1b9997a56c89e9022f90663180c2dcf6

Summary

Architecture IMAGE_FILE_MACHINE_I386
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date 2016-Jan-02 20:51:19
Comments
CompanyName
FileDescription simMarket Keygen v2.4
FileVersion 2.4.0.0
InternalName simMarket Keygen v2.0.exe
LegalCopyright Copyright © 2015
LegalTrademarks
OriginalFilename simMarket Keygen v2.0.exe
ProductName simMarket Keygen v2
ProductVersion 2.4.0.0
Assembly Version 2.4.0.0

Plugin Output

Info Matching compiler(s): Microsoft Visual C# v7.0 / Basic .NET
.NET executable -> Microsoft
Malicious VirusTotal score: 41/71 (Scanned on 2020-05-18 03:24:03) MicroWorld-eScan: Trojan.GenericKD.5231192
CAT-QuickHeal: Trojan.Skeeyah
McAfee: RDN/Generic.grp
Cylance: Unsafe
Zillya: Trojan.GenericKD.Win32.22915
Sangfor: Malware
Cybereason: malicious.56c89e
Arcabit: Trojan.Generic.D4FD258
Invincea: heuristic
APEX: Malicious
BitDefender: Trojan.GenericKD.5231192
NANO-Antivirus: Trojan.Win32.Confuser.ebumgd
Paloalto: generic.ml
AegisLab: Trojan.Win32.Generic.4!c
Tencent: Win32.Trojan.Confuser.Eanx
Endgame: malicious (high confidence)
Sophos: Mal/Generic-S
VIPRE: Trojan.Win32.Generic!BT
TrendMicro: TROJ_GEN.R011C0DDU20
McAfee-GW-Edition: BehavesLike.Win32.Generic.dh
Trapmine: malicious.moderate.ml.score
FireEye: Generic.mg.1b9997a56c89e902
Emsisoft: Trojan.GenericKD.5231192 (B)
SentinelOne: DFI - Malicious PE
Jiangmin: Packed.Multi.fhh
Webroot: W32.Trojan.Gen
Fortinet: PossibleThreat
Antiy-AVL: Trojan/Win32.SGeneric
Microsoft: Trojan:Win32/Skeeyah.A!rfn
BitDefenderTheta: Gen:NN.ZemsilF.34110.qm0@a0Tpp2o
ALYac: Trojan.GenericKD.5231192
MAX: malware (ai score=99)
Ad-Aware: Trojan.GenericKD.5231192
TrendMicro-HouseCall: TROJ_GEN.R011C0DDU20
Rising: Trojan.Skeeyah!8.3A6 (CLOUD)
Yandex: Riskware.Confuser!
eGambit: Generic.Malware
GData: Trojan.GenericKD.5231192
MaxSecure: Trojan.Malware.7164915.susgen
Panda: Trj/GdSda.A
CrowdStrike: win/malicious_confidence_100% (W)

Hashes

MD5 1b9997a56c89e9022f90663180c2dcf6
SHA1 b057f964d0842a622485067d9becdaec5c98ffad
SHA256 9f4771b4b2550a358c1cbf2ff6abd3ecd59d0dfaecd1009ef87aa5397b7b6381
SHA3 551ffe85b951aa1800bbc58d32af4174aca06e6e7b114e166c596aa62e186fb2
SSDeep 3072:koqZbDV4I/LDEFvCZ7SFyP708WCbsEMjhg:5qZbDVb0gF7
Imports Hash f34d5f2d4577ed6d9ceec516c1f5a744

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0x80

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_I386
NumberofSections 3
TimeDateStamp 2016-Jan-02 20:51:19
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xe0
Characteristics IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Image Optional Header

