Manalyze report for 750eb0adc8da6cb4d6f5c0a098b2a32517be1f9290f54e41cee40500c5f7a7a5

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2025-Dec-06 14:32:10
Detected languages	Process Default Language

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0`
Info	The PE contains common functions which appear in legitimate applications.	`[!] The program may be hiding some of its imports: LoadLibraryW LoadLibraryExA GetProcAddress LoadLibraryExW` `Can create temporary files: CreateFileW GetTempPathW` `Reads the contents of the clipboard: GetClipboardData`
Suspicious	VirusTotal score: 1/72 (Scanned on 2026-03-20 16:08:16)	`MaxSecure: Trojan.Malware.300983.susgen`

Hashes

MD5	`6dfa4c899957647491bd6c06d6cfc62d`
SHA1	`10c0ab54d9d4642e6da517aaea8052ca4781801b`
SHA256	`750eb0adc8da6cb4d6f5c0a098b2a32517be1f9290f54e41cee40500c5f7a7a5`
SHA3	`d9403cf9724b85b03d517bb9fcef6a1e62c05767edc4726808265905db7d1468`
SSDeep	`12288:FQrkGHop6JrlDf82hKdXTtI1PRcF7Wn0jIIM/6s8WaZNXhxjb3i+mPXMXkn2d:FykGHEpIm86s8WaZNCXU9d`
Imports Hash	`8d2c07797d9bb251c4a634055a7936bc`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x110`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`5`
TimeDateStamp	2025-Dec-06 14:32:10
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`14.0`
SizeOfCode	`0x82e00`
SizeOfInitializedData	`0x68800`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x000624FB (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x84000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`5.1`
ImageVersion	`0.0`
SubsystemVersion	`5.1`
Win32VersionValue	`0`
SizeOfImage	`0xef000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`3540dd4b7e8cd0d3f03d720f976b22c4`
SHA1	`c2ffe4c5d655f7639b01fe435711ec3844b1fb30`
SHA256	`1d93bee009b69792ce54c0dfbcfc74004b2e9595bcaa3a641e0839575411df8a`
SHA3	`22236c6fa88a8ba17fdbbeef49d7b1d6eab566c4df3a852e7fa7140de6407e52`
VirtualSize	`0x82c23`
VirtualAddress	`0x1000`
SizeOfRawData	`0x82e00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.57897`

.rdata

MD5	`06e58ca09f20ad1db35f82ddb44ba5f3`
SHA1	`ff5e3f7fab9876c61958d190bc3ec1fe6e9fecda`
SHA256	`8f4868236238e71509c9b67b022b13c5e2498642d63e342e7cdf5ce62f2b0d32`
SHA3	`f3a76ef9d892884d1b77f2c04b06b7554175e32379cc42d78428592501a22e5d`
VirtualSize	`0x17d92`
VirtualAddress	`0x84000`
SizeOfRawData	`0x17e00`
PointerToRawData	`0x83200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.84995`

.data

MD5	`3220f0b046eb8ef021c0b9e6f4b5e925`
SHA1	`d720a66e52fff489ec005e501791c645abe7911d`
SHA256	`bc40a0040d9ba955b9e4a894c43b2658ffe599bc51840b54b0ce10f38236ff19`
SHA3	`af3074dc7186f16abeed0ea6fa2edfdb2bd793eca49641cba4e15216153ec1e4`
VirtualSize	`0x2814`
VirtualAddress	`0x9c000`
SizeOfRawData	`0x1a00`
PointerToRawData	`0x9b000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`4.01955`

.rsrc

MD5	`5dd34d4cf23ec4d3626777d107edfef1`
SHA1	`75c98889f264c103117d6602f15e7f52cb1be38c`
SHA256	`72ddd1585c25e3c30822dc6d8bf7a6ad79b50dcdcea6eceb7d5116b2e8558572`
SHA3	`e5c4c12354fa4b73528c18f36ad3d9d64cb858095377566c2cbeba30607727f1`
VirtualSize	`0x48558`
VirtualAddress	`0x9f000`
SizeOfRawData	`0x48600`
PointerToRawData	`0x9ca00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.90372`

.reloc

MD5	`d38816246e844a3deb43ee0921eeecb6`
SHA1	`733038bff82d78f7b93174e5f5ff360dcc01a6d4`
SHA256	`61e6c8ba433cd030254be0fc841e27f5b900a937e78e2d050825c45cf663c235`
SHA3	`5b9d0528d632e7be9bc1c7ecb132e9c8022cdbb4792c933341e6e23b465be929`
VirtualSize	`0x6838`
VirtualAddress	`0xe8000`
SizeOfRawData	`0x6a00`
PointerToRawData	`0xe5000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`6.69481`

