Static Analysis

PE Compile Time

1970-01-01 03:00:00

PE Imphash

f0070935b15a909b9dc00be7997e6112

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0022c6c8 0x0022c800 5.92423654169
.rdata 0x0022e000 0x00338f4a 0x00339000 5.87429752629
.data 0x00567000 0x00053db8 0x00033600 5.41460514773
.idata 0x005bb000 0x00000392 0x00000400 3.98754744034
.symtab 0x005bc000 0x00000004 0x00000200 0.0203931352361

Imports

Library KERNEL32.DLL:
0x967000 WriteFile
0x967008 WriteConsoleW
0x967010 WaitForSingleObject
0x967018 VirtualQuery
0x967020 VirtualFree
0x967028 VirtualAlloc
0x967030 SwitchToThread
0x967038 SetWaitableTimer
0x967050 SetEvent
0x967058 SetErrorMode
0x967068 LoadLibraryA
0x967070 LoadLibraryW
0x967078 GetSystemInfo
0x967080 GetSystemDirectoryA
0x967088 GetStdHandle
0x9670a0 GetProcAddress
0x9670b0 GetConsoleMode
0x9670c0 ExitProcess
0x9670c8 DuplicateHandle
0x9670d0 CreateThread
0x9670e0 CreateEventA
0x9670e8 CloseHandle
!This program cannot be run in DOS mode.
`.rdata
@.data
.idata
.symtab
Go build ID: "GVzgITH7NOcG8L94PIdm/MgSmBe4dt8VvdG4DC3o8/gQxefkPEq3C7J0RLGVS9/-drSC-ujs3HI2gIqYtJG"
;cpu.u
x0H9w-H
D$xH9D$
L$(H9A
D$`H9D$
I8H9y@
L$8H9L$
D$pH9B(t
t+M9A t
D9L$Xu
t+H9w t
L9L$Xu
t+M9A t
t+M9A t
Z`H9Z8
H`H9H8t%
L$@H9A8u H
D$HH9D$(u
H9AxwEH9
|$,HcC
H+55#X
D$xHcH
X(9Z(v9H
H9s uPH9B
|$,fD9
\$49YX
Xg8YguDH
H+D$ H
H8H9H0}BH
[ H9Z
R H9Q
D$ H)5'HY
L$ H+A
L$ H+A
L$p9D$L
kernel32H
l32.dll
LoadLibrH
raryExA
LoadLibrH
raryExW
advapi32H
i32.dll
SystemFuH
ntdll.dlH
NtWaitFoH
winmm.dlH
timeEndPH
dPeriod
ws2_32.dH
_32.dll
WSAGetOvH
wine_getH
H#\$0H
GetSysteH
QueryPerH
\$HH9Z
L$8H9A(
D$+e+H
H9A0tbH
H9H0tkH
T$L9T$H
L$0H9Hp
H95&@V
ulH9ZHuf
Hc5q/V
H+=+/V
memprofiH92u
memprofiH
memprofiH
memprofi
memprofi
9noneu
9crasu
9singu8f
t$H9HXt
P89Q8v0H9A
v89w8@
D$8<@H
L9B(v H
@8L+@(M
<3@8:ui
HcD$0H
t$hH9p
L$XHcT$(H
H9\$Xv
HcD$TH
HcD$0H
\$HHcR
L$H9A ~
L$H9A ~
L$(8A'v
K(H9S0
K(L9K0
A(H9q0
HcD$(H
runtime.H
HcD$(H
HcD$ H
L$PHcT$(H
L$XHcT$(H
runtime.H
|$PH97
runtime.H9
runtime.H
T$@H9J0
D$xH9D$
D$xH9D$
p8H9X@
B8H9Z@
D$pH9D$
D$pH9D$
D$xH9D$
p8H9X@
B8H9Z@
D$hH9D$
D$hH9D$
D$@H9D$
X0H;CPt{H
|$0H9;u
|$PH9;u
H+t$(H
|$0H9;u
|$PH9;u
T$09J$u>
H(9J(t
L$0H9A
L$08A'
K H9H
L$(H9A8
T$0H9J
@ H9B
r(H9p(t11
H0H9J0u
@8H9B8
|$HH9;u
r H9X(t#1
@0H9B0
T$0H9JPu
JXH9HX
L$0H9A
L$0H9A
T$0H9J
H9Q0umH
H9Q0t7H
H9Q0t7H
t?H91u]H
K0H9H0
\$HH)C
0H92t#1
w H95.
