Manalyze report for 10e4a1d2132ccb5c6759f038cdb6f3c9

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2009-Jul-13 23:57:08
Detected languages	English - United States
Debug artifacts	calc.pdb
CompanyName	Microsoft Corporation
FileDescription	Windows Calculator
FileVersion	`6.1.7600.16385 (win7_rtm.090713-1255)`
InternalName	CALC
LegalCopyright	© Microsoft Corporation. All rights reserved.
OriginalFilename	CALC.EXE
ProductName	Microsoft® Windows® Operating System
ProductVersion	`6.1.7600.16385`

Plugin Output

Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryW GetProcAddress LoadLibraryExA` `Functions which can be used for anti-debugging purposes: FindWindowW` `Code injection capabilities (PowerLoader): GetWindowLongW FindWindowW` `Can access the registry: RegEnumKeyExW RegOpenKeyExW RegEnumValueW RegGetValueW RegDeleteKeyW RegQueryInfoKeyW RegQueryValueExW RegSetValueExW RegCloseKey RegCreateKeyExW` `Interacts with services: QueryServiceConfigW OpenServiceW OpenSCManagerW` `Can take screenshots: GetDC FindWindowW CreateCompatibleDC` `Reads the contents of the clipboard: GetClipboardData`
Safe	VirusTotal score: 0/67 (Scanned on 2018-03-13 18:49:52)	`All the AVs think this file is safe.`

Hashes

MD5	`10e4a1d2132ccb5c6759f038cdb6f3c9`
SHA1	`42d36eeb2140441b48287b7cd30b38105986d68f`
SHA256	`c6a91cba00bf87cdb064c49adaac82255cbec6fdd48fd21f9b3b96abf019916b`
SHA3	`0c92d11f827d0503d4790b190c5d2b8981a2c93b2bf519c0164be9f3f3541a52`
SSDeep	`12288:MK8SOR3VRbImnDKxohj+5Q/oln46ucaOfRr5AWHeGL7GOK:MKm3MgDKGhC5GYLuca6LDod`
Imports Hash	`74b6e37d42a93828f7b59b2d770e06d8`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xf0`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`6`
TimeDateStamp	2009-Jul-13 23:57:08
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`9.1`
SizeOfCode	`0x60e00`
SizeOfInitializedData	`0x7f200`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x000000000001B9B8 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x100000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`6.1`
ImageVersion	`6.1`
SubsystemVersion	`6.1`
Win32VersionValue	`0`
SizeOfImage	`0xe3000`
SizeOfHeaders	`0x600`
Checksum	`0xeb7cb`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x80000`
SizeofStackCommit	`0x2000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`eea4cddd94b9150fb22eca33d2a8be70`
SHA1	`4fb927646bf3039e2efe48e5fac8f425b733b1ee`
SHA256	`e629da7f255fd4150d87b920b8e64326d9e6e826fb29fadf1cd9a0dee74c6dc9`
SHA3	`808f699c029e6a0d24cf8357f4282512f880eb50e8a4dcddefb82642d823e7a9`
VirtualSize	`0x60cc9`
VirtualAddress	`0x1000`
SizeOfRawData	`0x60e00`
PointerToRawData	`0x600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.34456`

.rdata

MD5	`2d7f7289c7e67e6bac0b8c76e7deeec9`
SHA1	`23aaec4c002ac539a4d6b78069bdaa85285faa0e`
SHA256	`cd78d7ea121a516858973b2e6ca1d204d3c60da9b61a4528368881e4f56b0ac5`
SHA3	`cc2a45c9ee37e52ae516680258b631a1d2af23b4920426ff5393d30a548fb83c`
VirtualSize	`0x10ec4`
VirtualAddress	`0x62000`
SizeOfRawData	`0x11000`
PointerToRawData	`0x61400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.77098`

.data

MD5	`75fc947e998896b478e820fd5b9e7416`
SHA1	`d3916696978dfb00c691dd60bac0c3e915146998`
SHA256	`b429cde148c474ce90a07fb30d2c3a3c296e31ed6fa968064538c6441d6b742c`
SHA3	`b1e4bf63fbf116ac77af872855433fa08f88f5fb90ebe94763b56ae0f1ce5031`
VirtualSize	`0x4e80`
VirtualAddress	`0x73000`
SizeOfRawData	`0x4e00`
PointerToRawData	`0x72400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`1.06514`

.pdata

MD5	`d49b1abdcf9cbc2cc51a5f567e9f9089`
SHA1	`0f61424490808eab543763c4358b5c240c923273`
SHA256	`4388accaee010c5cc4853f7fa1ba1677e146c7b94a51bdb392fdedf79984e16c`
SHA3	`987cfbd1a959ef6139b564e28fbf0ff1dfdb89d43336f8bdeac25c9d07bfd0e5`
VirtualSize	`0x64a4`
VirtualAddress	`0x78000`
SizeOfRawData	`0x6600`
PointerToRawData	`0x77200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.74696`

.rsrc

MD5	`4515d3322c3a2311c6fcae4570ac50a8`
SHA1	`6aa94e4e41ebddeba2b825229ef857ef8f6f405a`
SHA256	`aa0dba5b745388058c5017741cb7ef5b62cc4f15461ccfe1326199bffb90ad6d`
SHA3	`2da941ee2eb68b08ba3cbbb0e33b3e10b438c850f09f31f9bf56c347dff97bee`
VirtualSize	`0x62798`
VirtualAddress	`0x7f000`
SizeOfRawData	`0x62800`
PointerToRawData	`0x7d800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`7.54047`

.reloc

MD5	`660c76354f59a2222220881d1e417cff`
SHA1	`a77d20324bc73bcb501325f0337948c40633ff93`
SHA256	`24ae2a148729cb7ee92b9d271d051005c5ee2fd0c2f000998659aeb40a78d7ff`
SHA3	`18c38d875df3906dce79ca1de025688a4ca4bbb6e0fee78014e11f190fd4e26c`
VirtualSize	`0x37c`
VirtualAddress	`0xe2000`
SizeOfRawData	`0x400`
PointerToRawData	`0xe0000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`5.03505`