Imports

COMCTL32.dll	`#17`
WINMM.dll	`timeBeginPeriod` `joyGetDevCapsW` `joyGetPosEx` `timeEndPeriod`
KERNEL32.dll	`WideCharToMultiByte` `GlobalAddAtomW` `GlobalDeleteAtom` `lstrlenW` `GetCommandLineW` `GetExitCodeProcess` `GlobalAlloc` `GlobalLock` `GlobalUnlock` `SetErrorMode` `GetCurrentDirectoryW` `GlobalFree` `LoadLibraryW` `SetStdHandle` `GetProcessHeap` `FreeEnvironmentStringsW` `GetEnvironmentStringsW` `GetCommandLineA` `FindNextFileA` `FindFirstFileExA` `DecodePointer` `GetFileType` `LCMapStringW` `EnumSystemLocalesW` `GetUserDefaultLCID` `IsValidLocale` `GetOEMCP` `IsValidCodePage` `GetStringTypeW` `GetCPInfo` `HeapFree` `HeapReAlloc` `HeapAlloc` `MultiByteToWideChar` `GetModuleFileNameA` `GetModuleHandleExW` `ExitProcess` `SetEnvironmentVariableW` `DeleteFileW` `GetACP` `DeleteCriticalSection` `LeaveCriticalSection` `EnterCriticalSection` `EncodePointer` `RtlUnwind` `InitializeSListHead` `GetCurrentThreadId` `GetCurrentProcessId` `GetStartupInfoW` `IsDebuggerPresent` `IsProcessorFeaturePresent` `TerminateProcess` `GetCurrentProcess` `SetUnhandledExceptionFilter` `UnhandledExceptionFilter` `GetSystemTimeAsFileTime` `TlsFree` `TlsSetValue` `TlsGetValue` `TlsAlloc` `InitializeCriticalSectionAndSpinCount` `SetLastError` `QueryPerformanceFrequency` `QueryPerformanceCounter` `LoadLibraryExA` `GetModuleHandleW` `VirtualQuery` `VirtualProtect` `GetSystemInfo` `RaiseException` `SetCurrentDirectoryW` `FindNextFileW` `CreateMutexW` `WriteFile` `GetModuleFileNameW` `Sleep` `ReleaseMutex` `WaitForSingleObject` `FindClose` `FindFirstFileW` `CloseHandle` `SetFilePointer` `GetLastError` `ReadFile` `CreateFileW` `CreateDirectoryW` `GetTempFileNameW` `GetTempPathW` `WriteConsoleW` `RemoveDirectoryW` `GetVersionExW` `GetLocaleInfoW` `FreeLibrary` `GetProcAddress` `LoadLibraryExW` `HeapSize` `GetConsoleCP` `GetConsoleMode` `SetFilePointerEx` `FlushFileBuffers` `GetStdHandle`
USER32.dll	`OffsetRect` `DestroyWindow` `PostQuitMessage` `DrawTextW` `FillRect` `GetUpdateRect` `DefMDIChildProcW` `EndPaint` `BeginPaint` `InflateRect` `GetClassNameW` `GetDlgItemTextW` `SendDlgItemMessageW` `EndDialog` `GetDlgItem` `SetDlgItemTextW` `DrawEdge` `MapVirtualKeyW` `GetInputState` `DrawMenuBar` `SetMenuInfo` `DestroyMenu` `LoadMenuIndirectW` `GetMenuItemCount` `SetWindowPlacement` `GetWindowPlacement` `EndDeferWindowPos` `DeferWindowPos` `BeginDeferWindowPos` `GetDesktopWindow` `GetSystemMenu` `UpdateWindow` `GetWindow` `RegisterClassW` `GetTabbedTextExtentW` `ModifyMenuW` `GetMenuStringW` `DialogBoxIndirectParamW` `GetMenuItemID` `RegisterClassExW` `LoadImageW` `LoadIconW` `GetMonitorInfoW` `MonitorFromWindow` `GetSystemMetrics` `RedrawWindow` `IsIconic` `IsDialogMessageW` `SetTimer` `GetClipboardData` `CloseClipboard` `SetClipboardData` `EmptyClipboard` `OpenClipboard` `IsClipboardFormatAvailable` `CheckMenuItem` `EnableMenuItem` `GetMenu` `PtInRect` `PostMessageW` `InvalidateRect` `SetFocus` `GetFocus` `CallWindowProcW` `RemovePropW` `SetPropW` `SetWindowLongW` `GetPropW` `MessageBoxW` `GetParent` `GetActiveWindow` `ShowCursor` `SetCapture` `ReleaseCapture` `GetKeyState` `GetWindowRect` `GetWindowDC` `SetCursorPos` `ClientToScreen` `ScreenToClient` `GetCursorPos` `LoadStringW` `MapWindowPoints` `SetWindowPos` `IsZoomed` `GetWindowLongW` `AdjustWindowRectEx` `SendMessageW` `LockWindowUpdate` `ShowWindow` `IsWindowVisible` `GetClientRect` `SetWindowTextW` `wsprintfW` `IntersectRect` `KillTimer` `DestroyIcon` `GetSubMenu` `DeleteMenu` `GetMenuState` `LoadCursorW` `SetCursor` `SystemParametersInfoW` `GetSysColor` `ReleaseDC` `CreateIconIndirect` `GetDC` `MsgWaitForMultipleObjects` `DispatchMessageW` `TranslateMessage` `TranslateMDISysAccel` `GetMessageW` `PeekMessageW` `DialogBoxParamW`