|,0H9B
R H9P t
|$ H9;u
D$`H9D$
H9L$ t
D$XH9D$
L$XH9L$
Q8H9A@~
X8H9P@
Q8H9A@
X8L9P@
y8H9Y@
p8H9X@
\$HH9X@
C8H9{@
D$(H9D$
D$ H9D$
Q2f9P2
P0f9Q0
Q@H9P@t
Q@H9P@
p8H9X@
B8H9Z@
D$HH9D$
D$xH9H@
x8H9p@w
\$@H9X@
T$(H9B@
T$0H9B
T$0H9B
\$HH9S
L$HH9A
Q8H9A@
L$ H9L$
L$8H9J
|$0H9;u
|$(H9;u
|$HH9;
|$0H9;u
|$(H9;u
|$0H9;u
|$8H9;u
p(H9X tR1
H0H9J0u:H
H8H9J8u,H
H@H9J@
@HH9BH
|$HH9;
L$(~<H
|$8H9;
L$pH9L$
D$PH9D$
H9L$XucH
H9L$@u]H
H9L$(uWH
H9L$(uWH
H9L$(uZH
H9L$(uZH
H9L$(uWH
H9L$(uWH
H9L$XucH
H9L$XucH
J H9H
J 9H un
J(9H(ubH
H0H9J0
JHH9HH
@ H9S(t
|$(H9;u
@ H9B
L$0H9A
T$0H9J
T$(H9J
T$(H9J
T$(H9J
T$(H9J
J 9H u!H
H(H9J(
9t$Hv9H
|$(H9;u
-07:00:0H9
-07:00:0
-07:00:0
-07:00:0
-07:00:0
2006t<H
-07:00:0
-07:00:0
-07:00:0
Z07:00:0H9
-07:00:0
Z07:00:0
-07:00:0
-07:00:0
t/@80u*H
9WITAt
D$(H9D$
D$(H9D$
D$(H9D$
t2H9X@
,H9XH~&H
tNH9X@
HH9XH~BH
D$8H9D$ ulH
t$`H9N
|$PH9;u
|$8H9;u
|$(H9;u
|$(H9;u
|$(H9;u
r H9X(
r0H9H8tF1
R@H9XHt
T$PHcX(
unixgramH
unixpackH9
|$(H9;u
R H9P t
rHH9XPt<1
method:L
(BADINDEH
(MISSINGH
%!(NOVERM
%!(EXTRAM
%!(BADPRM
BADPREC)M
%!(BADWIM
|$8H9;u
|$8H9;u
|$8H9;u
|$8H9;u
|$ H9;u
|$(H9;u
|$8H9;u
|$8H9;u
|$8H9;u
@ H9C t
|$8H9;u
|$ H9;u
|$(H9;u
0H92tp1
J H9H u
0H92tb1
unixgramH9
unixpackH9
D$hH9D$
unixgramH9;
unixpackH9;u
unixgramH9;u
unixpackL9
8dial@
unixgram
\$D9\$@
9udp4u
9udp6t
9udp4u
9udp6t
9acceuAf
9unixudL
unixgramM9
unixpackM9
unixgramH9
unixpackH9
unixgramH9
unixpackH9
>listu-f
unixgramH9
unixpackH9
|$8H9;u
|$ H9;u
|$(H9;u
|$8H9;u
|$8H9;u
0H92to1
H 8J u
|$(H9;u
|$(H9;u
|$(H9;u
|$HH9;u
|$(H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$HH9;u
|$(H9;u
|$(H9;u
|$(H9;u
|$HH9;u
|$(H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$HH9;u
|$8H9;u
|$(H9;u
|$HH9;u
|$HH9;u
r H9X(t/1
H08J0u
r H9p
p8H9X0tF1
XHH9P@t
|$HH9;u
|$8H9;u
|$ H9;u
|$(H9;u
kernel32H9
.dllts
@ H9S(t
K H9H
|$(H9;u
L$h8L$
\$?H9X8
PH9FHt(L9
l*PL9jHu
r0L9j8
D$`tZH
D$`8D$
L$X8L$
|$XH9;
|$HH9;u
|$HH9;u
|$@H9;u
D$XH9D$
D$XH9D$