Imports

SHELL32.dll	`SHGetSpecialFolderPathW` `SHGetFolderPathW` `ShellAboutW` `#165` `ShellExecuteExW`
SHLWAPI.dll	`#225`
gdiplus.dll	`GdipCloneImage` `GdipCreateBitmapFromScan0` `GdipCreateHBITMAPFromBitmap` `GdipCreateFromHDC` `GdipDrawImageRectI` `GdipCreateBitmapFromHBITMAP` `GdipCloneBitmapAreaI` `GdipSetPageUnit` `GdipFillRectangleI` `GdipDeletePen` `GdipCreatePen1` `GdipDisposeImage` `GdipCreateSolidFill` `GdipDeleteBrush` `GdipAlloc` `GdipFree` `GdiplusShutdown` `GdiplusStartup` `GdipDrawArcI` `GdipSetSmoothingMode` `GdipSetInterpolationMode` `GdipDeleteGraphics` `GdipDrawLineI` `GdipGetImageGraphicsContext`
ADVAPI32.dll	`RegEnumKeyExW` `RegOpenKeyExW` `RegEnumValueW` `RegGetValueW` `RegDeleteKeyW` `RegQueryInfoKeyW` `RegQueryValueExW` `RegSetValueExW` `QueryServiceConfigW` `OpenServiceW` `OpenSCManagerW` `CloseServiceHandle` `EventUnregister` `EventRegister` `RegCloseKey` `RegCreateKeyExW` `EventWrite`
OLEAUT32.dll	`#6` `#150` `#9` `#7` `#2` `#8`
UxTheme.dll	`IsThemeActive`
ole32.dll	`CoUninitialize` `CoInitialize` `CoCreateInstance`
COMCTL32.dll	`ImageList_Destroy` `ImageList_Create` `ImageList_Add` `#413` `CreatePropertySheetPageW` `PropertySheetW` `#380` `#410` `#392`
ntdll.dll	`WinSqmAddToStreamEx` `RtlInitUnicodeString` `WinSqmAddToStream` `WinSqmIncrementDWORD` `NtQueryLicenseValue`
KERNEL32.dll	`lstrlenA` `GetStartupInfoW` `OutputDebugStringA` `RtlVirtualUnwind` `RtlLookupFunctionEntry` `RtlCaptureContext` `SetUnhandledExceptionFilter` `QueryPerformanceCounter` `GetTickCount` `GetCurrentThreadId` `WideCharToMultiByte` `GetVersionExA` `DeleteCriticalSection` `GetCurrentProcessId` `LeaveCriticalSection` `GetModuleHandleW` `SizeofResource` `LockResource` `LoadResource` `FindResourceW` `FindResourceExW` `GetSystemTime` `WaitForSingleObject` `CreateEventW` `CreateThread` `ResetEvent` `SetEvent` `CloseHandle` `GlobalSize` `GlobalLock` `GlobalUnlock` `GlobalAlloc` `lstrcmpW` `MulDiv` `GlobalFindAtomW` `GetLastError` `MultiByteToWideChar` `GetLocalTime` `GetDateFormatW` `GetLocaleInfoW` `WritePrivateProfileStringW` `GetPrivateProfileStringW` `lstrcmpiW` `LoadLibraryW` `GetProcAddress` `GetLocaleInfoEx` `FreeLibrary` `LoadLibraryExA` `DelayLoadFailureHook` `HeapAlloc` `GetCurrentProcess` `HeapFree` `GetProcessHeap` `Wow64DisableWow64FsRedirection` `GetVersionExW` `Wow64RevertWow64FsRedirection` `GetFileAttributesW` `GetModuleFileNameW` `FreeLibraryAndExitThread` `IsWow64Process` `LocalFree` `LocalAlloc` `LocalReAlloc` `GetProfileStringW` `lstrlenW` `CompareStringW` `RegisterApplicationRecoveryCallback` `ApplicationRecoveryInProgress` `Sleep` `ApplicationRecoveryFinished` `RegisterApplicationRestart` `GetTempFileNameW` `SystemTimeToFileTime` `CompareFileTime` `FileTimeToSystemTime` `CreateFileW` `DeleteFileW` `GetSystemTimeAsFileTime` `TerminateProcess` `UnhandledExceptionFilter` `HeapDestroy` `HeapReAlloc` `HeapSize` `RaiseException` `EnterCriticalSection` `InitializeCriticalSection`
USER32.dll	`SetWindowLongW` `SetWindowLongPtrW` `GetWindowLongPtrW` `EnableWindow` `GetWindowTextLengthW` `GetWindowTextW` `PostMessageW` `IsWindowEnabled` `CharNextA` `IsClipboardFormatAvailable` `GetMenuState` `GetFocus` `OpenClipboard` `GetClipboardData` `InvalidateRect` `CloseClipboard` `EmptyClipboard` `SetClipboardData` `PostQuitMessage` `DefWindowProcW` `LoadAcceleratorsW` `InsertMenuItemW` `RegisterClassExW` `SetWindowPlacement` `SetForegroundWindow` `GetMessageW` `TranslateAcceleratorW` `GetMessageExtraInfo` `TranslateMessage` `DispatchMessageW` `GetKeyState` `IsDialogMessageW` `GetClassNameW` `GetDC` `ReleaseDC` `GetSystemMetrics` `GetWindowLongW` `DrawTextW` `EnumChildWindows` `SetPropW` `SystemParametersInfoW` `GetWindowPlacement` `UpdateWindow` `SendDlgItemMessageW` `IsDlgButtonChecked` `MoveWindow` `SetDlgItemInt` `GetDlgItemInt` `SetClassLongW` `GetNextDlgTabItem` `MonitorFromWindow` `GetMonitorInfoW` `OffsetRect` `EqualRect` `MonitorFromRect` `GetClassWord` `EnumDesktopWindows` `EnumDisplayMonitors` `IntersectRect` `CopyRect` `CreateDialogParamW` `GetProcessDefaultLayout` `CreatePopupMenu` `TrackPopupMenu` `GetAncestor` `FindWindowW` `DialogBoxParamW` `CheckMenuItem` `GetSysColor` `SetClassLongPtrW` `GetClassLongPtrW` `EndDialog` `SetWindowPos` `GetDlgItem` `GetWindowRect` `SendMessageW` `MessageBeep` `LoadCursorW` `SetCursor` `DrawMenuBar` `SetMenuItemInfoW` `AppendMenuW` `LoadStringW` `GetSubMenu` `RemoveMenu` `CheckMenuRadioItem` `SetFocus` `MapWindowPoints` `EnableMenuItem` `GetParent` `GetMenu` `GetClientRect` `LoadImageW` `UnregisterClassA` `FillRect` `SetWindowTextW` `ShowWindow` `CreateWindowExW` `CheckRadioButton` `DestroyWindow`
RPCRT4.dll	`UuidToStringW` `RpcStringFreeW` `UuidCreate`
WINMM.dll	`timeGetTime`
VERSION.dll	`VerQueryValueW` `GetFileVersionInfoSizeExW` `GetFileVersionInfoExW`
GDI32.dll	`CreatePatternBrush` `DeleteObject` `SetBkMode` `SelectObject` `GetTextExtentPointW` `DeleteDC` `GetRgnBox` `CreateSolidBrush` `GetTextMetricsW` `GetTextExtentPoint32W` `GetObjectW` `ExtCreatePen` `MoveToEx` `LineTo` `CreateCompatibleBitmap` `CreateRectRgn` `CreateRectRgnIndirect` `SetRectRgn` `CombineRgn` `EqualRgn` `CreateDIBSection` `CreateFontIndirectW` `CreateCompatibleDC` `GetDeviceCaps` `SetTextColor` `GetStockObject` `SetBkColor`
msvcrt.dll	`_wcsdup` `_i64tow_s` `_wtoi64` `sprintf_s` `_strtoi64` `_strtoui64` `memchr` `strcspn` `wcsrchr` `wcstoul` `isalpha` `time` `difftime` `memmove` `memset` `__C_specific_handler` `??0exception@@QEAA@AEBQEBDH@Z` `_CxxThrowException` `_callnewh` `__CxxFrameHandler3` `setlocale` `__pctype_func` `___lc_codepage_func` `___lc_handle_func` `localeconv` `_errno` `___mb_cur_max_func` `__mb_cur_max` `__crtGetStringTypeW` `__crtLCMapStringW` `__uncaught_exception` `tolower` `isspace` `abort` `isalnum` `__getmainargs` `_XcptFilter` `_exit` `_ismbblead` `_cexit` `_acmdln` `_initterm` `_amsg_exit` `__setusermatherr` `_commode` `_fmode` `__set_app_type` `??1type_info@@UEAA@XZ` `_unlock` `__dllonexit` `_lock` `_onexit` `?terminate@@YAXXZ` `iswalpha` `iswdigit` `_wcslwr_s` `_wcsnicmp` `wcsncmp` `_itow_s` `calloc` `wcschr` `_wcsicmp` `_itoa` `_wtoi` `_vsnwprintf` `wcscat_s` `wcscpy_s` `wcstol` `mbstowcs_s` `exit` `isdigit` `isxdigit` `toupper` `_purecall` `malloc` `??0exception@@QEAA@XZ` `memmove_s` `??0exception@@QEAA@AEBQEBD@Z` `??1exception@@UEAA@XZ` `?what@exception@@UEBAPEBDXZ` `memcpy_s` `??0exception@@QEAA@AEBV0@@Z` `free` `memcpy` `_wcsrev`
WindowsCodecs.dll (delay-loaded)	`WICCreateImagingFactory_Proxy`

