Manalyze report for 64cb0278f25d7fb98f70848c6992ec55d28b05d7e4f7d9ed969f587cf8e5dbec

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2026-May-04 18:06:38
Detected languages	English - United States
Debug artifacts	C:\CSU\MET_PROG\hello\Release\hello.pdb

Plugin Output

Suspicious	The PE is possibly packed.	`Unusual section name found: .imp` `Unusual section name found: .res` `Unusual section name found: .bas` `Unusual section name found: .dbg` `Unusual section name found: .cfg` `Unusual section name found: .iat`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`0bf5d2a3efdf4892bf319fec80935017`
SHA1	`f5f3b20a69a982dfb96b8d5dc55123f97222c747`
SHA256	`64cb0278f25d7fb98f70848c6992ec55d28b05d7e4f7d9ed969f587cf8e5dbec`
SHA3	`64b87ea41f051ad053a7e6c1551e7244a8d04aaefe09303c6b5ee792ef0c8274`
SSDeep	`192:LFxKiuj7p5na8SI8/GqYk4mWNJS2J4ZmrEJ8Y5zj37E5pz6j7phKEhwEh5:L3KiufL98RYk4mVT7lh/hdh`
Imports Hash	`eb936ac92c3379bc407160a6e786547f`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x100`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`11`
TimeDateStamp	2026-May-04 18:06:38
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`14.0`
SizeOfCode	`0x1200`
SizeOfInitializedData	`0x1800`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x000015A2 (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x3000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`6.0`
ImageVersion	`0.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0xd000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`38d3f46944fa896a9dba38a51433bc21`
SHA1	`ea8df4521f4f3a05ac1676f30fc745707d93e677`
SHA256	`7a927450802ef3fa8fd1a3e4a1c3c5e3025ef13cc65079fc6848eeeaf5948e8c`
SHA3	`f9dcef66b98c2c99adc24b60d711434ef84507a93a3d3401c6023f3b6095c190`
VirtualSize	`0x11ad`
VirtualAddress	`0x1000`
SizeOfRawData	`0x1200`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.19159`

.rdata

MD5	`a0514ede5c2102eb2b8726a84db6f500`
SHA1	`8b5f98b57e403ea5d79c4e566214522ab08b429d`
SHA256	`a379968aab26c049a5b2dbafc4b425db7c8d011a057c0d925e9d93fa7f93b7c9`
SHA3	`ad664196b7a8c5b8421de1b5b7491d49a8498259c94e43eefc1c2056469eeca6`
VirtualSize	`0xfc6`
VirtualAddress	`0x3000`
SizeOfRawData	`0x1000`
PointerToRawData	`0x1600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`4.7614`

.data

MD5	`ef03026ebf5efb8e492b54d5801cb1ba`
SHA1	`4876f4e3a37767c3da6a8599b54284f106a12495`
SHA256	`0eb6145519c403fab665c9f668c2c15650b57ccb5a70a0c750a72b2d55e9d43c`
SHA3	`e30b3f665a9f20c1618a6654cb96bfeedc9200acd129b30726474f328d129ad5`
VirtualSize	`0x3d0`
VirtualAddress	`0x4000`
SizeOfRawData	`0x400`
PointerToRawData	`0x2600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0.209992`

.rsrc

MD5	`4dde323af9808a00b376d6895922dc1f`
SHA1	`bcafff5b6284bc83d01296b1ba160d28faee6ef9`
SHA256	`79e650fc0d108f0b5cb909904d5cb598b02b04f7c06be6c8622dd073aac8f762`
SHA3	`d353d855c24ba1ddc170eaeed3be531d0764013724d92ea267b1d5be7264f0d2`
VirtualSize	`0x1e0`
VirtualAddress	`0x5000`
SizeOfRawData	`0x200`
PointerToRawData	`0x2a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.69612`

.reloc

MD5	`d54fbeb38249d007307377b170eedc9c`
SHA1	`ca739ac98607a5d627dd7294ab8bcb3b0fa0af20`
SHA256	`0dc1c73f432ae0aac23364d7615e8f808ef73d7f2823e50c4fcbdd868cb4cad2`
SHA3	`86b566c1c896a8673d970428f61e035cd70d04bf532c02b5d870c7fc62301cba`
VirtualSize	`0x1e0`
VirtualAddress	`0x6000`
SizeOfRawData	`0x600`
PointerToRawData	`0x2c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`3.12934`

.imp

MD5	`4f8303dbbb3ebeadeaba7772f0cc741e`
SHA1	`b36737c774e58b249bea4e54768b0d6e601c35e2`
SHA256	`4d0955625d1b10b2d417b66559081407ce0679c2fffb851c6c7add9230169e04`
SHA3	`ad67451cef576f7c7974a038f7750beea3c0e6642d0975870b9ba19eeff18105`
VirtualSize	`0xb4`
VirtualAddress	`0x7000`
SizeOfRawData	`0x200`
PointerToRawData	`0x3200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`0.853965`

.res

MD5	`004d0e678e525ffdfdb49f756c3148c6`
SHA1	`1118e9c2f4604b941d1c0463afa525395d86a754`
SHA256	`e42f4c332ad3da929ebeb2e30afff6fdb3dc348f16b47a31a7ee08b7e091bc48`
SHA3	`9e257ba83c0cde061588f85f85b71c5cee609ca3eceb7cab57495dba54837eb5`
VirtualSize	`0x1e0`
VirtualAddress	`0x8000`
SizeOfRawData	`0x200`
PointerToRawData	`0x3400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.69612`