GDI32.dll	`CreatePalette` `SelectPalette` `RealizePalette` `EnumFontFamiliesExW` `GetStockObject` `SelectObject` `GetTextExtentPointW` `GetDeviceCaps` `GetObjectW` `CreateFontIndirectW` `DeleteObject` `CreatePen` `Rectangle` `LineTo` `SetBkColor` `ExtTextOutW` `SetTextColor` `SetBkMode` `CreateRectRgn` `GetClipRgn` `ExcludeClipRect` `SelectClipRgn` `SetDIBits` `CreateCompatibleBitmap` `CreateSolidBrush` `CreateBitmap`
COMDLG32.dll	`GetSaveFileNameW` `GetOpenFileNameW`
SHELL32.dll	`DragFinish` `DragQueryFileW` `ShellExecuteExW` `DragAcceptFiles`
MMFS2.dll (delay-loaded)	`#3` `#172` `#831` `#19` `#1033` `#1145` `#425` `#1144` `#423` `#430` `#1146` `#121` `#31` `#1105` `#255` `#281` `#174` `#419` `#688` `#192` `#120` `#333` `#80` `#468` `#280` `#67` `#125` `#249` `#276` `#366` `#959` `#945` `#123` `#124` `#11` `#1049` `#1036` `#173` `#493` `#487` `#372` `#520` `#585` `#341` `#342` `#417` `#355` `#610` `#445` `#344` `#50` `#62` `#34` `#982` `#1106` `#1017` `#876` `#361` `#32` `#63` `#832` `#742` `#102` `#101` `#17` `#16` `#103` `#753` `#536` `#47` `#756` `#757` `#343` `#686` `#443` `#1000` `#265` `#1068` `#162` `#765` `#1069` `#379` `#661` `#1031` `#433` `#184` `#191` `#825` `#201` `#158` `#177` `#186` `#163` `#176` `#189` `#1073` `#183` `#153` `#1072` `#10` `#9` `#6` `#8` `#7` `#766` `#64` `#43` `#65` `#66` `#264` `#587` `#448` `#286` `#568` `#169` `#849` `#571` `#701` `#703` `#170` `#51` `#74` `#83` `#97` `#81` `#979` `#79` `#187` `#82` `#76` `#78` `#106` `#107` `#105` `#168` `#691` `#75` `#241` `#272` `#245` `#274` `#363` `#645` `#584` `#519` `#356` `#739` `#713` `#137` `#554` `#155` `#786` `#619` `#462` `#761` `#411` `#1120` `#469` `#1134` `#95` `#1123` `#1126` `#94` `#1124` `#1125` `#98` `#91` `#24` `#59` `#61` `#60` `#70` `#69` `#68` `#819` `#820` `#77` `#72` `#389` `#755` `#795` `#1054` `#1077` `#204` `#205` `#1071` `#203` `#195` `#198` `#196` `#199` `#808` `#813` `#809` `#807` `#811` `#810` `#814` `#812` `#826` `#827` `#828` `#422` `#803` `#806` `#800` `#802` `#804` `#798` `#805` `#799` `#801` `#797` `#830` `#829` `#607` `#1074` `#494` `#1130` `#1029` `#611` `#1081` `#27` `#39` `#29` `#834` `#1101` `#1007` `#837` `#896` `#975` `#953` `#893` `#986` `#954` `#895` `#1048` `#929` `#677` `#412` `#234` `#612` `#678` `#413` `#679` `#1118` `#680` `#573` `#414` `#415` `#416` `#232` `#972` `#681` `#476` `#620` `#762` `#236` `#114` `#104` `#171` `#789` `#790` `#46` `#111` `#42` `#113` `#115` `#254` `#785` `#722` `#328` `#116` `#90` `#84` `#1010` `#92` `#1008` `#1011` `#117` `#997` `#996` `#998` `#108` `#109` `#73` `#110` `#71` `#913` `#859` `#878` `#994` `#894` `#974` `#882` `#948` `#991` `#269` `#267` `#268` `#976` `#1006` `#985` `#1037` `#794` `#1053` `#1128` `#35` `#1080` `#18` `#340` `#14` `#984` `#5` `#418` `#750` `#695` `#23` `#1070` `#373` `#740` `#546` `#4` `#1055` `#2` `#1104`

