Manalyze report for f870584ee5a80ef784bd15b138f8e85259722da9c7d352218f0c943b46603b54

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2026-Feb-08 06:22:38
Detected languages	English - United States

Plugin Output

Info	Matching compiler(s):	`MASM/TASM - sig1(h)`
Safe	VirusTotal score: 0/72 (Scanned on 2026-03-08 05:50:31)	`All the AVs think this file is safe.`

Hashes

MD5	`86313713c9fa09e8a90cb92eb1283af5`
SHA1	`0e19cb50257ed94028579c23fc793b910ab56980`
SHA256	`f870584ee5a80ef784bd15b138f8e85259722da9c7d352218f0c943b46603b54`
SHA3	`dd9a5b4c9bb875a7faa532a4c430ecf955a6982e358d35a7f9d344c122133477`
SSDeep	`24576:mcUPoWmNzD/sEyRrTZD8oHRGQ2fHbapsBgMSDbdq9p:EPovZbdyRr9D8oHqvbcsB`
Imports Hash	`b538c8cb0d7cea70be1301ed41128cd4`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x108`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`6`
TimeDateStamp	2026-Feb-08 06:22:38
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`14.0`
SizeOfCode	`0x103800`
SizeOfInitializedData	`0x63000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00000000000FA8B0 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`6.0`
ImageVersion	`0.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0x16b000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`dc0961fa08b63cf056ccfe9b58856401`
SHA1	`7b03d4c6bea536fa9653a26425f9e99bf369f22e`
SHA256	`69b8a4e8e8f2ebc27c33821d17e38b2d151beeb2921fed4ee9b0d49912e3d080`
SHA3	`7adff6a95d0ad79bb67457a0f9a3bc8a680a8008193cefda308a1ab1548944af`
VirtualSize	`0x1037af`
VirtualAddress	`0x1000`
SizeOfRawData	`0x103800`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.40551`

.rdata

MD5	`8b515ffcb71d45ab0845ce7ba09107f3`
SHA1	`fe12282d3b798d3de4dec7516984dab28fb871c8`
SHA256	`ee58f3ea4526f20c699cb8f80c7bcf0b023e5252463756ec4e0eaa1e0714ed25`
SHA3	`c516dd184d82eb9c08e86c88b2e60f1eacaa42fcda3695cdae90d8ffaadf5051`
VirtualSize	`0x362be`
VirtualAddress	`0x105000`
SizeOfRawData	`0x36400`
PointerToRawData	`0x103c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.06471`

.data

MD5	`246c7fd7d711d08d5679442d7cf10827`
SHA1	`f9c1c6b7256c17ecdc9741635ed43b3e41a00995`
SHA256	`6d4290700d87e8572662b25253128530b8308d3561021cd7b6a495761cf1d1ff`
SHA3	`54187210dc251640cb7c7891af5410dd6371da1934529425b104ffca741649df`
VirtualSize	`0x22538`
VirtualAddress	`0x13c000`
SizeOfRawData	`0x1e000`
PointerToRawData	`0x13a000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`5.03955`

.pdata

MD5	`a21b0e67b369ccacdacaf15c8e77eae6`
SHA1	`f82c108d22327dba97684abe8c39eefbb62177a7`
SHA256	`b3451c46ab31dc96f7642e9cec87651b0c081f94dfca0f6e16ee1d84f3768cdc`
SHA3	`7368e5f893e637480b3e2bd48cf38def077f97ca411df44ffc028f24284662b2`
VirtualSize	`0x8d54`
VirtualAddress	`0x15f000`
SizeOfRawData	`0x8e00`
PointerToRawData	`0x158000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.98156`

.rsrc

MD5	`1ffdde64b76eddbcdb3c6ce313858958`
SHA1	`e3440a78a662c8090c0ce30e9b26f2c391a3644d`
SHA256	`384f5d8b54650dbbca8e84f01e6db0cc8612ce12650f503efc4951860461c1d7`
SHA3	`d3863c021ff4f6f58aef9b3e93e8ef8df496354c74011813314c5e1fa524479f`
VirtualSize	`0x1e0`
VirtualAddress	`0x168000`
SizeOfRawData	`0x200`
PointerToRawData	`0x160e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.7123`

.reloc

MD5	`fedc7835bfdf76199e8f46acbacffb32`
SHA1	`6d1d4ba483dbcfce09bfed4cbc54f39cf16d0110`
SHA256	`e20e43320ad8ba78a753cfeb31902f69e9542340d2207b6400a2492da2864b89`
SHA3	`737f73fecde8d0bca7f21430f662341caa5bc241a95800b07411928db639697f`
VirtualSize	`0x15d4`
VirtualAddress	`0x169000`
SizeOfRawData	`0x1600`
PointerToRawData	`0x161000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`5.41651`

