| Architecture |
IMAGE_FILE_MACHINE_I386
|
| Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
| Compilation Date |
2021-Jul-02 13:58:46
|
| Detected languages |
Chinese - PRC
English - United States
|
| Comments |
æ¹ä¾¿å®ç¨çUSB设å¤ä¸»æ§è¯çè¯å«å·¥å
·
|
| CompanyName |
æ°ç ä¹å®¶
|
| FileDescription |
Uç/MP3主æ§è¯çè¯å«å·¥å
·
|
| LegalCopyright |
~~ç¿è½¯å¨çº¿ åææ é~~
|
| LegalTrademarks |
åå°æ»¨å·¥ä¸å¤§å¦ç ç©¶çé¢ åå°æ»¨ç工大å¦è½¯ä»¶ä¸å¾®çµåå¦é¢
|
| ProductName |
Chip Genius
|
| FileVersion |
4.21.0701
|
| ProductVersion |
4.21.0701
|
| InternalName |
ChipGenius_v4_21_0701
|
| OriginalFilename |
ChipGenius_v4_21_0701.exe
|
| Suspicious |
PEiD Signature: |
UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser
UPX v2.0 -> Markus, Laszlo & Reiser (h)
UPX -> www.upx.sourceforge.net
UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser
|
| Suspicious |
The PE is possibly packed. |
Unusual section name found: l020
Section l020 is both writable and executable.
Unusual section name found: l021
Section l021 is both writable and executable.
The PE only has 5 import(s).
|
| Info |
The PE contains common functions which appear in legitimate applications. |
[!] The program may be hiding some of its imports:
- LoadLibraryA
- GetProcAddress
|
| Info |
The PE's resources present abnormal characteristics. |
Resource HIT00 is possibly compressed or encrypted.
Resource HIT02 is possibly compressed or encrypted.
Resource HIT04 is possibly compressed or encrypted.
Resource HIT06 is possibly compressed or encrypted.
|
| Malicious |
VirusTotal score: 37/72 (Scanned on 2026-02-26 11:22:06) |
APEX:
Malicious
AVG:
Win32:Malware-gen
Alibaba:
Trojan:Win32/Kryptik.fb36263a
Antiy-AVL:
Trojan/Win32.Agent
Avast:
Win32:Malware-gen
Avira:
TR/Redcap.blayt
Bkav:
W32.Common.30CE1831
CAT-QuickHeal:
Trojan.Agent
CTX:
exe.trojan.kryptik
CrowdStrike:
win/grayware_confidence_100% (W)
Cylance:
Unsafe
Cynet:
Malicious (score: 99)
DeepInstinct:
MALICIOUS
Elastic:
malicious (moderate confidence)
F-Secure:
Trojan.TR/Redcap.blayt
GData:
Win32.Trojan.Agent.QFCPMD
Google:
Detected
Gridinsoft:
Trojan.Win32.Agent.oa
K7AntiVirus:
Riskware ( 00584baa1 )
K7GW:
Riskware ( 00584baa1 )
Lionic:
Trojan.Win32.Generic.4!c
MaxSecure:
Trojan.Malware.119508268.susgen
Microsoft:
Trojan:Win32/Kryptik!MSR
Paloalto:
generic.ml
Panda:
Trj/CI.A
SUPERAntiSpyware:
Trojan.Agent/Gen-Kryptik
Sangfor:
Trojan.Win32.Save.a
SentinelOne:
Static AI - Malicious PE
Skyhigh:
BehavesLike.Win32.Trojan.dc
Sophos:
Mal/Generic-S
Tencent:
Win32.Trojan.Malware.juzi
Trapmine:
malicious.high.ml.score
TrellixENS:
GenericRXAA-AA!C225785C18C5
Varist:
W32/ABTrojan.IIPY-3388
VirIT:
Trojan.Win32.Genus.YZD
Xcitium:
Malware@#90bbfojzty10
alibabacloud:
Trojan:Win/Kryptik.Gen
|
| MD5 |
c225785c18c5ec684ea5a10fb3d56cc3
|
| SHA1 |
05e12f3ec7cf52f915a974213b8aa3d7f3ffe28d
|
| SHA256 |
8fd831c5bb24ee51f65699da378f127044314e7184042e44646b40c507d09bb4
|
| SHA3 |
727a89ca1a37039836172075a1a40e2060a8c9598f2f2aa8b84547b5ac894eb7
|
| SSDeep |
6144:UQePa/g7rQGDa3e79hsA5XhXo9jBCSxCFLMboS5POG:UQIA6vr5XuVXCdqoS
|
| Imports Hash |
de3863888c83837b13b7c1a90a18d46c
|
| e_magic |
MZ
|
| e_cblp |
0x90
|
| e_cp |
0x3
|
| e_crlc |
0
|
| e_cparhdr |
0x4
|
| e_minalloc |
0
|
| e_maxalloc |
0xffff
|
| e_ss |
0
|
| e_sp |
0xb8
|
| e_csum |
0
|
| e_ip |
0
|
| e_cs |
0
|
| e_ovno |
0
|
| e_oemid |
0
|
| e_oeminfo |
0
|
| e_lfanew |
0xc0
|
| Signature |
PE
|
| Machine |
IMAGE_FILE_MACHINE_I386
|
| NumberofSections |
3
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| PointerToSymbolTable |
0
|
| NumberOfSymbols |
0
|
| SizeOfOptionalHeader |
0xe0
|
| Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_RELOCS_STRIPPED
|
| Magic |
PE32
|
