname

• 0x14025bba8 WSAEnumNetworkEvents

• 0x14025bbb0 WSAEventSelect

• 0x14025bbb8 WSAWaitForMultipleEvents

• 0x14025bbc0 closesocket

• 0x14025bbc8 __WSAFDIsSet

• 0x14025bbd0 socket

• 0x14025bbd8 htons

• 0x14025bbe0 WSAIoctl

• 0x14025bbe8 select

• 0x14025bbf0 setsockopt

• 0x14025bbf8 WSACleanup

• 0x14025bc00 WSAStartup

• 0x14025bc08 ntohs

• 0x14025bc10 WSAGetLastError

• 0x14025bc18 WSASetLastError

• 0x14025bc20 recvfrom

• 0x14025bc28 connect

• 0x14025bc30 bind

• 0x14025bc38 accept

• 0x14025bc40 WSAResetEvent

• 0x14025bc48 gethostname

Library SHLWAPI.dll:

• 0x14025b888 PathFindFileNameW

Library PSAPI.DLL:

• 0x14025b860 GetModuleInformation

Library USERENV.dll:

• 0x14025b9f0 UnloadUserProfile

Library VCRUNTIME140_1.dll:

• 0x14025ba98 __CxxFrameHandler4

Library VCRUNTIME140.dll:

• 0x14025ba00 __current_exception_context

• 0x14025ba08 __current_exception

• 0x14025ba10 __C_specific_handler

• 0x14025ba18 _CxxThrowException

• 0x14025ba20 longjmp

• 0x14025ba28 __intrinsic_setjmp

• 0x14025ba30 memmove

• 0x14025ba38 memchr

• 0x14025ba40 memset

• 0x14025ba48 memcpy

• 0x14025ba50 strrchr

• 0x14025ba58 __std_type_info_compare

• 0x14025ba60 strstr

• 0x14025ba68 strchr

• 0x14025ba70 __std_exception_copy

• 0x14025ba78 __std_exception_destroy

• 0x14025ba80 __std_terminate

• 0x14025ba88 memcmp

Library api-ms-win-crt-runtime-l1-1-0.dll:

• 0x14025bde0 _resetstkoflw

• 0x14025bde8 _configure_narrow_argv

• 0x14025bdf0 _initialize_narrow_environment

• 0x14025bdf8 _register_onexit_function

• 0x14025be00 _crt_atexit

• 0x14025be08 __sys_nerr

• 0x14025be10 __sys_errlist

• 0x14025be18 _invalid_parameter_noinfo_noreturn

• 0x14025be20 _cexit

• 0x14025be28 _seh_filter_exe

• 0x14025be30 _set_app_type

• 0x14025be38 _get_initial_narrow_environment

• 0x14025be40 _initterm

• 0x14025be48 abort

• 0x14025be50 _initterm_e

• 0x14025be58 _exit

• 0x14025be60 __p___argc

• 0x14025be68 exit

• 0x14025be70 _invalid_parameter_noinfo

• 0x14025be78 _beginthreadex

• 0x14025be80 system

• 0x14025be88 terminate

• 0x14025be90 _register_thread_local_exe_atexit_callback

• 0x14025be98 _c_exit

• 0x14025bea0 _initialize_onexit_table

• 0x14025bea8 _errno

• 0x14025beb0 __p___argv

Library api-ms-win-crt-string-l1-1-0.dll:

• 0x14025bfe0 isdigit

• 0x14025bfe8 strcmp

• 0x14025bff0 _strdup

• 0x14025bff8 strspn

• 0x14025c000 strpbrk

• 0x14025c008 strncpy

• 0x14025c010 strncmp

• 0x14025c018 tolower

• 0x14025c020 strcspn

• 0x14025c028 _wcsicmp

• 0x14025c030 _stricmp

Library api-ms-win-crt-heap-l1-1-0.dll:

• 0x14025bcf0 free

• 0x14025bcf8 malloc

• 0x14025bd00 realloc

• 0x14025bd08 calloc

• 0x14025bd10 _set_new_mode

• 0x14025bd18 _callnewh

Library api-ms-win-crt-utility-l1-1-0.dll:

• 0x14025c078 qsort

• 0x14025c080 rand

Library api-ms-win-crt-stdio-l1-1-0.dll:

• 0x14025bec0 setvbuf

• 0x14025bec8 fgetpos

• 0x14025bed0 __p__commode

• 0x14025bed8 _lseeki64

• 0x14025bee0 _read

• 0x14025bee8 ungetc

• 0x14025bef0 fsetpos

• 0x14025bef8 __stdio_common_vsnprintf_s

• 0x14025bf00 _pclose

• 0x14025bf08 fgetc

• 0x14025bf10 _popen

• 0x14025bf18 _fseeki64

• 0x14025bf20 _get_stream_buffer_pointers

• 0x14025bf28 _set_fmode

• 0x14025bf30 __stdio_common_vfprintf

• 0x14025bf38 fputc

• 0x14025bf40 _close

• 0x14025bf48 _open

• 0x14025bf50 fputs

• 0x14025bf58 __stdio_common_vswprintf

• 0x14025bf60 feof

• 0x14025bf68 fopen

• 0x14025bf70 __stdio_common_vsscanf

• 0x14025bf78 fread

• 0x14025bf80 _wfopen

• 0x14025bf88 fwrite

• 0x14025bf90 _fileno

• 0x14025bf98 _write

• 0x14025bfa0 fgets

• 0x14025bfa8 fseek

• 0x14025bfb0 fclose

• 0x14025bfb8 fflush

• 0x14025bfc0 __acrt_iob_func

• 0x14025bfc8 ftell

• 0x14025bfd0 __stdio_common_vsprintf

Library api-ms-win-crt-time-l1-1-0.dll:

• 0x14025c040 _localtime64_s

• 0x14025c048 strftime

• 0x14025c050 _time64

• 0x14025c058 _localtime64

• 0x14025c060 _gmtime64

• 0x14025c068 _gmtime64_s

Library api-ms-win-crt-convert-l1-1-0.dll:

• 0x14025bc58 strtoull

• 0x14025bc60 strtoul

• 0x14025bc68 strtod

• 0x14025bc70 atof

• 0x14025bc78 atoi

• 0x14025bc80 strtoll

• 0x14025bc88 strtol

• 0x14025bc90 wcstombs

Library api-ms-win-crt-math-l1-1-0.dll:

• 0x14025bd48 fmodf

• 0x14025bd50 _ldsign

• 0x14025bd58 _fdsign

• 0x14025bd60 _dsign

• 0x14025bd68 log

• 0x14025bd70 logf

• 0x14025bd78 __setusermatherr

• 0x14025bd80 floorf

• 0x14025bd88 _fdopen

• 0x14025bd90 powf

• 0x14025bd98 sinf

• 0x14025bda0 sqrtf

• 0x14025bda8 acosf

• 0x14025bdb0 sqrt

• 0x14025bdb8 atan2f

• 0x14025bdc0 pow

• 0x14025bdc8 ceilf

• 0x14025bdd0 cosf

Library api-ms-win-crt-filesystem-l1-1-0.dll:

