Manalyze report for be9327d5d9603a1f5a43145bfd09bd6d426a6a2396f5b8080633b61a8b088e5a

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2009-Nov-30 15:20:43
Detected languages	English - United States
Debug artifacts	c:\builds\checkouts\branches\unity-2.6.x\Projects\VisualStudio\build\release\winplayer\WinPlayer.pdb
FileVersion	`2.6.1.31223`
ProductVersion	`2.6.1.31223`
Unity Version	2.6.1f3_31223

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0` `MASM/TASM - sig1(h)` `Microsoft Visual C++`
Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains references to system / monitoring tools: rundll32.exe` `Contains references to internet browsers: firefox.exe iexplore.exe` `Tries to detect virtualized environments: HARDWARE\DESCRIPTION\System` `Looks for VMWare presence: VMWare` `Accesses the WMI: root\cimv2` `Contains domain names: connectiontester.unity3d.com curl.haxx.se example.com facilitator.unity3d.com http://curl.haxx.se http://curl.haxx.se/rfc/cookie_spec.html http://unity3d.com http://www.openssl.org http://www.openssl.org/support/faq.html masterserver.unity3d.com openssl.org proxy.unity3d.com unity3d.com www.openssl.org`
Info	Cryptographic algorithms detected in the binary:	`Uses constants related to CRC32` `Uses constants related to MD5` `Uses constants related to SHA1` `Uses constants related to SHA256` `Uses constants related to SHA512` `Uses constants related to AES` `Microsoft's Cryptography API`
Suspicious	The PE contains functions most legitimate programs don't use.	`[!] The program may be hiding some of its imports: LoadLibraryW LoadLibraryA GetProcAddress` `Can access the registry: RegDeleteValueA RegCreateKeyA RegSetValueExA RegOpenKeyExA RegQueryValueExA RegCloseKey SHDeleteKeyA` `Possibly launches other programs: CreateProcessW ShellExecuteW` `Uses Microsoft's cryptographic API: CryptAcquireContextA CryptImportKey CryptCreateHash CryptHashData CryptVerifySignatureA CryptDestroyHash CryptDestroyKey CryptReleaseContext` `Can create temporary files: CreateFileW GetTempPathW CreateFileA` `Leverages the raw socket API to access the Internet: WSAStartup htonl closesocket getsockname socket WSACleanup gethostbyname inet_ntoa WSAGetLastError htons inet_addr connect shutdown __WSAFDIsSet bind ioctlsocket setsockopt send ntohs recvfrom sendto getsockopt select WSACancelAsyncRequest WSAAsyncGetHostByName listen accept recv WSASetLastError gethostname` `Enumerates local disk drives: GetDriveTypeA` `Can take screenshots: GetDC BitBlt CreateCompatibleDC` `Reads the contents of the clipboard: GetClipboardData`
Safe	VirusTotal score: 0/72 (Scanned on 2025-05-06 09:36:39)	`All the AVs think this file is safe.`

Hashes

MD5	`0a9fe32a980f23a2b654b1c4a94f1347`
SHA1	`30be62ee046675ed34532e23cea8a3b87431ff55`
SHA256	`be9327d5d9603a1f5a43145bfd09bd6d426a6a2396f5b8080633b61a8b088e5a`
SHA3	`5fbea98eb18ffa623b65c74baecdeedbdfef6ee2b2628b807c72feb508727739`
SSDeep	`98304:7eNzIWpq3EJIX24uvtgm+9jrkdg3ZURt2hH4OekdSafNZ4FmhyY4PF6O9YGVrD:7Obpq3EJIX24u2m+JrRZVd4XkvZ4Fmh`
Imports Hash	`4ed78ea335cf44d2476429c204fc5ca0`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x130`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`4`
TimeDateStamp	2009-Nov-30 15:20:43
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`9.0`
SizeOfCode	`0x43d400`
SizeOfInitializedData	`0x104c00`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00404119 (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x43f000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`5.0`
ImageVersion	`0.0`
SubsystemVersion	`5.0`
Win32VersionValue	`0`
SizeOfImage	`0x545000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`ce9e1696fb233cd046bd55bf17eb60a5`
SHA1	`dbe5d88cc1e7efa67f64de76fc2777311c63906b`
SHA256	`598ff155a03a238c65a2119bce05c8b3c5bb227698f2078d62edb3f481c2966e`
SHA3	`6595c81755b1e3e9be4b4c9c30b832c859655db737b084c882129c522ec55a95`
VirtualSize	`0x43d2c7`
VirtualAddress	`0x1000`
SizeOfRawData	`0x43d400`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.70434`