| LinkerVersion |
6.21
|
| SizeOfCode |
0x36000
|
| SizeOfInitializedData |
0x15000
|
| SizeOfUninitializedData |
0xd3000
|
| AddressOfEntryPoint |
0x00108C70 (Section: l021)
|
| BaseOfCode |
0xd4000
|
| BaseOfData |
0x10a000
|
| ImageBase |
0x400000
|
| SectionAlignment |
0x1000
|
| FileAlignment |
0x200
|
| OperatingSystemVersion |
4.0
|
| ImageVersion |
4.15
|
| SubsystemVersion |
4.0
|
| Win32VersionValue |
0
|
| SizeOfImage |
0x11f000
|
| SizeOfHeaders |
0x1000
|
| Checksum |
0
|
| Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
| SizeofStackReserve |
0x100000
|
| SizeofStackCommit |
0x1000
|
| SizeofHeapReserve |
0x100000
|
| SizeofHeapCommit |
0x1000
|
| LoaderFlags |
0
|
| NumberOfRvaAndSizes |
16
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| VirtualSize |
0xd3000
|
| VirtualAddress |
0x1000
|
| SizeOfRawData |
0
|
| PointerToRawData |
0x400
|
| PointerToRelocations |
0
|
| PointerToLineNumbers |
0
|
| NumberOfLineNumbers |
0
|
| NumberOfRelocations |
0
|
| Characteristics |
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
|
| MD5 |
fa0f69d0417bd119c75f0c40f7d36149
|
| SHA1 |
a8a746bdf6f541be5408e9bb146f8943ddde439d
|
| SHA256 |
5bafc1ad0e207a61a12304975ccd708d7937eda0ed375442851e1f6acd1fb50f
|
| SHA3 |
3b1f833a905a2257fe005d7a6a04b7bf0eac61412a6b6a906a2ef0811f3d7982
|
| VirtualSize |
0x36000
|
| VirtualAddress |
0xd4000
|
| SizeOfRawData |
0x35a00
|
| PointerToRawData |
0x400
|
| PointerToRelocations |
0
|
| PointerToLineNumbers |
0
|
| NumberOfLineNumbers |
0
|
| NumberOfRelocations |
0
|
| Characteristics |
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
|
| Entropy |
7.99656
|
| MD5 |
cfffb01a0d85ab28e10bad3ba9d8963b
|
| SHA1 |
2d473942c6535ecc0de34fcf0ad7b3141da5abbc
|
| SHA256 |
a2422a6c39bad899f8cadd040106f3c409435a01638dcbd06b4a8ef512a32ecc
|
| SHA3 |
dac4c9b0a01fc563fbfb2e913c2445b3a66d41d4f0bedd5ed1628c2d7619430d
|
| VirtualSize |
0x15000
|
| VirtualAddress |
0x10a000
|
| SizeOfRawData |
0x14e00
|
| PointerToRawData |
0x35e00
|
| PointerToRelocations |
0
|
| PointerToLineNumbers |
0
|
| NumberOfLineNumbers |
0
|
| NumberOfRelocations |
0
|
| Characteristics |
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
|
| Entropy |
2.87355
|
| KERNEL32.DLL |
LoadLibraryA
ExitProcess
GetProcAddress
VirtualProtect
|
| MSVBVM60.DLL |
#581
|
| Type |
MYDIGIT
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x12ba0
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
7.99786
|
| MD5 |
477aa2f784e3c0614c27fd33f4f392c9
|
| SHA1 |
6c8abd2c99dbda858cd3a3894bffc1647ae4f9ce
|
| SHA256 |
9ef413469196bd5c60b51dd9a78bacb2a3eb8b66058ee4034c612e5409668fdd
|
| SHA3 |
4d923496d6368fcccad33c4a743eabb18080d444bb0360a03ad44b18cfb69d1f
|
| Type |
MYDIGIT
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x2000
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
7.9803
|
| MD5 |
01395a70d4db1d8fe55628b03f854efe
|
| SHA1 |
2536b742936fbd6ec937e4429e96bfc90642e9d7
|
| SHA256 |
13a1c1c72f7ad9bb1f13b1d5ae251c8abd6eabec1fd44404ab05b6fd09a66486
|
| SHA3 |
bf217cf5e2c6c56ea6011d231de8a4b5c12e43f5d77955e0191ce4ad86ab5edd
|
| Type |
MYDIGIT
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x6000
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
7.99259
|
| MD5 |
0ca29e504c1ac9ad6298da108564ca18
|
| SHA1 |
13fdd571cada42df8075b16be9e699c304ff2e3c
|
| SHA256 |
da93a4b8340d8a8e2a774197e9d3e8930d9042f3fab525ee8e62b2f4f5da2b7c
|
| SHA3 |
035452df580a3db54c4ab888f5c3904e5fe00c664af287321acc723ac70f4f42
|
| Type |
MYDIGIT
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x5400
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
7.99092
|
| MD5 |
a24dec20e077122b1a0d7c4fef282dc2
|
| SHA1 |