• 0x14025bcb0 _access

• 0x14025bcb8 remove

• 0x14025bcc0 _unlock_file

• 0x14025bcc8 _fstat64

• 0x14025bcd0 _unlink

• 0x14025bcd8 _stat64

• 0x14025bce0 _lock_file

Library api-ms-win-crt-locale-l1-1-0.dll:

• 0x14025bd28 ___lc_codepage_func

• 0x14025bd30 _configthreadlocale

• 0x14025bd38 localeconv

Library api-ms-win-crt-environment-l1-1-0.dll:

• 0x14025bca0 getenv

!This program cannot be run in DOS mode.
UNF QO
UN1$PO
UNO%\O
UNO%WO
UNRich
`.rdata
@.data
.pdata
@.rsrc
@.reloc
t$)B4C
@SUVWH
VWATAVAWH
 A_A^A\_^
t$ WAVAWH
@SUVWAWH
 A__^][
 A__^][
VWATAVAWH
0A_A^A\_^
VWATAVAWH
0A_A^A\_^
@SUAVH
UAVAWH
 A_A^]
@SVATAUAWH
0A_A]A\^[
UVWATAUAVAWH
 A_A^A]A\_^]
\$ UVWATAUAVAWH
A_A^A]A\_^]
@SUVAVH
(A^^][
(A^^][
UVWATAUAVAWH
 A_A^A]A\_^]
@SUVWAVH
 A^_^][
 A^_^][
 A^_^][
SUVATH
HA\^][
UVWATAUAVAWH
l$hD8o
 L;t$8
A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
|$ AVH
t$ AVH
@SVAVAWH
(A_A^^[
t$ WATAUAVAWH
A_A^A]A\_
\$ UVWATAUAVAWH
PA_A^A]A\_^]
l$ VAVAWH
 A_A^^
L$ SVWH
9Fp}fH
9Ft}bH
|$XE9e
d$@fff
D$@E;M
@UAVAWH
@8w-t03
)T$Pt"
|$ AVH
L$@+D$ H
D$,+D$$
hhhhhh
hhhhhhh
 !"#$%&'()*+,-./012345678hh9:;<=>?@ABCDhEFGHIJKLMNOPQRShhhhhhhhhhhhhhhhhhhhTUhhhhhhhhhhhhhhVWXYZ[hhhhhhhhhhhhhhhhhhhh\]^_`abhhhhhhhhhhhhhhhhhhhhhhhhhhcdefhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhg
@USVWATAVAWH
pA_A^A\_^[]
L$ SWH
L$ SVWH
L$ SUVWH
L$ SUVWATAUAVAWH
8A_A^A]A\_^][
|$ AVH
|$ ATAUAVAWD
|$@A_A^A]A\
@SAUAVAWH
l$(A_A^A][
t$ AWH
t$ WATAWH
0A_A\_
@SUVWAVH
A^_^][
@SUVWAVH
A^_^][
UWAUAVAWH
A_A^A]_]
@UWAUAVH
HA^A]_]
USVWAWH
(d$prpH
A__^[]
UVAUAWI
t*HcKh
t*HcKh
A_A]^]
UAVAWH
WAVAWH
 A_A^_
l$ VWAVH
9Atu&A
(L$P@8
(D$`@8
SATAVH
L9g8tpL
L9a(tA
E8fxt'A;
L9g@tsL
L9a(tA
GpD9gx~\M
GPD;Wx|
PA^A\[
$E8H~u
UVWATAUAVAWH
w8D;v4~HH
A_A^A]A\_^]
WAVAWH
0A_A^_
UWATAVAWH
A_A^A\_]
USVATAWH
A_A\^[]
USWATAUAVAWH
A_A^A]A\_[]
UVWATAUAVAWH
A_A^A]A\_^]
X UVWATAUAVAWH
tyLcwpH
D8\$@t@A
G$E8|$
D$|E8Q
fffffff
D8d$@t
D$L;D$`
A_A^A]A\_^]
|$ ATAVAWH
 A_A^A\
]A88tXH
\$ VWAWH
WAVAWH
 A_A^_
L$ SWH
\$ UWAVH
WAVAWH
 A_A^_
(d$@A;
SUAVAWH
xA_A^][
|$ ATAVAWH
0A_A^A\
d$Xt'E3
)|$0uXA
(t$@Hc
WATAUAVAWH
@A_A^A]A\_
t$ WAVAWH
 A_A^_
WAVAWH
 A_A^_
UVWAVAWH
 A_A^_^]
@VWAWH
|$ ATAVAWH
 A_A^A\
WAVAWH
 A_A^_
WAVAWH
 A_A^_
|$ ATAVAWH
 A_A^A\
vb'vb'v
|$ AVAW3
t$(A_A^
SUATAVH
L$Hu&A;
A^A\][
A^A\][
|$ AVH
l$ VWAVH
D$<9D$8}
D$<9D$8}
\$ UVWATAUAVAWH
A_A^A]A\_^]
t$ WATAUAWH
t$@A_A]A\_
X UVWATAUAVAWH
D$TD9L$`
A_A^A]A\_^]
HcA0Hk
HcC0Hk
3HcA0Hk
WAVAWH
PA_A^_
UVWATAUAVAWH
A_A^A]A\_^]
(D$`Ic
\$ UVWH
tHHcD$PHk
tHHcD$PHk
UVWAVAWH
A_A^_^]
t$hv&A
T$8E;l$
@SUWAVH
)t$`E3
UVWATAUAVAWH
A_A^A]A\_^]
SVWAVH
8A^_^[
SVWAVAWH
0A_A^_^[
USVATAUAVH
T$hvGL
D$dHcF$B
HcN(D;
A^A]A\^[]
|$ AVH
WAVAWH
 A_A^_
WAVAWH
 A_A^_
K SVWAWH
k4L9T$0
C8HcL$LH
K SUVWH
@SVAVAWH
8A_A^^[
8A_A^^[
@UAVAWH
uxHcUxH
pA_A^]
t$ AVH
D$0HcVxH
|$ ATAVAWH
@A_A^A\
WAVAWH
t$Pt*HcKh
0A_A^_
(|$pv)A
@UATAUAVAWH
A_A^A]A\]
@UVWATAUAVAWH
A_A^A]A\_^]
@USVWATAUAVAWH
A_A^A]A\_^[]
@SUVWAVH
 A^_^][
)L$`I+
tWHcC@HcKDH
t7HcKxLi
{|HcCxA
HcKxHi
x UATAUAVAWH
t$hHc{
A_A^A]A\]
|$ AVH
9_h~>H
@UATAUAVAWH
A_A^A]A\]
9sX~$H
l$ VWATAVAWH
 HcC(L
fD9sTuPH
CTfD9sVuJH
u!HcC(H
 A_A^A\_^
@SWAVH
VWATAVAWH
 A_A^A\_^
SUVWAWH
EL$4fA
+T$8Hk
A__^][
@SUVWH
D$0HcVxH
L$ VWH
x UATAUAVAWH
A_A^A]A\]
C\8C[t
D9wt~iI
]t4D8t
hD;Wt|
WAUAWH
p WAVAWH
9{t~%H
9{t~(H
A9Qt~5H
hA;Qt|
@USVATAWH
\$$9Ft
D8|$!~
\$$;|$H
D$(;^t
D8|$!~
A_A\^[]
)L$`t4
CVE9Qt~\M
hE;Qt|
D:T*V}
VD8L$0u7A
E9Ht~$I
hE;Ht|
Je2JfL
|$XtoH
9{t~Wfff
@UWATAVAWH
A_A^A\_]
USAUAWI
HkD$Ph
A_A][]
EJ|;Jt
9kt~&H