.rdata

MD5	`b718ce83d062b1fcf79707645cb35b94`
SHA1	`77b9471e39e36c899d004cb9ebd3f896ce34a7dd`
SHA256	`5ab9aef586113a013a81f1162f2a714f7d0a0340877c741f4b89075cf083e12f`
SHA3	`f458d2a7ef86ce4aed33520d709bd5c7bb566b1d7f1fd0ded664222474a14983`
VirtualSize	`0x9ec21`
VirtualAddress	`0x43f000`
SizeOfRawData	`0x9ee00`
PointerToRawData	`0x43d800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.86456`

.data

MD5	`b03f2406cd596e2e392d06d52ad21c87`
SHA1	`d116a9e0208422b652665d9f59fe08171905d4ca`
SHA256	`a99450e7434158341c76936319ddf14f912e4488bc06b47e128bb2b722a717dc`
SHA3	`1b217586cd3b24ea24e14a507bb231e654473384bfed8283eadb274a2977ffbe`
VirtualSize	`0x5f744`
VirtualAddress	`0x4de000`
SizeOfRawData	`0x2cc00`
PointerToRawData	`0x4dc600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`5.41991`

.rsrc

MD5	`d66e6c64083d7f42f370751c88f83851`
SHA1	`53e586df273196e212c175d208378ca8c17c62f1`
SHA256	`ffb835804a2f8641b45f15134c5a052e7ef7b5d01ac7a33e1c9c572207839248`
SHA3	`cc3f69c4ade7a2f864e40ab6121812693ed06a24075493f577b38ad1f1309277`
VirtualSize	`0x6458`
VirtualAddress	`0x53e000`
SizeOfRawData	`0x6600`
PointerToRawData	`0x509200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.86203`