D$pH9D$
D$PH+D$
L$hH9A@
H1D$0H
H1D$PH
H1D$XH
|$`H9;
0H92t<1
o\$ fE
o\$0fE
o\$@fE
o\$PfE
o\$`fE
o\$pfE
|$HH9;
<Gw.<Eu
HcY H)
+HcC H
|$(H9;u
|$(H9;u
~d$PfE
ot$PfA
|$HH9;u
|$8H9;u
|$0H9;u
R0H9X8t
|$xH9;u
|$hH9;
|$(H9;u
|$@H9;u
|$PH9;
L$ HcT$
optionalH9>u
explicitL9
optionalI
explicit
generaliL9
printablL9
>numeuf
>utf8u
applicatL9
optionalI
explicitI
generaliI
printablI
applicat
optionalI
explicitI
generaliI
printablI
applicat
omitemptH9
omitempt
applicat
optional
optionalI
explicitI
generaliI
printabl
optional
optionalI
explicitI
generaliI
printabl
printabl
generali
explicit
optional
|$HH9;u
|$HH9;u
|$8H9;
|$8H9;u
|$8H9;
|$0H9;u
|$ H9;u
|$@H9;u
|$0H9;u
|$@H9;u
|$0H9;u
|$8H9;
0H92t11
|$HH9;u
|$8H9;u
|$0H9;u
|$ H9;u
|$@H9;u
|$PH9;u
|$HH9;u
|$8H9;u
|$0H9;u
|$ H9;u
|$@H9;u
|$PH9;
K H9H
|$HH9;u
|$8H9;u
|$0H9;u
|$ H9;u
|$@H9;u
|$PH9;u
|$HH9;u
|$8H9;u
|$0H9;u
|$ H9;u
|$@H9;u
|$PH9;
D$hH#D$0H
D$hH#D$0H
|$HH9;
D$`H9A
Y(H9Q0w
|$HH9;
L$xH+AXH
$D3T$4D3T$ D3T$
D3T$8D3T$$D3T$
D3T$<D3T$(D3T$
$D3T$,D3T$
D3T$0D3T$
D3T$4D3T$
D3T$8D3T$ A
D3T$<D3T$$A
T$ D3T$
$D3T$(A
T$$D3T$
D3T$,A
T$(D3T$
D3T$0A
T$,D3T$ D3T$
D3T$4A
T$0D3T$$D3T$
D3T$8A
T$4D3T$(D3T$
D3T$<A
T$8D3T$,D3T$
T$<D3T$0D3T$
$D3T$4D3T$ D3T$
D3T$8D3T$$D3T$
D3T$<D3T$(D3T$
$D3T$,D3T$
D3T$0D3T$
D3T$4D3T$
D3T$8D3T$ A
D3T$<D3T$$A
T$ D3T$
$D3T$(A
T$$D3T$
D3T$,A
T$(D3T$
D3T$0A
T$,D3T$ D3T$
D3T$4A
T$0D3T$$D3T$
D3T$8A
T$4D3T$(D3T$
D3T$<A
T$8D3T$,D3T$
T$<D3T$0D3T$
$D3T$4D3T$ D3T$
D3T$8D3T$$D3T$
D3T$<D3T$(D3T$
$D3T$,D3T$
D3T$0D3T$
D3T$4D3T$
D3T$8D3T$ A
D3T$<D3T$$A
T$ D3T$
$D3T$(A
T$$D3T$
D3T$,A
T$(D3T$
D3T$0A
T$,D3T$ D3T$
D3T$4A
T$0D3T$$D3T$
D3T$8A
T$4D3T$(D3T$
D3T$<A
T$8D3T$,D3T$
T$<D3T$0D3T$
$D3T$4D3T$ D3T$
D3T$8D3T$$D3T$
D3T$<D3T$(D3T$
$D3T$,D3T$
D3T$0D3T$
D3T$4D3T$
D3T$8D3T$ A
D3T$<D3T$$A
T$ D3T$
$D3T$(A
T$$D3T$
D3T$,A
T$(D3T$
D3T$0A
T$,D3T$ D3T$
D3T$4A
T$0D3T$$D3T$
D3T$8A
T$4D3T$(D3T$
D3T$<A
T$8D3T$,D3T$
T$<D3T$0D3T$
T$0H9JXu
@`H9B`
L$xH+APH
QZ^&A!
