| / Cracking 2
/ Cracking II..iso / Tools / ApiHooks 2.2 / examples / ASM / TEST / Test.exe
| < prev |
| MS-DOS/Windows or OS/2 Executable | 2000-04-09 | 2.0 KB |
MacOS 8.1
|
Win98
|
DOS
view JSON data
|
view as text| Confidence | Program | Detection | Match Type | Support |
|---|---|---|---|---|
| 100% | dexvert | MS-DOS/Windows or OS/2 Executable (executable/exe) | magic | Supported |
| 1% | dexvert | Ady's GLUE Packed (archive/adysGLUEPacked) | ext | Unsupported |
| 1% | dexvert | BlacK FiST Packed (archive/blackFiSTPacked) | ext | Unsupported |
| 1% | dexvert | CauseWay Compressor Packed (archive/causeWayCompressorPacked) | ext | Unsupported |
| 1% | dexvert | CExe compressed Win32 executable (archive/cExeCompressedWin32Executable) | ext | Unsupported |
| 1% | dexvert | cIPHATOR Protected (archive/ciphatorProtected) | ext | Unsupported |
| 1% | dexvert | CRYPACK Protected (archive/crypackProtected) | ext | Unsupported |
| 1% | dexvert | CRYPTEXE Proterctd (archive/cryptexeProtected) | ext | Unsupported |
| 1% | dexvert | Crypt Light Show Protected (archive/cryptLightShowProtected) | ext | Unsupported |
| 1% | dexvert | DaRKSToP Proterctd (archive/darkstopProtected) | ext | Unsupported |
| 1% | dexvert | DiskImager SFX Image (archive/diskImagerSFXImage) | ext | Unsupported |
| 1% | dexvert | DJP Packed (archive/djpPacked) | ext | Unsupported |
| 1% | dexvert | .NETZ Packed (archive/dotNETZPacked) | ext | Unsupported |
| 1% | dexvert | Exe32Pack Packed (archive/exe32PackPacked) | ext | Unsupported |
| 1% | dexvert | EXE Manager Protected (archive/exeManagerProtected) | ext | Unsupported |
| 1% | dexvert | EXETOOLS Protected (archive/exetoolsProtected) | ext | Unsupported |
| 1% | dexvert | EZip Packed (archive/ezipPacked) | ext | Unsupported |
| 1% | dexvert | FSG Packed (archive/fsgPacked) | ext | Unsupported |
| 1% | dexvert | HackStop Protected (archive/hackStopProtected) | ext | Unsupported |
| 1% | dexvert | kkrunchy Packed (archive/kkcrunchPacked) | ext | Unsupported |
| 1% | dexvert | mbp SHRINK Packed (archive/mbpSHRINKPacked) | ext | Unsupported |
| 1% | dexvert | MEGALITE Packed (archive/megalitePacked) | ext | Unsupported |
| 1% | dexvert | Mess Protected (archive/messProtected) | ext | Unsupported |
| 1% | dexvert | Mew Packed (archive/mewPacked) | ext | Unsupported |
| 1% | dexvert | MPRESS Packed (archive/mpressPacked) | ext | Unsupported |
| 1% | dexvert | NOS Packer Packed (archive/nosPackerPacked) | ext | Unsupported |
| 1% | dexvert | NTShell Protected (archive/ntShellProtected) | ext | Unsupported |
| 1% | dexvert | Pack MasterPacked (archive/packMasterPacked) | ext | Unsupported |
| 1% | dexvert | PE Diminisher Packed (archive/peDiminisherPacked) | ext | Unsupported |
| 1% | dexvert | Petite Packed (archive/petitePacked) | ext | Unsupported |
| 1% | dexvert | PeX Packed (archive/pexPacked) | ext | Unsupported |
| 1% | dexvert | PKLITE32 Packed (archive/pklite32Packed) | ext | Unsupported |
| 1% | dexvert | PowerBatch Packed (archive/powerBatchPacked) | ext | Unsupported |
