bob.exe

Description:

Authors:

Version:

Architecture: 64-bit

Operating System:

SHA256: 9d90d1860dd76a147beafab3b1467a09

File Size: 3.3 MB

Uploaded At: Feb. 3, 2026, 4:53 p.m.

Views: 20

Security Warning

This file has been flagged as potentially dangerous.

Reason: Detected potentially dangerous functions used for process injection: OpenProcess

Exported Functions

No exported functions.

Imported DLLs & Functions

KERNEL32.dll
  • AllocConsole (Address: 0x140351818)
  • AttachConsole (Address: 0x140351820)
  • CloseHandle (Address: 0x140351828)
  • CreateConsoleScreenBuffer (Address: 0x140351830)
  • CreateEventA (Address: 0x140351838)
  • CreateFileA (Address: 0x140351840)
  • CreateFileMappingW (Address: 0x140351848)
  • CreateFileW (Address: 0x140351850)
  • CreateSemaphoreA (Address: 0x140351858)
  • DeleteCriticalSection (Address: 0x140351860)
  • DuplicateHandle (Address: 0x140351868)
  • EnterCriticalSection (Address: 0x140351870)
  • FileTimeToSystemTime (Address: 0x140351878)
  • FlushConsoleInputBuffer (Address: 0x140351880)
  • FormatMessageA (Address: 0x140351888)
  • GetConsoleCursorInfo (Address: 0x140351890)
  • GetConsoleMode (Address: 0x140351898)
  • GetConsoleScreenBufferInfo (Address: 0x1403518a0)
  • GetCurrentProcess (Address: 0x1403518a8)
  • GetCurrentProcessId (Address: 0x1403518b0)
  • GetCurrentThread (Address: 0x1403518b8)
  • GetCurrentThreadId (Address: 0x1403518c0)
  • GetEnvironmentVariableW (Address: 0x1403518c8)
  • GetFileAttributesA (Address: 0x1403518d0)
  • GetFileSizeEx (Address: 0x1403518d8)
  • GetHandleInformation (Address: 0x1403518e0)
  • GetLastError (Address: 0x1403518e8)
  • GetModuleHandleA (Address: 0x1403518f0)
  • GetModuleHandleW (Address: 0x1403518f8)
  • GetNumberOfConsoleInputEvents (Address: 0x140351900)
  • GetNumberOfConsoleMouseButtons (Address: 0x140351908)
  • GetProcAddress (Address: 0x140351910)
  • GetProcessAffinityMask (Address: 0x140351918)
  • GetProcessTimes (Address: 0x140351920)
  • GetStdHandle (Address: 0x140351928)
  • GetSystemTimeAdjustment (Address: 0x140351930)
  • GetSystemTimeAsFileTime (Address: 0x140351938)
  • GetThreadContext (Address: 0x140351940)
  • GetThreadPriority (Address: 0x140351948)
  • GetThreadTimes (Address: 0x140351950)
  • GetTickCount (Address: 0x140351958)
  • GetTimeZoneInformation (Address: 0x140351960)
  • InitializeCriticalSection (Address: 0x140351968)
  • IsDBCSLeadByteEx (Address: 0x140351970)
  • IsDebuggerPresent (Address: 0x140351978)
  • IsProcessorFeaturePresent (Address: 0x140351980)
  • LeaveCriticalSection (Address: 0x140351988)
  • LoadLibraryW (Address: 0x140351990)
  • LocalFree (Address: 0x140351998)
  • MapViewOfFile (Address: 0x1403519a0)
  • MultiByteToWideChar (Address: 0x1403519a8)
  • OpenProcess (Address: 0x1403519b0)
  • OutputDebugStringA (Address: 0x1403519b8)
  • PeekConsoleInputA (Address: 0x1403519c0)
  • QueryPerformanceCounter (Address: 0x1403519c8)
  • QueryPerformanceFrequency (Address: 0x1403519d0)
  • RaiseException (Address: 0x1403519d8)
  • ReadConsoleInputA (Address: 0x1403519e0)
  • ReadConsoleOutputW (Address: 0x1403519e8)
  • ReleaseSemaphore (Address: 0x1403519f0)
  • ResetEvent (Address: 0x1403519f8)
  • ResumeThread (Address: 0x140351a00)
  • RtlCaptureContext (Address: 0x140351a08)
  • RtlLookupFunctionEntry (Address: 0x140351a10)