\$pHc]
WATAUAVAWH
t$(A;>
A_A^A]A\_
D$ HcPXH
D$ HcPXH
UVWATAUAVAWH
A_A^A]A\_^]
D$1uPL
l$HHci ;
IcQ L;
(t$PL;
A;P }^H
UAUAWI
@WAVAWH
0A_A^_
H SVWAVH
HA^_^[
L$ SVWH
SUVWATAUAVAWH
8A_A^A]A\_^][
UWATAVAWI
A_A^A\_]
UVWATAVH
A^A\_^]
USAUAVAWH
A_A^A][]
UVWATAUAVAWH
A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
UATAUAVAWH
3333333
D$@D9%
D9%Cn0
D$@D9%
A_A^A]A\]
UVWATAUAVAWH
D$@D9%
D9%[f0
D$@D9%
A_A^A]A\_^]
USWATAUAVAWH
D$AD8t$Bt
8E;w4~LI
A_A^A]A\_[]
HcB|Hk
UVWATAUAVAWH
D8l$Pt
t!D8k u
A_A^A]A\_^]
@SUWATAVH
PA^A\_][
X UVWATAUAVAWH
3333333
A_A^A]A\_^]
|$ AVAWH
\$ UATAUAVAWH
 A_A^A]A\]
t$ WATAWH
@A_A\_
SWAUAWH
l$<@8s
A_A]_[
t$8Hcq
@VWAWH
|$ AVH
UVWATAUAVAWH
E;4$~;H
0A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
u"@8t$Su
OX9G\D
G\9GXu
WX9G\D
G\9GXu
G\9GXu
uk8D$Sue3
G\9GXt
G\9GXt
G\9GXu
D8D$St'
D8#tXH
D9d$Xt-
OT9GT~
G\9GXu
G\9GXt
W HcGTL
u HcG\H
Lc} D;
GXHcE$;
X UVWATAUAVAWH
UUUUUUU
A_A^A]A\_^]
X UVWATAUAVAWH
@8|$Bt
A_A^A]A\_^]
USVWATAVAWH
A_A^A\_^[]
@UVWAVAWH
A_A^_^]
@UATAVAWH
A_A^A\]
UWATAUAVH
0A^A]A\_]
0A^A]A\_]
@USWAUAVH
T$xu$A
A^A]_[]
x UATAUAVAWH
D$Q:D$St
HcA|Lk
A_A^A]A\]
SUVWATAUAVAWH
A_A^A]A\_^][
SUVWATAUAVAWH
A_A^A]A\_^][
SUVWATAUAVAWH
A_A^A]A\_^][
SUVWATAUAVAWH
A_A^A]A\_^][
UVATAVAWH
A_A^A\^]
UVATAVAWH
A_A^A\^]
)\$0fD
(L$0M;
@UVAUAWH
8A_A]^]
@SUVWAVAWH
H9t$0tK3
HA_A^_^][
@SVATAVAWH
D$0fff
A_A^A\^[
@SUVWATAUAVAWH
8A_A^A]A\_^][
@UVATAUAWH
`A_A]A\^]
00000000H
l$ VWATAVAWH
A_A^A\_^
@SVWAVH
XA^_^[
@VWAWH
t$ WAVAWH
@VWAWH
t$ WAVAWH
t$ UWATAVAWH
A_A^A\_]
@SUVWATAUAVAWH
hA_A^A]A\_^][
@SVAVH
@SUVAVAWH
PA_A^^][
@SUVWATAVH
8A^A\_^][
8A^A\_^][
8A^A\_^][
@UVWATAVAWH
8A_A^A\_^]
@WATAWH
0A_A\_
@USVWAVH
A^_^[]
\$ UVWAVAWH
A_A^_^]
< t><+t<-uR
\$ VWAVH
UVWAVAWH
t-<st)A
A_A^_^]
t5<ct1<?t1A
[<?u:A
UVWATAUAVAWH
U4@8}2t
A_A^A]A\_^]
UVWAVAWH
pA_A^_^]
UVWATAUAVAWH
U4@8}2t
A_A^A]A\_^]
UVWATAUAVAWH
U4@8}2t
A_A^A]A\_^]
@SVWATAVH
0A^A\_^[
@USVWATAVAWH
<BtW<XtJ<bt=<ot
7@8|$xt
L+D$pH
A_A^A\_^[]
UVWAVAWH
pA_A^_^]
@USVWATAVAWH
<BtT<XtG<bt:<ot
L+D$pH
A_A^A\_^[]
UVWAVAWH
pA_A^_^]
@USVWATAVAWH
D$|A8v
<BtU<XtH<bt;<ot
L+D$pH
A_A^A\_^[]
@USVWATAVAWH
<BtU<XtH<bt;<ot
L+D$pH
A_A^A\_^[]
UVWAVAWH
pA_A^_^]
@USVWATAVAWH
D$|A8v
<BtV<XtI<bt<<ot
L+D$pH
A_A^A\_^[]
UVWAVAWH
A_A^_^]
\$ VWATAVAWH
0A_A^A\_^
|$ AVH
\$ UVWATAWH
@A_A\_^]
\$ UVWATAWH
@A_A\_^]
[ UVWH
T$0L;T$8t
t$ WATAUAVAWH
0A_A^A]A\_
t$ WATAUAVAWH
A_A^A]A\_
\$ UVWATAWH
@A_A\_^]
\$ UVWATAWH
@A_A\_^]
\$ UVWATAWH
@A_A\_^]
L$0H;S
t$ WATAUAVAWH
0A_A^A]A\_
\$ UVWH
)L$0H9h
WAVAWH
0A_A^_
|$ AVH
|$ UATAUAVAWH
D$ I;W
A_A^A]A\]
\$ UVWATAUAVAWH
`A_A^A]A\_^]
@SUVWATAVAWH
0A_A^A\_^][
\$ UVWATAUAVAWH
`A_A^A]A\_^]
UWATAVAWH
A_A^A\_]
L$ SVWH
L$ SUVWH
t$ UWATAVAWH
A_A^A\_]
|$pt?H
VWATAVAWH
@A_A^A\_^
t$ UWATAVAWH
A_A^A\_]
UVWAVAWH
`A_A^_^]
\$ UVWH
WATAUAVAWL
A),$I;
t$HA_A^A]A\_
UVWATAUAVAWH
`A_A^A]A\_^]
@USVWATAVAWH
A_A^A\_^[]
\$ UVWATAUAVAWH
A_A^A]A\_^]
WAVAWH
UVWATAUAVAWH
@A_A^A]A\_^]
UWATAVAWH
D$HH;w
D$HH;_
A_A^A\_]
WATAUAVAWD
t$HA_A^A]A\_
@USVWATAUAVAWH
 L;eHv&H
H;UHv!H
H;]Hv&H
 L;eHv&H
H;UHv!H
K0Lcl$pH
H;UHv!H
|$HH;_
|$HI;_
A_A^A]A\_^[]
K SUVWH
[ VWAVH
@SUVWAVH
A^_^][
|$ AVD
r9u+Hc
r:u,Hc
\$ UVWAVAWH
A_A^_^]
@USVWAVH
A^_^[]
(D$ E3
t$ WATAUAVAWH
t$PH;V
D$(IcD$
 A_A^A]A\_
t$ WAVAWH
PA_A^_
UVWATAUAVAWH
A_A^A]A\_^]
H;Yxt=
t$ WATAUAVAWH
A_A^A]A\_
l$ VWAVH
S0H+S(H
|$ UATAUAVAWH
A_A^A]A\]
@SUVWAVH
@A^_^][
t$ WAVAWH
UATAUAVAWH
A_A^A]A\]
t$ WATAUAVAWH
A_A^A]A\_
UVWATAUAVAWH
A_A^A]A\_^]
t$ AWH
VAVAWH
uXD9t$0uQH
@A_A^^
|$ AVH
l$ VWAVH
|$ AVH
D$ =@B
l$ VWAVH
tTf9(umHcH<