| 1% | dexvert | protector Protected (archive/protectorProtected) | ext | Unsupported |
| 1% | dexvert | py2exe Packed (archive/py2exePacked) | ext | Unsupported |
| 1% | dexvert | PyInstaller Packed (archive/pyInstallerPacked) | ext | Unsupported |
| 1% | dexvert | SECURE Protected (archive/secureProtected) | ext | Unsupported |
| 1% | dexvert | Spoon Studio Packed (archive/spoonStudioPacked) | ext | Unsupported |
| 1% | dexvert | tElock Packed (archive/telockPacked) | ext | Unsupported |
| 1% | dexvert | The Builder Packed (archive/theBuilderPacked) | ext | Unsupported |
| 1% | dexvert | The Patcher Packed (archive/thePatcherPacked) | ext | Unsupported |
| 1% | dexvert | 32Lite Packed (archive/thirtyTwoLitePacked) | ext | Unsupported |
| 1% | dexvert | TinyProt Protected (archive/tinyProtProtected) | ext | Unsupported |
| 1% | dexvert | (Win)Upack Packed (archive/winUpackPacked) | ext | Unsupported |
| 1% | dexvert | Yoda's Crypte Protected (archive/yodasCrypterProtected) | ext | Unsupported |
| 1% | dexvert | MS-DOS PMODE extender executable (executable/msdosPMODEExtenderExecutable) | ext | Unsupported |
| 1% | dexvert | Sony Playstation Executable (executable/sonyPlaystationExe) | ext | Unsupported |
| 1% | dexvert | Novell Netware Virtual Loadable Module (other/novellNetwareVirtualLoadableModule) | ext | Unsupported |
| 100% | file | PE32 executable (GUI) Intel 80386, for MS Windows, 2 sections | default | |
| 99% | file | data | default | |
| 27% | TrID | Win32 Dynamic Link Library (generic) | default | |
| 20% | TrID | Win16 NE executable (generic) | default | |
| 18% | TrID | Win32 Executable (generic) | default | |
| 8% | TrID | Windows Icons Library (generic) | default (weak) | |
| 8% | TrID | OS/2 Executable (generic) | default | |
| 100% | siegfried | fmt/899 Windows Portable Executable (32 bit) | default | |
| 100% | gt2 | Ist eine ausf�hrbare Win32 Datei | default | |
| 100% | binwalkID | Microsoft executable, portable (PE) | default | |
| 100% | xdgMime | application/vnd.microsoft.portable-executable | default (weak) |
+--------+-------------------------+-------------------------+--------+--------+
|00000000| 4d 5a 90 00 03 00 00 00 | 04 00 00 00 ff ff 00 00 |MZ......|........|
|00000010| b8 00 00 00 00 00 00 00 | 40 00 00 00 00 00 00 00 |........|@.......|
|00000020| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000030| 00 00 00 00 00 00 00 00 | 00 00 00 00 80 00 00 00 |........|........|
|00000040| 0e 1f ba 0e 00 b4 09 cd | 21 b8 01 4c cd 21 54 68 |........|!..L.!Th|
|00000050| 69 73 20 70 72 6f 67 72 | 61 6d 20 63 61 6e 6e 6f |is progr|am canno|
|00000060| 74 20 62 65 20 72 75 6e | 20 69 6e 20 44 4f 53 20 |t be run| in DOS |
|00000070| 6d 6f 64 65 2e 0d 0d 0a | 24 00 00 00 00 00 00 00 |mode....|$.......|
|00000080| 50 45 00 00 4c 01 02 00 | 99 48 f0 38 00 00 00 00 |PE..L...|.H.8....|
|00000090| 00 00 00 00 e0 00 0f 01 | 0b 01 05 00 00 06 00 00 |........|........|
|000000a0| 00 02 00 00 00 00 00 00 | c4 10 00 00 00 10 00 00 |........|........|