Delayed Imports

Attributes	`0x1`
Name	`WindowsCodecs.dll`
ModuleHandle	`0x74030`
DelayImportAddressTable	`0x73000`
DelayImportNameTable	`0x662e8`
BoundDelayImportTable	`0`
UnloadDelayImportTable	`0`
TimeStamp	`1970-Jan-01 00:00:00`

157

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1231`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.93159`
Detected Filetype	PNG graphic file
MD5	`df7d44f319082451ab88cfc17f064d19`
SHA1	`6edb3c3b5964e7b14b7a26e20594fb069838b1fa`
SHA256	`40b8a6c7be76e7f9b71a093fa5b2f5a4dde7f7a1173bac7c8eec0c4b7040c820`
SHA3	`62e8c95862dddfdcd1f7ed3ee4c8852e49fa671f5025d101c15243396c327f4b`

165

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xfe5`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91383`
Detected Filetype	PNG graphic file
MD5	`93b38cac3088dbdae755445bddf6bd8d`
SHA1	`114d2f08c488eae7cb12bdfd793d1fb5dbb5c468`
SHA256	`1d339716b84147504375ac45e353da38411b082c27f2274e853694039f96a6ad`
SHA3	`0fe2a55c6e19ce8b9ddce22c5b4f0a034d7ca4329f54af502e1dfc255773030a`

170

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1077`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.85822`
Detected Filetype	PNG graphic file
MD5	`8e0a430203f33588ee12ded7507310b6`
SHA1	`cabd09446f0a782db0a48222df8ae991317056b8`
SHA256	`9772bd69ff03f9322312ef9d9796c4c1fe7a4acc80790186373e02f9039af748`
SHA3	`1f361d5649b3bdec2a35af49cc9aad782049f9f7c5ecf3da73802b5cf938ed99`

175

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1230`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.9086`
Detected Filetype	PNG graphic file
MD5	`1c4f407476f8cb93a4fd0c26c2e5f29e`
SHA1	`7a79cc43f3ffafb1053e3a77e5a9b100ca05450a`
SHA256	`fa921bc2a74be81f510f31f4f40429f367e55fe303dc5a8910805d4f6966c3a2`
SHA3	`95fabbf0a18765f8d8a34495eca387109623f0bd46ec0003dfb40de986a12c5c`

180

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1336`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.84487`
Detected Filetype	PNG graphic file
MD5	`c0d41dfbfb9c1757109595b30f6a5a6e`
SHA1	`e5d27fb8f2fac9bfd9ecaefc8d87031266213435`
SHA256	`325ac65285640e8c60eeb9ba77e44bee53e9389f9698919fdc7545666579672c`
SHA3	`25e860011bd55ac5ad720d29fb76bd88c589372bd5c00dc229562fc734755cc5`

204

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbb3`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.87544`
Detected Filetype	PNG graphic file
MD5	`3e3b6c62e5ad790357ded1ec7fb21160`
SHA1	`db34a4947c5b85d11d03371cac746187a55c45d1`
SHA256	`2524126e1ca38d72bb28dd4a3d1fb58c05f8b192fa33df8fe06a015af5b2fb27`
SHA3	`18e51a25712566dec44c09a9b700409ea756bf442c52380b788f204382142563`

208

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbe0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.80183`
Detected Filetype	PNG graphic file
MD5	`323eceb750cb2c7eed1eff40bd85c786`
SHA1	`54174b08ddc34d631bbecdb4ff344ec1c9bcec8a`
SHA256	`7e25e7a986de3fdf8dbafe8eb328c4bf6643cab7b740283eab77eb7e188ec071`
SHA3	`5ab5f57a9c348d7b9b4e5880d71fb8c0bcc98bce35912361f6c06f791abd0a45`

212

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xcb8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.8458`
Detected Filetype	PNG graphic file
MD5	`14d3e136d6bb6a51a8a5a0bb713a043c`
SHA1	`025e7522e798e9f105af13cc2b5f942c7e2b3010`
SHA256	`41756c026001ad23da43c6a9421d57da934df941012dee899f734f96fc56f99e`
SHA3	`0ee23284b101b669f81c0ff85ccfc6ad851c000a349e3ea7c78d2828a9399d9b`

216

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xd34`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.64622`
Detected Filetype	PNG graphic file
MD5	`cbf71ce1e2922ab8da6ac8491f4c6e38`
SHA1	`fa8f28e107b88ccba4a0d23cec8f125bdbed3a6e`
SHA256	`19cc8d8e8b3891dea809f913a853abb3074c9a2a52ca924d791b6eecfc0d7ec7`
SHA3	`15aa1069c14371487cb54b4c89e1d2ab85aecfff55c263ff6e148fc4daa5663c`

217

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xea5`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91274`
Detected Filetype	PNG graphic file
MD5	`8aa6970a981211f051cdec7b4a7c1b7c`
SHA1	`d27f25133135a34c586792b78177c5621b0db874`
SHA256	`af066b3666c742052562ff77e28ce5d2800c9efd68112e02fd20e41d9e93a6e7`
SHA3	`206e2fae3755e237160bec2d6d706346bd76f0961e984a9576d5c1839e46b64b`

218

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xebe`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.90849`
Detected Filetype	PNG graphic file
MD5	`625e09e4a9b767c2de57950aaed0ec13`
SHA1	`c0d95558bd1e93dadd94139ad8095b1f6786abca`
SHA256	`438fae85ebfdf3823fd2badea451d622b495d6302d83d6a1a8462883689102e8`
SHA3	`f1d679bedf1b242572b76c42a3de44b4cdadad4d7cf1abdd2ca637af27fc4751`

3000

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x114b`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92274`
Detected Filetype	PNG graphic file
MD5	`c304d850f95927e187b8cb06c778a4e4`
SHA1	`4426aba5b0f7ef0eb1b6cb349887abbfa2aa2673`
SHA256	`78865b18a62ba47399dbac48a1830cba6a947ce94aff87274c876efa5e6c5964`
SHA3	`8c35eb6af80d1ffcd0016333ac894370ca091ab701bfcd1d4baf97b2a0dfd054`

3015

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x101e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91615`
Detected Filetype	PNG graphic file
MD5	`19e2e0b718eb10d30a5143e20e235df1`
SHA1	`1a8e89b6a5ad636b20b600186ee58af48cd5a1c4`
SHA256	`9b545a7b4b13f58d4cd409fa470268dbd6cbfd34c26878d33d74b9b95e239500`
SHA3	`6c683582d0ea7d8846fb1ec9a9dc28f9b49c71a8efa636d4aa6fcc2f4afbd3eb`

3045

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1262`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91575`
Detected Filetype	PNG graphic file
MD5	`f7b2c8f560b5b6391cc75531c4cb3af0`
SHA1	`399a6bd26f51aff56906602ee75f3f3f3cc5b37b`
SHA256	`235650609f22a4bd38a4370ecdd9c3e661fc34c5d11d6046670ecf90a83ea982`
SHA3	`bbe89c66d9847b5f96edb91781f5f70ce39268d6e2ba3949ad73ce42487e2d83`