d$ UAVAWH
UATAUAVAWH
A_A^A]A\]
WAVAWH
` AUAVAWH
A_A^A]
` AUAVAWH
A_A^A]
SVWATAUAVAWH
A_A^A]A\_^[
l$ VWATAVAWH
EpI;wxv
 A_A^A\_^
@SUVWATAVH
HA^A\_^][
@SUVWH
@SWAWH
 A__[H
@UVAVH
0A^^]H
UVWATAUAVAWH
A_A^A]A\_^]
UVWAVAWH
3333333
A_A^_^]
@SUVWAVH
 A^_^][
 A^_^][
|$ UATAUAVAWH
A_A^A]A\]
WATAUAVAWH
DZ\bH
DZ\tH
DZ\nH
DZ\fH
DZ\rH
DZ\"H
DZ\\H
A_A^A]A\_
l$ VWATAVAWH
A_A^A\_^
l$ VWAVH
l$ VWAVH
t$ UWAVH
tySUVH
@SUVWAVAWH
HA_A^_^][
UVWAVAWH
PA_A^_^]
********************
** !"#*$%&'(*
UVWAVAWH
PA_A^_^]
********************
** !"#*$%&'(*
tQxOHi
t$ WATAUAVAWH
A_A^A]A\_
UVWATAUAVAWH
A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
tQxOHi
\$ UVWATAUAVAWH
@A_A^A]A\_^]
\$ UVWATAUAVAWH
@A_A^A]A\_^]
\$ UVWATAUAVAWH
0A_A^A]A\_^]
@USVWAVH
A^_^[]
UVWATAUAVAWH
pA_A^A]A\_^]
@WATAVAWH
8A_A^A\_
@SUVWAVH
 A^_^][
gfffffffH
gfffffffLi
UVWAVAWH
`A_A^_^]
UVWAVAWH
`A_A^_^]
UVWAVAWH
gfffffffH
`A_A^_^]
UVWAVAWH
`A_A^_^]
WATAUAVAWH
A_A^A]A\_
VWAUAVAWH
A_A^A]_^
WATAUAVAWH
A_A^A]A\_
UVWATAUAVAWH
PA_A^A]A\_^]
UVWATAUAVAWH
`A_A^A]A\_^]
WAVAWH
UVWATAUAVAWH
PA_A^A]A\_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
WAVAWH
PA_A^_
WAVAWH
PA_A^_
WAVAWH
PA_A^_
WAVAWH
gfffffffI
PA_A^_
WAVAWH
PA_A^_
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
VWATAVAWH
t$0IcF
A_A^A\_^
VWATAVAWH
A_A^A\_^
VWATAVAWH
A_A^A\_^
VWATAVAWH
A_A^A\_^
VWATAVAWH
A_A^A\_^
UVWAVAWH
PA_A^_^]
UVWAVAWH
`A_A^_^]
VWATAVAWH
A_A^A\_^
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
A_A^_^]
t$ WAVAWH
 A_A^_
SUVWAVAWH
(A_A^_^][
@USVWATAUAVAWH
A_A^A]A\_^[]
\$ I9+u
\$ I9+u
|$ H;SHt
|$ H;SHt
D$$trueA
D$$falsA
D$$nullA
l$ VWAVH
|$0H;SHt
VWATAVAWH
|$`H;SHt
 A_A^A\_^
t$ WATAUAVAWH
D$ H;WHt
D$ H;WHt
D$ H;WHt
D9(uKH
A_A^A]A\_
x UATAUAVAWH
t$ H;WHt
D$ H;WHt
A_A^A]A\]
 !!"!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$%&&&&&&&&&&&&'&&()))*f
D$0H;SHt
D$0H;Q
@SVWAVAWH
D$ H;WHt
0A_A^_^[
\$ H;WHt
d$hH9t$pu#M
H9t$pu
@UWAVH
\$ UVWAVAWH
A_A^_^]
SUATAUAWH
T$ H;T$@
`A_A]A\][
@USVWAVH
A^_^[]
@USVWAVH
`A^_^[]
UVWATAUAVAWH
1<}u-I;
pA_A^A]A\_^]
t$ WAVAWH
UVWAVAWH
F(L9F0
A_A^_^]
l$ VWAVH
|$ AVH
tk|iH+
@SUVAVH
8A^^][
WAVAWH
PA_A^_
WAVAWH
0A_A^_
\$ UVWATAUAVAWH
 A_A^A]A\_^]
UVWAVAWH
A_A^_^]
UVWAVAWH
A_A^_^]
UVWAVAWH
A_A^_^]
|$ ATAVAWH
0A_A^A\
t$ WAVAWH
3333333
t$ WAVAWH
|$ AVH
<<t <>t
t$ UWATAVAWH
A_A^A\_]
@USVWATAVAWH
A_A^A\_^[]
@VWAUAVAWH
0A_A^A]_^
@SUVWH
UVWAVAWH
PA_A^_^]
\$ UVWAVAWH
A_A^_^]
\$ UVWAVAWH
PA_A^_^]
UVWAVAWH
`A_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
UVWAVAWH
PA_A^_^]
@USVWAVH
A^_^[]
WAVAWH
l$ VWATAVAWH
@A_A^A\_^
@SUVWAVH
pA^_^][
l$ VWAVH
@SUVWAVH
`A^_^][
UVWAVAWH
pA_A^_^]
@USVWATAVAWH
A_A^A\_^[]
@USVWATAVAWH
A_A^A\_^[]
@USVWAUAVAWH
pA_A^A]_^[]
I90u7A
SVWATAUAVAWH
A_A^A]A\_^[
@SUVAWH
HA_^][
@SUVWATAUH
t$0D9+
A]A\_^][
@SUVAWH
XA_^][
t$ WATAUAVAWH
A_A^A]A\_
@SUVWAVH
PA^_^][
@USAVAWH
A_A^[]
SVWATAUAVAWH
A_A^A]A\_^[
@UWAUAWH
8A_A]_]
SVWATAUAVAWH
A_A^A]A\_^[
SVWATAUAVAWH
A_A^A]A\_^[
SVWATAUAVAWH
A_A^A]A\_^[
SVWATAUAVAWH
A_A^A]A\_^[
SVWATAUAVAWH
A_A^A]A\_^[
@VWATAUAVAWH
XA_A^A]A\_^
L;D$(u
D#\$ A
D#\$ A#
XA_A^A]A\_^
@SUVWAUAWH
8A_A]_^][
USVWATAUAVAWH
A_A^A]A\_^[]
@USVATAUAVAWH
A94$~6E
A_A^A]A\^[]
UVWATAUAVAWH
A_A^A]A\_^]
@SUVWATAUAWH
D$ H;U
0A_A]A\_^][
@USVATAUAVAWH
E94$~6E
A_A^A]A\^[]
UVWATAUAVAWH
A_A^A]A\_^]
@SUVWATAUAWH
D$ H;U
0A_A]A\_^][
USVWATAUAVAWH
A_A^A]A\_^[]
UVWATAUAVAWH
A_A^A]A\_^]
UVWATAUAVAWH
LcD$ M
0A_A^A]A\_^]
UVWATAUAVAWH
LcD$ M
H;T$xv
D$pLcD$ M
A_A^A]A\_^]
@SUVWATAUAWH
D$ H;U
0A_A]A\_^][
UVWATAUAVAWH
PA_A^A]A\_^]