25c56c985003e08618f049995c84803057957060
|
| SHA256 |
2c93fa1b402b303b9aef656daf691dc13d44254d99f2233468d06e02524019a1
|
| SHA3 |
e7bf14f4377128d0dabd195085295ccb8a133208a4b032d12be3c99f68e74fff
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x12428
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
2.65465
|
| MD5 |
8d5bbced4ca33889c6959df19076faec
|
| SHA1 |
39ba175480fdb244cee29ea996569967d853627f
|
| SHA256 |
4358071b0cc797792ce82acdb6ae136cfce2375f5dad38aed6ed0741be8b84c2
|
| SHA3 |
f1705a0e57dc76516d20f7511781d1b08fb857d1638f33e87061da0c77336790
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0xea8
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
3.32193
|
| MD5 |
161c030bb77d8e33a2d28a9e59d6e326
|
| SHA1 |
001525d46f5c08de1f4cf9c81c6040136212b95e
|
| SHA256 |
cb3aad5eadef1e38ce3ce4a7695e65c520df9dd71b16e5a7370076d0ec470ca0
|
| SHA3 |
bf5d23517f36df6977e77be402638b1e5edfb2b3657b1fd484e7a471a6d60491
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x8a8
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
3.30227
|
| MD5 |
f8175982cf6932a904906f53eafdcbc2
|
| SHA1 |
2a5a481a6bf5b39d41f12b194c2dc90f11d41719
|
| SHA256 |
bf97fe4c39251afb91da88e3ea163fd11bc74a08fd2be5a2aa266b268712f7a0
|
| SHA3 |
bd00013d5f971df4219d2eeffa2703d1539a4c35de59a952abf101e12399842a
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x568
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
2.14032
|
| MD5 |
ce9ab775b76cbb5f828f390a0fcfe0c3
|
| SHA1 |
a5be26fe319325777c7d00f57e6e26cd606ad6f5
|
| SHA256 |
91efb4e2bc2c5b156d68792bbf101c6e24a5379b933b16314d0145128e6ae5ee
|
| SHA3 |
132997868dee0cd4acc0df0b6cd13e6ddf74d97babdba3ea4e8b09094492f729
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x130
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x2e8
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x128
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x2a0
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x11c
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x220
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x118
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x418
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x17c
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x254
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x150
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x1d4
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x158
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x25c
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x150
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x390
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x1b0
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x208
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x108
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x3a0
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x1b0
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x16c
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x15c
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
English - United States
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x24
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_STRING
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x24
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_GROUP_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x40
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
2.55022
|
| Detected Filetype |
Icon file
|
| MD5 |
91a96f01ab9e6226b5bb8c74899502a3
|
| SHA1 |
00f533e9e39ed2d62e4c93081e7df1841dfde0a0
|
| SHA256 |
31760e4f9b8765b3907f7714b4a5fa66051c889aa8855340b755760031e2a750
|
| SHA3 |
66b701b6b226eee54829f33b0a17cccd3aeb8f6129fffe21b2260404555cd604