|000000b0| 00 20 00 00 00 00 40 00 | 00 10 00 00 00 02 00 00 |. ....@.|........|
|000000c0| 04 00 00 00 00 00 00 00 | 04 00 00 00 00 00 00 00 |........|........|
|000000d0| 00 30 00 00 00 02 00 00 | 00 00 00 00 02 00 00 00 |.0......|........|
|000000e0| 00 00 10 00 00 10 00 00 | 00 00 10 00 00 10 00 00 |........|........|
|000000f0| 00 00 00 00 10 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000100| 98 13 00 00 50 00 00 00 | 00 00 00 00 00 00 00 00 |....P...|........|
|00000110| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000120| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000130| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000140| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000150| 00 00 00 00 00 00 00 00 | 00 10 00 00 50 00 00 00 |........|....P...|
|00000160| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000170| 00 00 00 00 00 00 00 00 | 2e 74 65 78 74 00 00 00 |........|.text...|
|00000180| 78 05 00 00 00 10 00 00 | 00 06 00 00 00 02 00 00 |x.......|........|
|00000190| 00 00 00 00 00 00 00 00 | 00 00 00 00 20 00 00 60 |........|.... ..`|
|000001a0| 2e 64 61 74 61 00 00 00 | 5c 00 00 00 00 20 00 00 |.data...|\.... ..|
|000001b0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000001c0| 00 00 00 00 40 00 00 c0 | 00 00 00 00 00 00 00 00 |....@...|........|
|000001d0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000001e0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000001f0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000200| d4 14 00 00 3e 15 00 00 | c2 14 00 00 32 15 00 00 |....>...|....2...|
|00000210| 26 15 00 00 54 15 00 00 | 16 15 00 00 f4 14 00 00 |&...T...|........|
|00000220| e4 14 00 00 06 15 00 00 | 00 00 00 00 4e 14 00 00 |........|....N...|
|00000230| 7e 14 00 00 70 14 00 00 | 60 14 00 00 38 14 00 00 |~...p...|`...8...|
|00000240| 00 00 00 00 a8 14 00 00 | 9a 14 00 00 00 00 00 00 |........|........|
|00000250| 4b 45 52 4e 45 4c 33 32 | 2e 64 6c 6c 00 47 65 74 |KERNEL32|.dll.Get|
|00000260| 56 65 72 73 69 6f 6e 00 | 43 00 61 00 70 00 2e 00 |Version.|C.a.p...|
|00000270| 64 00 6c 00 6c 00 00 00 | 44 00 6c 00 6c 00 52 00 |d.l.l...|D.l.l.R.|
|00000280| 65 00 67 00 69 00 73 00 | 74 00 65 00 72 00 53 00 |e.g.i.s.|t.e.r.S.|
|00000290| 65 00 72 00 76 00 65 00 | 72 00 00 00 34 54 65 73 |e.r.v.e.|r...4Tes|
|000002a0| 74 2e 65 78 65 00 41 6c | 69 65 6e 2e 64 6c 6c 00 |t.exe.Al|ien.dll.|
|000002b0| 41 00 6c 00 69 00 65 00 | 6e 00 2e 00 64 00 6c 00 |A.l.i.e.|n...d.l.|
|000002c0| 6c 00 00 00 ff 15 3c 10 | 40 00 8b d8 53 68 68 10 |l.....<.|@...Shh.|
|000002d0| 40 00 ff 15 08 10 40 00 | 68 78 10 40 00 6a 01 53 |@.....@.|hx.@.j.S|
|000002e0| 68 68 10 40 00 ff 15 00 | 10 40 00 53 68 68 10 40 |hh.@....|.@.Shh.@|
|000002f0| 00 ff 15 08 10 40 00 6a | 0a 53 68 68 10 40 00 ff |.....@.j|.Shh.@..|
|00000300| 15 20 10 40 00 53 68 50 | 10 40 00 ff 15 1c 10 40 |. .@.ShP|.@.....@|
|00000310| 00 68 5d 10 40 00 6a 01 | 53 68 50 10 40 00 ff 15 |.h].@.j.|ShP.@...|
|00000320| 24 10 40 00 6a 0a 53 68 | 50 10 40 00 ff 15 18 10 |$.@.j.Sh|P.@.....|
|00000330| 40 00 8b 1d 48 10 40 00 | 6a 40 68 b8 12 40 00 68 |@...H.@.|j@h..@.h|