\$ UVWATAUAVAWH
PA_A^A]A\_^]
UVWATAUAVAWH
@A_A^A]A\_^]
UVWATAUAVAWH
0A_A^A]A\_^]
UVWATAUAVAWH
0A_A^A]A\_^]
UVWATAUAVAWH
0A_A^A]A\_^]
UVWATAUAVAWH
 A_A^A]A\_^]
|$ AVH
UVWATAUAVAWH
A_A^A]A\_^]
@SUVWAUAWH
(A_A]_^][
@SUVWAUAWH
(A_A]_^][
@SUVAWH
XA_^][
l$@H;S
@USVWATAVAWH
H;T$Hv
A_A^A\_^[]
UVWAVAWH
`A_A^_^]
@USVWATAVAWH
H;T$Hv
A_A^A\_^[]
@SUVWAUAWH
HA_A]_^][
HA_A]_^][
HA_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
(A_A]_^][
@USVWATAVAWH
H;T$Hv
A_A^A\_^[]
WAVAWH
00000000H
0A_A^_
@SUVWAUAWH
8A_A]_^][
t$ WATAUAVAWH
D$8D;4(u-
A_A^A]A\_
@SUVWAUAWH
HA_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
HA_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
HA_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
l$ VWATAVAWH
A_A^A\_^
@SUVWAUAWH
HA_A]_^][
HA_A]_^][
HA_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
8A_A]_^][
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
8A_A]_^][
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
8A_A]_^][
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
@SUVWAUAWH
HA_A]_^][
HA_A]_^][
HA_A]_^][
@SUVWAUAWH
8A_A]_^][
8A_A]_^][
8A_A]_^][
@SUVWAUAWH
8A_A]_^][
8A_A]_^][
8A_A]_^][
UATAUAVAWH
A_A^A]A\]
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
D$@H;T$Xt
x UAVAWH
L9=*C*
H;=X,*
\$ UVWATAUAVAWH
0A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
|$ UATAUAVAWH
A_A^A]A\]
` UAVAWH
UATAUAVAWH
|$@D9=
T$LD9=
A_A^A]A\]
@SUATAVAWH
0A_A^A\][
UAVAWH
\$ht%H
UATAUAVAWH
A_A^A]A\]
UATAUAVAWH
A_A^A]A\]
` UAVAWH
` UAVAWH
UATAUAVAWH
A_A^A]A\]
UATAUAVAWH
A_A^A]A\]
UAVAWH
UAVAWH
UATAUAVAWH
A_A^A]A\]
UATAUAVAWH
t@x>Hi
A_A^A]A\]
UAVAWH
UATAUAVAWH
@8=W$)
A_A^A]A\]
UATAUAVAWH
A_A^A]A\]
UATAUAVAWH
T$0t%L
A_A^A]A\]
\$ UVWATAUAVAWH
PA_A^A]A\_^]
WAVAWH
` AUAVAWH
A_A^A]
t$ WAVAWH
0A_A^_
|$ UAVAWH
WATAUAVAWH
\$pH;\$xt
A_A^A]A\_
WAVAWH
` AUAVAWH
A_A^A]
L$ L9t$(u
\$ UVWATAUAVAWH
0A_A^A]A\_^]
` UAVAWH
UVWATAUAVAWH
D$8+D$0
D$<+D$4
9D$0u6
9D$8u-
9D$4u$
A_A^A]A\_^]
(T$@v;
UATAUAVAWH
D8(t@H
D8(t1H
D8(t1H
D8(tpH
D8(t1H
D8(tpH
D8(t?H
M D9(ucH
D8(t@H
D8(tqH
D8(t1H
D8(t1H
D8(t@H
D8(t@H
D8(t@H
D8(t@H
D8(tHH
D8(t1H
A_A^A]A\]
VWATAVAWH
A_A^A\_^
UVWATAUAVAWH
@A_A^A]A\_^]
` UAVAWH
` UAVAWH
D$Xfff@
D$T)\C
t$Pfff
D$P334B
t$Pfff
D$P)\pB
t$Pfff
t$Pfff
h VWAVH
@SUVWAVAWH
(A_A^_^][
(A_A^_^][
(A_A^_^][
ATAVAWH
D$@H;T$pt
A_A^A\
x UATAUAVAWH
A_A^A]A\]
UVWATAUAVAWH
A_A^A]A\_^]
l$ VWATAVAWH
A_A^A\_^
l$ VWATAVAWH
0A_A^A\_^
@SUWAVAWH
 A_A^_][
 A_A^_][
 A_A^_][
t$ WATAUAVAWH
UUUUUUU
A_A^A]A\_
H;t$(t
.B$zQuO
.B(zDuB
.B,z7u5E3
.B$zQuO
.B(zDuB
.B,z7u5E3
|$ UAVAWH
0A_A^]
` AUAVAWH
|$0D8==
A_A^A]
UAVAWH
UATAUAVAWH
A_A^A]A\]
UWATAVAWH
A_A^A\_]
WATAUAVAWH
@88tKH
A_A^A]A\_
UATAUAVAWH
A_A^A]A\]
.D$hzZuXf
.D$hzUuSf
UAVAWH
@8=g)'
@8=/)'
@8=]"'
WATAUAVAWH
A_A^A]A\_
p WATAUAVAWH
A_A^A]A\_
p UWAVH
UVWAVAWH
A_A^_^]
UVWATAUAVAWH
A_A^A]A\_^]
UVWAVAWH
A_A^_^]
p WAVAWH
D$ H9H s
C H9G`
vb'vb'v
UATAUAVAWH
uPD8t$A
A_A^A]A\]
x UATAUAVAWH
UPH;UXt
M4H;UXt
M4H;UXt
UPH+UHH
A_A^A]A\]
x UAVAWH
UATAUAVAWH
.D$xzKuIf
A_A^A]A\]
UATAUAVAWH
A_A^A]A\]
UATAUAVAWH
D$XH9X s
H;_ sqH
_0H9_(tS
v4H;_8t
A_A^A]A\]
` UAVAWH
UVWATAUAVAWH
A_A^A]A\_^]
x UATAVH
T$`H;T$ht
UWATAVAWH
.D$HzXuVf
.D$HzYuWf
A_A^A\_]
UATAUAVAWH
A_A^A]A\]
UATAUAVAWH
|$8H;] t!A
|$8H;] t!A
|$8H;] t!A
|$8H;] t!A
H;U t
D$8H;U t A
t$8H;U tA
t$8H;U t
UhH;Up
|$8H;] t!A
UhH+U`H
UhH+U`H
A_A^A]A\]
UATAUAVAWH
.D$`zSuQf
.D$`zNuLf
D$8H9P s
UUUUUUU
A_A^A]A\]
VWATAVAWH
A_A^A\_^
t$ WAVAWH
@A_A^_
t$ WAVAWH
@SVATAVH
8A^A\^[
@UVAUAVH
UUUUUUU
(A^A]^]
@UVATAVH
