version.dll

Description: https://github.com/acidicoala/Koaloader

Authors: Fuck the copyright \ud83d\udd95

Version: 3.0.2.0

Architecture: 64-bit

Operating System: Windows NT

SHA256: 1acb781a3b1213cd691617b48b1fa984

File Size: 2.9 MB

Uploaded At: May 17, 2026, 3:36 p.m.

Views: 26

Security Warning

This file has been flagged as potentially dangerous.

Reason: Detected potentially dangerous functions used for process injection: WriteProcessMemory

Exported Functions

DllMain (Ordinal: 1, Address: 0x2e530)
GetFileVersionInfoA (Ordinal: 2, Address: 0x2b60e4)
GetFileVersionInfoByHandle (Ordinal: 3, Address: 0x2b612f)
GetFileVersionInfoExA (Ordinal: 4, Address: 0x2b617c)
GetFileVersionInfoExW (Ordinal: 5, Address: 0x2b61c4)
GetFileVersionInfoSizeA (Ordinal: 6, Address: 0x2b620e)
GetFileVersionInfoSizeExA (Ordinal: 7, Address: 0x2b625c)
GetFileVersionInfoSizeExW (Ordinal: 8, Address: 0x2b62ac)
GetFileVersionInfoSizeW (Ordinal: 9, Address: 0x2b62fa)
GetFileVersionInfoW (Ordinal: 10, Address: 0x2b6342)
VerFindFileA (Ordinal: 11, Address: 0x2b637f)
VerFindFileW (Ordinal: 12, Address: 0x2b63b5)
VerInstallFileA (Ordinal: 13, Address: 0x2b63ee)
VerInstallFileW (Ordinal: 14, Address: 0x2b642a)
VerLanguageNameA (Ordinal: 15, Address: 0x2b6467)
VerLanguageNameW (Ordinal: 16, Address: 0x2b64a5)
VerQueryValueA (Ordinal: 17, Address: 0x2b64e1)
VerQueryValueW (Ordinal: 18, Address: 0x2b651b)

Imported DLLs & Functions

ADVAPI32.dll

CryptAcquireContextA (Address: 0x1801ea000)
CryptCreateHash (Address: 0x1801ea018)
CryptDestroyHash (Address: 0x1801ea028)
CryptGenRandom (Address: 0x1801ea010)
CryptGetHashParam (Address: 0x1801ea008)
CryptHashData (Address: 0x1801ea020)
CryptReleaseContext (Address: 0x1801ea030)

CRYPT32.dll

CertAddCertificateContextToStore (Address: 0x1801ea080)
CertCloseStore (Address: 0x1801ea070)
CertCreateCertificateChainEngine (Address: 0x1801ea098)
CertEnumCertificatesInStore (Address: 0x1801ea068)
CertFindCertificateInStore (Address: 0x1801ea060)
CertFindExtension (Address: 0x1801ea058)
CertFreeCertificateChain (Address: 0x1801ea0b8)
CertFreeCertificateChainEngine (Address: 0x1801ea0a0)
CertFreeCertificateContext (Address: 0x1801ea0b0)
CertGetCertificateChain (Address: 0x1801ea0a8)
CertGetNameStringA (Address: 0x1801ea088)
CertOpenStore (Address: 0x1801ea078)
CryptDecodeObjectEx (Address: 0x1801ea040)
CryptQueryObject (Address: 0x1801ea090)
CryptStringToBinaryA (Address: 0x1801ea050)
PFXImportCertStore (Address: 0x1801ea048)