3051

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x135b`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.93255`
Detected Filetype	PNG graphic file
MD5	`fb040223d9604a28e810cef1b69df327`
SHA1	`bad50c833947ef0356fb4bf61a6af8b4c79715be`
SHA256	`fb0e140bc2f55f92728b783cd941b4987b9f8ec75d0535762f7dce21290c65f8`
SHA3	`5701f9c443ff4cf21b8b2a99222664587a6f88f3b341ac77d744fb9636fa0efd`

3060

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x105d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91988`
Detected Filetype	PNG graphic file
MD5	`1059397749242b60f7094aba1492c618`
SHA1	`bbd3c22aca2fcfcba5c54cabf20f8e1640ce591e`
SHA256	`227d13b8ea59200e78a40cee7b12eaab4d36dac87300e856484ca15a03547445`
SHA3	`3db5df5f8ebad6956fde23f2858fd2763e09024fefa8ef39d5a778a4da9b8981`

3102

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc19`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.78457`
Detected Filetype	PNG graphic file
MD5	`4ea6ef7acbd2d5c54a058a7a10acf1f9`
SHA1	`0885513162640f7cb6bd0d9902b0119b5ca4589a`
SHA256	`26eb9441184f7e87f0ab20410bef2714bd07c134a19eaaabd476c77d3c3c4822`
SHA3	`efed7e623b141b324df99b966ff0f75c3a50a06336ba5d36261be32c32081415`

3103

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbcf`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.84459`
Detected Filetype	PNG graphic file
MD5	`5e3de6c6deb45b4085d51a4edab76e16`
SHA1	`e70f0ad731a09d4ec8486f291350ab8be600d63c`
SHA256	`216652c7dd32b960a7e9ab7d5426c83b528f94e9359218cae3dd01197d128885`
SHA3	`6da9864c6bbd1e5ec4fc1385d7590a25fe59fdd66c8447a725541e0e3c355585`

3104

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb95`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.87462`
Detected Filetype	PNG graphic file
MD5	`430f8761968bd0b6541f0f0254979a5a`
SHA1	`d4e8db0f0cd749152dfaeab5e49c17050e1266a8`
SHA256	`eb766d9a2949bd95ee9e4903d5e1eaae2aa204caca4c8cebe4f0ed860af254cc`
SHA3	`525f9f5499a9fa4cd8ff59dfe6c23dc3e51c97f27c3c63b49e3a03b6ed2aa34b`

3105

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb69`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.8714`
Detected Filetype	PNG graphic file
MD5	`f2524087c76b92b456f03cbf0c916b9a`
SHA1	`c000a088bd7d591fcff2c9f0ad47938d2ec611d2`
SHA256	`9ac586403e9422228d351881ef6047b3e658025f0e9fc73b5ed9c6ed352b5228`
SHA3	`b319e0f21af2c904d9f0acba67512a56339c49b358cad3f749f6441fac1032f2`

3106

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xda8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.62964`
Detected Filetype	PNG graphic file
MD5	`479b55ae0aaaf308fbecbb6b9317822e`
SHA1	`766c2f34ccac457ed6ad1801d0ab4e15018d4635`
SHA256	`68fe733ef8fa1cbe9c8079fa50fd061aa49ce2eb24a5a0874e37cd7f58ad4376`
SHA3	`8dbd887cff148f535631d50998bcf066f1f7d251e4b990288762ab7362664eb1`

3107

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe45`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.49249`
Detected Filetype	PNG graphic file
MD5	`6c62aa354f6ecd1ef3b46fc495221f7a`
SHA1	`b00208a17016a00b009b21c4d15d142d95f1c7dc`
SHA256	`6f36d87c63cc8a30a0caaa876fadb3e1b743e587d04a9dbe15897f34a1d49e56`
SHA3	`0b524e5266e0c7ed997ddc7c7be0753e48a43709f568a52f84b6cbbc30ff9162`

3108

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xef3`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.40967`
Detected Filetype	PNG graphic file
MD5	`a8355faa6489d73f7f2a60c3e9a818c2`
SHA1	`2e8a8d302bb7f50e17d4f23bd84f3dc760d93899`
SHA256	`3e87de00891607a425b905e117c71967e31cd18238766f1d56100e7fbde3f0c2`
SHA3	`3c82d19946073ad9a9c9ca293b5e94f2e0bfca4d2a2f2da46423d57d47c53fa0`

3201

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x154e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.43621`
Detected Filetype	PNG graphic file
MD5	`753f3fe7db8136f394d7825dd0cfd33a`
SHA1	`5ebc296db75000a9d17a4cc77df9bd1cef60c75a`
SHA256	`8994411e14e62ef86536c7810f9ed6b472b85c69d8eee0823692582fccbbba6b`
SHA3	`e29fdfbd51504786ed9b23183e0b23e450edfb6b8003f24f68e71ddf7fc67ba1`

3202

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1114`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92671`
Detected Filetype	PNG graphic file
MD5	`0eb7d8d1ac5060bf0592325e5d50574b`
SHA1	`332b233975774e2baa6475d94c99d005540965d5`
SHA256	`d074b666156983996fbe642d4e99e4bb5403dd6048ba86f0bd6819d087d4b826`
SHA3	`2bcfff87f4ed46fbfb371098afe96f7b25dca1f1de63068aef15deefe035f847`

3203

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc21`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.87445`
Detected Filetype	PNG graphic file
MD5	`af4ca207de356adddb8d5acd3633d812`
SHA1	`16163d34b7a1d2a9354261ee0cc9f336f7d77483`
SHA256	`3da3fed76fc86faba470f7313036c646c50160486d561892c61969037cde7772`
SHA3	`4c45caa6041d7143d7508ae6c439324a5dfd2c6503e11903d0d14fd758a93ea4`

3204

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x11d1`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.8743`
Detected Filetype	PNG graphic file
MD5	`d2224fd7de73394ac84738c1a525e9d4`
SHA1	`6f43520a8fcd8582a5c4435077a50f004feb0f5d`
SHA256	`73a8b9acdb04309d7b61add88ed12d884ea27112e96ef28abfff0c15dba2fa2f`
SHA3	`8b9cabaad1ef505c6e611266137503fc5867ec9f255aa5bbb7b702d6154ee6ec`

3205

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc31`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.80187`
Detected Filetype	PNG graphic file
MD5	`a82faf6e31612036e2103a5675fab4d2`
SHA1	`bde1f0d64d670dbca1aa038b76a8a2805cd93d30`
SHA256	`eb588af4ff1b1861b81837ccce26626431787d7d76a00c066080a7a27e5fef69`
SHA3	`93107c8cbcec169bcf0089c34de8a1fbecb0acb639eb425b8a5969880fb6ce4b`

3206

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x130d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.9218`
Detected Filetype	PNG graphic file
MD5	`80ad9cb63f9b66cb75aa7f1cde223936`
SHA1	`edbf85631c33318d6a90d8c8da6cd766ed26cfc0`
SHA256	`22c0aad7355c457e87864890a9c2cab2ced9df64aea21258539b619896b3d821`
SHA3	`669ebcf789e436714af503adab29b6b6732c61ad7c639b2910034a4bdfb2b6cf`

