| ofs | hex dump | ascii |
|---|---|---|
| 0000 | 21 3c 61 72 63 68 3e 0a 2f 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 31 35 31 36 31 36 30 37 | !<arch>./...............15161607 |
| 0020 | 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 30 20 20 20 20 20 20 20 35 35 38 20 20 20 20 20 | 17..0.....0.....0.......558..... |
| 0040 | 20 20 60 0a 00 00 00 14 00 00 02 72 00 00 05 22 00 00 08 3a 00 00 08 3a 00 00 0b 1a 00 00 0b 1a | ..`........r..."...:...:........ |
| 0060 | 00 00 0e 04 00 00 0e 04 00 00 10 d6 00 00 10 d6 00 00 13 b8 00 00 13 b8 00 00 16 94 00 00 16 94 | ................................ |
| 0080 | 00 00 19 70 00 00 19 70 00 00 1c 4e 00 00 1c 4e 00 00 1f 2a 00 00 1f 2a 5f 5f 43 5f 5f 55 73 65 | ...p...p...N...N...*...*__C__Use |
| 00a0 | 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c | rs_Peter_Code_winapi_rs_x86_64_l |
| 00c0 | 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 5f 69 6e 61 6d 65 00 5f 68 65 61 64 5f | ib_libwinapi_amsi_a_iname._head_ |
| 00e0 | 43 5f 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 | C__Users_Peter_Code_winapi_rs_x8 |
| 0100 | 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 41 6d 73 69 55 6e | 6_64_lib_libwinapi_amsi_a.AmsiUn |
| 0120 | 69 6e 69 74 69 61 6c 69 7a 65 00 5f 5f 69 6d 70 5f 41 6d 73 69 55 6e 69 6e 69 74 69 61 6c 69 7a | initialize.__imp_AmsiUninitializ |
| 0140 | 65 00 41 6d 73 69 55 61 63 55 6e 69 6e 69 74 69 61 6c 69 7a 65 00 5f 5f 69 6d 70 5f 41 6d 73 69 | e.AmsiUacUninitialize.__imp_Amsi |
| 0160 | 55 61 63 55 6e 69 6e 69 74 69 61 6c 69 7a 65 00 41 6d 73 69 55 61 63 53 63 61 6e 00 5f 5f 69 6d | UacUninitialize.AmsiUacScan.__im |
| 0180 | 70 5f 41 6d 73 69 55 61 63 53 63 61 6e 00 41 6d 73 69 55 61 63 49 6e 69 74 69 61 6c 69 7a 65 00 | p_AmsiUacScan.AmsiUacInitialize. |
| 01a0 | 5f 5f 69 6d 70 5f 41 6d 73 69 55 61 63 49 6e 69 74 69 61 6c 69 7a 65 00 41 6d 73 69 53 63 61 6e | __imp_AmsiUacInitialize.AmsiScan |
| 01c0 | 53 74 72 69 6e 67 00 5f 5f 69 6d 70 5f 41 6d 73 69 53 63 61 6e 53 74 72 69 6e 67 00 41 6d 73 69 | String.__imp_AmsiScanString.Amsi |
| 01e0 | 53 63 61 6e 42 75 66 66 65 72 00 5f 5f 69 6d 70 5f 41 6d 73 69 53 63 61 6e 42 75 66 66 65 72 00 | ScanBuffer.__imp_AmsiScanBuffer. |
| 0200 | 41 6d 73 69 4f 70 65 6e 53 65 73 73 69 6f 6e 00 5f 5f 69 6d 70 5f 41 6d 73 69 4f 70 65 6e 53 65 | AmsiOpenSession.__imp_AmsiOpenSe |
| 0220 | 73 73 69 6f 6e 00 41 6d 73 69 49 6e 69 74 69 61 6c 69 7a 65 00 5f 5f 69 6d 70 5f 41 6d 73 69 49 | ssion.AmsiInitialize.__imp_AmsiI |
| 0240 | 6e 69 74 69 61 6c 69 7a 65 00 41 6d 73 69 43 6c 6f 73 65 53 65 73 73 69 6f 6e 00 5f 5f 69 6d 70 | nitialize.AmsiCloseSession.__imp |
| 0260 | 5f 41 6d 73 69 43 6c 6f 73 65 53 65 73 73 69 6f 6e 00 64 6f 6a 64 62 74 2e 6f 2f 20 20 20 20 20 | _AmsiCloseSession.dojdbt.o/..... |
| 0280 | 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 31 30 30 36 36 36 | ..1516160717..0.....0.....100666 |
| 02a0 | 20 20 36 32 38 20 20 20 20 20 20 20 60 0a 64 86 06 00 00 00 00 00 20 01 00 00 0f 00 00 00 00 00 | ..628.......`.d................. |
| 02c0 | 05 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ...text......................... |
| 02e0 | 00 00 00 00 00 00 20 00 50 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........P`.data................. |
| 0300 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 50 c0 2e 62 73 73 00 00 00 00 00 00 00 00 00 00 | ..............@.P..bss.......... |
| 0320 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 50 c0 2e 69 64 61 74 61 | ........................P..idata |
| 0340 | 24 34 00 00 00 00 00 00 00 00 08 00 00 00 04 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 | $4............................@. |
| 0360 | 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 0c 01 00 00 00 00 00 00 00 00 | 0..idata$5...................... |
| 0380 | 00 00 00 00 00 00 40 00 30 c0 2e 69 64 61 74 61 24 37 00 00 00 00 00 00 00 00 0c 00 00 00 14 01 | ......@.0..idata$7.............. |
| 03a0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ..............@.0............... |
| 03c0 | 00 00 41 6d 73 69 2e 64 6c 6c 00 00 00 00 2e 66 69 6c 65 00 00 00 00 00 00 00 fe ff 00 00 67 01 | ..Amsi.dll.....file...........g. |
| 03e0 | 66 61 6b 65 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 00 00 00 00 01 00 | fake...............text......... |
| 0400 | 00 00 03 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 64 61 74 61 00 00 00 00 00 | .......................data..... |