KERNEL32.dll

AcquireSRWLockExclusive (Address: 0x1801ea5a0)
AreFileApisANSI (Address: 0x1801ea550)
CloseHandle (Address: 0x1801ea1f8)
CloseThreadpoolTimer (Address: 0x1801ea6b0)
CloseThreadpoolWait (Address: 0x1801ea6c8)
CloseThreadpoolWork (Address: 0x1801ea690)
CompareStringEx (Address: 0x1801ea608)
CompareStringW (Address: 0x1801ea120)
ConnectNamedPipe (Address: 0x1801ea208)
CopyFileW (Address: 0x1801ea568)
CreateDirectoryExW (Address: 0x1801ea560)
CreateDirectoryW (Address: 0x1801ea4d0)
CreateEventExW (Address: 0x1801ea650)
CreateEventW (Address: 0x1801ea448)
CreateFileA (Address: 0x1801ea348)
CreateFileMappingW (Address: 0x1801ea388)
CreateFileW (Address: 0x1801ea4d8)
CreateHardLinkW (Address: 0x1801ea578)
CreateNamedPipeW (Address: 0x1801ea218)
CreateSemaphoreExW (Address: 0x1801ea658)
CreateSymbolicLinkW (Address: 0x1801ea588)
CreateThread (Address: 0x1801ea420)
CreateThreadpoolTimer (Address: 0x1801ea698)
CreateThreadpoolWait (Address: 0x1801ea6b8)
CreateThreadpoolWork (Address: 0x1801ea680)
DecodePointer (Address: 0x1801ea600)
DeleteCriticalSection (Address: 0x1801ea2d0)
DeleteFileW (Address: 0x1801ea188)
DeviceIoControl (Address: 0x1801ea558)
DisableThreadLibraryCalls (Address: 0x1801ea1d8)
DisconnectNamedPipe (Address: 0x1801ea210)
EncodePointer (Address: 0x1801ea5f8)
EnterCriticalSection (Address: 0x1801ea2b8)
EnumResourceNamesW (Address: 0x1801ea298)
EnumSystemLocalesW (Address: 0x1801ea148)
ExitProcess (Address: 0x1801ea720)
ExitThread (Address: 0x1801ea418)
FileTimeToSystemTime (Address: 0x1801ea0f8)
FindClose (Address: 0x1801ea4e0)
FindFirstFileExW (Address: 0x1801ea4f0)
FindFirstFileW (Address: 0x1801ea4e8)
FindNextFileW (Address: 0x1801ea4f8)
FindResourceW (Address: 0x1801ea288)
FlsAlloc (Address: 0x1801ea620)
FlsFree (Address: 0x1801ea638)
FlsGetValue (Address: 0x1801ea628)
FlsSetValue (Address: 0x1801ea630)
FlushFileBuffers (Address: 0x1801ea1e0)
FlushProcessWriteBuffers (Address: 0x1801ea660)
FormatMessageA (Address: 0x1801ea4b0)
FormatMessageW (Address: 0x1801ea2a0)
FreeEnvironmentStringsW (Address: 0x1801ea1a8)
FreeLibrary (Address: 0x1801ea250)
FreeLibraryAndExitThread (Address: 0x1801ea408)
FreeLibraryWhenCallbackReturns (Address: 0x1801ea678)
GetACP (Address: 0x1801ea168)
GetCommandLineA (Address: 0x1801ea190)
GetCommandLineW (Address: 0x1801ea198)
GetConsoleMode (Address: 0x1801ea3d8)
GetConsoleOutputCP (Address: 0x1801ea0e0)
GetConsoleScreenBufferInfo (Address: 0x1801ea3e8)
GetCPInfo (Address: 0x1801ea610)
GetCurrentDirectoryW (Address: 0x1801ea4c8)
GetCurrentProcess (Address: 0x1801ea238)
GetCurrentProcessId (Address: 0x1801ea3b8)
GetCurrentProcessorNumber (Address: 0x1801ea668)
GetCurrentThread (Address: 0x1801ea0d8)
GetCurrentThreadId (Address: 0x1801ea3c0)
GetDateFormatW (Address: 0x1801ea110)
GetDiskFreeSpaceExW (Address: 0x1801ea500)
GetDriveTypeW (Address: 0x1801ea3f8)
GetDynamicTimeZoneInformation (Address: 0x1801ea3c8)
GetEnvironmentStringsW (Address: 0x1801ea1a0)
GetEnvironmentVariableA (Address: 0x1801ea300)
GetExitCodeThread (Address: 0x1801ea5e8)
GetFileAttributesA (Address: 0x1801ea3b0)
GetFileAttributesExW (Address: 0x1801ea510)
GetFileAttributesW (Address: 0x1801ea508)
GetFileInformationByHandle (Address: 0x1801ea518)
GetFileInformationByHandleEx (Address: 0x1801ea580)
GetFileSizeEx (Address: 0x1801ea350)
GetFileType (Address: 0x1801ea400)
GetFinalPathNameByHandleW (Address: 0x1801ea520)
GetFullPathNameW (Address: 0x1801ea528)
GetLastError (Address: 0x1801ea200)
GetLocaleInfoEx (Address: 0x1801ea4b8)
GetLocaleInfoW (Address: 0x1801ea130)
GetModuleFileNameW (Address: 0x1801ea258)
GetModuleHandleA (Address: 0x1801ea2f0)
GetModuleHandleExW (Address: 0x1801ea428)
GetModuleHandleW (Address: 0x1801ea260)
GetNativeSystemInfo (Address: 0x1801ea5f0)
GetOEMCP (Address: 0x1801ea170)
GetProcAddress (Address: 0x1801ea268)
GetProcessHeap (Address: 0x1801ea1b8)
GetStartupInfoW (Address: 0x1801ea490)
GetStdHandle (Address: 0x1801ea3d0)
GetStringTypeW (Address: 0x1801ea6d0)
GetSystemDirectoryA (Address: 0x1801ea2e8)
GetSystemDirectoryW (Address: 0x1801ea240)
GetSystemInfo (Address: 0x1801ea368)
GetSystemTimeAsFileTime (Address: 0x1801ea498)