|$8H9;u
D$7< u0H
L$XH9L$ t=H
Z8H9B@t
R H9P t
|$0H9;u
|$0H9;u
J H9H
p(H9Z0
r8H9J@
pPH9rP
JX8HXu|H
p`H9ZhtF1
ZpH9Jxt
D$P8D$/t
H9p v[
D$PH9D$
D$HH9D$
L$PH9L$8
D$PH9T$ tEH
|$(H9;u
|$(H9;u
|$HH9;
|$@H9;u
|$8H9;u
|$XH9;
nd 3D3x$A
2-by3P(
te k3X,
A3t$ A
A3L$$A
A3D$(A
A3T$,A
E3T$0E
D$4A3D$4A
D$,A3D$8A
D$0A3D$<A
expaE1
2-byD1
te kD1
expand 3H
2-byte kH
@(H9B(
OpH+GPL+WXL+_`L+ghL+opH
H+t$PH+T$XH+L$`L+D$hL+L$pH
T$HH+T$(H+L$0L+\$8L+d$@L+l$HH
t$Pf9^0
D$Nf9D$
\$`f9S0
KPL9CX
B H9B(
D$Btls1f
key expaH
master sH97u
client fH
inisu]f
server fH97
|$`H9;u
|$HH9;u
|$pH9;
|$(H9;u
|$(H9;u
0H92t#1
|$(H9;u
|$XH9;
|$XH9;
|$ H9;u
8utf-t
us-asciiH9
Q0H+Q(H
Z0H+Z(H
Z0H+Z(H
Z0H9Z(
|$@H9J
Q(H9Q0uMH
Q0H+Q(H9Q
Q0H9Q(}RH
T$`H)J(H
y0H+y(H
H0H+H(H
t$0H9J s5H
\$pH9C s[H
t$@H9K seH
|$HH9;
|$HH9;u
9QxtaH
0H92t=1
D$?8D$r
D$hH9D$HuHH
|$XH9;
|$XH9;
P49P0v
t0H9L$H~"H
|$XH9;
|$XH9;
H0H+H(H
G0L+G(I
H92uAt'H
|$@H9;u
|$ H9;u
|$HH9;u
|$0H9;u
|$@H9;u
H f9J u
>sockt
>httpt
>httpu
localhosH92u
|$pH9;
|$XH9;
s H9S(t"1
|$8H9;u
9httpu-
y(H9Y0
9Cooku
AuthorizH9
Www-AuthH9
enticateH9A
;pathu4H
;secuu!f
httponlyH
samesiteH9
9striu
samesite
httponlyH
; ExpireH
; Max-AgH
; HttpOnL
; SecureL
; SameSiH
; SameSiH
Site=LaxH
; Max-AgL
ax-Age=0L
; DomainN
H)P(I)
T$PH9P
S(H)S0H)
L$8f9L$
d$hL9T$p
8:metu
8:schurfA
8:stau
:authoriI98
8Traiu
Content-H9
Content-H
Content-
Content-
;chunt
?HEAD@
8HEADu
D$(H9D$
HTTP/1.0H
HTTP/1.1H9
no-cacheH9
;chunuWf
;chunu<f
:CONNu
:HEADt
:DELEu
:SEARuCf
:OPTIu
PROPFINDH9
8POSTu
identityH9
9Traiu
Content-H9
Content-H
Content-
Content-
identityH9
identity
L$@H9L$
H9;u.u$H
:httpu
;TRACu
>socku
>httpu=H
>httpu
Q0H+Q(H
H(H9H0t
Q0H+Q(H
p(H9p0u
9PATCu
Content-H9
|$ H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$(H9;u
|$HH9;u
|$(H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$HH9;u
|$(H9;u
|$HH9;u
s H9S(t"1
T$0H9J
@ H9B
H9X t"1
|$`H9;
|$ H9;u
|$@H9;u
|$`H9;
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$`H9;
|$xH9;
|$0H9;u
|$0H9;u
|$@H9;u
|$0H9;u
|$ H9;u
|$@H9;u
|$8H9;u
|$0H9;u
L$(H9A
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
0H92t#1
|$XH9;
|$0H9;u
|$0H9;u
|$XH9;
|$(H9;u
|$(H9;u
|$PH9;
|$(H9;u
|$(H9;u
|$(H9;u
|$XH9;
|$HH9;
p(H9S0ts1
p8H9S@t31
|$(H9;u
|$HH9;u
|$(H9;u
|$@H9;u
|$@H9;u
|$@H9;u
|$HH9;u
|$@H9;
|$XH9;
|$0H9;u
|$0H9;u
|$0H9;u
|$0H9;u
|$XH9;
|$XH9;
|$XH9;
|$PH9;u
|$8H9;u
|$XH9;
|$(H9;u
|$HH9;u
|$PH9;
|$(H9;u
|$HH9;u
|$(H9;u
|$hH9;
D$hH9D$
crypto
errors
*[]int
*error
*int16
*int32
*int64
*uint8
Accept
AndNot
Append
Assign
Before
BitLen
CanSet
Cancel
Chains
Checks
CmpAbs
Config
Cookie
Decode
Delete
Detail
Dialer
DivMod
DoChan
Domain
Double
Enable
Encode
ExecIO
Family
Fatalf
Fchdir
Fchmod
Fchown
Fields
Format
Getenv
HEvent
Handle
HasADX
HasAES
HasAVX
HasDFP
HasFMA
HasMSA
HasSM3
HasSM4
HasSVE
HasVE1
Header
IfType
Int31n
Int63n
IsZero
Issuer
Layout
Length
Lookup
MaxAge
Method
Minute
NewCTR
NewGCM
NumOut
Offset
Opaque
Output
Panicf
Params
Policy
Prefix
Primes
Printf
Public
Pwrite
QuoRem
ReadAt
Reader
Reason