(A^A\^]
|$ AVH
@UVATAUAVH
0A^A]A\^]
@UVATAUAVAWH
(A_A^A]A\^]
WAVAWH
 A_A^_
SWAUAVH
A^A]_[
UVWATAUAVAWH
A_A^A]A\_^]
@UVATH
\$ VWM
SUVWATAVH
A^A\_^][
L$ WAVAWH
@A_A^_
@SVWAVAWH
PA_A^_^[
PA_A^_^[
UVWATAUAVAWH
 A_A^A]A\_^]
l$ VWAVH
l$ VWAVH
UATAUAVAWH
A_A^A]A\]
WATAUAVAWH
t{L#%c
A_A^A]A\_
x UATAUAVAWH
3333333
3333333
A_A^A]A\]
l$ VWAVH
UAVAWH
H;|$0t
PA_A^]
l$ WAVAWH
0A_A^_
\$ UVWATAUAVAWH
@A_A^A]A\_^]
@SVAVAWH
(A_A^^[
@SVAVAWH
8A_A^^[
SVAUAWH
HA_A]^[
@SUVAWH
(A_^][
(A_^][
UVWATAUAVAWH
`A_A^A]A\_^]
t$ WATAUAVAWH
D$ L)`
A_A^A]A\_
UVWAVAWH
A_A^_^]
\$ I9+u
D$ H;SHt
L$ H;SHt
L$ H;SHt
D$$trueA
D$$falsA
D$$nullA
L$0H;SHt
t$ WAVAWH
L$PH;SHt
 A_A^_
t$ WATAUAVAWH
T$ H;GHt
A_A^A]A\_
D$ H;WHt
D$ H;WHt
D$ H;WHt
D$ H;WHt
L$8H;SHt
L$8H;SHt
L$8H;SHt
x UATAUAVAWH
L$ H;WHt
T$ H;GHt
D$ H;WHt
A_A^A]A\]
 !!"!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$%&&&&&&&&&&&&'&&()))*f
D$0H;SHt
l$ VWAVH
D$ H;WHt
D$ H;SHt
\$ UVWATAUAVAWH
@A_A^A]A\_^]
UVWAVAWH
A_A^_^]
t$ WATAUAVAWH
A_A^A]A\_
t$ WATAUAVAWH
A_A^A]A\_
UVWAVAWH
A_A^_^]
UVWAVAWH
A_A^_^]
@SVAVH
UVWAVAWH
A_A^_^]
VWATAVAWH
A_A^A\_^
UWATAVAWH
L9c@t:L
A_A^A\_]
SUWAUH
HA]_][
GPHcO 
HA]_][
UVWAVAWH
A_A^_^]
RRRRRRRRR
RRRRRR
RR R!"RR#$RRRR%&'RRR(R)*R+RRR,-.RR/0123RRRR4R5RRRRRRR6RRRRRR789:;<RRRRRRRR=RRR>?@ABCRDRRRRERRRRFGRRRRRHRIJKRRRRRLMRRRNORRPRRRRRRRRRQ
++++++
++++++++++
+ +!++++++++"++++++#$%+++++&'+++++()+*
HHHHHHHHHHHHHHHHH
 !HHH"H#H$HH%H&'(HHHH)HHHHHHHH*HHHHHHHHHHHH+HH,-HHHHHHHHHHH.H/HHHHHHHHHHHHHH01HH234HH56789H:HHHHHH;<HH=>?HH@HHHHHABCHHHHHDHHHHHHHEHHFHHHG
''''''
''''''
'' '!"'''''''#''''$%'''&f
SVAVAWH
A_A^^[
t$ AUAVAWH
@A_A^A]
WAVAWH
0A_A^_
http/1.1I;
|$ AVH
I;~ sPH
WAVAWH
M;7sUH
 A_A^_
l$ VATAUAVAWH
u0L;|$(u#H
0A_A^A]A\^
SUVAUAVH
PA^A]^][
l$ VAVAWH
 A_A^^
VWATAUAWH
,A9EPu.H
0A_A]A\_^
0A_A]A\_^
@SUAVH
@SUVWAVH
t3D8?t.L
@A^_^][
|$ AVH
)D$ fI
@UAUAVH
t$hu!H
@A^A]]
@A^A]]
@VWAVH
@SUVWAVH
A^_^][
USVAVAWH
w2L9c u6
A_A^^[]
D8l$0t
D8d$0t
L9`0u=
L9`0t$D
L9`8tAD
A_A^^[]
H9H |F
@UVWATAVAWH
A_A^A\_^]
;D8d$0t%I
D8d$0t
D$<u8A8
UVWATAUAVAWH
9{0tEM
A_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
G88C8u
SUVWATAUAVAWH
(A_A^A]A\_^][
VWATAUAWH
;-u\D8c
@A_A]A\_^
|$ AUAVAWH
t1L9{(t#H
 A_A^A]
;-umD8c
@SVATAVAWH
 A_A^A\^[
 A_A^A\^[
C<A9B<E
I<A9H<
|$ AVH
|$ ATAVAWH
A_A^A\
VUUUUUUUH
|$ AVH
\$ UVWATAUAVAWH
A_A^A]A\_^]
D8==T$
L9=p0$
L9=k0$
L9=f0$
d$8ttH
L$ SUVWH
|$ AVM
VUUUUUUUH
t$ WATAUAVAWH
 A_A^A]A\_
L$ SUVWH
|$ AVH
SUVWATAUAVAWH
u?H9o`u*H9ohu$M
XA_A^A]A\_^][
@SVWATH
hA\_^[
t$ AVH
9yx~5L
WATAUAVAWH
 A_A^A]A\_
uj9YHu
|$ AVH
uSH9{ tM
UVWATAUAVAWH
 A_A^A]A\_^]
t$ WAVAWH
VAVAWH
PA_A^^
|$ AVH
|$ AVH
SVAUAWH
A_A]^[
SUVWAVAWH
HA_A^_^][
l$ AVH
SUWATAUAVAWH
0A_A^A]A\_][
WAVAWH
 A_A^_H
\$ UVWATAUAVAWH
t$8tWI
A_A^A]A\_^]
@SUVWATAVAWH
A_A^A\_^][
|$ ATAVAWH
 A_A^A\
@UVATAUAWH
 A_A]A\^]
t$X@8p
 A_A]A\^]
 A_A]A\^]
UVWATAUAVAWH
H9\$@u;;
PA_A^A]A\_^]
UATAUAVAWH
A_A^A]A\]
@VWAUAWH
8A_A]_^
l$ VWAVH
L$ VWH
\$ UAVAWH
0A_A^]
0A_A^]
l$ WATAVH
@A^A\_
WAVAWH
0A_A^_
WAVAWH
0A_A^_
|$ ATAVAWH
0A_A^A\
WAVAWH
0A_A^_
WAVAWH
0A_A^_
|$ ATAVAWH
0A_A^A\
WAVAWH
0A_A^_
WAVAWH
0A_A^_
@UWAWH
t$@"D3,L
|$ AVH
L$ SWH
WATAUAVAWH
@A_A^A]A\_
|$ AVH
WAVAWH
 A_A^_
L$ UVWATAUAVAWH
@A_A^A]A\_^]
WAVAWH
 A_A^_
SATAUAVH
8A^A]A\[
8A^A]A\[
|$ AVH
@A^_^I
|$ AVH
VWATAVAWH
 A_A^A\_^
@SUVWAVH
`A^_^][
|$ AVH
9D$Xt/
9D$Xt4
\$ UVWATAUAVAWH
D9c\ux
D9c\u E8&
E9e uSH
D8`fu(H
D8cft*L
D8`fu$
A_A^A]A\_^]
\$ UVWATAUH
PA]A\_^]
WATAUAVAWH
A_A^A]A\_
WATAUAVAWH
L9c }*E3
 A_A^A]A\_
@USVWATAUAVAWH
A_A^A]A\_^[]
WAVAWH
 A_A^_
