03732d98863ae4cf5a36f129cbf46781

Summary

Architecture IMAGE_FILE_MACHINE_I386
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date 1998-Dec-13 09:17:10
Detected languages English - United States

Plugin Output

Info Matching compiler(s): MASM/TASM - sig2(h)
Microsoft Visual C++
Microsoft Visual C++ v6.0
Microsoft Visual C++ v5.0/v6.0 (MFC)
Suspicious VirusTotal score: 1/68 (Scanned on 2019-04-13 02:03:23) NANO-Antivirus: Trojan.Win32.Gendal.dxuwhs

Hashes

MD5 03732d98863ae4cf5a36f129cbf46781
SHA1 349171dfc8d149bcd5f686897c32b638f56f297d
SHA256 7084d89d8c751adb5f453b8f3edce17611920f92ca68d9bd3690dfaef7155a40
SHA3 14749418e4d75b11a742ac7b67e7b56fa97f65cd4a9d1ae34c8ee21f6cadedf5
SSDeep 192:VoxQPKuKx5kNJBRQycWvjI8ycjP1oynbd2VJzK:uxsDNMWRr1Ndep
Imports Hash baf3d60012d52ea7075382ea587cabb0

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0xe0

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_I386
NumberofSections 4
TimeDateStamp 1998-Dec-13 09:17:10
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xe0
Characteristics IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_RELOCS_STRIPPED

Image Optional Header

Magic PE32
LinkerVersion 6.0
SizeOfCode 0x1000
SizeOfInitializedData 0x3000
SizeOfUninitializedData 0
AddressOfEntryPoint 0x00001B70 (Section: .text)
BaseOfCode 0x1000
BaseOfData 0x2000
ImageBase 0x400000
SectionAlignment 0x1000
FileAlignment 0x1000
OperatingSystemVersion 4.0
ImageVersion 0.0
SubsystemVersion 4.0
Win32VersionValue 0
SizeOfImage 0x5000
SizeOfHeaders 0x1000
Checksum 0
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 a707cea8257d9ed9b7daf27e164e4a45
SHA1 7c0635e301802d21c981d0b8c8f684819a4fbb5d
SHA256 c7525a02a1a7e88e0fcfef597d9f2b668af1a44a92a1b3dc9d599c79fb3d232e
SHA3 bebb222ec6c45624a349a1cfcde3f788a558b0a49562233172a5585698a16107
VirtualSize 0xdcc
VirtualAddress 0x1000
SizeOfRawData 0x1000
PointerToRawData 0x1000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 5.12239

.rdata

MD5 c5044008cfa172c48aab697e0e5de24e
SHA1 5ab1892cebd819a598c8bb9bebc70802a202ce5d
SHA256 d6960a57284325d653972a312704821c5eb382b1d224dbeec74017363964eabe
SHA3 2d30483027ca03f825b9c4639300e083745b7305f21a3efdab5a653cd2ea600d
VirtualSize 0xa16
VirtualAddress 0x2000
SizeOfRawData 0x1000
PointerToRawData 0x2000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 3.54105

.data

MD5 11a8c37ff087b3f2ff8fcefdaa6323c2
SHA1 75104e0ed053c11a638ec290c58ce32a7b142b17
SHA256 cbaadd261e38bfb77eb1d251ff4eb820a3bf727ac2cc248179f72cf86c9f0134
SHA3 f3dbd9869b5b06b0c55d94d28f8ccc48c14c8a3ebfee8019a3729361112cea10
VirtualSize 0x188
VirtualAddress 0x3000
SizeOfRawData 0x1000
PointerToRawData 0x3000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 0.283126

.rsrc

MD5 ef813b574ada23753fa17f93f7aa8292
SHA1 e49594e1d463968ee2c30b681cf984912c7b5e65
SHA256 8cc5ba984750958a3fff35284efcebdc94910bb1fd227db40781dc60cf90a333
SHA3 05bdb37811548b7ee147db48854069bd1e58f62eb737e8e6a6fad30de03eade9
VirtualSize 0x898
VirtualAddress 0x4000
SizeOfRawData 0x1000
PointerToRawData 0x4000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 1.68884