| 0420 | 00 00 02 00 00 00 03 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 62 73 73 00 00 | ...........................bss.. |
| 0440 | 00 00 00 00 00 00 03 00 00 00 03 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 69 | ...............................i |
| 0460 | 64 61 74 61 24 34 00 00 00 00 04 00 00 00 03 01 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | data$4.......................... |
| 0480 | 00 00 2e 69 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 01 08 00 00 00 00 00 00 00 00 00 00 00 | ...idata$5...................... |
| 04a0 | 00 00 00 00 00 00 2e 69 64 61 74 61 24 37 00 00 00 00 06 00 00 00 03 01 09 00 00 00 00 00 00 00 | .......idata$7.................. |
| 04c0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 06 00 00 00 02 00 46 00 00 00 | ............................F... |
| 04e0 | 5f 5f 43 5f 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f | __C__Users_Peter_Code_winapi_rs_ |
| 0500 | 78 38 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 5f 69 6e 61 6d | x86_64_lib_libwinapi_amsi_a_inam |
| 0520 | 65 00 64 6f 6a 64 62 68 2e 6f 2f 20 20 20 20 20 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 | e.dojdbh.o/.......1516160717..0. |
| 0540 | 20 20 20 20 30 20 20 20 20 20 31 30 30 36 36 36 20 20 37 33 32 20 20 20 20 20 20 20 60 0a 64 86 | ....0.....100666..732.......`.d. |
| 0560 | 06 00 00 00 00 00 36 01 00 00 10 00 00 00 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 | ......6............text......... |
| 0580 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 50 60 2e 64 61 74 61 00 | ........................P`.data. |
| 05a0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 | ..............................@. |
| 05c0 | 50 c0 2e 62 73 73 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | P..bss.......................... |
| 05e0 | 00 00 00 00 00 00 80 00 50 c0 2e 69 64 61 74 61 24 32 00 00 00 00 00 00 00 00 14 00 00 00 04 01 | ........P..idata$2.............. |
| 0600 | 00 00 18 01 00 00 00 00 00 00 03 00 00 00 40 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 | ..............@.0..idata$5...... |
| 0620 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 69 64 61 74 61 | ......................@.0..idata |
| 0640 | 24 34 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 | $4............................@. |
| 0660 | 30 c0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0c 00 00 00 03 00 | 0............................... |
| 0680 | 0c 00 00 00 0f 00 00 00 03 00 10 00 00 00 0d 00 00 00 03 00 2e 66 69 6c 65 00 00 00 00 00 00 00 | .....................file....... |
| 06a0 | fe ff 00 00 67 01 66 61 6b 65 00 00 00 00 00 00 00 00 00 00 00 00 00 00 68 6e 61 6d 65 00 00 00 | ....g.fake..............hname... |
| 06c0 | 00 00 00 00 06 00 00 00 03 00 66 74 68 75 6e 6b 00 00 00 00 00 00 05 00 00 00 03 00 2e 74 65 78 | ..........fthunk.............tex |
| 06e0 | 74 00 00 00 00 00 00 00 01 00 00 00 03 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | t............................... |
| 0700 | 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | .data........................... |
| 0720 | 00 00 00 00 2e 62 73 73 00 00 00 00 00 00 00 00 03 00 00 00 03 01 00 00 00 00 00 00 00 00 00 00 | .....bss........................ |
| 0740 | 00 00 00 00 00 00 00 00 2e 69 64 61 74 61 24 32 00 00 00 00 04 00 00 00 03 01 14 00 00 00 03 00 | .........idata$2................ |
| 0760 | 00 00 00 00 00 00 00 00 00 00 00 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 00 00 03 00 2e 69 | .............idata$4...........i |
| 0780 | 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 00 00 04 00 00 00 | data$5.......................... |
| 07a0 | 02 00 00 00 00 00 44 00 00 00 00 00 00 00 00 00 00 00 02 00 86 00 00 00 5f 68 65 61 64 5f 43 5f | ......D................._head_C_ |
| 07c0 | 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f | _Users_Peter_Code_winapi_rs_x86_ |
| 07e0 | 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 5f 5f 43 5f 5f 55 73 65 | 64_lib_libwinapi_amsi_a.__C__Use |
| 0800 | 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c | rs_Peter_Code_winapi_rs_x86_64_l |
| 0820 | 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 5f 69 6e 61 6d 65 00 64 6f 6a 64 62 73 | ib_libwinapi_amsi_a_iname.dojdbs |
| 0840 | 30 30 30 30 38 2e 6f 2f 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 | 00008.o/..1516160717..0.....0... |
| 0860 | 20 20 31 30 30 36 36 36 20 20 36 37 36 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 | ..100666..676.......`.d......... |