Remove
Reused
Scheme
Search
Second
Secure
Server
SetBit
SetCap
SetInf
SetInt
SetLen
SetRat
Shared
Signal
Slice3
Source
Status
Strict
Stride
String
System
Uint32
Uint64
Unlock
Verify
Weight
Writer
Writev
ZoneId
_defer
_panic
accept
active
addSec
addTLS
aesKey
ageAdd
allocs
andNot
append
arenas
argLen
arglen
argmap
asciiF
attach
binder
bitLen
bitmap
broken
bucket
buffer
byName
cached
cancel
chains
chunks
cipher
client
closed
common
condfn
config
cookie
curEnd
cutoff
cutset
cycles
decref
delete
dialIP
digest
divMul
divmod
doCall
domain
dynTab
efence
eflags
encode
etypes
family
fields
finder
flushF
fmtSbx
fnonce
frames
funcID
future
gc_sys
gcdata
getPtr
goAway
handle
hangul
hasRTL
hevent
hlSize
idleAt
idleMu
inList
incSeq
incref
inflow
insert
int31n
intbuf
isBidi
isFile
isFree
isYesC
isYesD
keyLen
labels
layout
length
lineno
locabs
lookup
macLen
mapped
mcache
mcount
method
misses
mustBe
nbytes
nchunk
needed
nelems
newval
nmidle
noCopy
noscan
notify
npages
npidle
num1xx
nwrite
offset
oldnew
oldval
onlyH1
opAddr
opaque
outBuf
p1home
p2home
p3home
p4home
p5home
p6home
palloc
params
parent
parked
pcfile
period
prefix
procid
ptrbit
putGen
putPtr
pwrite
qcount
random
readFn
reader
refill
remove
result
reused
revise
runeAt
rwlock
sawEOF
scases
scheme
search
server
setBit
setLoc
set_ip
set_lr
set_sp
shared
sharpV
shift2
sigAlg
sotype
state1
status
sticky
strict
string
submit
tagLen
thread
ticket
toName
toRead
tryGet
tstart
unlock
unused
update
values
varint
vdsoPC
vdsoSP
volLen
wanted
writer
xcount
context
net/url
reflect
runtime
strconv
strings
syscall
unicode
**uint8
*[0]int
*[1]int
*[4]int
*[5]int
*[6]int
*[7]int
*[8]int
*[9]int
*[]bool
*[]int8
*fmt.pp
*func()
*net.IP
*string
*uint16
*uint32
*uint64
AddASN1
AddCert
AddDate
Address
Addrlen
Advance
Aliases
BitSize
Buffers
CanAddr
ChanDir
Comment
Complex
Context
Control
Convert
Cookies
Country
CrlInfo
CurveID
DNSDone
DNSName
Decrypt
DialTLS
Discard
Encrypt
ErrCode
Expires
Fatalln
Feature
Float32
Float64
GetBody
GetConn
GotConn
HasAVX2
HasBMI1
HasBMI2
HasEImm
HasERMS
HasFCMA
HasFPHP
HasSHA1
HasSHA2
HasSHA3
HasSSE2
HasSSE3
ISOWeek
IfIndex
InitBuf
InitMsg
Inverse
IsInt64
IsValid
LeadCCC
MantExp
MapKeys
Marshal
Message
MinPrec
Minutes
ModSqrt
ModTime
Namelen
Network
NewProc
NoProxy
ObjName
Panicln
Payload
PkgPath
Pointer
Println
RLocker
RUnlock
RWMutex
RawPath
RawRead
ReadMsg
Readdir
Referer
Release
Replace
Request
RootCAs
RoundUp
Seconds
SetBits
SetBool
SetMode
SetPrec
SetUint
Setting
Shuffle
Signbit
Subject
Syscall
Timeout
ToASCII
Trailer
TryRecv
TrySend
Version
WasIdle
Weekday
WriteAt
WriteTo
YearDay
aborted
addConn
address
advance
alignme
alllink
allnext
alloc_m
amended
argSize
badVerb
balance
blocked
buckets
bufLock
bufPipe
by_size
bytesAt
callers
cancelc
central
certReq
cgoCtxt
checker
cipher1
cipher2
cipher3
cleanup
closech
closing
codeLen
codegen
compose
connect
content
context
copyLen
counter
created
current
curveID
debuggc
decrypt
dequeue
destroy
dialTCP