Imports

KERNEL32.dll	`ReadFile` `GetFileSize` `WriteFile` `FindClose` `DeleteFileW` `RemoveDirectoryW` `SetFileAttributesW` `FindNextFileW` `FindFirstFileW` `DeleteFileA` `GetModuleFileNameW` `CreateEventA` `GetCurrentProcessId` `lstrcpynA` `lstrcpyA` `lstrcpynW` `LocalFree` `GetCommandLineW` `CreateFileW` `ExpandEnvironmentStringsA` `GetCurrentProcess` `GetModuleHandleA` `GetVersionExA` `GetSystemInfo` `GlobalMemoryStatusEx` `GetUserDefaultLangID` `SetThreadAffinityMask` `GetCurrentThread` `GetProcessAffinityMask` `MultiByteToWideChar` `OutputDebugStringA` `FormatMessageA` `GetTickCount` `CopyFileW` `MoveFileExW` `LoadLibraryW` `SetEndOfFile` `SetFilePointer` `InterlockedCompareExchange` `InterlockedIncrement` `ExitThread` `WideCharToMultiByte` `GlobalAlloc` `GlobalLock` `GlobalUnlock` `TlsSetValue` `TlsGetValue` `TlsFree` `TlsAlloc` `TerminateThread` `GetCurrentThreadId` `GetProcessHeap` `WriteConsoleW` `GetConsoleOutputCP` `WriteConsoleA` `SetEnvironmentVariableA` `CompareStringW` `CompareStringA` `GetLocaleInfoW` `GetTimeZoneInformation` `GetCurrentDirectoryA` `SetStdHandle` `GetStringTypeW` `GetStringTypeA` `IsValidLocale` `EnumSystemLocalesA` `GetLocaleInfoA` `GetUserDefaultLCID` `GetEnvironmentStringsW` `FreeEnvironmentStringsW` `GetEnvironmentStrings` `FreeEnvironmentStringsA` `InitializeCriticalSectionAndSpinCount` `FlushFileBuffers` `SetHandleCount` `GetConsoleCP` `IsValidCodePage` `GetOEMCP` `GetACP` `HeapSize` `HeapCreate` `GetCPInfo` `LCMapStringW` `LCMapStringA` `GetConsoleMode` `SetConsoleMode` `ReadConsoleInputA` `SetConsoleCtrlHandler` `GetDriveTypeA` `PeekNamedPipe` `GetFileInformationByHandle` `FileTimeToSystemTime` `HeapWalk` `HeapValidate` `GetStartupInfoA` `GetCommandLineA` `ExitProcess` `GetModuleHandleW` `TerminateProcess` `UnhandledExceptionFilter` `HeapReAlloc` `RtlUnwind` `HeapAlloc` `HeapFree` `WritePrivateProfileStringW` `GetTempPathW` `SetErrorMode` `IsDebuggerPresent` `CreateProcessW` `CreateThread` `SetThreadPriority` `ReleaseMutex` `CreateMutexA` `TryEnterCriticalSection` `LeaveCriticalSection` `EnterCriticalSection` `DeleteCriticalSection` `InitializeCriticalSection` `QueryPerformanceFrequency` `QueryPerformanceCounter` `ReleaseSemaphore` `WaitForSingleObject` `CloseHandle` `CreateSemaphoreA` `CreateDirectoryW` `Sleep` `LoadLibraryA` `GetProcAddress` `FreeLibrary` `SetLastError` `GetSystemTimeAsFileTime` `GetModuleFileNameA` `GetFileTime` `RaiseException` `lstrlenA` `SetUnhandledExceptionFilter` `FileTimeToLocalFileTime` `FileTimeToDosDateTime` `FlushConsoleInputBuffer` `FindFirstFileA` `GetStdHandle` `GetFileType` `GlobalMemoryStatus` `GetVersion` `GetExitCodeThread` `DuplicateHandle` `SleepEx` `GetSystemDirectoryA` `CreateWaitableTimerA` `SetWaitableTimer` `OpenEventA` `VirtualQuery` `VirtualAlloc` `VirtualFree` `UnmapViewOfFile` `CreateFileA` `CreateFileMappingA` `MapViewOfFile` `lstrcmpiA` `GetFullPathNameA` `InterlockedExchange` `InterlockedDecrement` `WaitForMultipleObjects` `SetEvent` `ResetEvent` `GetLastError`
USER32.dll	`SetClipboardData` `CloseClipboard` `EmptyClipboard` `OpenClipboard` `GetClipboardData` `IsClipboardFormatAvailable` `GetSystemMetrics` `MsgWaitForMultipleObjects` `GetCursorPos` `ScreenToClient` `GetAsyncKeyState` `GetWindowThreadProcessId` `DefWindowProcW` `MessageBoxW` `wvsprintfA` `MessageBoxA` `GetProcessWindowStation` `GetUserObjectInformationW` `GetDC` `CreateWindowExW` `GetKeyState` `WindowFromPoint` `DestroyWindow` `ReleaseDC` `GetCaretBlinkTime` `GetWindowRect` `GetMessageA` `TrackMouseEvent` `ValidateRect` `SetFocus` `LoadImageA` `DialogBoxParamA` `IsDlgButtonChecked` `SetWindowTextW` `CheckDlgButton` `EnableWindow` `PeekMessageA` `IsDialogMessageA` `TranslateMessage` `DispatchMessageA` `SetWindowTextA` `SetCursorPos