| 0880 | 00 00 0a 00 00 00 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 | ...........text...............,. |
| 08a0 | 00 00 5c 01 00 00 00 00 00 00 01 00 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 | ..\.............0`.data......... |
| 08c0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 | ......................@.0..bss.. |
| 08e0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 | ................................ |
| 0900 | 30 c0 2e 69 64 61 74 61 24 37 00 00 00 00 00 00 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 | 0..idata$7............4...f..... |
| 0920 | 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 | ........0..idata$5............8. |
| 0940 | 00 00 70 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 | ..p.............0..idata$4...... |
| 0960 | 00 00 08 00 00 00 40 01 00 00 7a 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 | ......@...z.............0..idata |
| 0980 | 24 36 00 00 00 00 00 00 00 00 14 00 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | $6............H................. |
| 09a0 | 20 c0 ff 25 00 00 00 00 90 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08 00 | ...%............................ |
| 09c0 | 41 6d 73 69 55 6e 69 6e 69 74 69 61 6c 69 7a 65 00 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 | AmsiUninitialize................ |
| 09e0 | 09 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 | ...........................text. |
| 0a00 | 00 00 00 00 00 00 01 00 00 00 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 | .............data..............b |
| 0a20 | 73 73 00 00 00 00 00 00 00 00 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 | ss...............idata$7........ |
| 0a40 | 03 00 2e 69 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 | ...idata$5...........idata$4.... |
| 0a60 | 06 00 00 00 03 00 2e 69 64 61 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 | .......idata$6.................. |
| 0a80 | 00 00 00 00 01 00 00 00 02 00 00 00 00 00 15 00 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 | ................................ |
| 0aa0 | 2c 00 00 00 00 00 00 00 00 00 00 00 02 00 6c 00 00 00 41 6d 73 69 55 6e 69 6e 69 74 69 61 6c 69 | ,.............l...AmsiUninitiali |
| 0ac0 | 7a 65 00 5f 5f 69 6d 70 5f 41 6d 73 69 55 6e 69 6e 69 74 69 61 6c 69 7a 65 00 5f 68 65 61 64 5f | ze.__imp_AmsiUninitialize._head_ |
| 0ae0 | 43 5f 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 | C__Users_Peter_Code_winapi_rs_x8 |
| 0b00 | 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 | 6_64_lib_libwinapi_amsi_a.dojdbs |
| 0b20 | 30 30 30 30 37 2e 6f 2f 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 | 00007.o/..1516160717..0.....0... |
| 0b40 | 20 20 31 30 30 36 36 36 20 20 36 38 36 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 88 01 | ..100666..686.......`.d......... |
| 0b60 | 00 00 0a 00 00 00 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 | ...........text...............,. |
| 0b80 | 00 00 60 01 00 00 00 00 00 00 01 00 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 | ..`.............0`.data......... |
| 0ba0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 | ......................@.0..bss.. |
| 0bc0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 | ................................ |
| 0be0 | 30 c0 2e 69 64 61 74 61 24 37 00 00 00 00 00 00 00 00 04 00 00 00 34 01 00 00 6a 01 00 00 00 00 | 0..idata$7............4...j..... |
| 0c00 | 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 | ........0..idata$5............8. |
| 0c20 | 00 00 74 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 | ..t.............0..idata$4...... |
| 0c40 | 00 00 08 00 00 00 40 01 00 00 7e 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 | ......@...~.............0..idata |
| 0c60 | 24 36 00 00 00 00 00 00 00 00 16 00 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | $6............H................. |
| 0c80 | 20 c0 ff 25 00 00 00 00 90 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 07 00 | ...%............................ |
| 0ca0 | 41 6d 73 69 55 61 63 55 6e 69 6e 69 74 69 61 6c 69 7a 65 00 00 00 02 00 00 00 08 00 00 00 04 00 | AmsiUacUninitialize............. |
| 0cc0 | 00 00 00 00 09 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 | ...............................t |
| 0ce0 | 65 78 74 00 00 00 00 00 00 00 01 00 00 00 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 | ext..............data........... |