dialTLS
dialUDP
dialing
dirinfo
disable
discard
dispose
doFlush
doPrint
docrash
ecdsaOk
enabled
encrypt
enqueue
entries
expbits
extract
filetab
flushed
fmt0x64
fmtBool
forward
freeBuf
frexp10
funcoff
gctrace
getConn
getSlow
goidgen
growing
gsignal
hasmain
hintErr
hmacKey
huffSym
idleLRU
ignored
inCount
indexed
invalid
ireqhdr
isEmpty
isFinal
isInert
isProxy
isValid
isempty
keyName
keysize
libcall
literal
lockedg
lockedm
mapping
marshal
maxSize
methods
minSize
morebuf
nameLen
nameOff
nameoff
ndigits
network
nextMac
next_gc
nlookup
nmalloc
nmfreed
noStack
npcdata
options
outUsed
padChar
pattern
pauseNS
pinSlow
pkgPath
pkgpath
pointer
popList
portnum
preempt
prepare
primary
private
process
protect
ptrdata
pushAll
pushcnt
putFast
racectx
readBuf
readErr
readMsg
readPos
readVal
readdir
readers
reading
reclaim
restart
results
roffset
roundUp
runlock
runnext
saveBuf
scratch
seedPos
sendBuf
session
setAddr
setDone
setMono
setPath
setSpan
setTrue
setType
setWord
sigmask
sortkey
spanKey
special
started
startpc
streams
strings
subkeys
sysStat
syscall
tagSize
takeAll
textOff
timeEnd
timeout
tlsHost
tmpfile
toIndex
toLocal
topbits
tophash
trailer
typeOff
typemap
unixSec
version
waiting
wrapErr
wrapped
writeTo
writech
math/big
net/http
**uint16
*[10]int
*[16]int
*[19]int
*[2]int8
*[61]int
*[8]bool
*[][]int
*[]error
*[]int32
*[]int64
*[]uint8
*big.Int
*big.nat
*cpu.x86
*float32
*float64
*fmt.fmt
*net.ret
*os.File
*os.file
*poll.FD
*uintptr
*url.URL
AddBytes
AddUint8
AddValue
AuthType
Binomial
Buffered
CertInfo
ChainLen
ConnPool
Contains
DNSNames
DNSStart
DadState
Deadline
Elements
FileLine
FileName
Filename
FindProc
Flowinfo
FormFile
Fragment
Function
GetValue
GoString
HasASIMD
HasCPUID
HasCRC32
HasDCPOP
HasGHASH
HasJSCVT
HasLDisp
HasLRCPC
HasPMULL
HasSSE41
HasSSE42
HasSSSE3
HasSTFLE
HasZArch
HashFunc
Hostname
HttpOnly
IdleTime
InitBufs
Internal
Interval
IsNormal
IsPseudo
IsStream
IsUint64
KeyUsage
Locality
Location
LookupMX
LookupNS
MapIndex
MapRange
MarkDead
MaxUdpDg
MulRange
Multiply
NotAfter
NumField
Overhead
Password
PostForm
PreferGo
Priority
Protocol
Province
PushBack
RawQuery
RawWrite
ReadASN1
ReadByte
ReadFrom
ReadLine
ReadRune
Required
Reserved
Resolver
Response
SameSite
Scope_id
SetBytes
SetFlags
SetFloat
SetInt64
Shutdown
SkipASN1
Sockaddr
Socktype
StreamID
Subjects
TrailCCC
Truncate
UnixNano
Unparsed
Username
Validate
Validity
WSAIoctl
WriteMsg
addEntry
addrFunc
allspans
altProto
asserted
assignTo
baseMask
baseaddr
bidirule
bitCount
breakErr
bytedata
cacheEnd
cacheKey
callEmit
canceled
category
cgocheck
checkEnd
checkPut
checkSum
children
closeDot
closeErr
coalesce
codebits
concrete
connPool
constSum
contains
continpc
coprimes
copyData
copyDist
curStart
dataqsiz
deadline
debugGen
decode32
decode64
dialConn
dialUnix
didClose
didReset
divLarge
divShift
dnsNames
doAppend
doPrintf
elemsize
elemtype
embedded
enablegc
endCycle
endWrite
eofError
erroring
expander
expected
explicit
fastrand
filetype
flushGen