|00000340| c1 12 40 00 6a 00 ff d3 | 89 1d 00 20 40 00 8b 1d |..@.j...|... @...|
|00000350| 44 10 40 00 6a 40 68 d4 | 12 40 00 68 e6 12 40 00 |D.@.j@h.|.@.h..@.|
|00000360| 6a 00 ff d3 89 1d 04 20 | 40 00 6a 00 68 0a 13 40 |j...... |@.j.h..@|
|00000370| 00 6a 00 6a 00 6a 04 68 | 5d 13 40 00 68 52 13 40 |.j.j.j.h|].@.hR.@|
|00000380| 00 ff 15 10 10 40 00 6a | 40 68 b8 12 40 00 68 c1 |.....@.j|@h..@.h.|
|00000390| 12 40 00 6a 00 ff 15 48 | 10 40 00 6a 00 68 2e 13 |.@.j...H|.@.j.h..|
|000003a0| 40 00 6a 00 6a 00 6a 04 | 68 80 13 40 00 68 6a 13 |@.j.j.j.|h..@.hj.|
|000003b0| 40 00 ff 15 0c 10 40 00 | 6a 40 68 d4 12 40 00 68 |@.....@.|j@h..@.h|
|000003c0| e6 12 40 00 6a 00 ff 15 | 44 10 40 00 be 18 20 40 |..@.j...|D.@... @|
|000003d0| 00 2b ed c7 06 44 00 00 | 00 68 08 20 40 00 56 55 |.+...D..|.h. @.VU|
|000003e0| 55 6a 04 55 55 55 55 68 | 9c 10 40 00 ff 15 2c 10 |Uj.UUUUh|..@...,.|
|000003f0| 40 00 85 c0 0f 84 b6 00 | 00 00 8b 1d 10 20 40 00 |@.......|..... @.|
|00000400| 53 68 68 10 40 00 ff 15 | 08 10 40 00 68 78 10 40 |Shh.@...|..@.hx.@|
|00000410| 00 6a 01 53 68 68 10 40 | 00 ff 15 00 10 40 00 53 |.j.Shh.@|.....@.S|
|00000420| 68 68 10 40 00 ff 15 08 | 10 40 00 6a 0a 53 68 68 |hh.@....|.@.j.Shh|
|00000430| 10 40 00 ff 15 20 10 40 | 00 53 68 50 10 40 00 ff |.@... .@|.ShP.@..|
|00000440| 15 1c 10 40 00 68 5d 10 | 40 00 6a 01 53 68 50 10 |...@.h].|@.j.ShP.|
|00000450| 40 00 ff 15 24 10 40 00 | 6a 0a 53 68 50 10 40 00 |@...$.@.|j.ShP.@.|
|00000460| ff 15 18 10 40 00 53 68 | a6 10 40 00 ff 15 04 10 |....@.Sh|..@.....|
|00000470| 40 00 53 68 b0 10 40 00 | ff 15 14 10 40 00 6a 02 |@.Sh..@.|....@.j.|
|00000480| 53 68 a6 10 40 00 ff 15 | 18 10 40 00 ff 35 0c 20 |Sh..@...|..@..5. |
|00000490| 40 00 ff 15 38 10 40 00 | ff 35 08 20 40 00 ff 15 |@...8.@.|.5. @...|
|000004a0| 34 10 40 00 ff 35 0c 20 | 40 00 ff 15 34 10 40 00 |4.@..5. |@...4.@.|
|000004b0| 6a 00 ff 15 30 10 40 00 | 57 61 72 6e 69 6e 67 41 |j...0.@.|WarningA|
|000004c0| 00 54 68 69 73 20 69 73 | 20 69 6c 6c 65 67 61 6c |.This is| illegal|
|000004d0| 41 2e 00 90 57 00 61 00 | 72 00 6e 00 69 00 6e 00 |A...W.a.|r.n.i.n.|
|000004e0| 67 00 57 00 00 00 54 00 | 68 00 69 00 73 00 20 00 |g.W...T.|h.i.s. .|
|000004f0| 69 00 73 00 20 00 69 00 | 6c 00 6c 00 65 00 67 00 |i.s. .i.|l.l.e.g.|
|00000500| 61 00 6c 00 57 00 2e 00 | 00 00 55 8b ec 8b 45 14 |a.l.W...|..U...E.|
|00000510| a9 40 00 00 00 74 03 83 | f0 70 50 ff 75 10 ff 75 |.@...t..|.pP.u..u|
|00000520| 0c ff 75 08 ff 15 00 20 | 40 00 c9 c2 10 00 55 8b |..u.... |@.....U.|
|00000530| ec 8b 45 14 a9 40 00 00 | 00 74 03 83 f0 70 50 ff |..E..@..|.t...pP.|
|00000540| 75 10 ff 75 0c ff 75 08 | ff 15 04 20 40 00 c9 c2 |u..u..u.|... @...|
|00000550| 10 00 55 53 45 52 33 32 | 2e 64 6c 6c 00 4d 65 73 |..USER32|.dll.Mes|
|00000560| 73 61 67 65 42 6f 78 41 | 00 90 55 00 53 00 45 00 |sageBoxA|..U.S.E.|
|00000570| 52 00 33 00 32 00 2e 00 | 64 00 6c 00 6c 00 00 00 |R.3.2...|d.l.l...|
|00000580| 4d 00 65 00 73 00 73 00 | 61 00 67 00 65 00 42 00 |M.e.s.s.|a.g.e.B.|