| 0d00 | 03 00 2e 62 73 73 00 00 00 00 00 00 00 00 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 | ...bss...............idata$7.... |
| 0d20 | 04 00 00 00 03 00 2e 69 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 | .......idata$5...........idata$4 |
| 0d40 | 00 00 00 00 06 00 00 00 03 00 2e 69 64 61 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 | ...........idata$6.............. |
| 0d60 | 04 00 00 00 00 00 00 00 01 00 00 00 02 00 00 00 00 00 18 00 00 00 00 00 00 00 05 00 00 00 02 00 | ................................ |
| 0d80 | 00 00 00 00 32 00 00 00 00 00 00 00 00 00 00 00 02 00 72 00 00 00 41 6d 73 69 55 61 63 55 6e 69 | ....2.............r...AmsiUacUni |
| 0da0 | 6e 69 74 69 61 6c 69 7a 65 00 5f 5f 69 6d 70 5f 41 6d 73 69 55 61 63 55 6e 69 6e 69 74 69 61 6c | nitialize.__imp_AmsiUacUninitial |
| 0dc0 | 69 7a 65 00 5f 68 65 61 64 5f 43 5f 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 | ize._head_C__Users_Peter_Code_wi |
| 0de0 | 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 | napi_rs_x86_64_lib_libwinapi_ams |
| 0e00 | 69 5f 61 00 64 6f 6a 64 62 73 30 30 30 30 36 2e 6f 2f 20 20 31 35 31 36 31 36 30 37 31 37 20 20 | i_a.dojdbs00006.o/..1516160717.. |
| 0e20 | 30 20 20 20 20 20 30 20 20 20 20 20 31 30 30 36 36 36 20 20 36 36 32 20 20 20 20 20 20 20 60 0a | 0.....0.....100666..662.......`. |
| 0e40 | 64 86 07 00 00 00 00 00 80 01 00 00 0a 00 00 00 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 | d....................text....... |
| 0e60 | 00 00 00 00 08 00 00 00 2c 01 00 00 58 01 00 00 00 00 00 00 01 00 00 00 20 00 30 60 2e 64 61 74 | ........,...X.............0`.dat |
| 0e80 | 61 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | a............................... |
| 0ea0 | 40 00 30 c0 2e 62 73 73 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | @.0..bss........................ |
| 0ec0 | 00 00 00 00 00 00 00 00 80 00 30 c0 2e 69 64 61 74 61 24 37 00 00 00 00 00 00 00 00 04 00 00 00 | ..........0..idata$7............ |
| 0ee0 | 34 01 00 00 62 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 | 4...b.............0..idata$5.... |
| 0f00 | 00 00 00 00 08 00 00 00 38 01 00 00 6c 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 | ........8...l.............0..ida |
| 0f20 | 74 61 24 34 00 00 00 00 00 00 00 00 08 00 00 00 40 01 00 00 76 01 00 00 00 00 00 00 01 00 00 00 | ta$4............@...v........... |
| 0f40 | 00 00 30 c0 2e 69 64 61 74 61 24 36 00 00 00 00 00 00 00 00 0e 00 00 00 48 01 00 00 00 00 00 00 | ..0..idata$6............H....... |
| 0f60 | 00 00 00 00 00 00 00 00 00 00 20 c0 ff 25 00 00 00 00 90 90 00 00 00 00 00 00 00 00 00 00 00 00 | .............%.................. |
| 0f80 | 00 00 00 00 00 00 00 00 06 00 41 6d 73 69 55 61 63 53 63 61 6e 00 00 00 02 00 00 00 08 00 00 00 | ..........AmsiUacScan........... |
| 0fa0 | 04 00 00 00 00 00 09 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 | ................................ |
| 0fc0 | 2e 74 65 78 74 00 00 00 00 00 00 00 01 00 00 00 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 | .text..............data......... |
| 0fe0 | 00 00 03 00 2e 62 73 73 00 00 00 00 00 00 00 00 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 | .....bss...............idata$7.. |
| 1000 | 00 00 04 00 00 00 03 00 2e 69 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 | .........idata$5...........idata |
| 1020 | 24 34 00 00 00 00 06 00 00 00 03 00 2e 69 64 61 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 | $4...........idata$6............ |
| 1040 | 00 00 04 00 00 00 00 00 00 00 01 00 00 00 02 00 00 00 00 00 10 00 00 00 00 00 00 00 05 00 00 00 | ................................ |
| 1060 | 02 00 00 00 00 00 22 00 00 00 00 00 00 00 00 00 00 00 02 00 62 00 00 00 41 6d 73 69 55 61 63 53 | ......".............b...AmsiUacS |
| 1080 | 63 61 6e 00 5f 5f 69 6d 70 5f 41 6d 73 69 55 61 63 53 63 61 6e 00 5f 68 65 61 64 5f 43 5f 5f 55 | can.__imp_AmsiUacScan._head_C__U |
| 10a0 | 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 | sers_Peter_Code_winapi_rs_x86_64 |
| 10c0 | 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 30 30 30 30 | _lib_libwinapi_amsi_a.dojdbs0000 |
| 10e0 | 35 2e 6f 2f 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 31 30 | 5.o/..1516160717..0.....0.....10 |
| 1100 | 30 36 36 36 20 20 36 37 38 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 00 00 0a 00 | 0666..678.......`.d............. |
| 1120 | 00 00 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 00 00 5c 01 | .......text...............,...\. |