|$ ATAVAWH
uxfD;s
 A_A^A\
UVWAVAWH
A_A^_^]
t=8D$4t
UVWATAUAVAWH
 A_A^A]A\_^]
H;D$p|
@USATAUAVH
A^A]A\[]
VAVAWH
 A_A^^
@SUVWATAUAVAWH
A_A^A]A\_^][
WAVAWH
 A_A^_
t$ WATAUAVAWH
 A_A^A]A\_
@USVWATAUAVAWH
A_A^A]A\_^[]
@USVWATAUAVAWH
A_A^A]A\_^[]
t$ UWAVH
L93t^H
WATAUAVAWH
0A_A^A]A\_
UVWATAUAVAWH
A8NitOA
L$`D8'
D8d$Pt)H
D8d$Qt,H
eD8d$Rt.H
A_A^A]A\_^]
t$ WAVAWH
d$@u)A
 A_A^_
UVWATAUAVAWH
M9n(tDH
/E8l$lt<H
L9/u=H
D9l$`u"L;
A_A^A]A\_^]
@UVWATAUAVH
A^A]A\_^]
@SVWATAVAWH
d$8L9#tv
K`;K\tx
D8cjtBH
A_A^A\_^[
D8d$0t
|$ AVH
t H;D$(u
t H;D$(u
@USWAUAWH
L$XJcD
D$L;D$\
A_A]_[]
@SUVWATAUAVAWH
<0|'<9w#
8teIc@
XA_A^A]A\_^][
@SVWATAWH
A_A\_^[
WAVAWH
 A_A^_
VWATAVAWH
 A_A^A\_^
UVWATAUAVAWH
D$0<:u
PA_A^A]A\_^]
@SUVWAUAWH
T$8M)/M
XA_A]_^][
UVWATAUAVAWH
0A_A^A]A\_^]
t$ UWATAVAWH
9FTtwE3
A_A^A\_]
|$ AVH
Hct$`H
7Hct$`
L$ UVWATAUAVAWH
PA_A^A]A\_^]
UVWATAUAVAWH
A_A^A]A\_^]
|$ AVH
WAVAWH
uCHcI H
 A_A^_
9q ~VH
 D;~ |
|$ AVH
tILcA H
H91tHH
|$ AVH
tILcA H
UVWATAUAVAWH
A_A^A]A\_^]
t$ WATAUAVAWH
A_A^A]A\_
@UVWATAUAVAWH
A_A^A]A\_^]
\$ UVWAVAWH
A_A^_^]
@UWAVH
L;B |H
;B(|=~vH
tmL;A |
t3L;A |
H;B |Y
UVWATAUAVAWH
A_A^A]A\_^]
M9.u8L
|$ AVH
u:H+\$`H
WATAUAVAWH
D$ t&H
0A_A^A]A\_
L$ SUVWATAVAWH
0A_A^A\_^][
0A_A^A\_^][
UVWATAUAVAWH
D$0t&H
@A_A^A]A\_^]
|$ AVH
WAVAWH
0A_A^_
UVWAVAWH
PA_A^_^]
l$ WATAUAVAWH
0A_A^A]A\_
t$ WATAUAVAWH
0A_A^A]A\_
WATAUAVAWH
 A_A^A]A\_
VWATAUAVH
0A^A]A\_^
t$ WAVAWH
 A_A^_
t$ WAVAWH
FPL9FXt
 A_A^_
L$ UVWATAUAVAWH
l$hA9GDulI
 A_A^A]A\_^]
t$ WATAUAVAWH
@A_A^A]A\_
USVWATAUAVAWH
EP< u&H
HA_A^A]A\_^[]
WATAUAVAWH
 A_A^A]A\_
t$ WATAUAVAWH
A_A^A]A\_
@USVATAVH
A^A\^[]
D9t$@I
;fD93t
@UVWAVAWH
A_A^_^]
|$ AVH
|$ AVH
.......
..........
 !"#$%&'()...................*+,.......-
|$ AVH
H;\$0t
|$ ATAVAWH
 A_A^A\
SUVWATAUAVAWH
HA_A^A]A\_^][
@SUVWAVAWH
A_A^_^][
@USWAVH
@WATAUAWH
(A_A]A\_
L$ SUVWH
|$ AVH
WAVAWH
u~H9w@uxH9w
 A_A^_
UVWATAUAVAWH
 A_A^A]A\_^]
|$ AUAVAWH
PREAu f
<0|'<9~
 A_A^A]
@USWATAVAWH
8A_A^A\_[]
t,L9g u&H
t)L9g(u#H
M9&t%L9g
uL9g u
8A_A^A\_[]
|$ ATAUAWH
0A_A]A\
L$ SUVWH
LOGINDISL
STARTTLS
u#L9#uO
ABLEuF
;SASLu#f
;AUTHu1
H9|$Pu
l$ VWAVH
H;\$PH
)H9w8t
@VATAUAVAWH
PA_A^A]A\^
PA_A^A]A\^
PA_A^A]A\^
@WATAUH
\$Pt5A
0A]A\_
0A]A\_
WATAUAVAWH
 A_A^A]A\_
-ERRA;
\$ UVAVH
VWATAVAWH
?STLSu
?USERu
H9\$Pu
 A_A^A\_^
@UWATAUAVH
@A^A]A\_]
@A^A]A\_]
@A^A]A\_]
u,@8>t'H
l$ VWAVH
gH9|$`t
H+|$`H
l$ VWAVH
@UVWATAUAVH
(A^A]A\_^]
(A^A]A\_^]
t!<-um
UATAUAVAWH
t+L9eu#I
A_A^A]A\]
l$ VWAUAVAWH
STARTTLSH9G
SMTPUTF8H9G
AUTHue
H9\$Pu
 A_A^A]_^
@VWATAWH
XA_A\_^
XA_A\_^
XA_A\_^
UVWATAUAVAWH
PA_A^A]A\_^]
@SVWAVH
8A^_^[
8A^_^[
8A^_^[
|$ AVH
@SUVATAUAVAWH
0A_A^A]A\^][
ui8D$@tc
UVWAVAWH
 A_A^_^]
 A_A^_^]
 A_A^_^]
 A_A^_^]
@SUWATAWH
0A_A\_][
H+t$`A
t0@8/t+H
0A_A\_][
@UVWATAVH
0A^A\_^]
UVWATAUAVAWH
PA_A^A]A\_^]
uo8D$Hu!H
UVWATAUAVAWH
D8&tlE8
uWD8"uRH
A_A^A]A\_^]
WATAUAVAWH
0A_A^A]A\_
USAUAWI
D$@fD;t$D
f;\$Dw
A_A][]
@USWATAVH
d$@M9f0t
A^A\_[]
D8d$0u
t$ WATAVH
 A^A\_
@SVWAUH
H9s(uh
(A]_^[
@USVWAUAVAWH
A_A^A]_^[]
t$ WAVAWH
;/u'8C
0A_A^_
\$ UWAVH
@SUVWATAUAVAWH
u#D87H
A_A^A]A\_^][
H+\$pA
t$pH+\$pA8
uDH+\$p
H;\$@t"H
H;\$@t
UVWATAUAVAWH
u1<Ru-
 A_A^A]A\_^]
@USVWATAWH
A_A\_^[]
u#H9|$@t
@SUVWATAUAVAWH
8A_A^A]A\_^][
l$ VWATAVAWH
A_A^A\_^
@UVWAVH
8A^_^]
8A^_^]
t$ WAVAWH
0A_A^_
D$PL9N
@SVWAVH
8A^_^[
t$ WAVAWH
0A_A^_
L$ VAVAWH
`A_A^^
`A_A^^
r!,]<!v
@SVATAUAWH
A_A]A\^[
@UVATAWH
A_A\^]
\$ UVWATAUAVAWH
PA_A^A]A\_^]
\$ UAVAWH
UVWATAUAVAWH
0A_A^A]A\_^]
l$ VWATAVAWH
A_A^A\_^
UVWATAUAVAWH
A_A^A]A\_^]
H9D$0~
UVWATAUAVAWH
0A_A^A]A\_^]
u LcD$0H
C(9C ~
UVWAVAWH