|00000590| 6f 00 78 00 57 00 00 00 | 14 14 00 00 00 00 00 00 |o.x.W...|........|
|000005a0| 00 00 00 00 8c 14 00 00 | 2c 10 00 00 2c 14 00 00 |........|,...,...|
|000005b0| 00 00 00 00 00 00 00 00 | b6 14 00 00 44 10 00 00 |........|....D...|
|000005c0| e8 13 00 00 00 00 00 00 | 00 00 00 00 6a 15 00 00 |........|....j...|
|000005d0| 00 10 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000005e0| 00 00 00 00 00 00 00 00 | d4 14 00 00 3e 15 00 00 |........|....>...|
|000005f0| c2 14 00 00 32 15 00 00 | 26 15 00 00 54 15 00 00 |....2...|&...T...|
|00000600| 16 15 00 00 f4 14 00 00 | e4 14 00 00 06 15 00 00 |........|........|
|00000610| 00 00 00 00 4e 14 00 00 | 7e 14 00 00 70 14 00 00 |....N...|~...p...|
|00000620| 60 14 00 00 38 14 00 00 | 00 00 00 00 a8 14 00 00 |`...8...|........|
|00000630| 9a 14 00 00 00 00 00 00 | 0a 01 47 65 74 43 75 72 |........|..GetCur|
|00000640| 72 65 6e 74 50 72 6f 63 | 65 73 73 49 64 00 47 00 |rentProc|essId.G.|
|00000650| 43 72 65 61 74 65 50 72 | 6f 63 65 73 73 41 00 00 |CreatePr|ocessA..|
|00000660| 54 02 52 65 73 75 6d 65 | 54 68 72 65 61 64 00 00 |T.Resume|Thread..|
|00000670| 1e 00 43 6c 6f 73 65 48 | 61 6e 64 6c 65 00 8c 00 |..CloseH|andle...|
|00000680| 45 78 69 74 50 72 6f 63 | 65 73 73 00 4b 45 52 4e |ExitProc|ess.KERN|
|00000690| 45 4c 33 32 2e 64 6c 6c | 00 00 c3 01 4d 65 73 73 |EL32.dll|....Mess|
|000006a0| 61 67 65 42 6f 78 41 00 | c8 01 4d 65 73 73 61 67 |ageBoxA.|..Messag|
|000006b0| 65 42 6f 78 57 00 55 53 | 45 52 33 32 2e 64 6c 6c |eBoxW.US|ER32.dll|
|000006c0| 00 00 09 00 49 73 4d 6f | 64 75 6c 65 4c 6f 61 64 |....IsMo|duleLoad|
|000006d0| 65 64 57 00 0b 00 4c 6f | 61 64 41 6e 64 43 61 6c |edW...Lo|adAndCal|
|000006e0| 6c 57 00 00 0f 00 55 6e | 6c 6f 61 64 4d 6f 64 75 |lW....Un|loadModu|
|000006f0| 6c 65 57 00 08 00 49 73 | 4d 6f 64 75 6c 65 4c 6f |leW...Is|ModuleLo|
|00000700| 61 64 65 64 41 00 0a 00 | 4c 6f 61 64 41 6e 64 43 |adedA...|LoadAndC|
|00000710| 61 6c 6c 41 00 00 0e 00 | 55 6e 6c 6f 61 64 4d 6f |allA....|UnloadMo|
|00000720| 64 75 6c 65 41 00 06 00 | 48 6f 6f 6b 41 70 69 41 |duleA...|HookApiA|
|00000730| 00 00 07 00 48 6f 6f 6b | 41 70 69 57 00 00 00 00 |....Hook|ApiW....|
|00000740| 45 73 74 61 62 6c 69 73 | 68 41 70 69 48 6f 6f 6b |Establis|hApiHook|
|00000750| 73 41 00 00 05 00 45 73 | 74 61 62 6c 69 73 68 41 |sA....Es|tablishA|
|00000760| 70 69 48 6f 6f 6b 73 57 | 00 00 41 70 69 48 6f 6f |piHooksW|..ApiHoo|
|00000770| 6b 73 2e 64 6c 6c 00 00 | 00 00 00 00 00 00 00 00 |ks.dll..|........|
|00000780| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000790| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000007a0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000007b0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000007c0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000007d0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000007e0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|000007f0| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
+--------+-------------------------+-------------------------+--------+--------+