Architecture |
IMAGE_FILE_MACHINE_I386
|
---|---|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
Compilation Date | 2024-Jul-15 14:18:52 |
Detected languages |
English - United States
German - Germany |
CompanyName | Nenad Hrg SoftwareOK.com |
FileDescription | 12-Ants |
FileVersion | 6.55.0.0 |
InternalName | 12-Ants |
LegalCopyright | Copyright © 2009-2025 Nenad Hrg - SoftwareOK.com |
OriginalFilename | 12-Ants.exe |
ProductName | 12-Ants |
ProductVersion | 6.55.0.0 |
Info | Matching compiler(s): |
Microsoft Visual C++ 6.0 - 8.0
Microsoft Visual C++ Microsoft Visual C++ v6.0 Microsoft Visual C++ v5.0/v6.0 (MFC) |
Suspicious | Strings found in the binary may indicate undesirable behavior: |
Contains references to security software:
|
Malicious | The PE contains functions mostly used by malware. |
[!] The program may be hiding some of its imports:
|
Info | The PE's resources present abnormal characteristics. | Resource AAAA_UNICODE.TMP is possibly compressed or encrypted. |
Info | The PE is digitally signed. |
Signer: Nenad Hrg
Issuer: GlobalSign GCC R45 EV CodeSigning CA 2020 |
Safe | VirusTotal score: 0/75 (Scanned on 2024-07-29 14:43:39) | All the AVs think this file is safe. |
e_magic | MZ |
---|---|
e_cblp | 0x90 |
e_cp | 0x3 |
e_crlc | 0 |
e_cparhdr | 0x4 |
e_minalloc | 0 |
e_maxalloc | 0xffff |
e_ss | 0 |
e_sp | 0xb8 |
e_csum | 0 |
e_ip | 0 |
e_cs | 0 |
e_ovno | 0 |
e_oemid | 0 |
e_oeminfo | 0 |
e_lfanew | 0xe8 |
Signature | PE |
---|---|
Machine |
IMAGE_FILE_MACHINE_I386
|
NumberofSections | 4 |
TimeDateStamp | 2024-Jul-15 14:18:52 |
PointerToSymbolTable | 0 |
NumberOfSymbols | 0 |
SizeOfOptionalHeader | 0xe0 |
Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_RELOCS_STRIPPED
|
Magic | PE32 |
---|---|
LinkerVersion | 6.0 |
SizeOfCode | 0x2f000 |
SizeOfInitializedData | 0x32000 |
SizeOfUninitializedData | 0 |
AddressOfEntryPoint | 0x00025D31 (Section: .text) |
BaseOfCode | 0x1000 |
BaseOfData | 0x30000 |
ImageBase | 0x400000 |
SectionAlignment | 0x1000 |
FileAlignment | 0x1000 |
OperatingSystemVersion | 4.0 |
ImageVersion | 0.0 |
SubsystemVersion | 4.0 |
Win32VersionValue | 0 |
SizeOfImage | 0x8f000 |
SizeOfHeaders | 0x1000 |
Checksum | 0x731d5 |
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
SizeofStackReserve | 0x100000 |
SizeofStackCommit | 0x1000 |
SizeofHeapReserve | 0x100000 |
SizeofHeapCommit | 0x1000 |
LoaderFlags | 0 |
NumberOfRvaAndSizes | 16 |
KERNEL32.dll |
GetDriveTypeW
GetLogicalDriveStringsW GetFullPathNameW UnmapViewOfFile MapViewOfFile CreateFileMappingW InterlockedExchange SetEnvironmentVariableA GetOEMCP GetACP CompareStringA SetEndOfFile LoadLibraryA IsBadCodePtr IsBadReadPtr SetUnhandledExceptionFilter FlushFileBuffers SetStdHandle GetCPInfo LCMapStringW LCMapStringA GetStringTypeW GetStringTypeA GetCommandLineA GetCommandLineW GetEnvironmentStrings WideCharToMultiByte FreeEnvironmentStringsW FreeEnvironmentStringsA UnhandledExceptionFilter GetTimeZoneInformation ReadFile GetStartupInfoA GetFileType GetStdHandle SetHandleCount SetFilePointer HeapCreate GetVersionExA GetEnvironmentVariableA GetModuleFileNameA IsBadWritePtr VirtualAlloc VirtualFree TlsGetValue SetLastError TlsAlloc TlsSetValue HeapSize GetVersion GetStartupInfoW RtlUnwind TerminateProcess ExitProcess GetSystemTimeAsFileTime HeapFree HeapAlloc HeapReAlloc DeleteFileW RemoveDirectoryW SetFileAttributesW CopyFileW CreateFileW WriteFile FreeResource CloseHandle GetPrivateProfileStringW WritePrivateProfileStringW GetTempPathW CreateDirectoryW GetFileAttributesW FormatMessageW LocalFree GetLocalTime TerminateThread CreateThread Sleep GlobalAlloc GlobalLock GlobalUnlock GlobalFree FindResourceW LoadResource LockResource SizeofResource lstrcpynW FreeLibrary GetModuleHandleA GetVersionExW GetCurrentProcess FlushInstructionCache CompareStringW lstrcpyW DeleteCriticalSection HeapDestroy InitializeCriticalSection CreateMutexW GetLastError GetUserDefaultLangID lstrcatW lstrcmpiW lstrcmpW GetModuleFileNameW LoadLibraryW EnterCriticalSection GetCurrentThreadId LeaveCriticalSection GetModuleHandleW InterlockedDecrement GetProcAddress DebugBreak OutputDebugStringW InterlockedIncrement lstrlenW lstrlenA MultiByteToWideChar GetEnvironmentStringsW |