GetTempPathW (Address: 0x1801ea548)
GetTickCount (Address: 0x1801ea328)
GetTickCount64 (Address: 0x1801ea670)
GetTimeFormatW (Address: 0x1801ea118)
GetTimeZoneInformation (Address: 0x1801ea180)
GetUserDefaultLCID (Address: 0x1801ea140)
HeapAlloc (Address: 0x1801ea0c8)
HeapFree (Address: 0x1801ea0d0)
HeapReAlloc (Address: 0x1801ea0e8)
HeapSize (Address: 0x1801ea438)
InitializeConditionVariable (Address: 0x1801ea5c0)
InitializeCriticalSection (Address: 0x1801ea3a0)
InitializeCriticalSectionAndSpinCount (Address: 0x1801ea430)
InitializeCriticalSectionEx (Address: 0x1801ea2c8)
InitializeSListHead (Address: 0x1801ea4a0)
InitializeSRWLock (Address: 0x1801ea590)
InitOnceExecuteOnce (Address: 0x1801ea640)
InterlockedFlushSList (Address: 0x1801ea6e8)
InterlockedPushEntrySList (Address: 0x1801ea6e0)
IsDebuggerPresent (Address: 0x1801ea488)
IsProcessorFeaturePresent (Address: 0x1801ea480)
IsValidCodePage (Address: 0x1801ea160)
IsValidLocale (Address: 0x1801ea138)
K32GetModuleInformation (Address: 0x1801ea2b0)
LCMapStringEx (Address: 0x1801ea618)
LCMapStringW (Address: 0x1801ea128)
LeaveCriticalSection (Address: 0x1801ea2c0)
LoadLibraryA (Address: 0x1801ea2f8)
LoadLibraryExW (Address: 0x1801ea710)
LoadLibraryW (Address: 0x1801ea290)
LoadResource (Address: 0x1801ea270)
LocalFree (Address: 0x1801ea4a8)
LockResource (Address: 0x1801ea278)
MapViewOfFile (Address: 0x1801ea390)
MoveFileExA (Address: 0x1801ea318)
MoveFileExW (Address: 0x1801ea570)
MultiByteToWideChar (Address: 0x1801ea228)
OutputDebugStringA (Address: 0x1801ea380)
OutputDebugStringW (Address: 0x1801ea1c0)
PeekNamedPipe (Address: 0x1801ea108)
QueryPerformanceCounter (Address: 0x1801ea320)
QueryPerformanceFrequency (Address: 0x1801ea2e0)
RaiseException (Address: 0x1801ea5b8)
ReadConsoleW (Address: 0x1801ea1c8)
ReadFile (Address: 0x1801ea1e8)
ReadProcessMemory (Address: 0x1801ea360)
RegisterApplicationRestart (Address: 0x1801ea2a8)
ReleaseSRWLockExclusive (Address: 0x1801ea598)
ResetEvent (Address: 0x1801ea440)
ResumeThread (Address: 0x1801ea410)
RtlCaptureContext (Address: 0x1801ea450)
RtlLookupFunctionEntry (Address: 0x1801ea458)
RtlPcToFileHeader (Address: 0x1801ea5b0)
RtlUnwind (Address: 0x1801ea718)
RtlUnwindEx (Address: 0x1801ea6d8)
RtlVirtualUnwind (Address: 0x1801ea460)
SetConsoleCtrlHandler (Address: 0x1801ea178)
SetConsoleTextAttribute (Address: 0x1801ea3f0)
SetCurrentDirectoryW (Address: 0x1801ea4c0)
SetEndOfFile (Address: 0x1801ea158)
SetEnvironmentVariableW (Address: 0x1801ea1b0)
SetEvent (Address: 0x1801ea1d0)
SetFileAttributesW (Address: 0x1801ea530)
SetFileInformationByHandle (Address: 0x1801ea538)
SetFilePointerEx (Address: 0x1801ea150)
SetFileTime (Address: 0x1801ea540)
SetLastError (Address: 0x1801ea308)
SetStdHandle (Address: 0x1801ea0f0)
SetThreadpoolTimer (Address: 0x1801ea6a0)
SetThreadpoolWait (Address: 0x1801ea6c0)
SetUnhandledExceptionFilter (Address: 0x1801ea470)
SizeofResource (Address: 0x1801ea280)
Sleep (Address: 0x1801ea310)
SleepConditionVariableCS (Address: 0x1801ea648)
SleepConditionVariableSRW (Address: 0x1801ea5d8)
SleepEx (Address: 0x1801ea2d8)
SubmitThreadpoolWork (Address: 0x1801ea688)
SwitchToThread (Address: 0x1801ea5e0)
SystemTimeToTzSpecificLocalTime (Address: 0x1801ea100)
TerminateProcess (Address: 0x1801ea478)
TlsAlloc (Address: 0x1801ea6f0)
TlsFree (Address: 0x1801ea708)
TlsGetValue (Address: 0x1801ea6f8)
TlsSetValue (Address: 0x1801ea700)
TryAcquireSRWLockExclusive (Address: 0x1801ea5a8)
UnhandledExceptionFilter (Address: 0x1801ea468)
UnmapViewOfFile (Address: 0x1801ea398)
VerifyVersionInfoW (Address: 0x1801ea340)
VerSetConditionMask (Address: 0x1801ea338)
VirtualAlloc (Address: 0x1801ea370)
VirtualFree (Address: 0x1801ea378)
VirtualProtect (Address: 0x1801ea358)
VirtualQuery (Address: 0x1801ea220)
WaitForSingleObjectEx (Address: 0x1801ea330)
WaitForThreadpoolTimerCallbacks (Address: 0x1801ea6a8)
WakeAllConditionVariable (Address: 0x1801ea5d0)
WakeConditionVariable (Address: 0x1801ea5c8)
WideCharToMultiByte (Address: 0x1801ea230)
WriteConsoleA (Address: 0x1801ea3e0)
WriteConsoleW (Address: 0x1801ea3a8)
WriteFile (Address: 0x1801ea1f0)
WriteProcessMemory (Address: 0x1801ea248)