  • RtlUnwindEx (Address: 0x140351a18)
  • RtlVirtualUnwind (Address: 0x140351a20)
  • SetConsoleActiveScreenBuffer (Address: 0x140351a28)
  • SetConsoleCursorInfo (Address: 0x140351a30)
  • SetConsoleCursorPosition (Address: 0x140351a38)
  • SetConsoleMode (Address: 0x140351a40)
  • SetConsoleScreenBufferSize (Address: 0x140351a48)
  • SetConsoleTextAttribute (Address: 0x140351a50)
  • SetConsoleWindowInfo (Address: 0x140351a58)
  • SetEvent (Address: 0x140351a60)
  • SetLastError (Address: 0x140351a68)
  • SetProcessAffinityMask (Address: 0x140351a70)
  • SetSystemTime (Address: 0x140351a78)
  • SetThreadContext (Address: 0x140351a80)
  • SetThreadPriority (Address: 0x140351a88)
  • SetUnhandledExceptionFilter (Address: 0x140351a90)
  • Sleep (Address: 0x140351a98)
  • SuspendThread (Address: 0x140351aa0)
  • TerminateProcess (Address: 0x140351aa8)
  • TlsAlloc (Address: 0x140351ab0)
  • TlsGetValue (Address: 0x140351ab8)
  • TlsSetValue (Address: 0x140351ac0)
  • TryEnterCriticalSection (Address: 0x140351ac8)
  • UnmapViewOfFile (Address: 0x140351ad0)
  • VirtualProtect (Address: 0x140351ad8)
  • VirtualQuery (Address: 0x140351ae0)
  • WaitForMultipleObjects (Address: 0x140351ae8)
  • WaitForSingleObject (Address: 0x140351af0)
  • WideCharToMultiByte (Address: 0x140351af8)
  • WriteConsoleA (Address: 0x140351b00)
  • WriteConsoleOutputW (Address: 0x140351b08)
msvcrt.dll
  • ___lc_codepage_func (Address: 0x140351b20)
  • ___mb_cur_max_func (Address: 0x140351b28)
  • __C_specific_handler (Address: 0x140351b18)
  • __getmainargs (Address: 0x140351b30)
  • __initenv (Address: 0x140351b38)
  • __iob_func (Address: 0x140351b40)
  • __set_app_type (Address: 0x140351b48)
  • __setusermatherr (Address: 0x140351b50)
  • _access (Address: 0x140351b58)
  • _amsg_exit (Address: 0x140351b60)
  • _assert (Address: 0x140351b68)
  • _beginthreadex (Address: 0x140351b70)
  • _cexit (Address: 0x140351b78)
  • _commode (Address: 0x140351b80)
  • _endthreadex (Address: 0x140351b88)
  • _errno (Address: 0x140351b90)
  • _exit (Address: 0x140351b98)
  • _fdopen (Address: 0x140351ba0)
  • _filelengthi64 (Address: 0x140351ba8)
  • _fileno (Address: 0x140351bb0)
  • _fileno (Address: 0x140351bb8)
  • _fmode (Address: 0x140351bc0)
  • _fstat64 (Address: 0x140351bc8)
  • _get_osfhandle (Address: 0x140351bd0)
  • _getcwd (Address: 0x140351bd8)
  • _initterm (Address: 0x140351be0)
  • _isatty (Address: 0x140351be8)
  • _lock (Address: 0x140351bf0)
  • _lseeki64 (Address: 0x140351bf8)
  • _onexit (Address: 0x140351c00)
  • _putenv (Address: 0x140351c08)
  • _read (Address: 0x140351c10)
  • _setjmp (Address: 0x140351c18)
  • _stat64 (Address: 0x140351c20)
  • _strdup (Address: 0x140351c28)
  • _stricmp (Address: 0x140351c30)
  • _strtoi64 (Address: 0x140351c38)
  • _strtoui64 (Address: 0x140351c40)
  • _time64 (Address: 0x140351c48)
  • _unlock (Address: 0x140351c50)
  • _vscprintf (Address: 0x140351c58)
  • _vsnprintf (Address: 0x140351c60)
  • _wfopen (Address: 0x140351c68)
  • _write (Address: 0x140351c70)
  • abort (Address: 0x140351c78)
  • atof (Address: 0x140351c80)
  • atoi (Address: 0x140351c88)
  • bsearch (Address: 0x140351c90)
  • calloc (Address: 0x140351c98)
  • exit (Address: 0x140351ca0)
  • fclose (Address: 0x140351ca8)
  • ferror (Address: 0x140351cb0)
  • fflush (Address: 0x140351cb8)