` `ClipCursor` `ShowCursor` `RegisterClassW` `RegisterWindowMessageW` `TrackPopupMenuEx` `PostQuitMessage` `LoadMenuW` `GetSubMenu` `SetMenuDefaultItem` `DestroyMenu` `LoadIconW` `SetWindowLongW` `GetWindowLongW` `LoadCursorA` `RegisterClassExW` `DialogBoxParamW` `EndDialog` `LoadIconA` `SendDlgItemMessageW` `SetDlgItemTextA` `SetDlgItemTextW` `CopyRect` `OffsetRect` `GetAncestor` `UnregisterClassW` `GetDesktopWindow` `EnumDisplaySettingsA` `AdjustWindowRectEx` `ChangeDisplaySettingsA` `GetDlgItem` `SetWindowLongA` `CreateDialogParamA` `GetClientRect` `SetWindowPos` `GetWindowLongA` `GetParent` `GetThreadDesktop` `GetUserObjectInformationA` `RegisterWindowMessageA` `IsIconic` `ShowWindow` `SetForegroundWindow` `SendMessageA` `EnumWindows` `SendMessageTimeoutA` `wsprintfA` `MsgWaitForMultipleObjectsEx`
GDI32.dll	`DeleteDC` `GetBitmapBits` `BitBlt` `SelectObject` `CreateCompatibleBitmap` `CreateCompatibleDC` `CreateDCA` `SwapBuffers` `SetPixelFormat` `ChoosePixelFormat` `GetObjectA` `DeleteObject` `GetDeviceCaps`
ADVAPI32.dll	`CryptAcquireContextA` `CryptImportKey` `CryptCreateHash` `CryptHashData` `CryptVerifySignatureA` `CryptDestroyHash` `CryptDestroyKey` `CryptReleaseContext` `RegDeleteValueA` `RegCreateKeyA` `RegSetValueExA` `RegOpenKeyExA` `RegQueryValueExA` `RegCloseKey` `DeregisterEventSource` `GetUserNameA` `RegisterEventSourceA` `ReportEventA`
SHELL32.dll	`ShellExecuteW` `Shell_NotifyIconW` `CommandLineToArgvW` `SHGetFolderPathW`
ole32.dll	`CoTaskMemAlloc` `CoCreateGuid` `CoSetProxyBlanket` `CoCreateInstance` `CoInitialize` `PropVariantClear` `CoUninitialize` `CoTaskMemFree`
VERSION.dll	`GetFileVersionInfoSizeW` `GetFileVersionInfoW` `VerQueryValueA`
OPENGL32.dll	`glBindTexture` `glTexGenfv` `glColor4ubv` `glTexParameteri` `glTexParameterfv` `glLightfv` `glLightf` `glLightModelfv` `glFogfv` `glFogf` `glFogi` `glIsTexture` `glDeleteTextures` `glFinish` `glVertex3f` `glNormal3f` `glColor4f` `glTexCoord3f` `glBegin` `glEnd` `glReadPixels` `glLightModelf` `glHint` `glMaterialf` `glMaterialfv` `glGetError` `wglMakeCurrent` `wglDeleteContext` `glGetString` `glGetIntegerv` `wglGetCurrentDC` `glDrawArrays` `wglGetCurrentContext` `wglShareLists` `glTexEnvfv` `glCopyTexSubImage2D` `glFlush` `glReadBuffer` `glDrawBuffer` `glTexImage2D` `glPixelStorei` `glTexSubImage2D` `glVertex4f` `wglGetProcAddress` `glColor4fv` `glColorMaterial` `glTexGeni` `glDrawElements` `glTexCoordPointer` `glNormalPointer` `glVertexPointer` `glColorPointer` `glEnableClientState` `glDisableClientState` `glTexEnvf` `glTexEnvi` `glClear` `glClearDepth` `glClearColor` `glDepthMask` `glDisable` `glEnable` `glDepthFunc` `glPolygonOffset` `glColorMask` `glAlphaFunc` `glLightModeli` `glBlendFunc` `glScissor` `wglCreateContext` `glViewport` `glLoadIdentity` `glPopMatrix` `glPushMatrix` `glMultMatrixf` `glGetFloatv` `glMatrixMode` `glLoadMatrixf` `glFrontFace` `glCullFace`
WINMM.dll	`waveOutWrite` `waveOutClose` `waveOutReset` `waveOutGetPosition` `waveOutPrepareHeader` `waveOutOpen` `waveOutUnprepareHeader` `waveOutGetDevCapsA` `waveOutGetNumDevs` `waveInGetNumDevs` `timeGetTime`
WS2_32.dll	`WSAStartup` `htonl` `closesocket` `getsockname` `socket` `WSACleanup` `gethostbyname` `inet_ntoa` `WSAGetLastError` `htons` `inet_addr` `connect` `shutdown` `__WSAFDIsSet` `bind` `ioctlsocket` `setsockopt` `send` `ntohs` `recvfrom` `sendto` `getsockopt` `select` `WSACancelAsyncRequest` `WSAAsyncGetHostByName` `listen` `accept` `recv` `WSASetLastError` `gethostname`
SHLWAPI.dll	`PathIsDirectoryW` `PathFileExistsW` `SHDeleteKeyA`
DINPUT.dll	`DirectInputCreateA`
OLEAUT32.dll	`SysFreeString` `SysAllocString`
MSACM32.dll	`acmFormatSuggest` `acmStreamUnprepareHeader` `acmStreamConvert` `acmStreamPrepareHeader` `acmStreamOpen` `acmStreamSize`