fmtBytes
fmtFlags
fmtFloat
freeSpan
freeWait
freelink
fromPuny
fullHead
fullTail
funcInfo
funcName
funcType
function
generate
getValue
hashFunc
haveVers
heapGoal
heap_sys
hintCert
histSize
icookies
idleConn
initSpan
internal
isBroken
isClient
isMapped
isMarked
isRSAPSS
isReused
isSelect
joinType
lastByte
lastFreq
lastRead
lastbits
lastpoll
lazyInit
libcallg
lifetime
linkMask
logReads
logWrite
lookupIP
lookupMX
lookupNS
mantbits
maxprocs
mcentral
moreBits
mstartfn
mulAddWW
mulRange
multiSeg
mustFind
mustLoad
nbgsweep
ncgocall
needdata
needzero
newStack
nextFree
nextMain
nonempty
noptrbss
objIndex
onHitEOF
optional
outCount
overflow
password
pauseGen
pause_ns
pointers
pollable
position
preferGo
prevRune
previous
printArg
priority
proxyURL
pskModes
pushBack
putBatch
raceaddr
rawInput
readASN1
readFrom
readLock
readLoop
readbyte
released
resetErr
resolver
response
returned
runnable
runqhead
runqsize
runqtail
rwunlock
scanWork
scavenge
seqStart
setBytes
setError
setRunes
setSpans
setValue
shutdown
sigcode0
sigcode1
simplify
sleeping
snapshot
sockaddr
specials
spineCap
spineLen
spinning
stackTab
stktopsp
stopnote
stopwait
stwprocs
sudogbuf
sweepers
sweepgen
sysAlloc
targetpc
throwing
ticksEnd
timeType
tlsState
tmpBytes
tracebuf
traceseq
trailers
truncate
tryAlloc
tryStore
uncommon
useProxy
username
usingPSK
validate
waitRead
waitlink
waitlock
waitnote
waitsema
waittail
wantIdle
writeBuf
writeMsg
writebuf
io/ioutil
math/rand
**big.Int
*[0]uint8
*[14]int8
*[1]uint8
*[256]int
*[288]int
*[2]int32
*[2]uint8
*[316]int
*[3]error
*[3]int64
*[3]uint8
*[4]uint8
*[5]int32
*[5]int64
*[5]uint8
*[6]uint8
*[7]uint8
*[8][]int
*[8]int32
*[8]int64
*[8]uint8
*[9]uint8
*[]*uint8
*[]net.IP
*[]string
*[]uint16
*[]uint32
*[]uint64
*asn1.Tag
*big.Word
*big.form
*chan int
*ecdsa.zr
*net.Addr
*net.Conn
*net.conn
*sync.Map
*tls.Conn
*tls.aead
AddCookie
AddUint16
AddUint24
AddUint32
Algorithm
AllowHTTP
Anonymous
Available
BasicAuth
BitLength
BlockSize
Broadcast
CRTValues
CallSlice
Canonname
ClearBufs
ClientCAs
CloseRead
Coalesced
ConnectEx
CopyBytes
CreateCRL
DayOfWeek
DebugData
DidResume
DnsSuffix
DotReader
DualStack
EndStream
Exclusive
FormValue
Ftruncate
FullBytes
GobDecode
GobEncode
HTTPProxy
Handshake
HasAESCBC
HasAESCTR
HasAESGCM
HasPOPCNT
HasSHA256
HasSHA512
Increment
Interface
IsBracket
IsOnCurve
IsRegular
IsTimeout
KeepAlive
KeyUsages
LocalAddr
LookupSRV
LookupTXT
MoveAfter
NonceSize
Normalize
NotBefore
NumMethod
PadLength
ParseForm
Precision
PromiseID
ProxyDial
ProxyFunc
PublicKey
PushFront
QuickSpan
RawIssuer
ReadBytes
ReadFrame
ReadMsgIP
ReadSlice
ReadUint8
RemoveAll
Reserved0
Reserved1
RoundDown
RoundTrip
Sensitive
SetLinger
SetOutput
SetPrefix
SetString
SetUint64
SharedKey
Signature
Specified
StreamDep
TLSUnique
Temporary
ToUnicode
Transform
Transport
Truncated
UserAgent
ValueElem
WriteByte
WriteData
WritePing
WriteRune
WriteToIP
acceptOne
addObject
addedGzip
aesCipher
allArenas
allocBits
ancestors
argNumber
availRead