  • fgetpos (Address: 0x140351cc0)
  • fgets (Address: 0x140351cc8)
  • fopen (Address: 0x140351cd0)
  • fprintf (Address: 0x140351cd8)
  • fputc (Address: 0x140351ce0)
  • fputs (Address: 0x140351ce8)
  • fread (Address: 0x140351cf0)
  • free (Address: 0x140351cf8)
  • fseek (Address: 0x140351d00)
  • fsetpos (Address: 0x140351d08)
  • ftell (Address: 0x140351d10)
  • fwrite (Address: 0x140351d18)
  • getc (Address: 0x140351d20)
  • getenv (Address: 0x140351d28)
  • getwc (Address: 0x140351d30)
  • isalnum (Address: 0x140351d38)
  • isalpha (Address: 0x140351d40)
  • iscntrl (Address: 0x140351d48)
  • isprint (Address: 0x140351d50)
  • ispunct (Address: 0x140351d58)
  • isspace (Address: 0x140351d60)
  • isupper (Address: 0x140351d68)
  • iswctype (Address: 0x140351d70)
  • isxdigit (Address: 0x140351d78)
  • localeconv (Address: 0x140351d80)
  • longjmp (Address: 0x140351d88)
  • malloc (Address: 0x140351d90)
  • mbstowcs (Address: 0x140351d98)
  • memchr (Address: 0x140351da0)
  • memcmp (Address: 0x140351da8)
  • memcpy (Address: 0x140351db0)
  • memmove (Address: 0x140351db8)
  • memset (Address: 0x140351dc0)
  • printf (Address: 0x140351dc8)
  • putc (Address: 0x140351dd0)
  • putchar (Address: 0x140351dd8)
  • putwc (Address: 0x140351de0)
  • qsort (Address: 0x140351de8)
  • realloc (Address: 0x140351df0)
  • setlocale (Address: 0x140351df8)
  • setvbuf (Address: 0x140351e00)
  • signal (Address: 0x140351e08)
  • strchr (Address: 0x140351e10)
  • strcmp (Address: 0x140351e18)
  • strcoll (Address: 0x140351e20)
  • strcpy (Address: 0x140351e28)
  • strerror (Address: 0x140351e30)
  • strftime (Address: 0x140351e38)
  • strlen (Address: 0x140351e40)
  • strncat (Address: 0x140351e48)
  • strncmp (Address: 0x140351e50)
  • strncpy (Address: 0x140351e58)
  • strrchr (Address: 0x140351e60)
  • strstr (Address: 0x140351e68)
  • strtol (Address: 0x140351e70)
  • strtoul (Address: 0x140351e78)
  • strxfrm (Address: 0x140351e80)
  • tolower (Address: 0x140351e88)
  • toupper (Address: 0x140351e90)
  • towlower (Address: 0x140351e98)
  • towupper (Address: 0x140351eb8)
  • ungetc (Address: 0x140351ea0)
  • ungetwc (Address: 0x140351ea8)
  • vfprintf (Address: 0x140351eb0)
  • wcscoll (Address: 0x140351ec0)
  • wcsftime (Address: 0x140351ec8)
  • wcslen (Address: 0x140351ed0)
  • wcstombs (Address: 0x140351ed8)
  • wcsxfrm (Address: 0x140351ee0)
USER32.dll
  • MessageBeep (Address: 0x140351ef0)
WS2_32.dll
  • __WSAFDIsSet (Address: 0x140351f28)
  • bind (Address: 0x140351f30)
  • closesocket (Address: 0x140351f38)
  • connect (Address: 0x140351f40)
  • freeaddrinfo (Address: 0x140351f48)
  • getaddrinfo (Address: 0x140351f50)
  • getnameinfo (Address: 0x140351f58)
  • getpeername (Address: 0x140351f60)
  • getsockname (Address: 0x140351f68)
  • getsockopt (Address: 0x140351f70)
  • ioctlsocket (Address: 0x140351f78)
  • listen (Address: 0x140351f80)
  • ntohs (Address: 0x140351f88)
  • recv (Address: 0x140351f90)
  • select (Address: 0x140351f98)
  • send (Address: 0x140351fa0)
  • setsockopt (Address: 0x140351fa8)
  • shutdown (Address: 0x140351fb0)
  • socket (Address: 0x140351fb8)
  • WSAAccept (Address: 0x140351f00)
  • WSACleanup (Address: 0x140351f08)
  • WSAGetLastError (Address: 0x140351f10)
  • WSASocketW (Address: 0x140351f18)
  • WSAStartup (Address: 0x140351f20)