Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6402	Aug. 10, 2021, 9:59 a.m.	Aug. 10, 2021, 10:01 a.m.

Size	184.0KB
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`7725fccbae0011ec120a5851d37ef819`
SHA256	`b8b8444f5857f7cdb7224c19eb5bafb17cd5f25ea041b467766487c7321494c6`
CRC32	`74D84F13`
ssdeep	`3072:jzDerE1w54VTyVVv3ml4Y6zFyrf+5wd9rfdugJfzbgFRdH7P:jzDerE2YTyVVv3ClLrJC`
Yara	Generic_Malware_Zero - Generic Malware IsDLL - (no description) Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE32 - (no description)

rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\wznT7y3i9OrU.dll,FnloderTrRppee
2268
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\wznT7y3i9OrU.dll,
1760

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

One or more processes crashed (50 out of 65536 events)

Time & API	Arguments	Status
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 0 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 0 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 0 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 0 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 1 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 1 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 1 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 1 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 2 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 2 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 2 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 2 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 3 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 3 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 3 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 3 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 4 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 4 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 4 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 4 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 5 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 5 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 5 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 5 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 6 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 6 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 6 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 6 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 7 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 7 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 7 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 7 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 8 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 8 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 8 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 8 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 9 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 9 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 9 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 9 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 10 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 10 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 10 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 10 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 11 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 11 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f110 wznt7y3i9oru+0x6462 exception.address: 0x73fb6462 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 11 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 c4 08 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f10f wznt7y3i9oru+0x6463 exception.address: 0x73fb6463 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 11 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f112 wznt7y3i9oru+0x6460 exception.address: 0x73fb6460 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 12 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1
__exception__ Aug. 10, 2021, 9:59 a.m.	stacktrace: FnloderTrRppee-0x214ac wznt7y3i9oru+0x40c6 @ 0x73fb40c6 FnloderTrRppee-0x23b42 wznt7y3i9oru+0x1a30 @ 0x73fb1a30 FnloderTrRppee-0x23a25 wznt7y3i9oru+0x1b4d @ 0x73fb1b4d LdrResSearchResource+0xb4d LdrResFindResourceDirectory-0x16c ntdll+0x3d8a9 @ 0x77b1d8a9 LdrResSearchResource+0xa10 LdrResFindResourceDirectory-0x2a9 ntdll+0x3d76c @ 0x77b1d76c LdrLoadDll+0x7b _strcmpi-0x304 ntdll+0x3c4b5 @ 0x77b1c4b5 New_ntdll_LdrLoadDll@16+0x7b New_ntdll_LdrUnloadDll@4-0xb7 @ 0x749fd4cf LoadLibraryExW+0x178 LoadLibraryExA-0x2a kernelbase+0x11d2a @ 0x75671d2a rundll32+0x14ed @ 0x4b14ed rundll32+0x1baf @ 0x4b1baf rundll32+0x12e8 @ 0x4b12e8 rundll32+0x1901 @ 0x4b1901 BaseThreadInitThunk+0x12 VerifyConsoleIoHandle-0xb3 kernel32+0x133ca @ 0x76a433ca RtlInitializeExceptionChain+0x63 RtlAllocateActivationContextStack-0xa1 ntdll+0x39ed2 @ 0x77b19ed2 RtlInitializeExceptionChain+0x36 RtlAllocateActivationContextStack-0xce ntdll+0x39ea5 @ 0x77b19ea5 exception.instruction_r: cc cc cc 40 eb f0 8b 04 24 64 a3 00 00 00 00 83 exception.instruction: int3 exception.exception_code: 0x80000003 exception.symbol: FnloderTrRppee-0x1f111 wznt7y3i9oru+0x6461 exception.address: 0x73fb6461 registers.esp: 1503188 registers.edi: 1503700 registers.eax: 12 registers.ebp: 1503248 registers.edx: 603409 registers.ebx: 139 registers.esi: 1503512 registers.ecx: 4920040	1

The binary likely contains encrypted or compressed data indicative of a packer (2 events)

section

{u'size_of_data': u'0x0001f000', u'virtual_address': u'0x00007000', u'entropy': 7.718662635124532, u'name': u'.rdata', u'virtual_size': u'0x0001e76c'}

entropy

7.71866263512

description

A section with a high entropy has been found

entropy

0.688888888889

description

Overall entropy of this PE file is high

Tries to unhook Windows functions monitored by Cuckoo (1 event)

Time & API	Arguments	Status	Return	Repeated
__anomaly__ Aug. 10, 2021, 9:59 a.m.	tid: 2964 message: Encountered 65537 exceptions, quitting. subcategory: exception function_name:	1	0	0

File has been identified by 31 AntiVirus engines on VirusTotal as malicious (31 events)

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Zusy.396613
FireEye	Generic.mg.7725fccbae0011ec
McAfee	Drixed-FJX!7725FCCBAE00
Cylance	Unsafe
VIPRE	LooksLike.Win32.Dridex.e (v)
CrowdStrike	win/malicious_confidence_90% (W)
BitDefenderTheta	Gen:NN.ZedlaF.34058.lu8@aqnSoidi
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HLYS
APEX	Malicious
Kaspersky	HEUR:Trojan-Banker.Win32.Dridex.gen
BitDefender	Gen:Variant.Zusy.396613
NANO-Antivirus	Virus.Win32.Gen.ccmw
Avast	Win32:TrojanX-gen [Trj]
Rising	Trojan.Generic@ML.100 (RDML:V4Lv2vXRTNMJSOSNTiRpWQ)
Ad-Aware	Gen:Variant.Zusy.396613
Sophos	ML/PE-A
McAfee-GW-Edition	Drixed-FJX!7725FCCBAE00
Emsisoft	Trojan.Crypt (A)
Ikarus	Trojan-Banker.Dridex
Webroot	W32.Trojan.Gen
MAX	malware (ai score=89)
Microsoft	Trojan:Win32/Emotet.LK!ml
ZoneAlarm	HEUR:Trojan-Banker.Win32.Dridex.gen
GData	Gen:Variant.Zusy.396613
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Zusy.396613
Malwarebytes	Trojan.Dridex
AVG	Win32:TrojanX-gen [Trj]
Panda	Trj/Genetic.gen

wznT7y3i9OrU

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All