Manalyze report for 215048dc86fba0f812d0b9c74c8e96e9a2025943494a611436eb6390bafd30ec

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2026-Mar-31 13:24:28
Detected languages	English - United States
Debug artifacts	C:\Users\student\source\repos\ConsoleApplication6\x64\Debug\ConsoleApplication6.pdb

Plugin Output

Info	Matching compiler(s):	`MASM/TASM - sig1(h)`
Suspicious	The PE is possibly packed.	`Section .textbss is both writable and executable.` `Unusual section name found: .msvcjmc`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`4d14c23fb8ff642102481fbb773543e7`
SHA1	`a2e00f2aad993666495337daef5f9e79fb3333f4`
SHA256	`215048dc86fba0f812d0b9c74c8e96e9a2025943494a611436eb6390bafd30ec`
SHA3	`68502454c6e49113881a04d3df1a0c1685d1dea28422f47bbb1ad8ca28662594`
SSDeep	`384:L9jrw2UeTkydH5eqR/IWIBcpOewuGfV0KgAxh60yjQfBXtWP89Z7L:RrwVydHExjm/UTy6B9WP89`
Imports Hash	`c3035865609dd4a257db5ba76e3aa1a4`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xf0`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`10`
TimeDateStamp	2026-Mar-31 13:24:28
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`14.0`
SizeOfCode	`0x7e00`
SizeOfInitializedData	`0x7600`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000000000011262 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`6.0`
ImageVersion	`0.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0x25000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.textbss

MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
SHA3	`a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a`
VirtualSize	`0x10000`
VirtualAddress	`0x1000`
SizeOfRawData	`0`
PointerToRawData	`0`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_CNT_UNINITIALIZED_DATA` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`

.text

MD5	`fc7366d91946d1323053374534e29d26`
SHA1	`9263d30d9750855051ab2b4c38b9aeb0b7a1c0c4`
SHA256	`31c07ed049a6c5d43bf5f7dcee28ec59ab0de01768635248819ecb0b2fd22018`
SHA3	`68a96277217803656bfcad5f22b4d1ff3d2a80d1de433dd08f010ebf4f630332`
VirtualSize	`0x7d6a`
VirtualAddress	`0x11000`
SizeOfRawData	`0x7e00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`3.54363`

.rdata

MD5	`e2ae1c6882d1251c0999d2f14a68ec5c`
SHA1	`0038445c47263ce0655ac88b45fed3631ad4dc04`
SHA256	`7ee3300ef6e47dd77afc3abff1a64c23570966afc78e4df9ce4f35e4bff9276e`
SHA3	`6f6354c67b25a194b0c55ec61c20aff2723b8f9c3450cc1db5ea2e9a1d043d54`
VirtualSize	`0x2bc7`
VirtualAddress	`0x19000`
SizeOfRawData	`0x2c00`
PointerToRawData	`0x8200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`2.15468`

.data

MD5	`73eab385cf07ea8155bced8fe894792e`
SHA1	`a1271c882c118c3f7e1693c866a8974b855abd85`
SHA256	`b918a4bca5515441f13210457965b9acd5dd28ba63b2fc9b616b61916c220aa7`
SHA3	`ec4f381ef26630b5c28f9f88a33a1995b475f467ffc7bc3819b67c3cbb034ff5`
VirtualSize	`0x9a0`
VirtualAddress	`0x1c000`
SizeOfRawData	`0x200`
PointerToRawData	`0xae00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0.595898`

.pdata

MD5	`50c2929cd78d25f303bda5639579b3e5`
SHA1	`59cadbc0d56aa2c2308f058d0f081916ec785639`
SHA256	`271bf91a13944ae48ee998e28a96677a7575358b20abbcb5faba32c15cb1e0bc`
SHA3	`4067fe25979ca96c65cd91efd52d2c804118426ecd23f6f4847185e4d7d37cdf`
VirtualSize	`0x20c4`
VirtualAddress	`0x1d000`
SizeOfRawData	`0x2200`
PointerToRawData	`0xb000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`1.03455`

.idata

MD5	`a438928e6b8c1bdc401d77b0f05c9079`
SHA1	`9684400afb9bee4312c7863872740b72d0d58293`
SHA256	`e9cb3124db3e000ebfc240d26ba4f244c0e4cfcd33f53c68f991384172802cb5`
SHA3	`e456345ddb714eaeb01516d7c6a31870240c86e178c72c693997134ec0bb7d14`
VirtualSize	`0xe9d`
VirtualAddress	`0x20000`
SizeOfRawData	`0x1000`
PointerToRawData	`0xd200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.36406`

.msvcjmc

MD5	`ffa6231e4aa03c2687d473727c313e44`
SHA1	`e1f9050a03da7a75af3b2af1de879a998ad9546b`
SHA256	`f4135c53abc37c0a5df13cabdeb09882d511ad2fa219369cec20db326832e41b`
SHA3	`c9a1a18471930613255c765852892aad4b5ef810e7275e891be9cc1f0aba9910`
VirtualSize	`0x17e`
VirtualAddress	`0x21000`
SizeOfRawData	`0x200`
PointerToRawData	`0xe200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0.731969`