|
| Type |
RT_GROUP_ICON
|
| Language |
UNKNOWN
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x30
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
0
|
| MD5 |
d41d8cd98f00b204e9800998ecf8427e
|
| SHA1 |
da39a3ee5e6b4b0d3255bfef95601890afd80709
|
| SHA256 |
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
| SHA3 |
a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a
|
| Type |
RT_VERSION
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x380
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
4.21152
|
| MD5 |
0592f294e78a60411550279868587da0
|
| SHA1 |
81d6bca2231b8ff7c857baeb996457c866766e64
|
| SHA256 |
5c89d72b03375791a8bcd30ac9143d00cd5e3a0453b902d153023d943ea93f42
|
| SHA3 |
dcb4a53c9b9ce4c0e55b9dc139666b46fba25d8e8ba478ab98b4877efae50ea0
|
| Type |
RT_MANIFEST
|
| Language |
Chinese - PRC
|
| Codepage |
Unicode (UTF 16LE)
|
| Size |
0x184
|
| TimeDateStamp |
2021-Jul-02 13:58:46
|
| Entropy |
4.87973
|
| MD5 |
607cb2c4fefaf364f51d83a8c92bfe9f
|
| SHA1 |
99dec814232ff87f45d43d799f7cf11a5622baba
|
| SHA256 |
3972f115121421ebdd73a570ceff614c84539272b6fc77ba5e1066f8bb28950c
|
| SHA3 |
0fe9b230ca14318abda5ec1b78401684ec9823e92bf8a5d808c6837e8235d414
|
| Signature |
0xfeef04bd
|
| StructVersion |
0x10000
|
| FileVersion |
4.21.0.701
|
| ProductVersion |
4.21.0.701
|
| FileFlags |
(EMPTY)
|
| FileOs |
VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
|
| FileType |
VFT_APP
|
| Language |
Chinese - PRC
|
| Comments |
æ¹ä¾¿å®ç¨çUSB设å¤ä¸»æ§è¯çè¯å«å·¥å
·
|
| CompanyName |
æ°ç ä¹å®¶
|
| FileDescription |
Uç/MP3主æ§è¯çè¯å«å·¥å
·
|
| LegalCopyright |
~~ç¿è½¯å¨çº¿ åææ é~~
|
| LegalTrademarks |
åå°æ»¨å·¥ä¸å¤§å¦ç ç©¶çé¢ åå°æ»¨ç工大å¦è½¯ä»¶ä¸å¾®çµåå¦é¢
|
| ProductName |
Chip Genius
|
| FileVersion (#2) |
4.21.0701
|
| ProductVersion (#2) |
4.21.0701
|
| InternalName |
ChipGenius_v4_21_0701
|
| OriginalFilename |
ChipGenius_v4_21_0701.exe
|
| Resource LangID |
Chinese - PRC
|
| XOR Key |
0xc485d7b8
|
| Unmarked objects |
0
|
| 14 (7299) |
1
|
| 9 (8783) |
26
|
| 13 (8964) |
1
|
[*] Warning: Section l020 has a size of 0!
[!] Error: Resource 30001 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30001 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30001 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30002 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30002 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30002 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30003 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30003 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30003 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[*] Warning: Resource 1 is empty!
[!] Error: Resource 30001 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30001 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30002 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30002 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30003 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 30003 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 2 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 3 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 4 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 5 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 6 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 7 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 8 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 9 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 10 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 11 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.
[!] Error: Resource 1 is bigger than the PE. Not trying to load it in memory.