3207

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xd44`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.82316`
Detected Filetype	PNG graphic file
MD5	`3af212f879e22bf6f20fa1eff6969da0`
SHA1	`df31d4f1bed7f5c3ecb43dd63923f695f8808e4a`
SHA256	`cc3f4c4ba7cace196c34ad1129763865056b89537fd49c02939e5b10a260b2ba`
SHA3	`7758233f4693bf46eb4f6dc26c0f704907fc4a97dc04b09a71b9871c8a5bc7d3`

3208

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1451`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.83904`
Detected Filetype	PNG graphic file
MD5	`0fe661d87bd2f249ea977da9393b578e`
SHA1	`ce28eea04182f1bb4ba8e2129eccb54e9913cd21`
SHA256	`7292930481b4d29c0ab19505f484236168970ce6adfb5ea3dd6cbf8dd56091cb`
SHA3	`3634f911bec985f23d3437c46f85b68ee4b362ffcd7f31e6aba95fa1b5fd6ed0`

3209

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xed0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.67437`
Detected Filetype	PNG graphic file
MD5	`6cf0ce66d8f1bea9979b2692c2c51a8d`
SHA1	`0fe42af969eecfca4b482ef4bea769aab62fcabc`
SHA256	`9b8125730861c57b410450c36205e44eaa4b36f57a2a34a8516ce968a6ddce9b`
SHA3	`7fc0c0bb531299e5f28447e6bce13c9ab93107d6904fc68bdcca491934eb3d77`

3210

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf81`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91352`
Detected Filetype	PNG graphic file
MD5	`1824fe6c45788ac5f7fcd0aed79c64d3`
SHA1	`42ec14718173d99ebdfdd198f5903ab6625587d1`
SHA256	`2f98b6d24f5f18ac8efeca543f7d1ca5bfa6d30e4b5914792bcb1cfe578be3a4`
SHA3	`a7ea30685f6c503dfe7add398cc4308f26585e6de97d8dfc861f9820b57fde93`

3211

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xfa3`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91083`
Detected Filetype	PNG graphic file
MD5	`f2f39b53a6850d6ad7c412bd19bba4e5`
SHA1	`c793aaa65e685a8aa8118d098e18e07dc5627ee8`
SHA256	`e324fdc99531c4fa2e85e21b3020d878ebd604f3ef24157473412c4e2492086f`
SHA3	`adac354a8ff3b71498cc3be94e8e0418ed69fcaacaae3b50fef61d7d040e4c4f`

3214

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x12f8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.93055`
Detected Filetype	PNG graphic file
MD5	`74d31e08604e196f2b41b285063c8660`
SHA1	`7a1088cfaf4c22e30158d9ad4fd8b5bdb90eba82`
SHA256	`707a4f1d2275cd60099fb6bb5549bd117f4a0b5308de036ef8525501595dd3ed`
SHA3	`72b659dd47c020202de61501665df3763a77b3ca9f9d18dcb25a948750a361d8`

3215

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x15d8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.93082`
Detected Filetype	PNG graphic file
MD5	`931bc543f1f0a05122d9b874abeb1867`
SHA1	`3aaf23896aeedae20ad35d3e811bef5421ee066e`
SHA256	`a87a38ceb9b7408db315ab9633852461d5fbddf327efed8d5d098ad6f80dad23`
SHA3	`5e60f1d8c8e69026655b70af4a0daf9efea1ac669c7a6943e8351b2434a0ae22`

3216

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x11b1`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92159`
Detected Filetype	PNG graphic file
MD5	`0cd076d6da97819eabf55bb6996d1cb0`
SHA1	`4dfa7a186c79935b95773fa7935cadbf32fc027d`
SHA256	`a634b37928ba9ecf5c1e490c6bcec492f918c1f9567ad8b684084d893e71d52d`
SHA3	`f0fd4312ab346a6ebc7bb38c212fad1608551ddab0a58a64f90177445b6fe641`

3217

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1588`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.93289`
Detected Filetype	PNG graphic file
MD5	`e85ea906250242e052891518095f222e`
SHA1	`052577b58d8487496677ec3ec6652310fe8518b0`
SHA256	`3896985fbae24d763f342df81b11e5efc4524e13bd5f07b269bd96378cfae851`
SHA3	`f1d8ef4d34bd14538270a553b32d5205716af1436b8c2e299bc3ccf793f4f284`

3218

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x11f3`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92149`
Detected Filetype	PNG graphic file
MD5	`1817801b747ad3182f385d0611fc58ad`
SHA1	`d1b0ddd542b008762902d188624367a22a1699f1`
SHA256	`682798dbcf5fbe8a538015f142e762db6cb8241c24b6f422586a79d2f3ce5613`
SHA3	`a3121c70aa3bb25281e05dc25226aa315b61e422f9fd19f9279c502032506a22`

3220

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xca0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.78632`
Detected Filetype	PNG graphic file
MD5	`7f39b0e8b5ff2cba99868c10d49f991a`
SHA1	`acafe755b45e889974a87c641e55186666a7c4db`
SHA256	`d990f4c52408bbb78d491fcab5018045b84f36c09d9c914efcd99cc77854235c`
SHA3	`d589897514c34048cc7327e4bc5f443c948ff5910b330e5c4efe1699029c95af`

3221

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbf0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.86402`
Detected Filetype	PNG graphic file
MD5	`8183dd51ad4c997ec75f50d66966d4f3`
SHA1	`5645f7a348fb61f360bae1302519efbc187b50d5`
SHA256	`d63af5211d8758f77de82794fc01b26d2f0d4c9bb6aebb0b9be0ec09a20ca04c`
SHA3	`285803970e303e3a3526fdce07e5b0bef3c0379b9cb8f9145c3d13d9beb1f581`

3222

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbc4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.87531`
Detected Filetype	PNG graphic file
MD5	`0c6e01755dddbe8899d629aaef12c98f`
SHA1	`16145511badab567a40534a14fb64baecf0a5372`
SHA256	`bfb5f55dc4443a7ceb2c9e68ef38cc54022ca139c7ec959c41aa6ce3d786e087`
SHA3	`7873cb5076282112325ce5c22bf049875bf534bdc01142ccc8f56a1ccda5de1b`

3223

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf1f`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.46952`
Detected Filetype	PNG graphic file
MD5	`d35acf8dd32c9b475f9dcebceebc9117`
SHA1	`8e603062453fe5be1f46ddc8775bbb5066c40faf`
SHA256	`e430d477d4f053d6ba91c5a3b5652b856a1b3bc0ae5f010735c898c7ee166e3f`
SHA3	`f7e07f2f7ebdb3176f431397d9984cc4a039d0ee06172070379287b3155bc6eb`

3224

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1015`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.35388`
Detected Filetype	PNG graphic file
MD5	`740d00baeeca5ec0d0ac2da75f75cb97`
SHA1	`8bc3d4a0959a4c4faa52a361124882ac31c4bfa6`
SHA256	`c2ecfb7f1aa7df069a1ba329391f9d0287c2c1453b0620082be579b15993ce52`
SHA3	`b46b3efdf8b5d2407a81c8ae2fb7998e4411f0bfd2e5e1ef65df6adffe9df594`

3225

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1096`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.30271`
Detected Filetype	PNG graphic file
MD5	`facfcb9cb2e6b368cb0837090e6e1970`
SHA1	`e1946900abb4d1ec927501904b6f977b4d53a07b`
SHA256	`f66fd60a4a1f03065cc9066b7663af31f3ec4fb2597a68d2057f77eac0adc576`
SHA3	`4e24db754300114ababf64457f738dd5bb947490d84a63e25856f1ee6329d760`