| 1140 | 00 00 00 00 00 00 01 00 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............0`.data............. |
| 1160 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 00 00 00 00 | ..................@.0..bss...... |
| 1180 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 30 c0 2e 69 | ............................0..i |
| 11a0 | 64 61 74 61 24 37 00 00 00 00 00 00 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 00 00 01 00 | data$7............4...f......... |
| 11c0 | 00 00 00 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 00 00 70 01 | ....0..idata$5............8...p. |
| 11e0 | 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 00 00 08 00 | ............0..idata$4.......... |
| 1200 | 00 00 40 01 00 00 7a 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 36 00 00 | ..@...z.............0..idata$6.. |
| 1220 | 00 00 00 00 00 00 14 00 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 c0 ff 25 | ..........H....................% |
| 1240 | 00 00 00 00 90 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 05 00 41 6d 73 69 | ............................Amsi |
| 1260 | 55 61 63 49 6e 69 74 69 61 6c 69 7a 65 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 09 00 00 00 | UacInitialize................... |
| 1280 | 03 00 00 00 00 00 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 00 00 00 00 | .......................text..... |
| 12a0 | 00 00 01 00 00 00 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 73 73 00 00 | .........data..............bss.. |
| 12c0 | 00 00 00 00 00 00 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 03 00 2e 69 | .............idata$7...........i |
| 12e0 | 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 00 00 | data$5...........idata$4........ |
| 1300 | 03 00 2e 69 64 61 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 00 00 | ...idata$6...................... |
| 1320 | 01 00 00 00 02 00 00 00 00 00 16 00 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 2e 00 00 00 | ................................ |
| 1340 | 00 00 00 00 00 00 00 00 02 00 6e 00 00 00 41 6d 73 69 55 61 63 49 6e 69 74 69 61 6c 69 7a 65 00 | ..........n...AmsiUacInitialize. |
| 1360 | 5f 5f 69 6d 70 5f 41 6d 73 69 55 61 63 49 6e 69 74 69 61 6c 69 7a 65 00 5f 68 65 61 64 5f 43 5f | __imp_AmsiUacInitialize._head_C_ |
| 1380 | 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f | _Users_Peter_Code_winapi_rs_x86_ |
| 13a0 | 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 30 30 | 64_lib_libwinapi_amsi_a.dojdbs00 |
| 13c0 | 30 30 34 2e 6f 2f 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 | 004.o/..1516160717..0.....0..... |
| 13e0 | 31 30 30 36 36 36 20 20 36 37 32 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 00 00 | 100666..672.......`.d........... |
| 1400 | 0a 00 00 00 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 00 00 | .........text...............,... |
| 1420 | 5c 01 00 00 00 00 00 00 01 00 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 | \.............0`.data........... |
| 1440 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 00 00 | ....................@.0..bss.... |
| 1460 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 30 c0 | ..............................0. |
| 1480 | 2e 69 64 61 74 61 24 37 00 00 00 00 00 00 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 00 00 | .idata$7............4...f....... |
| 14a0 | 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 00 00 | ......0..idata$5............8... |
| 14c0 | 70 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 00 00 | p.............0..idata$4........ |
| 14e0 | 08 00 00 00 40 01 00 00 7a 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 36 | ....@...z.............0..idata$6 |
| 1500 | 00 00 00 00 00 00 00 00 12 00 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 c0 | ............H................... |
| 1520 | ff 25 00 00 00 00 90 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 41 6d | .%............................Am |
| 1540 | 73 69 53 63 61 6e 53 74 72 69 6e 67 00 00 00 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 09 00 | siScanString.................... |
| 1560 | 00 00 03 00 00 00 00 00 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 00 00 | .........................text... |
| 1580 | 00 00 00 00 01 00 00 00 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 73 73 | ...........data..............bss |
| 15a0 | 00 00 00 00 00 00 00 00 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 03 00 | ...............idata$7.......... |