Delayed Imports

NxCreateCoreSDK

Ordinal	`1`
Address	`0x1d9b62`

1

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.37466`
MD5	`af68d7219f2ac9a568ffcfcc939567f9`
SHA1	`36b2d39a32ca5d75f27fb4b4bd9fc2e18833ca7a`
SHA256	`bd9c015c85d85efac17141535bca877eb0a99543ebdbf2e3ba07238667307fb8`
SHA3	`49c644b864b1d68f2e801f0fd02dc1f48f329ce2657008f1eb689e7855cad2b1`

2

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.13568`
MD5	`eba14393f3befc63423a3ba7102def78`
SHA1	`f090df21305fd0bfd53bb008e60467689c2907cc`
SHA256	`afef76bfea98360de76fb39af7d694676e81c126c53acea73b8373985be71271`
SHA3	`3f110562867a48169f509fd2826973f68b37e3eccfd28a32d0b085ac030936c6`

3

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.58442`
MD5	`670b7c40bbedb2b58eeac38ebe9af5de`
SHA1	`075cc8226b4d28fac30bbe5efca42b9b98d960f8`
SHA256	`0d2d0839cfbec1105b4a4661a626efe08f50d20f634fb0dbe4a0347cc88caa74`
SHA3	`96ff344553394020dcf2aab6d325b71c3bd9e0578359e6cebcba5635fbf86ae7`

4

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.63293`
MD5	`d322bb44f86619534536476506618a52`
SHA1	`5a21911bfddd8b55468c231b2fd825a3d798627b`
SHA256	`79cdcc893b795bdcd4bf3b16ee31503634c887492f519852b7a15f5bc0ef8f1a`
SHA3	`6d9920fdde6fb1833ca2dbbe3f03096885ffee9a61f94cd26d1225ff8ecbfd41`

5

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.29802`
MD5	`ac5884aedafa1b9f1bc12b3390e14b7b`
SHA1	`28d011594286c452f7b39c530fe8320288e0f242`
SHA256	`ce31986a853c0375847626ec357c06a318463ad21e08e920af7febae66461b69`
SHA3	`433fc1a2f58dce6746eec1c20bbc39fafcd3b23c4fbc33d2949e52c4ddbb40af`

6

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.3026`
MD5	`df3bf555bc7ff73bae6a4cce8a715e2b`
SHA1	`5c3bb83f4f0ad567be522ab2f3d1fc80551c52ed`
SHA256	`3a8240ad274634516517f308c80e16addc1bbe4eb5aa681d435e616a629ea128`
SHA3	`948fa8078859afc612dba5e69164c9b40aeb36645981105c3f32854c2b5679aa`

111

Type	`RT_MENU`
Language	English - United States
Codepage	UNKNOWN
Size	`0x48`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.76257`
MD5	`b02653d2f256248882fd36c5a9d30b3e`
SHA1	`4580f4a59b4631e882fcfa5863d72d8d0a0fa1fe`
SHA256	`103d2e6c6ba6f602317217e92b27b30a0235174bbde50d5b0c4c4bcac372740e`
SHA3	`0d67f95b77afa594ca59191269249b48f4a54a6e75d536eb89d3e53adae05354`

9

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x124`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.99471`
MD5	`b62b6b1e4cd3054ab1b07b033356d108`
SHA1	`c0170ce1c06de46e62508e1d774d64e952cd111a`
SHA256	`6a3c71d7f89e83280ff2aa75c76d49c3239060f8ee53cfc2692e05c4fc9c7eab`
SHA3	`9e885ae1d0f740d603c9ef2ca1a92c8a61ddb587a0f50bee653496e0ac8fe4f6`

106

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.98084`
MD5	`2165d3c35627dfb0f24dfa8839b650c1`
SHA1	`5168d394292dd31902f3f8112b22cd604529f378`
SHA256	`7aa854f2b6bf3241c666d0b851ecaea27082934a4b2fa43db752591dfcf9434e`
SHA3	`395d76a75afaab97318d9ea2f3785b5ade74331f689f98e69f22f301be84d67a`