3228

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb8d`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.86942`
Detected Filetype	PNG graphic file
MD5	`dd783a3e4e5ceb5029edc17c221254fd`
SHA1	`a7f20ad1e7dd4cfcc203917f2c65bc863abaa79e`
SHA256	`d48296687c4a01d3e0d4dec945438cd2917144a9889159c533a76ca8b4cf3dec`
SHA3	`02fe1d6814b7252fbcf8493ba163ff695f7e1cbfc04dcb2c1ba601e69612807a`

3301

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1ac7`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.92843`
Detected Filetype	PNG graphic file
MD5	`5077bf3b3cde85a3130a2cbde8ab40b8`
SHA1	`04b11d795893959b19a81979db89db41570f9fcd`
SHA256	`ec1cc697b022f7a106500ad16e2d4b31b9ae6a2932ff7a0fa7533132d09dc483`
SHA3	`7db96c9d3db5307586b01e5d06cfdfd37efae184f0e25a7fb283e60fb39a041a`

3302

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x11ab`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.899`
Detected Filetype	PNG graphic file
MD5	`5897eddf87cc1125e58d9567e076d218`
SHA1	`696b7e13d40babfb2bc07abdabcb9950404de54e`
SHA256	`a86e84db3218aed9ff16a41eee106864c273d02d96d175eccc44db69db9b1d2e`
SHA3	`f86a373713a9f0d19ab97426c5ef18a5e5abccd7d7ca24a4b7c62272c2219f35`

3303

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc38`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.82148`
Detected Filetype	PNG graphic file
MD5	`0a654de448b39aaaff00c20b38b5687f`
SHA1	`88c0bc210c85902ed5c2512df8b080ddf343cb39`
SHA256	`13856e63c333a0f5ab8ede39f60de27c3fefb1ea0250965d510527faa9c6fe74`
SHA3	`01ffa5c6e8196e68e356d358bba722d0f079e35913949d142c7caca07aa0d7a6`

3304

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x126e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.87423`
Detected Filetype	PNG graphic file
MD5	`85c78028294e255676d6e9ec35ac539f`
SHA1	`8b6719db5d9d5177bb1bb6c71c536a4cbf75953a`
SHA256	`22d8c7edd6a2e5503ef0a3afdb671ca2151018906b4a122de59ae0a0104de61e`
SHA3	`61e1e32dd177fd3ddf3604b7ab28c5909dccaccfa0dc3faa88e5eb5a8c66d5ee`

3305

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc96`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.75744`
Detected Filetype	PNG graphic file
MD5	`6db507d78986937fd5863376f9cf56e1`
SHA1	`d97d39e957147a01acc3603aa82a712b997c987e`
SHA256	`e6a387bc6c5faeb6ccfcbad803a4883316b1ab8ee69d94611c3c0f0812134f2e`
SHA3	`2a2e0b736a58bfae3463a9c18c54e024dda0fd6b053d06375b72f55e90c287ed`

3306

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1427`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.89506`
Detected Filetype	PNG graphic file
MD5	`f48f95b10c7856e7495b35e219bbe007`
SHA1	`d6f43bd76a3be05ff3dc727ca27e347ede77146a`
SHA256	`2b61580a8649783fa2048044eb888db71334d3ba70e3d5f89bd7c532636a97b9`
SHA3	`ae6a37a4db5d9f0c9ea8872daba1afac2f21979b99870ce1570e4d98e4156ab6`

3307

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xdfa`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.71513`
Detected Filetype	PNG graphic file
MD5	`43a4c2889f137908c853f35f3e9a307f`
SHA1	`21cb4c5f033655da3cfa1b186818b6d05d805b59`
SHA256	`83500ba57efeec52bf3749d41a1d7aede3f3390c039abca3f453ac2b1918999b`
SHA3	`beaa0b3e58362b47e7f9cd97235e5ef5178cc3f7402304f0866ccc7f5f6d1fd1`

3308

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x15b8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.75185`
Detected Filetype	PNG graphic file
MD5	`d1a28f111c6bc94587acac1459ce0037`
SHA1	`04518ac8caf1258b09ca3bad41ec879d8b2ff1c5`
SHA256	`50c058223c6ad01d108f4d2feadb2e9d02bf2ae117281257c9f217187e6f5140`
SHA3	`eeb0661985fd94e7d279b106ec226d33e1c19ee9753a5a028d78b8912e745b02`

3309

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xef6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.40111`
Detected Filetype	PNG graphic file
MD5	`5d3ce075495732362428674342afeba1`
SHA1	`1485bd39d4b87404e82355f3234b8775ffa15100`
SHA256	`d3047ac44685bb631c57afcfbb354b984ad9b61c80b9bd5dcd2dbdda50a1db51`
SHA3	`a3da924cd2818a5fde4c2639126a4e298378d68c613451024adf539647113d6a`

3310

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1044`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92098`
Detected Filetype	PNG graphic file
MD5	`36ec641b1dbadeaac1366a1663d0b5e8`
SHA1	`8b36197a123f31e102dff1fb5dcb58e729bb0cea`
SHA256	`f1bf62b5bb80cf88501e81d104e60c3cad85717357cd00e3cb1c5cd89abf4e97`
SHA3	`db6e2c45b8708034fb40bd06105e7a8e33fd73a66b958dc0e68dc8d9fed4f3e0`

3311

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x106c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92272`
Detected Filetype	PNG graphic file
MD5	`a7a5147bae1145307e37b459940bdc37`
SHA1	`00755dbbc422218da97fbcf694cd60d3c7c3db05`
SHA256	`c275ce8402b160b1a3c5eb7f5882c96d00ded9917a02d29e02c2c9ef73884eff`
SHA3	`8e043eecab1d0b7f14113bf808f814f0dcd1606992be86a950789f30f0cdf9df`

3314

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x143a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92943`
Detected Filetype	PNG graphic file
MD5	`3224a55a7eff1fccd461fa230a925ae0`
SHA1	`b92a343ff9bc0dc7cf15382904065475c1d20279`
SHA256	`ac306a5498247a0d1020c9e41eb699d44357afad17b2f7c2eb68cc1456f1b87a`
SHA3	`b298a73bc9afcc4fed28c28536d1ca699d60729dafbb4afe6edf198ac2fca380`

3315

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1841`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.94054`
Detected Filetype	PNG graphic file
MD5	`53f19182ab7d66bff5fe452ecfd77c91`
SHA1	`57ba553db6e5bb16d7508baa4568e8d2c093203a`
SHA256	`9146ce6178e256f27a3d3851eb335a7999221ee3bdea3b24ec0b60900aa11835`
SHA3	`f19214ba9b1d9c99714527a524e7a43872b62ef17db3c8a417ff40ff13feaf97`

3316

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1344`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92336`
Detected Filetype	PNG graphic file
MD5	`530e41c4d184ace382efaade04aa4874`
SHA1	`dc16b26c2b87ce49d04941a1f10ed9b4d4ee3eaf`
SHA256	`e22510f3105a219453089443f2376d4bded46d95b9793ae26407d4ed0ba0494d`
SHA3	`efdd0678e7150a052b4b397bd4c0a415899741f802d0b274a7dc982d6d59dc64`

3317

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x19c3`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.93995`
Detected Filetype	PNG graphic file
MD5	`bc867e69e4521f3aa71ce24483f54325`
SHA1	`86bdad91d275d4ee758c68f684b8b764771d8525`
SHA256	`d950a6e1e98e17ab273d65567a9caef0abd25a689727cbeaa6e820e072f89368`
SHA3	`385f283d073a68fd223b5ad4f531c611430d6c4e820049e81d65eb4f6ffd5cc9`