| 15c0 | 2e 69 64 61 74 61 24 35 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 | .idata$5...........idata$4...... |
| 15e0 | 00 00 03 00 2e 69 64 61 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 | .....idata$6.................... |
| 1600 | 00 00 01 00 00 00 02 00 00 00 00 00 13 00 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 28 00 | ..............................(. |
| 1620 | 00 00 00 00 00 00 00 00 00 00 02 00 68 00 00 00 41 6d 73 69 53 63 61 6e 53 74 72 69 6e 67 00 5f | ............h...AmsiScanString._ |
| 1640 | 5f 69 6d 70 5f 41 6d 73 69 53 63 61 6e 53 74 72 69 6e 67 00 5f 68 65 61 64 5f 43 5f 5f 55 73 65 | _imp_AmsiScanString._head_C__Use |
| 1660 | 72 73 5f 50 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c | rs_Peter_Code_winapi_rs_x86_64_l |
| 1680 | 69 62 5f 6c 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 30 30 30 30 33 2e | ib_libwinapi_amsi_a.dojdbs00003. |
| 16a0 | 6f 2f 20 20 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 31 30 30 36 | o/..1516160717..0.....0.....1006 |
| 16c0 | 36 36 20 20 36 37 32 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 00 00 0a 00 00 00 | 66..672.......`.d............... |
| 16e0 | 00 00 04 00 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 00 00 5c 01 00 00 | .....text...............,...\... |
| 1700 | 00 00 00 00 01 00 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ..........0`.data............... |
| 1720 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 00 00 00 00 00 00 | ................@.0..bss........ |
| 1740 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 30 c0 2e 69 64 61 | ..........................0..ida |
| 1760 | 74 61 24 37 00 00 00 00 00 00 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 00 00 01 00 00 00 | ta$7............4...f........... |
| 1780 | 00 00 30 c0 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 00 00 70 01 00 00 | ..0..idata$5............8...p... |
| 17a0 | 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 00 00 08 00 00 00 | ..........0..idata$4............ |
| 17c0 | 40 01 00 00 7a 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 36 00 00 00 00 | @...z.............0..idata$6.... |
| 17e0 | 00 00 00 00 12 00 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 c0 ff 25 00 00 | ........H....................%.. |
| 1800 | 00 00 90 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 00 41 6d 73 69 53 63 | ..........................AmsiSc |
| 1820 | 61 6e 42 75 66 66 65 72 00 00 00 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 09 00 00 00 03 00 | anBuffer........................ |
| 1840 | 00 00 00 00 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 00 00 00 00 00 00 | .....................text....... |
| 1860 | 01 00 00 00 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 73 73 00 00 00 00 | .......data..............bss.... |
| 1880 | 00 00 00 00 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 03 00 2e 69 64 61 | ...........idata$7...........ida |
| 18a0 | 74 61 24 35 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 00 00 03 00 | ta$5...........idata$4.......... |
| 18c0 | 2e 69 64 61 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 00 00 01 00 | .idata$6........................ |
| 18e0 | 00 00 02 00 00 00 00 00 13 00 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 28 00 00 00 00 00 | ..........................(..... |
| 1900 | 00 00 00 00 00 00 02 00 68 00 00 00 41 6d 73 69 53 63 61 6e 42 75 66 66 65 72 00 5f 5f 69 6d 70 | ........h...AmsiScanBuffer.__imp |
| 1920 | 5f 41 6d 73 69 53 63 61 6e 42 75 66 66 65 72 00 5f 68 65 61 64 5f 43 5f 5f 55 73 65 72 73 5f 50 | _AmsiScanBuffer._head_C__Users_P |
| 1940 | 65 74 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c 69 62 5f 6c | eter_Code_winapi_rs_x86_64_lib_l |
| 1960 | 69 62 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 30 30 30 30 32 2e 6f 2f 20 20 | ibwinapi_amsi_a.dojdbs00002.o/.. |
| 1980 | 31 35 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 31 30 30 36 36 36 20 20 | 1516160717..0.....0.....100666.. |
| 19a0 | 36 37 34 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 00 00 0a 00 00 00 00 00 04 00 | 674.......`.d................... |
| 19c0 | 2e 74 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 00 00 5c 01 00 00 00 00 00 00 | .text...............,...\....... |
| 19e0 | 01 00 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ......0`.data................... |