---|---|
USER32.dll |
PostMessageW
GetMenuItemInfoW SetPropW UnhookWindowsHookEx SetWindowsHookExW CallNextHookEx GetKeyState DialogBoxParamW MapVirtualKeyW keybd_event EnableWindow KillTimer CreateIconIndirect GetIconInfo LoadIconW SetTimer EqualRect wsprintfW IsWindowVisible MessageBoxW LoadImageW IsDialogMessageW CreatePopupMenu SetClassLongW SetMenu AppendMenuW CheckMenuItem DestroyMenu EnumChildWindows MessageBoxA SetForegroundWindow GetKeyboardState DestroyIcon FindWindowExW DrawAnimatedRects GetSubMenu GetMenuItemCount GetMessagePos EndDialog SetDlgItemTextW GetParent SendMessageW SetMenuItemInfoW GetSysColorBrush GetActiveWindow CopyRect CallWindowProcW GetDlgItem SetWindowPos MapWindowPoints GetClientRect SystemParametersInfoW GetWindowRect GetWindow GetWindowLongW RedrawWindow ScreenToClient wvsprintfW TrackPopupMenuEx CharNextW LoadStringW SetWindowLongW SetRect GetSystemMetrics GetCursorPos PtInRect DispatchMessageW TranslateMessage GetMessageW PeekMessageW ShowWindow CreateDialogParamW SetRectEmpty DefWindowProcW CharLowerW PostQuitMessage EnumWindows RegisterWindowMessageW DestroyWindow SendMessageTimeoutW ReleaseCapture GetCapture SetCapture SetFocus UpdateWindow SetCursor InvalidateRect BeginPaint IsWindow EndPaint GetDlgCtrlID OffsetRect GetDC SetWindowTextW GetWindowTextW GetWindowTextLengthW LoadCursorW GetClassNameW ReleaseDC FillRect DrawFocusRect GetFocus CreateWindowExW DrawTextW IsWindowEnabled GetSysColor |
GDI32.dll |
GetClipBox
EnumFontsW SetPixel GetPixel OffsetWindowOrgEx CreateSolidBrush SetBkColor ExtTextOutW SetBkMode SetTextColor GetStockObject CreateFontIndirectW SelectObject GetCurrentObject CreateBitmap GetObjectW CreateDIBSection DeleteDC CreateCompatibleDC DeleteObject |
comdlg32.dll |
ChooseFontW
ChooseColorW GetOpenFileNameW |
ADVAPI32.dll |
RegOpenKeyW
RegCloseKey RegOpenKeyExW RegDeleteValueW RegSetValueExW RegDeleteKeyW RegQueryValueExW RegCreateKeyExW |
SHELL32.dll |
#17
#16 #155 SHAppBarMessage Shell_NotifyIconW ShellExecuteExW SHBrowseForFolderW SHGetPathFromIDListW SHGetFileInfoW #190 SHGetDesktopFolder SHGetSpecialFolderPathW ShellExecuteW #18 |
ole32.dll |
CreateStreamOnHGlobal
OleInitialize CoCreateInstance CoUninitialize CoInitialize |
OLEAUT32.dll |
SysAllocStringLen
|
COMCTL32.dll |
ImageList_Add
ImageList_Create ImageList_Replace InitCommonControlsEx _TrackMouseEvent ImageList_ReplaceIcon ImageList_LoadImageW ImageList_Draw |
gdiplus.dll |
GdipPrivateAddMemoryFont
GdipDeleteFontFamily GdipCreateFontFamilyFromName GdipCreateStringFormat GdipCreateFromHDC GdipDeleteStringFormat GdipResetWorldTransform GdipTranslateWorldTransform GdipRotateWorldTransform GdipDrawImageRectI GdipNewPrivateFontCollection GdipSetImageAttributesRemapTable GdiplusStartup GdipFree GdipCloneImage GdipGetImageHeight GdipGetImageWidth GdipCreateImageAttributes GdipSetImageAttributesColorMatrix GdipDrawImageRectRect GdipDisposeImageAttributes GdipCreateHBITMAPFromBitmap GdipCreateBitmapFromScan0 GdipGetImageGraphicsContext GdipDrawImageRect GdipCreateHICONFromBitmap GdipDeleteGraphics GdipDisposeImage GdipDeletePrivateFontCollection GdipCreateBitmapFromStream GdipAlloc |
12-Ants |
Signature | 0xfeef04bd |
---|---|
StructVersion | 0x10000 |
FileVersion | 6.55.0.0 |
ProductVersion | 6.55.0.0 |
FileFlags | (EMPTY) |
FileOs |
VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
|
FileType |
VFT_DLL
|
Language | UNKNOWN |
CompanyName | Nenad Hrg SoftwareOK.com |
FileDescription | 12-Ants |
FileVersion (#2) | 6.55.0.0 |
InternalName | 12-Ants |
LegalCopyright | Copyright © 2009-2025 Nenad Hrg - SoftwareOK.com |
OriginalFilename | 12-Ants.exe |
ProductName | 12-Ants |
ProductVersion (#2) | 6.55.0.0 |
Resource LangID | UNKNOWN |
---|
XOR Key | 0x1cf641ca |
---|---|
Unmarked objects | 0 |
C++ objects (8798) | 2 |
C++ objects (8047) | 2 |
C objects (VS98 SP6 build 8804) | 137 |
14 (7299) | 23 |
C objects (2190) | 2 |
Imports (2179) | 21 |
Total imports | 415 |
C++ objects (VS98 SP6 build 8804) | 42 |
Resource objects (VS98 SP6 cvtres build 1736) | 1 |