Imports

KERNEL32.dll	`InitializeSListHead` `GetSystemTimeAsFileTime` `GetCurrentThreadId` `GetCurrentProcessId` `GetModuleFileNameW` `MultiByteToWideChar` `WideCharToMultiByte` `SetConsoleCP` `SetConsoleOutputCP` `GetCommandLineW` `GetLastError` `LocalFree` `EnterCriticalSection` `LeaveCriticalSection` `DeleteCriticalSection` `WakeAllConditionVariable` `CloseHandle` `WaitForSingleObject` `GetLocaleInfoEx` `QueryPerformanceCounter` `CreateFileW` `FindClose` `FindFirstFileW` `GetFileAttributesExW` `AreFileApisANSI` `GetModuleHandleW` `GetFileInformationByHandleEx` `ReleaseSRWLockExclusive` `AcquireSRWLockExclusive` `SleepConditionVariableSRW` `RtlCaptureContext` `RtlLookupFunctionEntry` `RtlVirtualUnwind` `UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `GetCurrentProcess` `TerminateProcess` `IsProcessorFeaturePresent` `IsDebuggerPresent` `FormatMessageA`
SHELL32.dll	`CommandLineToArgvW`
MSVCP140.dll	`??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z` `??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z` `?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z` `?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z` `?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ` `??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z` `??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ` `?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z` `?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ` `?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z` `?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z` `?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z` `?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ` `?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ` `?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ` `?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ` `?_Id_cnt@id@locale@std@@0HA` `?id@?$ctype@D@std@@2V0locale@2@A` `?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A` `?always_noconv@codecvt_base@std@@QEBA_NXZ` `?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z` `?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z` `?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z` `?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z` `??7ios_base@std@@QEBA_NXZ` `?exceptions@ios_base@std@@QEAAXH@Z` `?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ` `?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ` `?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ` `?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ` `?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z` `?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ` `?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ` `?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z` `?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z` `??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z` `??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ` `?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ` `??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z` `??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ` `?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z` `?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ` `?gcount@?$basic_istream@DU?$char_traits@D@std@@@std@@QEBA_JXZ` `?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z` `?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ` `?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z` `?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A` `??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z` `??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z` `?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z` `?_Xbad_function_call@std@@YAXXZ` `?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A` `?_Xinvalid_argument@std@@YAXPEBD@Z` `?classic@locale@std@@SAAEBV12@XZ` `?eof@ios_base@std@@QEBA_NXZ` `?fail@ios_base@std@@QEBA_NXZ` `?bad@ios_base@std@@QEBA_NXZ` `?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z` `??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z` `?uncaught_exception@std@@YA_NXZ` `?__ExceptionPtrCreate@@YAXPEAX@Z` `?__ExceptionPtrDestroy@@YAXPEAX@Z` `?__ExceptionPtrCopy@@YAXPEAXPEBX@Z` `?__ExceptionPtrAssign@@YAXPEAXPEBX@Z` `?__ExceptionPtrToBool@@YA_NPEBX@Z` `?__ExceptionPtrCurrentException@@YAXPEAX@Z` `?__ExceptionPtrRethrow@@YAXPEBX@Z` `??0_Locinfo@std@@QEAA@PEBD@Z` `??1_Locinfo@std@@QEAA@XZ` `?_Getfalse@_Locinfo@std@@QEBAPEBDXZ` `?_Gettrue@_Locinfo@std@@QEBAPEBDXZ` `??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z` `?c_str@?$_Yarn@D@std@@QEBAPEBDXZ` `??0facet@locale@std@@IEAA@_K@Z` `??1facet@locale@std@@MEAA@XZ` `?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z` `?_Locimp_Addfac@_Locimp@locale@std@@CAXPEAV123@PEAVfacet@23@_K@Z` `?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z` `??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z` `??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ` `??Bios_base@std@@QEBA_NXZ` `?setf@ios_base@std@@QEAAHHH@Z` `?precision@ios_base@std@@QEAA_J_J@Z` `?getloc@ios_base@std@@QEBA?AVlocale@2@XZ` `?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ` `?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ` `?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ` `??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z` `??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z` `?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z` `?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z` `?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z` `?_Incref@facet@locale@std@@UEAAXXZ` `?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ` `?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A` `?id@?$numpunct@D@std@@2V0locale@2@A` `?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z` `?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ` `?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ` `?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ` `?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z` `??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ` `?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ` `?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z` `?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z` `?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ` `?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z` `?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z` `?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ` `?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ` `?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ` `?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ` `?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ` `?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z` `?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z` `??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ` `??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ` `?width@ios_base@std@@QEAA_J_J@Z` `?width@ios_base@std@@QEBA_JXZ` `?flags@ios_base@std@@QEBAHXZ` `?good@ios_base@std@@QEBA_NXZ` `?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z` `?tolower@?$ctype@D@std@@QEBADD@Z` `?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ` `?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z` `?uncaught_exceptions@std@@YAHXZ` `??1_Lockit@std@@QEAA@XZ` `??0_Lockit@std@@QEAA@H@Z` `?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ` `?_Winerror_map@std@@YAHH@Z` `?_Syserror_map@std@@YAPEBDH@Z` `?_Xout_of_range@std@@YAXPEBD@Z` `?_Xlength_error@std@@YAXPEBD@Z` `?_Xbad_alloc@std@@YAXXZ` `?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ` `??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ`
bcrypt.dll	`BCryptGenRandom` `BCryptCloseAlgorithmProvider` `BCryptOpenAlgorithmProvider`
VCRUNTIME140.dll	`memcmp` `_purecall` `__current_exception` `memset` `__RTDynamicCast` `__C_specific_handler` `memcpy` `__std_exception_copy` `__std_terminate` `_CxxThrowException` `memmove` `__std_type_info_compare` `__current_exception_context` `__std_exception_destroy`
VCRUNTIME140_1.dll	`__CxxFrameHandler4`
api-ms-win-crt-runtime-l1-1-0.dll	`_initterm` `_set_app_type` `_get_initial_narrow_environment` `_register_thread_local_exe_atexit_callback` `_seh_filter_exe` `_initterm_e` `__p___argv` `_cexit` `_crt_atexit` `_register_onexit_function` `_initialize_onexit_table` `_initialize_narrow_environment` `_configure_narrow_argv` `_invoke_watson` `terminate` `_errno` `abort` `_exit` `exit` `__p___argc` `_c_exit`
api-ms-win-crt-heap-l1-1-0.dll	`_callnewh` `free` `realloc` `_set_new_mode` `malloc` `calloc`
api-ms-win-crt-string-l1-1-0.dll	`strcmp` `toupper` `isprint` `wcslen` `strlen` `isspace` `strncmp`
api-ms-win-crt-convert-l1-1-0.dll	`strtol` `strtold` `strtof` `strtod` `strtoul` `strtoull` `strtoll`
api-ms-win-crt-stdio-l1-1-0.dll	`fclose` `fflush` `_get_stream_buffer_pointers` `__stdio_common_vsprintf_s` `__p__commode` `ungetc` `setvbuf` `fwrite` `_fseeki64` `fsetpos` `fread` `fputc` `fgetpos` `_set_fmode` `fgetc` `__stdio_common_vsprintf`
api-ms-win-crt-math-l1-1-0.dll	`ceilf` `__setusermatherr`
api-ms-win-crt-filesystem-l1-1-0.dll	`_unlock_file` `_stat64` `_lock_file`
api-ms-win-crt-environment-l1-1-0.dll	`_dupenv_s`
api-ms-win-crt-locale-l1-1-0.dll	`localeconv` `___lc_codepage_func` `_configthreadlocale`

