Copyright © Ploutos 2013
Original name Ploutos.exe
Internal name Ploutos.exe
File version 220.127.116.11
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-07-24 07:09:14
Entry Point 0x0000944E
Number of sections 3
Module Version ID b943871a-96c9-53f0-1673-9625474d13a6
Name Virtual address Virtual size Raw size Entropy MD5
.text 8192 29780 30208 7.42 4a6c467cf8ac862868ae48514641c0bc
.rsrc 40960 1536 1536 3.97 62363ab6ed04c8423c7cf057b215c73c
.reloc 49152 12 512 0.08 0e35c3c4a8d0b619f76c61300b90ec01
Number of PE resources by type
Number of PE resources by language
The following command codes, entered using the ATM keypad, and their purpose are as follows:
12340000: To test if the keyboard is receiving commands.
12343570: Generate ATM ID, which is stored in the DATAA entry in the config.ini file.
12343571XXXXXXXX: Has two actions:
Activate ATM ID by generating an activation code based on an encoded ATM ID and the current date. This value is stored in the DATAC entry in the config.ini file. The eight bytes read in must be a valid encoded ATM ID generated by a function called CrypTrack(). A valid ATM activation code must be obtained in order for the ATM to dispense cash. Generate timespan: Sets a timer to dispense money, the value will be stored in the DATAB entry in the config.ini file.
12343572XX: Commands the ATM to dispense money. The removed digits represent the number of bills to dispense.