.00cfg

MD5	`fa1b15b5582834ec7e384a92bd2eb13a`
SHA1	`13c85a56762d1ea7d8b6c4d45a4536c903d9134d`
SHA256	`352b857ff63db8590a14e225baed3a64ca23c8ceb6baee2e7a17684e87672877`
SHA3	`a3441d0754497228286441565281c4d4d1a02cc7eb55fba24a7670de3da66ada`
VirtualSize	`0x175`
VirtualAddress	`0x22000`
SizeOfRawData	`0x200`
PointerToRawData	`0xe400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`0.464548`

.rsrc

MD5	`40c737bfd339670b22c570f6c08b5a07`
SHA1	`b40b01db5b78c4251a5e78e59586ae7621e020ce`
SHA256	`ad7331e2528db53a4618d2dc07a34fb9be3d578f97cb465f82ee56241167fb02`
SHA3	`1cdc993aacd1a17d2edfac0c70659acad8a90c04c0ad0d30034f10fb27ae8cf5`
VirtualSize	`0x43c`
VirtualAddress	`0x23000`
SizeOfRawData	`0x600`
PointerToRawData	`0xe600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`2.14086`

.reloc

MD5	`36ae12178db17b956cc469baf8251d2c`
SHA1	`42905c6b40e7e607e6f0c406bf8f8fe353b603f6`
SHA256	`564af3f2dad3a1e58d18a44120b2e23c064988a66f8d940ab403f79977c8bdc1`
SHA3	`db01d1e1a31050a6a684d79ff4e73130c03bae16acf40c96b985ac77474a70ab`
VirtualSize	`0x25f`
VirtualAddress	`0x24000`
SizeOfRawData	`0x400`
PointerToRawData	`0xec00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.737787`

Imports

VCRUNTIME140D.dll	`__vcrt_LoadLibraryExW` `__vcrt_GetModuleHandleW` `__vcrt_GetModuleFileNameW` `__C_specific_handler_noexcept` `__current_exception_context` `__current_exception` `__std_type_info_destroy_list` `__C_specific_handler` `memcpy`
ucrtbased.dll	`strcat_s` `__stdio_common_vsprintf_s` `_wmakepath_s` `_wsplitpath_s` `wcscpy_s` `strcpy_s` `_crt_at_quick_exit` `_crt_atexit` `_execute_onexit_table` `_register_onexit_function` `_initialize_onexit_table` `_seh_filter_dll` `__p__commode` `_set_new_mode` `_configthreadlocale` `_register_thread_local_exe_atexit_callback` `_c_exit` `_cexit` `__p___argv` `__p___argc` `_set_fmode` `_exit` `exit` `_initterm_e` `_initterm` `_get_initial_narrow_environment` `_initialize_narrow_environment` `_configure_narrow_argv` `__setusermatherr` `_set_app_type` `_seh_filter_exe` `_CrtDbgReportW` `_CrtDbgReport` `terminate`
KERNEL32.dll	`GetLastError` `QueryPerformanceCounter` `GetCurrentProcessId` `GetSystemTimeAsFileTime` `InitializeSListHead` `RtlCaptureContext` `RtlLookupFunctionEntry` `RtlVirtualUnwind` `IsDebuggerPresent` `TerminateProcess` `GetCurrentProcess` `GetProcAddress` `FreeLibrary` `VirtualQuery` `GetProcessHeap` `HeapFree` `HeapAlloc` `GetCurrentThreadId` `WideCharToMultiByte` `MultiByteToWideChar` `RaiseException` `GetModuleHandleW` `IsProcessorFeaturePresent` `GetStartupInfoW` `SetUnhandledExceptionFilter` `UnhandledExceptionFilter`

Delayed Imports

1

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x17d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.91161`
MD5	`1e4a89b11eae0fcf8bb5fdd5ec3b6f61`
SHA1	`4260284ce14278c397aaf6f389c1609b0ab0ce51`
SHA256	`4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df`
SHA3	`4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353`

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2026-Mar-31 13:24:28
Version	`0.0`
SizeofData	`108`
AddressOfRawData	`0x1ac9c`
PointerToRawData	`0x9e9c`
Referenced File	C:\Users\student\source\repos\ConsoleApplication6\x64\Debug\ConsoleApplication6.pdb

IMAGE_DEBUG_TYPE_VC_FEATURE

Characteristics	`0`
TimeDateStamp	2026-Mar-31 13:24:28
Version	`0.0`
SizeofData	`20`
AddressOfRawData	`0x1ad08`
PointerToRawData	`0x9f08`

TLS Callbacks

Load Configuration

Size	`0x140`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x14001c080`

RICH Header

XOR Key	`0xdadf1c4b`
Unmarked objects	`0`
Imports (33808)	`3`
ASM objects (33808)	`3`
C objects (33808)	`11`
C++ objects (33808)	`23`
Imports (30795)	`4`
Total imports	`69`
C++ objects (34120)	`1`
Resource objects (34120)	`1`
Linker (34120)	`1`

Errors

[*] Warning: Section .textbss has a size of 0!

Leave a comment

No comments yet.