Delayed Imports

??4?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@QEAAAEAV012@AEBV012@@Z

Ordinal	`1`
Address	`0x6100`

1

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x17d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.91161`
MD5	`1e4a89b11eae0fcf8bb5fdd5ec3b6f61`
SHA1	`4260284ce14278c397aaf6f389c1609b0ab0ce51`
SHA256	`4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df`
SHA3	`4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353`

Version Info

IMAGE_DEBUG_TYPE_POGO

Characteristics	`0`
TimeDateStamp	2026-Feb-08 06:22:38
Version	`0.0`
SizeofData	`928`
AddressOfRawData	`0x125f50`
PointerToRawData	`0x124b50`

TLS Callbacks

StartAddressOfRawData	`0x140126310`
EndAddressOfRawData	`0x14012631c`
AddressOfIndex	`0x14015df80`
AddressOfCallbacks	`0x140105c40`
SizeOfZeroFill	`0`
Characteristics	`IMAGE_SCN_ALIGN_4BYTES`
Callbacks	`(EMPTY)`

Load Configuration

Size	`0x140`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x14013c280`

RICH Header

XOR Key	`0x806ee399`
Unmarked objects	`0`
Imports (VS2008 SP1 build 30729)	`18`
ASM objects (35207)	`4`
C objects (35207)	`10`
C++ objects (35207)	`35`
Imports (35207)	`6`
C objects (35222)	`25`
Imports (33145)	`9`
Total imports	`301`
C++ objects (35222)	`26`
Exports (35222)	`1`
Resource objects (35222)	`1`
Linker (35222)	`1`

Errors

Leave a comment

No comments yet.