107

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.19731`
MD5	`0e6aa2292352c8f495f2e6451d67ef4b`
SHA1	`e2fa8cfad9347763200e2521d871dc3fe2733014`
SHA256	`336aeb2d43e4c8dee0a5b237f44eaa2675aa2a028d8ae09e6e528d5a457c9130`
SHA3	`fbf59c28104fc329ef6909029e4cabaf7c2c31216f1b2650bb6d144be25b0165`

108

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xdc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.23439`
MD5	`89647fd8d7ee80b9e9e46db2a1053a29`
SHA1	`10dd88f00a8f56cce48908628abe1215235f624a`
SHA256	`692985cf029eb28098357336ea128b16211fb8fb8ab3e8f90949a952a2514f65`
SHA3	`01c77f889f7bb48a0744fe4f076df03cf74591df831c9d043237c2a7a7426f3e`

109

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.09377`
MD5	`839f2e562a1f062fd873414ab28cf1d2`
SHA1	`ed961a5852bd1ac5b55fa8fd70fa8213754abc57`
SHA256	`296b7d861a9ee473d4e8a62f9d7adb025d1fbe8e61206870f426e5c870a98936`
SHA3	`6a4b1fab7319e07585d923be21a3d852ecc1988286973bf8440e25f2a35a3cd0`

103

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x5a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.69913`
Detected Filetype	Icon file
MD5	`fc8846589a152507308beb48ead7a796`
SHA1	`787c24f9fbf50523b34bcb328ed56d33c4e7ffd7`
SHA256	`4a2d022975e1b62b89e1e757b73f563b68b21b71edf8cac8dbbf062b2cb2d2fe`
SHA3	`8ddbf8de92320682fb04bf04b166aab2b443a9fd6055b504b0c29ee44468a9c9`

1 (#2)

Type	`RT_VERSION`
Language	English - United States
Codepage	UNKNOWN
Size	`0x190`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.31933`
MD5	`bb3b899ba17bd61858f7b72690e4ee79`
SHA1	`d3c5041b99e0fa82a6ba779397567ac45a14a7d8`
SHA256	`e9fa02a42a882a1dd196cfdf2daf6589657dd44969f78c48027a5d8d22fe6ebb`
SHA3	`aac4e4a06b9874ed81cbbd5563174adfa4daee719332a250fed79f8d2c90aa63`

1 (#3)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x259`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.99263`
MD5	`a96f61e092d98c5af6806d31f3c6905e`
SHA1	`ee20f6337e6cfcefb40a77db7a39cf00b4e6cf3e`
SHA256	`9048e1792df503d40fce72e1a9552c0e52e719f8a5750f6ad443b9a16df4a002`
SHA3	`2a676b7e44773421ac4a2aca02cdb22b423549cdcea5946f03e5171ef06ab378`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	2.6.1.31223
ProductVersion	2.6.1.31223
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_UNKNOWN`
Language	English - United States
FileVersion (#2)	2.6.1.31223
ProductVersion (#2)	2.6.1.31223
Unity Version	2.6.1f3_31223

Resource LangID	English - United States

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2009-Nov-30 15:20:43
Version	`0.0`
SizeofData	`125`
AddressOfRawData	`0x4cce88`
PointerToRawData	`0x4cb688`
Referenced File	c:\builds\checkouts\branches\unity-2.6.x\Projects\VisualStudio\build\release\winplayer\WinPlayer.pdb

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0x43d9de8a`
Unmarked objects	`0`
150 (20413)	`7`
ASM objects (VS2008 SP1 build 30729)	`81`
C++ objects (9178)	`1`
Imports (9210)	`2`
C objects (9178)	`2`
C objects (VS2003 (.NET) build 4035)	`1`
C++ objects (VS2003 (.NET) build 4035)	`29`
C++ objects (VS2003 (.NET) build 3077)	`337`
C objects (VS2012 build 50727 / VS2005 build 50727)	`3`
Imports (VS2012 build 50727 / VS2005 build 50727)	`29`
Total imports	`459`
C objects (VS2008 SP1 build 30729)	`681`
C++ objects (VS2008 SP1 build 30729)	`517`
Exports (VS2008 SP1 build 30729)	`1`
Linker (VS2008 build 21022)	`1`
Resource objects (VS2008 SP1 build 30729)	`1`

Errors

Leave a comment

No comments yet.