.bas

MD5	`d54fbeb38249d007307377b170eedc9c`
SHA1	`ca739ac98607a5d627dd7294ab8bcb3b0fa0af20`
SHA256	`0dc1c73f432ae0aac23364d7615e8f808ef73d7f2823e50c4fcbdd868cb4cad2`
SHA3	`86b566c1c896a8673d970428f61e035cd70d04bf532c02b5d870c7fc62301cba`
VirtualSize	`0x4bc`
VirtualAddress	`0x9000`
SizeOfRawData	`0x600`
PointerToRawData	`0x3600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.12934`

.dbg

MD5	`9399c30195b38c0786a82c5fc34444a9`
SHA1	`99f4914f301223c05893ca3f63a609983a2656c6`
SHA256	`25f4b2800353e87835952331018cdefd7493f8fa4872957fb3dda3548a490e5c`
SHA3	`8e93374d8afb5ca86a6f0bc4b2acd27ac169c39503fd3ec15e3340ece81a2421`
VirtualSize	`0x70`
VirtualAddress	`0xa000`
SizeOfRawData	`0x200`
PointerToRawData	`0x3c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`0.644662`

.cfg

MD5	`229085d18d4aef0c93e944a239a8acb2`
SHA1	`7251fb9fad041e416134d39ba558a1592f00b3f5`
SHA256	`d684b3f929277f73c72276b9e8467997d34a6626778c801f3d19395b403ddfe6`
SHA3	`9c3503ae3aad47106dc5cbd229f275a8aaa5d266ef8e325c1c9d529586e986f4`
VirtualSize	`0x40`
VirtualAddress	`0xb000`
SizeOfRawData	`0x200`
PointerToRawData	`0x3e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`0.0572566`

.iat

MD5	`843826abd563077d1abc4506f6b52d32`
SHA1	`916c871cd3e09a8fad36e0623e2fba18eb965126`
SHA256	`4dad6a7371b739abc05561cf7909a971f361ced7f7ed59802f2a5c640ea09514`
SHA3	`46dedd52b282728add70b25e426aee0f538cc2269807d889cd710aca5762fbb5`
VirtualSize	`0xfc`
VirtualAddress	`0xc000`
SizeOfRawData	`0x200`
PointerToRawData	`0x4000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`1.82752`

Imports

MSVCP140.dll	`??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z` `??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z` `?good@ios_base@std@@QBE_NXZ` `?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ` `?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z` `?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z` `?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z` `?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z` `?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z` `?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ` `?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A` `?uncaught_exception@std@@YA_NXZ` `?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A`
VCRUNTIME140.dll	`_except_handler4_common` `__std_terminate` `memset` `__current_exception` `__current_exception_context` `__CxxFrameHandler3`
api-ms-win-crt-runtime-l1-1-0.dll	`_initialize_onexit_table` `_register_onexit_function` `__p___argc` `__p___argv` `_controlfp_s` `terminate` `_initialize_narrow_environment` `exit` `_register_thread_local_exe_atexit_callback` `_c_exit` `_configure_narrow_argv` `_crt_atexit` `_set_app_type` `_seh_filter_exe` `_cexit` `_initterm_e` `_initterm` `_get_initial_narrow_environment` `_exit`
api-ms-win-crt-math-l1-1-0.dll	`__setusermatherr`
api-ms-win-crt-stdio-l1-1-0.dll	`_set_fmode` `__p__commode`
api-ms-win-crt-locale-l1-1-0.dll	`_configthreadlocale`
api-ms-win-crt-heap-l1-1-0.dll	`_set_new_mode`
KERNEL32.dll	`UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `GetCurrentProcess` `TerminateProcess` `IsProcessorFeaturePresent` `QueryPerformanceCounter` `GetCurrentProcessId` `GetCurrentThreadId` `GetSystemTimeAsFileTime` `InitializeSListHead` `IsDebuggerPresent` `GetModuleHandleW`

Delayed Imports

1

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x17d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.91161`
MD5	`1e4a89b11eae0fcf8bb5fdd5ec3b6f61`
SHA1	`4260284ce14278c397aaf6f389c1609b0ab0ce51`
SHA256	`4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df`
SHA3	`4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353`

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2026-May-04 18:06:38
Version	`0.0`
SizeofData	`64`
AddressOfRawData	`0x32fc`
PointerToRawData	`0x18fc`
Referenced File	C:\CSU\MET_PROG\hello\Release\hello.pdb

IMAGE_DEBUG_TYPE_VC_FEATURE

Characteristics	`0`
TimeDateStamp	2026-May-04 18:06:38
Version	`0.0`
SizeofData	`20`
AddressOfRawData	`0x333c`
PointerToRawData	`0x193c`

IMAGE_DEBUG_TYPE_POGO

Characteristics	`0`
TimeDateStamp	2026-May-04 18:06:38
Version	`0.0`
SizeofData	`636`
AddressOfRawData	`0x3350`
PointerToRawData	`0x1950`

IMAGE_DEBUG_TYPE_ILTCG

Characteristics	`0`
TimeDateStamp	2026-May-04 18:06:38
Version	`0.0`
SizeofData	`0`
AddressOfRawData	`0`
PointerToRawData	`0`

TLS Callbacks

Load Configuration

Size	`0xc0`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x404000`
SEHandlerTable	`0`
SEHandlerCount	`0`

RICH Header

Errors

Leave a comment

No comments yet.