Magic PE32
LinkerVersion 11.0
SizeOfCode 0x19a00
SizeOfInitializedData 0x2a200
SizeOfUninitializedData 0
AddressOfEntryPoint 0x0001B8EE (Section: .text)
BaseOfCode 0x2000
BaseOfData 0x1c000
ImageBase 0x400000
SectionAlignment 0x2000
FileAlignment 0x200
OperatingSystemVersion 4.0
ImageVersion 0.0
SubsystemVersion 4.0
Win32VersionValue 0
SizeOfImage 0x48000
SizeOfHeaders 0x200
Checksum 0
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 90338c7684196fc46819eeae34566e48
SHA1 2b0e8667b9744a4f676a617f27dceb703db78e81
SHA256 9424f51e692e39de73328c082cac186eff4a4e85a3f326b9f34e0d81a8b9fd1f
SHA3 00e371a53d71b677b9effa2b1bc0d57cda373cc20bb1c9960eda2987a2a283cc
VirtualSize 0x198f4
VirtualAddress 0x2000
SizeOfRawData 0x19a00
PointerToRawData 0x200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 7.93099

.rsrc

MD5 20f60f9fe4d4c499daa18bcf05c4184c
SHA1 f07d1721846fc255491bac9f9b987de88cc9c165
SHA256 9711d27646228ee862e9c3953504c0fb24fd9ada9273f2813448a2bb7b2c5bc4
SHA3 a5e4bd70f8743745f07b1f27e0d80230957ea7c85b59af3e3bb22ca7c0f6c5c1
VirtualSize 0x29f20
VirtualAddress 0x1c000
SizeOfRawData 0x2a000
PointerToRawData 0x19c00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.18653

.reloc

MD5 52b616eb1517ab414c6559fdd0467140
SHA1 74bd881e44878609fccfb31a91f815d109c40288
SHA256 1c99d6c6947153ad9b44bedf794c9d80b9edde967aa7fbb805b802a5786863eb
SHA3 f6ec1a956aab0e427e80b03ada4bdf994cb52760b0f8cee98ae692c378ef1f82
VirtualSize 0xc
VirtualAddress 0x46000
SizeOfRawData 0x200
PointerToRawData 0x43c00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Entropy 0.10191

Imports

mscoree.dll _CorExeMain

Delayed Imports

1

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x1ec4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.91775
Detected Filetype PNG graphic file
MD5 7f02ad88f220f927f1be872e8f4fbcf3
SHA1 3757c67ee202903b47dc9c496b8a42440084c242
SHA256 3074d38756857eb4b139d97bb49bd89e7a73b21a99ab5fa7e58000c2ff514927
SHA3 519ee32a1853bfbdb3dc11bda8858ba3fb853908fa32afe3f05cd94dbd69fc9b

2

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x10828
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.09429
MD5 37ef74323178e3d3113a80b8fcec1bd7
SHA1 f2bb9218949c4e6b70c5f9f9d00a91a8a45b9fe2
SHA256 2706a076d8e4d36c83f59af2fa2df4bc66dd87c3faaf5c696308f99bef038788
SHA3 ffe5a86384a0c273ae0cc48b9c54d4e205d028881064ad43dbdf59d97563508f

3

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x94a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.85319
MD5 b202b7137e171834e2c46c514f834c56
SHA1 fac0c6addd412fe92b68b76b7dff49184fe6ea48
SHA256 d1a7676145bbd39a1973a0d639022f289bff60585117147c37dcc2971b846b49
SHA3 90f09f84ae6f30bd38b89166f9e384a92a673b8a5e343c33b3e2b39580959487

4

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x5488
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.70791
MD5 176e93db4aad977a2b3d47f1e5599330
SHA1 cba1c9455d7f4f77e0ed8da0691b540ded0bbae1
SHA256 dc1ad29d91c0188189a7fdc33aab38f83c22331f9c08dc45c7ce5f2038cc4ed3
SHA3 bd001716299e8e44f0e85c360dc17688ac0985f4647334c3dc5a3dd28778544d

5

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x4228
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.29761
MD5 75f4b55fdcfd7e8fd459c12315baea02
SHA1 8af0541839f5372b9fb25408c68cc16597bd063c
SHA256 b60ecdf46c17a6ca49c58d4f39681e7c7c7f3e2ddc8b15788a3e3f6fbf64540d
SHA3 4c38f02dc6f6536a9925dedb87c104f8052636a1ab068a8ddf605b3658f72628