USER32.dll

MessageBoxW (Address: 0x1801ea730)

VERSION.dll

GetFileVersionInfoSizeW (Address: 0x1801ea740)
GetFileVersionInfoW (Address: 0x1801ea748)
VerQueryValueW (Address: 0x1801ea750)

WS2_32.dll

__WSAFDIsSet (Address: 0x1801ea790)
accept (Address: 0x1801ea780)
bind (Address: 0x1801ea810)
closesocket (Address: 0x1801ea828)
connect (Address: 0x1801ea808)
freeaddrinfo (Address: 0x1801ea798)
getaddrinfo (Address: 0x1801ea7a0)
getpeername (Address: 0x1801ea800)
getsockname (Address: 0x1801ea7f8)
getsockopt (Address: 0x1801ea7f0)
htonl (Address: 0x1801ea778)
htons (Address: 0x1801ea7e8)
inet_pton (Address: 0x1801ea7b8)
ioctlsocket (Address: 0x1801ea768)
listen (Address: 0x1801ea770)
ntohs (Address: 0x1801ea7e0)
recv (Address: 0x1801ea818)
select (Address: 0x1801ea788)
send (Address: 0x1801ea860)
setsockopt (Address: 0x1801ea7d8)
socket (Address: 0x1801ea7d0)
WSACleanup (Address: 0x1801ea7a8)
WSACloseEvent (Address: 0x1801ea760)
WSACreateEvent (Address: 0x1801ea858)
WSAEnumNetworkEvents (Address: 0x1801ea850)
WSAEventSelect (Address: 0x1801ea848)
WSAGetLastError (Address: 0x1801ea820)
WSAIoctl (Address: 0x1801ea7c0)
WSAResetEvent (Address: 0x1801ea840)
WSASetEvent (Address: 0x1801ea838)
WSASetLastError (Address: 0x1801ea7c8)
WSAStartup (Address: 0x1801ea7b0)
WSAWaitForMultipleEvents (Address: 0x1801ea830)