Delayed Imports

Attributes	`0x1`
Name	`MMFS2.dll`
ModuleHandle	`0x9d940`
DelayImportAddressTable	`0x9d420`
DelayImportNameTable	`0x99cec`
BoundDelayImportTable	`0x9a208`
UnloadDelayImportTable	`0`
TimeStamp	`1970-Jan-01 00:00:00`

AmdPowerXpressRequestHighPerformance

Ordinal	`1`
Address	`0x9d2b0`

NvOptimusEnablement

Ordinal	`2`
Address	`0x9d2b4`

1

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.07382`
MD5	`4e98e36bf76cbe20eaaa51e1d0a8d081`
SHA1	`ea19014accb114eac7444e16430428c18c52b965`
SHA256	`cc67d0d20bc5e40552aeb72e4edeb01da7579cf91db3ab5e9df60aae8b240501`
SHA3	`21e60d35a21c34ce8e2fe967399968e7b8c8a152171c91bafab356666ad9e45d`

2

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.88495`
MD5	`a0b4af108e091a25dc56b2d4ef87fe80`
SHA1	`c4ba3caa54c94f610479ce3b61e4b57a4e14b5ec`
SHA256	`c7bb2cf409f1b1f81a710f10c70e284447493b2ba8eab7d4d3b42dc75427c2d4`
SHA3	`996e5637cdfa06e9cfade41df0af64c3f5e5e0aede8d4342796b7257b77c08b8`

3

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.0241`
MD5	`d4726ebdca1ad503011f4c0a7cb25232`
SHA1	`e8d634325a529149027575bcabe9e0cbcfdc2e2b`
SHA256	`f1932637007019f25987775e6498bdd08b5224883593364dadfc612819d5eb17`
SHA3	`04b82ac3f60c15d4524eb0cb7104b96b392e52a83c790bd272d0ede3edf1bce1`

4

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x42028`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.72167`
MD5	`6aded5a42e411912c1319de1ca271970`
SHA1	`09dbcb89d00052218bd7bae76246c5353481736c`
SHA256	`1cd85d0d4101976174d351b4a7d9a7a0e9a4b132e31fff340c38ccb0bc5b0d60`
SHA3	`3873896bd3f2117f24326018e30f53a2538c7f6ffe059bc68190b7c50c555d3b`

5

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.92542`
MD5	`76d2032cba8c8bffacc0a259f8f55148`
SHA1	`5b728b29d5f6b0092f406adfc92de04c5a1ea794`
SHA256	`772751e581cd554b660dea3ab736da16c934e570140aab69485db78215e4ef42`
SHA3	`e10e0e0faa777b94edba2948adfa41caf25ec0f96bd7ff79e1c2b4b9a419c43d`

6

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.94904`
MD5	`43f2b08013ea3a10a260e498bcbb6338`
SHA1	`ef2cbacebcffe685b915a37fce6f60239c6a9e3a`
SHA256	`680227dbffc33762a2fa0f1da4e93b718b2f938c72cf70dfc333a2c95f6992a0`
SHA3	`31374d661d99a73ebb88c08092a37b18312189572aa72ec409746c9d6ddd492e`

7

Type	`RT_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.8932`
MD5	`78da4f774ee78c7ecfbfbec43f854718`
SHA1	`86db14331851f17759d352fb27d3bbc7fb3768ae`
SHA256	`9082d4d8d420384755c0c1822d1ff678bd08d7f31cd7f5242e2e5b17395766bf`
SHA3	`dca4bc9645f4af17c450a75d874c1e01fe5e8a3d39ee944596208859f8d57ca4`

11

Type	`RT_STRING`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x2e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.18832`
MD5	`e7f9ceec412a374f50796a2400179a61`
SHA1	`6d5c358dab6dd92da6ff608b2bd105b28cdb2050`
SHA256	`1fa9291164ef84ddcb60da58567411199e3c02cd89f4108cd5c96908b27433ac`
SHA3	`f997d66a7005b7b8c8419d1a0e85d9aa168958af9aba4023357bca4caca3d14c`