available
backwards
badArgNum
binderKey
bitCounts
bitLength
blockSize
blocksize
buffering
buildOnce
bytesSent
cacheSpan
cacheZone
cancelCtx
caughtsig
clientMD5
clientSum
closeBody
closeRead
composing
connError
copyCheck
copySlice
createdAt
dataBlock
dataFrame
debugData
decodeMap
deferlock
deferpool
didResume
divShift2
Antivirus Signature
Bkav W64.AIDetectMalware
Lionic Clean
Elastic malicious (high confidence)
ClamAV Win.Trojan.GravityRAT-6511862-0
CMC Clean
CAT-QuickHeal Trojan.GravityRAT.S35101943
Skyhigh Clean
ALYac Gen:Variant.Tedy.816526
Cylance Unsafe
Zillya Trojan.Agent.Win64.3706
Sangfor Clean
CrowdStrike win/malicious_confidence_90% (D)
Alibaba Clean
K7GW Trojan ( 005539191 )
K7AntiVirus Trojan ( 005539191 )
huorong Trojan/Agent.ayn
Baidu Clean
VirIT Trojan.Win64.Agent.IDP
Paloalto Clean
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
ESET-NOD32 a variant of Win64/Agent.PR
APEX Malicious
Avast Win32:MalwareX-gen [Misc]
Cynet Malicious (score: 100)
Kaspersky HEUR:Trojan.Win32.Vimditator.gen
BitDefender Gen:Variant.Tedy.816526
NANO-Antivirus Trojan.Win32.Backdoor.kxjzmv
ViRobot Clean
MicroWorld-eScan Gen:Variant.Tedy.816526
Tencent Trojan-DL.Win64.Agent.hd
Sophos Troj/Agent-BLKX
F-Secure Trojan.TR/Spy.Gen
DrWeb BackDoor.GravityRAT.3
VIPRE Gen:Variant.Tedy.816526
TrendMicro Clean
McAfeeD ti!6252E9F1ADDF
Trapmine Clean
CTX exe.unknown.tedy
Emsisoft Gen:Variant.Tedy.816526 (B)
Ikarus Trojan.Win64.Agent
GData Gen:Variant.Tedy.816526
Jiangmin Trojan.Agent.ceqd
Webroot Clean
Varist W64/Trojan3.ASJX
Avira TR/Spy.Gen
Antiy-AVL Clean
Kingsoft Clean
Gridinsoft Ransom.Win64.Bladabindi.oa!s1
Xcitium Clean
Arcabit Trojan.Tedy.DC758E
SUPERAntiSpyware Clean
ZoneAlarm Troj/Agent-BLKX
Microsoft Trojan:Win64/GravityRat!rfn
Google Detected
AhnLab-V3 Malware/Win64.RL_Generic.R305727
Acronis Clean
VBA32 Backdoor.GravityRAT
TACHYON Clean
Malwarebytes Generic.Malware.Gen.DDS
Panda Trj/CI.A
Zoner Clean
TrendMicro-HouseCall Clean
Rising Backdoor.GravityRAT!1.BE3F (CLASSIC)
Yandex Trojan.Vimditator!/ObcJ2pldiQ
TrellixENS Clean
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.121218.susgen
Fortinet W64/Gasket.BJQV!tr
AVG Win32:MalwareX-gen [Misc]
DeepInstinct MALICIOUS
alibabacloud Clean
IRMA Signature
Trend Micro SProtect (Linux) Clean
Avast Core Security (Linux) Win64:MalwareX-gen [Misc]
C4S ClamAV (Linux) Clean
Trellix (Linux) Clean
Sophos Anti-Virus (Linux) Troj/Agent-BLKX
Bitdefender Antivirus (Linux) Gen:Variant.Tedy.816526
G Data Antivirus (Windows) Virus: Gen:Variant.Tedy.816526 (Engine A)
WithSecure (Linux) Trojan.TR/Spy.Gen
ESET Security (Windows) a variant of Win64/Agent.PR trojan
DrWeb Antivirus (Linux) BackDoor.GravityRAT.3
ClamAV (Linux) Clean
eScan Antivirus (Linux) Gen:Variant.Tedy.816526(DB)
Kaspersky Standard (Windows) HEUR:Trojan.Win32.Vimditator.gen
Emsisoft Commandline Scanner (Windows) Gen:Variant.Tedy.816526 (B)
Cuckoo

We're processing your submission... This could take a few seconds.