Imports

MFC42.DLL #5731
#3922
#1089
#2512
#5199
#2396
#3346
#5300
#5302
#2725
#4079
#4698
#5307
#5289
#5714
#2982
#3147
#3259
#4465
#3136
#3262
#2985
#3081
#2976
#3830
#3831
#3825
#3079
#4080
#4622
#4424
#3738
#561
#815
#2514
#2621
#1134
#641
#825
#5265
#4376
#4486
#2554
#6052
#4078
#1775
#4407
#5241
#2385
#5163
#6374
#4353
#5280
#3798
#4837
#4441
#4673
#2055
#6376
#3749
#5065
#1727
#5261
#2446
#2124
#5277
#4627
#4425
#3597
#324
#4234
#800
#4160
#540
#755
#470
#4853
#4224
#3098
#1168
#2863
#2379
#1146
#6375
#4274
#4710
#4998
#2648
#1576
MSVCRT.dll __getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_acmdln
__set_app_type
_except_handler3
_controlfp
_XcptFilter
_exit
exit
__dllonexit
__CxxFrameHandler
_onexit
_setmbcp
KERNEL32.dll lstrcmpA
lstrlenA
GetModuleHandleA
GetStartupInfoA
USER32.dll SendMessageA
GetSystemMenu
AppendMenuA
IsIconic
DrawIcon
EnableWindow
LoadIconA
GetClientRect
GetSystemMetrics

Delayed Imports

1

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x2e8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.1074
MD5 eb612219a5a90494f7830a06cc12bf57
SHA1 a7cf8b650200fef71b74841d0e34a5ba9b4c1d1e
SHA256 48534ad8ca094bafb367dbf25a21e574e1b3432d5d52c3f992951656b345188d
SHA3 3031c4a004af471c35b4d10d742c062c246726b47b4e596adb77513cebfe11a1

2

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x128
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.19035
MD5 d7a11a67c0d5a86c81d585fa2bf56ffe
SHA1 a161dfb3238ab7b2248fb1eaf73946e6975d8c6c
SHA256 9ee09b7dbe48fc1f7433bf7aaf7ff0926aadca72a8ebab0e51537a1a77efc687
SHA3 45779474b790ab39f938c5330b344ba5f52dfa6b210ce9aeea9374773fba9b45

100

Type RT_DIALOG
Language English - United States
Codepage UNKNOWN
Size 0x11c
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.34897
MD5 d494e1f1c9d1c0d0971b4fffd5e555a3
SHA1 e69e2d767939f4a9a10e4dd99ea2ed6486390fdf
SHA256 4570e2e5ff633492692f0c96edbfefbfda6caa33bf2bc13bb3a74ace3ff3b147
SHA3 6e3ae0afe9e6f181cb8cd6df71041c5a3914aafb8c56fca15acbc31cda077745

102

Type RT_DIALOG
Language English - United States
Codepage UNKNOWN
Size 0x164
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.24322
MD5 0480b5af377e334656e3f2d44740a045
SHA1 37274af8dcf5b556d00bbd5e1d7792511cdf77da
SHA256 12959e5cae1bb58da7bd32301a37704501879dcda64297fec4b642a4c7e3f42b
SHA3 ad1987a1cec0d60df88f5fc1801fc916ce4fcec096868cc900fb526317e05626

7

Type RT_STRING
Language English - United States
Codepage UNKNOWN
Size 0x44
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.94223
MD5 907eb698cba5c7bb5634b04ed765ed42
SHA1 88102fc43a9b433b0c06ff34d8c8fe9c2467fdcd
SHA256 35ca54f9738cd57d0f002d1d5ea3ebf36567d0e7c66829c84b108e687b58276c
SHA3 78c6bfa6003c35b6c029320f561148572649fb8b298e2eedcab61a0ce2fd28d5

130

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.37086
Detected Filetype Icon file
MD5 d59e0d372ea5fd8c1f4de744376a6af4
SHA1 6883ce60e71a83424db0b41d0ab6bf61080e3de2
SHA256 b10e28a32eddb2ab20a46ceae59d9c0786911eb20f0c8dd2a28421f226ea2b8b
SHA3 5e39df982879204dd9f129a37d1e1c2ff906e88de9ae01b4418db5e8455e7ae1

String Table contents

&About Crack Me...

Version Info

TLS Callbacks

Load Configuration

RICH Header

XOR Key 0xdc36acb7
Unmarked objects 0
19 (8034) 4
14 (7299) 1
C objects (VS98 build 8168) 11
C++ objects (VS98 build 8168) 3
Linker (VS98 build 8168) 5
Total imports 119
C++ objects (VS98 build 8168) (#2) 3
Resource objects (VS98 cvtres build 1720) 1

Errors

<-- -->