| 1a00 | 00 00 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 00 00 00 00 00 00 00 00 00 00 | ............@.0..bss............ |
| 1a20 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 30 c0 2e 69 64 61 74 61 24 37 | ......................0..idata$7 |
| 1a40 | 00 00 00 00 00 00 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 | ............4...f.............0. |
| 1a60 | 2e 69 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 00 00 70 01 00 00 00 00 00 00 | .idata$5............8...p....... |
| 1a80 | 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 00 00 08 00 00 00 40 01 00 00 | ......0..idata$4............@... |
| 1aa0 | 7a 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 36 00 00 00 00 00 00 00 00 | z.............0..idata$6........ |
| 1ac0 | 12 00 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 c0 ff 25 00 00 00 00 90 90 | ....H....................%...... |
| 1ae0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00 41 6d 73 69 4f 70 65 6e 53 65 | ......................AmsiOpenSe |
| 1b00 | 73 73 69 6f 6e 00 00 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 09 00 00 00 03 00 00 00 00 00 | ssion........................... |
| 1b20 | 06 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 00 00 00 00 00 00 01 00 00 00 | .................text........... |
| 1b40 | 03 00 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 73 73 00 00 00 00 00 00 00 00 | ...data..............bss........ |
| 1b60 | 03 00 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 03 00 2e 69 64 61 74 61 24 35 | .......idata$7...........idata$5 |
| 1b80 | 00 00 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 00 00 03 00 2e 69 64 61 | ...........idata$4...........ida |
| 1ba0 | 74 61 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 00 00 01 00 00 00 02 00 | ta$6............................ |
| 1bc0 | 00 00 00 00 14 00 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 2a 00 00 00 00 00 00 00 00 00 | ......................*......... |
| 1be0 | 00 00 02 00 6a 00 00 00 41 6d 73 69 4f 70 65 6e 53 65 73 73 69 6f 6e 00 5f 5f 69 6d 70 5f 41 6d | ....j...AmsiOpenSession.__imp_Am |
| 1c00 | 73 69 4f 70 65 6e 53 65 73 73 69 6f 6e 00 5f 68 65 61 64 5f 43 5f 5f 55 73 65 72 73 5f 50 65 74 | siOpenSession._head_C__Users_Pet |
| 1c20 | 65 72 5f 43 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 | er_Code_winapi_rs_x86_64_lib_lib |
| 1c40 | 77 69 6e 61 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 30 30 30 30 31 2e 6f 2f 20 20 31 35 | winapi_amsi_a.dojdbs00001.o/..15 |
| 1c60 | 31 36 31 36 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 31 30 30 36 36 36 20 20 36 37 | 16160717..0.....0.....100666..67 |
| 1c80 | 32 20 20 20 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 00 00 0a 00 00 00 00 00 04 00 2e 74 | 2.......`.d....................t |
| 1ca0 | 65 78 74 00 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 00 00 5c 01 00 00 00 00 00 00 01 00 | ext...............,...\......... |
| 1cc0 | 00 00 20 00 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....0`.data..................... |
| 1ce0 | 00 00 00 00 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ..........@.0..bss.............. |
| 1d00 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 30 c0 2e 69 64 61 74 61 24 37 00 00 | ....................0..idata$7.. |
| 1d20 | 00 00 00 00 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 | ..........4...f.............0..i |
| 1d40 | 64 61 74 61 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 00 00 70 01 00 00 00 00 00 00 01 00 | data$5............8...p......... |
| 1d60 | 00 00 00 00 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 00 00 08 00 00 00 40 01 00 00 7a 01 | ....0..idata$4............@...z. |
| 1d80 | 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 36 00 00 00 00 00 00 00 00 12 00 | ............0..idata$6.......... |
| 1da0 | 00 00 48 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 c0 ff 25 00 00 00 00 90 90 00 00 | ..H....................%........ |
| 1dc0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 41 6d 73 69 49 6e 69 74 69 61 6c 69 | ....................AmsiInitiali |
| 1de0 | 7a 65 00 00 00 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 09 00 00 00 03 00 00 00 00 00 06 00 | ze.............................. |
| 1e00 | 00 00 03 00 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 00 00 00 00 00 00 01 00 00 00 03 00 | ...............text............. |
| 1e20 | 2e 64 61 74 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 73 73 00 00 00 00 00 00 00 00 03 00 | .data..............bss.......... |