3318

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1375`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.92251`
Detected Filetype	PNG graphic file
MD5	`57ce4202b465d7a61436239d75d9b993`
SHA1	`4960eb921a48c189869fe6aedefa3a046ffae66a`
SHA256	`bd19c41112f41bb2c067caaaa440a40aa75d709865fb3a3c5864b6fd1b29bcec`
SHA3	`fa6386ab910f99eeb6e4198f93487b31c556d13bd2292359fa848f48bbba689d`

3320

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xd15`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.73674`
Detected Filetype	PNG graphic file
MD5	`8d0ebae1ad845858c63b9d9f6606219d`
SHA1	`cf583ffe9c830cbd57235eb85c40992cf9fc2d28`
SHA256	`d91fdb3ea29fa92da6e506d6cf8ba78be31ecd336aabe722a13420eb4432830f`
SHA3	`9d66e9c6a35415007615a945fc8f6eb7b63f33d619f4a74efb252c86c6202828`

3321

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc60`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.86176`
Detected Filetype	PNG graphic file
MD5	`c228ce28657beb4df5986ff82535b540`
SHA1	`ceca0471a5e8d8621cd281a5d38b63b90237f719`
SHA256	`39c872ff343ac162b401914dfd4134539b1a3771a8c815012f8a73281742c8e2`
SHA3	`10bbbe8b311860ce56c884cb07b2c1bc2e96ba71332825a8a8802f05af686d47`

3322

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbfa`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.85848`
Detected Filetype	PNG graphic file
MD5	`872e2b51493df1bf0b8c6c01930d6b4d`
SHA1	`80a3870f10b261cc33baa82be9172ec3baa0cdc5`
SHA256	`1bed41ce5936247aaf8f9beb2dd610a74a57223be207923f73630a4cae2275d1`
SHA3	`67c2f4841df71c936d51b78020ea5e32d9ec694883d914525a5d7932915c1f9d`

3323

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1093`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.19117`
Detected Filetype	PNG graphic file
MD5	`2939f7e65e25da40e1ca091755c6b534`
SHA1	`32a74efce32db4d6c55eabd9489c7eb8121098df`
SHA256	`d9eb72b0bfeb3737c0aabf84d0bcbc7597127fb79d4ca4de8b585c74e3a460fd`
SHA3	`009a58742fcfd839cc4a53181265801837002e905e98e58ec2eb0b5988beab84`

3324

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x11ea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.97214`
Detected Filetype	PNG graphic file
MD5	`33b81ddcc7cb0273ad6ade4c25c8791a`
SHA1	`47556e1f16018d14508bef53ec5534be9c6c285b`
SHA256	`213426aa956c8d420de255c399fe1655aba8ac14e02ccdb93dac68e9f94f5242`
SHA3	`997b933f5b3a07cb566023a9ef2302f76da522a1c3c24ff81f82cd361d0989fd`

3325

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x129e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.92389`
Detected Filetype	PNG graphic file
MD5	`4386ca4a6b297404959b1a22951addc9`
SHA1	`577565fb98116d816109b8bec88a894d3fdc2444`
SHA256	`b9c98722b69196c52417c1cd32448de28e8e005dcd22c6038907dd4d37e428ee`
SHA3	`d4aca52d860c1fa8a680e748952d78f78a17f07bac5efb7bd7e9343c97ade271`

3328

Type	`IMAGE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xbb1`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.87262`
Detected Filetype	PNG graphic file
MD5	`53c9ffbb001834d5e51101a2866adb7b`
SHA1	`6b87d2dcb3a1f6a81f9075c1899dd870633c70d0`
SHA256	`d494c4de3e0f2bc266561c9df689a32559eed6397ba23a8959be1cdacaeaf57b`
SHA3	`3fc1c1208dabac35180a2bf0e50d86eefc55b97c3a3d726fca51287eac6f0a26`

1

Type	`MUI`
Language	English - United States
Codepage	UNKNOWN
Size	`0x120`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.8849`
MD5	`4887eca7951909298ae93c41720bc044`
SHA1	`e24a081fe9cc94c076f4fb4f532cc7d03ca7b894`
SHA256	`1189f2d33017de0bba5979474556b45efac85675aa86bd9b4c5f32f640d7143b`
SHA3	`e2a64cf860c57f7b0d70034ed6974cccadadbdd110d3f7b0ed60532e330d78e1`

1 (#2)

Type	`WEVT_TEMPLATE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x128e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.78614`
MD5	`00aa118f6ee77296a88491c519097c87`
SHA1	`25e2e64b37e84144ff7eb4a0b6ed37a30e99b4fa`
SHA256	`34e1cad1c6451034eb3dc1d208d4f5aeaebb65c028b8023fd4755377b17acb2e`
SHA3	`770f81b7fb16a5537fce743c99fef425227dd6d8f96c6095538683488e5a9f4f`

51209

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0x561a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.60979`
MD5	`8c41ea4a8f0abcc24d58e9989c66cdbc`
SHA1	`bfda2c943954d3d30f54017d3e62cf088750e9c1`
SHA256	`7d27a665610b7389487909c3fc5593f4b45e4e91b15c277cd586cf290ec35561`
SHA3	`481b9c72dcaabfa6152a1644a7e2de14972d9670fdf41d7815b79394e75066bf`
Preview

1 (#3)

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa68`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.36045`
MD5	`23d2512da6ce0897f0e95b0f7777c776`
SHA1	`a7823f42363e6e5b9cdee9d93265186203710865`
SHA256	`2d4d6dcd309e5018fc8b6445cf5fa5a2f08bb2464efe64762e8cd585be751fe7`
SHA3	`c284d71a5fc0a90d6f842a5c2b325e79c78eaf24d4a176680f713514f394c134`

2

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x668`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.49272`
MD5	`c7e66165b1c47d53e4ae6cf2fdd70841`
SHA1	`a8da73dbfcd318f71d4d52b1f80153d76e06e922`
SHA256	`5087336fad85275ed71107c93fefbbe21274702c67c6ad7095311ff0ce821b43`
SHA3	`2f1b4a62fec6021b40370d417317c420c3dd8631f51ad7369ee25d778f58e1be`

3

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.50234`
MD5	`75ecffcd6164820a957d6fe28571caac`
SHA1	`1d64964aa8d2819d0df0a16f3d70aa8392306a86`
SHA256	`f11c973df6d3ae088f24b3c0dddce432ede3bd6ddbb8d1c25d4dfbbcca3bc258`
SHA3	`a55e55af7f92f2255c1e299a621bdabf3742ff7f22f285fbf8d53443a1b5e354`

4

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.75562`
MD5	`38b8092222b5cfd377de7a23436bc120`
SHA1	`da49c6d35ab95e78d0c811fab2316997ab91e0a8`
SHA256	`fcc7d3d98399799a67676b153a3c9eb27308794d6aed486c736b088f4aee5a69`
SHA3	`fbc704248ab3067a675244cce212eecbdc240b46581ec8d7cfcd02c104f68c62`

5

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.22975`
MD5	`17ed59dbea7e5f30f0a1bca5444c852c`
SHA1	`51e09159ab7b212a3bcdd1b2d48c036cd8a19923`
SHA256	`4e9f0ea6c6dbbde1ecd6f4f365e203ce8c6883230a49c0e815a88985aaf8943d`
SHA3	`937f0fa016c4197a6890faa3dcfe5ed880828366bc60879f9994f37b369afa89`