Antivirus	Signature
Bkav	W64.AIDetectMalware
Lionic	Clean
Elastic	malicious (high confidence)
ClamAV	Clean
CMC	Clean
CAT-QuickHeal	Clean
Skyhigh	Clean
ALYac	Gen:Variant.Zusy.594877
Cylance	Unsafe
Zillya	Clean
Sangfor	Clean
CrowdStrike	win/malicious_confidence_90% (W)
Alibaba	Trojan:Win64/GenKryptik.fd32d6ce
K7GW	Trojan ( 005c85f21 )
K7AntiVirus	Trojan ( 005c85f21 )
huorong	Trojan/Agent.cfs
Baidu	Clean
VirIT	Clean
Paloalto	generic.ml
Symantec	ML.Attribute.HighConfidence
tehtris	Clean
ESET-NOD32	a variant of Win64/GenKryptik_AGen.AHT
APEX	Malicious
Avast	Win64:MalwareX-gen [Cryp]
Cynet	Malicious (score: 100)
Kaspersky	Clean
BitDefender	Gen:Variant.Zusy.594877
NANO-Antivirus	Clean
ViRobot	Clean
MicroWorld-eScan	Gen:Variant.Zusy.594877
Tencent	Win32.Trojan.Agen.Lqil
Sophos	Mal/Generic-S
F-Secure	Heuristic.HEUR/AGEN.1379366
DrWeb	Clean
VIPRE	Gen:Variant.Zusy.594877
TrendMicro	Clean
McAfeeD	ti!735E28EF9F09
Trapmine	Clean
CTX	exe.trojan.agen
Emsisoft	Gen:Variant.Zusy.594877 (B)
Ikarus	Trojan.Win64.Krypt
GData	Gen:Variant.Zusy.594877
Jiangmin	Clean
Webroot	Clean
Varist	Clean
Avira	HEUR/AGEN.1379366
Antiy-AVL	Clean
Kingsoft	Win64.Troj.zusy.v
Gridinsoft	Trojan.Win64.Kryptik.sa
Xcitium	Clean
Arcabit	Trojan.Zusy.D913BD
SUPERAntiSpyware	Clean
ZoneAlarm	Clean
Microsoft	Trojan:Win64/Zusy!rfn
Google	Detected
AhnLab-V3	Malware/Win.Barys.R715254
Acronis	Clean
VBA32	Clean
TACHYON	Clean
Malwarebytes	Malware.AI.2952065517
Panda	Trj/GdSda.A
Zoner	Clean
TrendMicro-HouseCall	TROJ_GEN.R002H01H625
Rising	Trojan.Kryptik!8.8 (TFE:5:EssXKppeRfV)
Yandex	Clean
TrellixENS	Artemis!BF0F05E857BC
SentinelOne	Static AI - Suspicious PE
MaxSecure	Clean
Fortinet	W64/GenKryptik.WS!tr
AVG	Win64:MalwareX-gen [Cryp]
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/Zusy.AXHJ3DGW

IRMA	Signature
Trend Micro SProtect (Linux)	Clean
Avast Core Security (Linux)	Win64:MalwareX-gen [Cryp]
C4S ClamAV (Linux)	Clean
Trellix (Linux)	Clean
Sophos Anti-Virus (Linux)	Mal/Generic-S
Bitdefender Antivirus (Linux)	Gen:Variant.Zusy.594877
G Data Antivirus (Windows)	Virus: Gen:Variant.Zusy.594877 (Engine A)
WithSecure (Linux)	Heuristic.HEUR/AGEN.1379366
ESET Security (Windows)	a variant of Win64/GenKryptik_AGen.AHT trojan
DrWeb Antivirus (Linux)	Clean
ClamAV (Linux)	Clean
eScan Antivirus (Linux)	Gen:Variant.Zusy.594877(DB)
Kaspersky Standard (Windows)	Clean
Emsisoft Commandline Scanner (Windows)	Gen:Variant.Zusy.594877 (B)

Browser recommendation

Static Analysis

PE Compile Time

PDB Path

PE Imphash

Sections

Resources

Imports

Browser recommendation

PE Compile Time

PDB Path

PE Imphash

Sections

Resources

Imports

Feedback