| 1e40 | 00 00 03 00 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 03 00 2e 69 64 61 74 61 24 35 00 00 | .....idata$7...........idata$5.. |
| 1e60 | 00 00 05 00 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 00 00 03 00 2e 69 64 61 74 61 | .........idata$4...........idata |
| 1e80 | 24 36 00 00 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 00 00 01 00 00 00 02 00 00 00 | $6.............................. |
| 1ea0 | 00 00 13 00 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 28 00 00 00 00 00 00 00 00 00 00 00 | ....................(........... |
| 1ec0 | 02 00 68 00 00 00 41 6d 73 69 49 6e 69 74 69 61 6c 69 7a 65 00 5f 5f 69 6d 70 5f 41 6d 73 69 49 | ..h...AmsiInitialize.__imp_AmsiI |
| 1ee0 | 6e 69 74 69 61 6c 69 7a 65 00 5f 68 65 61 64 5f 43 5f 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 | nitialize._head_C__Users_Peter_C |
| 1f00 | 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 | ode_winapi_rs_x86_64_lib_libwina |
| 1f20 | 70 69 5f 61 6d 73 69 5f 61 00 64 6f 6a 64 62 73 30 30 30 30 30 2e 6f 2f 20 20 31 35 31 36 31 36 | pi_amsi_a.dojdbs00000.o/..151616 |
| 1f40 | 30 37 31 37 20 20 30 20 20 20 20 20 30 20 20 20 20 20 31 30 30 36 36 36 20 20 36 37 36 20 20 20 | 0717..0.....0.....100666..676... |
| 1f60 | 20 20 20 20 60 0a 64 86 07 00 00 00 00 00 84 01 00 00 0a 00 00 00 00 00 04 00 2e 74 65 78 74 00 | ....`.d....................text. |
| 1f80 | 00 00 00 00 00 00 00 00 00 00 08 00 00 00 2c 01 00 00 5c 01 00 00 00 00 00 00 01 00 00 00 20 00 | ..............,...\............. |
| 1fa0 | 30 60 2e 64 61 74 61 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | 0`.data......................... |
| 1fc0 | 00 00 00 00 00 00 40 00 30 c0 2e 62 73 73 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ......@.0..bss.................. |
| 1fe0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 30 c0 2e 69 64 61 74 61 24 37 00 00 00 00 00 00 | ................0..idata$7...... |
| 2000 | 00 00 04 00 00 00 34 01 00 00 66 01 00 00 00 00 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 | ......4...f.............0..idata |
| 2020 | 24 35 00 00 00 00 00 00 00 00 08 00 00 00 38 01 00 00 70 01 00 00 00 00 00 00 01 00 00 00 00 00 | $5............8...p............. |
| 2040 | 30 c0 2e 69 64 61 74 61 24 34 00 00 00 00 00 00 00 00 08 00 00 00 40 01 00 00 7a 01 00 00 00 00 | 0..idata$4............@...z..... |
| 2060 | 00 00 01 00 00 00 00 00 30 c0 2e 69 64 61 74 61 24 36 00 00 00 00 00 00 00 00 14 00 00 00 48 01 | ........0..idata$6............H. |
| 2080 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 c0 ff 25 00 00 00 00 90 90 00 00 00 00 00 00 | ...................%............ |
| 20a0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 41 6d 73 69 43 6c 6f 73 65 53 65 73 73 69 6f 6e | ................AmsiCloseSession |
| 20c0 | 00 00 02 00 00 00 08 00 00 00 04 00 00 00 00 00 09 00 00 00 03 00 00 00 00 00 06 00 00 00 03 00 | ................................ |
| 20e0 | 00 00 00 00 06 00 00 00 03 00 2e 74 65 78 74 00 00 00 00 00 00 00 01 00 00 00 03 00 2e 64 61 74 | ...........text..............dat |
| 2100 | 61 00 00 00 00 00 00 00 02 00 00 00 03 00 2e 62 73 73 00 00 00 00 00 00 00 00 03 00 00 00 03 00 | a..............bss.............. |
| 2120 | 2e 69 64 61 74 61 24 37 00 00 00 00 04 00 00 00 03 00 2e 69 64 61 74 61 24 35 00 00 00 00 05 00 | .idata$7...........idata$5...... |
| 2140 | 00 00 03 00 2e 69 64 61 74 61 24 34 00 00 00 00 06 00 00 00 03 00 2e 69 64 61 74 61 24 36 00 00 | .....idata$4...........idata$6.. |
| 2160 | 00 00 07 00 00 00 03 00 00 00 00 00 04 00 00 00 00 00 00 00 01 00 00 00 02 00 00 00 00 00 15 00 | ................................ |
| 2180 | 00 00 00 00 00 00 05 00 00 00 02 00 00 00 00 00 2c 00 00 00 00 00 00 00 00 00 00 00 02 00 6c 00 | ................,.............l. |
| 21a0 | 00 00 41 6d 73 69 43 6c 6f 73 65 53 65 73 73 69 6f 6e 00 5f 5f 69 6d 70 5f 41 6d 73 69 43 6c 6f | ..AmsiCloseSession.__imp_AmsiClo |
| 21c0 | 73 65 53 65 73 73 69 6f 6e 00 5f 68 65 61 64 5f 43 5f 5f 55 73 65 72 73 5f 50 65 74 65 72 5f 43 | seSession._head_C__Users_Peter_C |
| 21e0 | 6f 64 65 5f 77 69 6e 61 70 69 5f 72 73 5f 78 38 36 5f 36 34 5f 6c 69 62 5f 6c 69 62 77 69 6e 61 | ode_winapi_rs_x86_64_lib_libwina |
| 2200 | 70 69 5f 61 6d 73 69 5f 61 00 | pi_amsi_a. |
 |
index : fparkan.git | |
| Utilities and tools for the game “Parkan: Iron Strategy”. | Valentin Popov |
| summaryrefslogtreecommitdiff |
blob: 6311be601b31d0f6f0ee08d8f66bcac9e6c6c877 (plain)