6

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1628`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.44598`
MD5	`825a87fa5e8fa6f15724ebcbc2d4cc4b`
SHA1	`020ee307e6e2fbebd031ab061089d2c18271979b`
SHA256	`3a3053c76b4459f4505dd3bd6ceb7a8ab95f7de8e17796def1fe90ccd82d83bf`
SHA3	`9512f3aceaa874f5f479058f3fc316d72f985180f8f8df082f863a586cc9cdc8`

7

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.68754`
MD5	`3c6d418c446a6da924ef3ba0992271ae`
SHA1	`7410e5287e6d3312c12034e78e7d151e0163bc5e`
SHA256	`9f951f4abd8f077970fd8d328abcf445350aa7a2247aa471bb83c682463265f0`
SHA3	`96edd3f095323e444ca05b3728016d1b13bc2c6e10870dbf2b4a963e696ce951`

8

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.94824`
MD5	`79e87f2624fa603f8b2f1b4254ff72f5`
SHA1	`5ab37bd2aa907534a57b3f319e43a04694333e3c`
SHA256	`9b8dcde37134879d62345221683e6ef66a6382250df4f6951e06ed5cc56cb928`
SHA3	`eac2f94e32794778e6160709754adfb2d50a74469d59242a458f93a9b9786fea`

9

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x6c8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.51985`
MD5	`8e98582202eab4a0d79f6988425c79fa`
SHA1	`c8ea1c6ce454f2ca44b7b54cb11d06c964ee64f7`
SHA256	`d93b4926e0436667ff0a8fc0542e37ef3a343f37d9c4dac18b0dca712ac37807`
SHA3	`839ec27c1a589c40153d03497a49abe6f4dbb56b9efc213bd525a2f0d11186a3`

10

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.8508`
MD5	`e122cd74973dced303b6cc86e66b3784`
SHA1	`c0d0ccadfce8a9101cec44ac1f4615825a8f7818`
SHA256	`5dfd6400208ff192380767e2f9478a930bed390874493a69cb6f9f73c0a7d711`
SHA3	`318d0464174b2e8f13f06cf0628b292823119adcf1573061aa02f0beb2444a63`

11

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x6bb1`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.94987`
Detected Filetype	PNG graphic file
MD5	`faa8bbcc7313b3bae3c7d404aa5a22d7`
SHA1	`002610017af84678f5ebcf0a71a8576e3251b78f`
SHA256	`78db6eff280837a6baf4228a80c6ac7ba176a9987b74371311a8709751e21647`
SHA3	`83913716b4f3e8613ec516174a9375f07fe77a671ecf33217e15676cd8c05023`

12

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4228`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.99901`
MD5	`666957f20cdde9e8ea03c08d67171ada`
SHA1	`629ea7de88f2fe8663b7481c5921c4080d28714c`
SHA256	`6a6d2f9a3aa3691e53e59f4520494d26a370aad69d2392352d21fa5d3ddac6f0`
SHA3	`0b9c260c988c217dca200e074afd36e4cd3ea2c35e35aa397a7050626ddc9421`

13

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.11791`
MD5	`80890f0a8ed6b8f7644ae58033396698`
SHA1	`a86d122e26e44483bf2f94ee6bf8c7b85872f27b`
SHA256	`16b55a47b4e044d2626dcfada06061e15b6182457418cb81d6396a636ecac952`
SHA3	`c286f42c437d7b83e6f90b188a01c1ea83f642623aa8958c284fa17a0ff4d0c4`

14

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.02368`
MD5	`a549178479505b3a3c044639a76c9655`
SHA1	`6aa0eb265d4baab53e38f0a0f743fc491dc2f7a4`
SHA256	`d3250e8fe29b65228440eb15f22f414cad95cf54b46497fe43ae2fa8bac0c755`
SHA3	`c83d7a5b997ef44410b518cdf06a45349b4e4f3ef10d3db52c4c8050c9ec8d5f`

15

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x988`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.34064`
MD5	`61df080365c676d10b2753379a009ee3`
SHA1	`1dbfa42037e31908012eca97fbc8a911ea23aa6a`
SHA256	`ed9c4c5c609f4a40cdef71318cb3a5328b0eeb68fd910c0120a947a42bd344d0`
SHA3	`56b1b2efaa6a7dc429bccdb3f6b9a5298a67d51870bbba33e9b74a9be5137fa9`

16

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.20259`
MD5	`70e39ead289ec266fd715a4a535a4808`
SHA1	`eb830c23e0596b1f5e873a4709ca98422359ed1e`
SHA256	`2f85c85e4f39ee79bce91ff74a3b87f03aed8128469b3f9472283221eff8b5a4`
SHA3	`f39c3ea64be6052faabdca8387d5e5cb522a8a7753a006af4349046fb9995c0f`

234

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.16382`
Detected Filetype	Icon file
MD5	`f5a55be9138169d38b2ff73330af6c1d`
SHA1	`8738313479690fcdaf0b48aa34d8b113bcdd7320`
SHA256	`a2160d96a1fc0c94875844e0cefeb502a7afef890ce4c5b0fadeb2768d8d039e`
SHA3	`c8df70a8e205fe251551458bd968abfc1d5c2049911512d3df68a2ebc1e241d8`

1 (#4)

Type	`RT_VERSION`
Language	English - United States
Codepage	UNKNOWN
Size	`0x37c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.56846`
MD5	`a4c499fc51ec6b77a5a10a2a76a04f41`
SHA1	`1542de2753796397ee8b33078243a3e08ad2585c`
SHA256	`fb79b4755a6baec7406d34c5afcb43d98a4d9870d5ebd447f96d77f86b2b4f02`
SHA3	`6255b7c60401d8c77fea15b40a8457f765cd85b0c22461d895b2dda10e8514fc`

1 (#5)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x491`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.96894`
MD5	`ff8bb01700c4ca8639b7077a96159295`
SHA1	`af31428842b7554e1200c33e2a71ede38b5c5ded`
SHA256	`9c32df4118c1601d8d06e8a8bbd1ae72202fa81d429ede9218bdb9b8ca7743f2`
SHA3	`e12148aca1f918cddfbb056629d7c5e546ef351d7df82f84d137a16126cdeee3`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	6.1.7600.16385
ProductVersion	6.1.7600.16385
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT` `VOS_NT_WINDOWS32` `VOS_WINCE` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	English - United States
CompanyName	Microsoft Corporation
FileDescription	Windows Calculator
FileVersion (#2)	6.1.7600.16385 (win7_rtm.090713-1255)
InternalName	CALC
LegalCopyright	© Microsoft Corporation. All rights reserved.
OriginalFilename	CALC.EXE
ProductName	Microsoft® Windows® Operating System
ProductVersion (#2)	6.1.7600.16385

Resource LangID	English - United States

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2009-Jul-13 23:57:08
Version	`0.0`
SizeofData	`33`
AddressOfRawData	`0x61ca8`
PointerToRawData	`0x612a8`
Referenced File	calc.pdb

IMAGE_DEBUG_TYPE_RESERVED

Characteristics	`0`
TimeDateStamp	2009-Jul-13 23:57:08
Version	`565.6526`
SizeofData	`4`
AddressOfRawData	`0x61ca4`
PointerToRawData	`0x612a4`

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0xb51aaba4`
Unmarked objects	`0`
ASM objects (VS2008 SP1 build 30729)	`2`
C++ objects (VS2008 SP1 build 30729)	`46`
Total imports	`404`
Imports (VS2008 SP1 build 30729)	`33`
C objects (VS2008 SP1 build 30729)	`23`
138 (VS2008 SP1 build 30729)	`87`
Linker (VS2008 SP1 build 30729)	`1`
Resource objects (VS2008 SP1 build 30729)	`1`