6

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x25a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.06693
MD5 f201006eccac8453e12d0ec1bfe29cb8
SHA1 20ad10738bef50bd6689a2a34c2f3354281541f2
SHA256 d6d9def3d7924b9cb4c318f7a6cf3762805e96cbd8ced137630c44c52b87d707
SHA3 e78f1f94c78f54756eefee20e05991213d8cd95fdb123614514b3ff29a55f8e9

7

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.86293
MD5 d2442c8caa842e844ccb66c594d9af5b
SHA1 dc96ee1e1c324dec79381b334644c9d70400070d
SHA256 f778fb21fca466fad568ea2fe4e70a71dfa688ecbb99076362da776f8d3e96eb
SHA3 4791b18568772ddf97a04721dc4a8210b449ec5bee4c1f338b8e13ccb4affc00

8

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x988
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.55867
MD5 a0d36fe587f9b52bd1ae75142a247f5f
SHA1 59b8211269a9713c4a063d4f5f3bd3f35052c536
SHA256 204ca80c5622d99e6cfb63227b0a40f65d8cc3f3fe3909c3bc1c9befc383e9cb
SHA3 44f47cdaa61cb9d894a52aa00985027ef21f95821886f08d8fbcd791511d4729

9

Type RT_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.53484
MD5 e8ae3ca58c9cbedcf3cd1c95683498e5
SHA1 b767f3f93a02951ecf4c5d93b17d4944483d4213
SHA256 0692dfd76e696607633fc49ad07219e8fa5b84219b0cad4be99e5db8ffc49746
SHA3 93e853144fec3b915ffe32bc53f56faf1b83a55b550dfef9ae1568a1ff2e05d0

32512

Type RT_GROUP_ICON
Language UNKNOWN
Codepage UNKNOWN
Size 0x84
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.03466
Detected Filetype Icon file
MD5 e9b27f74f67ab667fd59e20fe8e453c2
SHA1 fdc7ef5426107d481887cf396dc2dd1cd79dac38
SHA256 2f75d66184cd6a91aedc23a84b3940447101696f1441c624db045ef00012bd9b
SHA3 f013aead39e282a8901a1fe5e287f640951f7e7b1818ed233ff366e5ce0b89ae

1 (#2)

Type RT_VERSION
Language UNKNOWN
Codepage UNKNOWN
Size 0x378
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.34673
MD5 e6d60ccfc77e63acc02e302dbb9fc89f
SHA1 208fad587de929350d130f04e24421453609417d
SHA256 6a6fd977ba0018c2f603179b20a90409f88a251adfea586b9848b6abaf8217a7
SHA3 192b0af862291b3821f0d126137d87132b73d4d4c3bd6443bc005a83e641ad68

1 (#3)

Type RT_MANIFEST
Language UNKNOWN
Codepage UNKNOWN
Size 0x1ea
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.00112
MD5 b7db84991f23a680df8e95af8946f9c9
SHA1 cac699787884fb993ced8d7dc47b7c522c7bc734
SHA256 539dc26a14b6277e87348594ab7d6e932d16aabb18612d77f29fe421a9f1d46a
SHA3 4f72877413d13a67b52b292a8524e2c43a15253c26aaf6b5d0166a65bc615cff

Version Info

Signature 0xfeef04bd
StructVersion 0x10000
FileVersion 2.4.0.0
ProductVersion 2.4.0.0
FileFlags (EMPTY)
FileOs VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
FileType VFT_APP
Language UNKNOWN
Comments
CompanyName
FileDescription simMarket Keygen v2.4
FileVersion (#2) 2.4.0.0
InternalName simMarket Keygen v2.0.exe
LegalCopyright Copyright © 2015
LegalTrademarks
OriginalFilename simMarket Keygen v2.0.exe
ProductName simMarket Keygen v2
ProductVersion (#2) 2.4.0.0
Assembly Version 2.4.0.0
Resource LangID UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

Errors