13

Type	`RT_STRING`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x35c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.34311`
MD5	`ac1eb41ca4fc4cedf2187397d0320ad1`
SHA1	`585b76eeb1dcd9b09b78cd32b1d30e7cffac62ef`
SHA256	`79446cef340ece1e29d2e8cd3a79acb3c73ebb29962eedb03c1f69fd112c8dba`
SHA3	`0aa5e41987a7bd9f1787a3c2bf96df221fb3685daa989a0ce6bf3ae88f5662a5`

11 (#2)

Type	`RT_RCDATA`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.22193`
MD5	`b5f845a19ab1f442fe5c3c75d9d3f3e9`
SHA1	`8f95e3add93aa7a4414ab4f4e6b6e74cd56d2226`
SHA256	`956c602922c196728f6cd6d475e39c1126d9906ca7824f33cbced0bd8a47faa9`
SHA3	`372a22827871e4b521a2b25a83bd04372671370a5fb82a56bcb2c27c89246091`

100

Type	`RT_GROUP_ICON`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x68`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.71787`
Detected Filetype	Icon file
MD5	`eee2def6081be6fc6c237a1035cd0d47`
SHA1	`8806faa001a31ea3b44f50dd48cc65beaeaf5980`
SHA256	`b4a86ff543995d1a1dcad86ec767539180bbe55d27b306186eb5fa4bc3d5872f`
SHA3	`293718c08c74df16bc3e220b2edcbf174192ba2080a5b914811bc9c27d661b57`

1 (#2)

Type	`RT_VERSION`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x168`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.10412`
MD5	`3add89918854bcf3c29c71c90c2d7253`
SHA1	`59e118b0023e73200004e641d44cd06a5d4d14aa`
SHA256	`398b55c5c885732488365ff866dd38d4acf2a47eaece03fbb1ff8d9205fc9ff3`
SHA3	`dcaabcf3aee6b330cd8877d9729a20240decc82a8427cc490c6e600fdda245df`

1 (#3)

Type	`RT_MANIFEST`
Language	Process Default Language
Codepage	Latin 1 / Western European
Size	`0x53d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.38327`
MD5	`63bf5afc880fb6a65b54d48184ec8cc6`
SHA1	`b26f72dbe5775c632183b92fa3b987f51a3425b9`
SHA256	`44f62a530cdcbc9010f0aba6fd67b20cfe00ee5ea2386fe3b3bc9e0aa22985ab`
SHA3	`bde6ad037ffeb1da791fa47aa534960753cd62344f6fd9a5e03219b88067325e`

String Table contents

Modules
3f4c2ea3-bbc2-4c40-9f38-b0098ab92bcb
Cannot initialize application.
Error while opening file.
Not enough memory!
File error!
Cannot find %s!
Cannot load %s. This object might need an external program or library not yet installed.
There is not enough available space in the temporary drive. Free some disk space and try again.
This application has been built with an incompatible version of Clickteam Fusion.
Unknown format!

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	3.0.296.9
ProductVersion	3.0.296.9
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT` `VOS_NT_WINDOWS32` `VOS_WINCE` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	Process Default Language

Resource LangID	Process Default Language

IMAGE_DEBUG_TYPE_POGO

Characteristics	`0`
TimeDateStamp	2025-Dec-06 14:32:10
Version	`0.0`
SizeofData	`884`
AddressOfRawData	`0x98bb8`
PointerToRawData	`0x97db8`

IMAGE_DEBUG_TYPE_ILTCG

Characteristics	`0`
TimeDateStamp	2025-Dec-06 14:32:10
Version	`0.0`
SizeofData	`0`
AddressOfRawData	`0`
PointerToRawData	`0`

TLS Callbacks

Load Configuration

Size	`0xa0`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x49c014`
SEHandlerTable	`0x498b20`
SEHandlerCount	`38`

RICH Header

XOR Key	`0xdacfcce7`
Unmarked objects	`0`
241 (40116)	`46`
243 (40116)	`139`
242 (40116)	`35`
ASM objects (VS 2015/2017 runtime 26706)	`20`
C objects (VS 2015/2017 runtime 26706)	`20`
C++ objects (VS 2015/2017 runtime 26706)	`43`
Imports (VS2008 SP1 build 30729)	`15`
Total imports	`618`
C++ objects (LTCG) (27053)	`43`
Exports (27053)	`1`
Resource objects (27053)	`1`
Linker (27053)	`1`

Errors

Leave a comment

No comments yet.