Manalyze report for 2c84ad391e6afe713effd1cf8379ca64

This file seems to be a .NET executable.
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2016-Sep-10 13:32:15
Debug artifacts	C:\Users\jkey\Source\Workspaces\taskbarmeters\TaskbarMeters\TaskbarCpuMeter\obj\Debug\TaskbarCpuMeter.pdb
Comments
CompanyName	Jeff Key
FileDescription	Taskbar CPU Meter
FileVersion	`1.1.1.0`
InternalName	TaskbarCpuMeter.exe
LegalCopyright	Copyright © Jeff Key 2016
LegalTrademarks
OriginalFilename	TaskbarCpuMeter.exe
ProductName	Taskbar CPU Meter
ProductVersion	`1.1.1.0`
Assembly Version	1.1.1.0

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C# v7.0 / Basic .NET` `.NET executable -> Microsoft`
Malicious	VirusTotal score: 4/69 (Scanned on 2021-03-31 13:24:50)	`Paloalto: generic.ml` `APEX: Malicious` `Malwarebytes: MachineLearning/Anomalous.93%` `eGambit: Unsafe.AI_Score_61%`

Hashes

MD5	`2c84ad391e6afe713effd1cf8379ca64`
SHA1	`d56ce5acdbbd2cdd2134d0ef1fc0ea635779dec5`
SHA256	`88ad6479fbe8f0c5cd8e39f41318108e4fe4685a309951401431db8e0ec67d22`
SHA3	`7fab74d26ba6d36ad24e63421f6c38a575f78e50a05503338fcf0e2c037b17c2`
SSDeep	`3072:gMH3LsUwWMivUbsiaS1S5yWCLsUwWMivUbsiaSg5xh:THbcixrsWQcixj`
Imports Hash	`f34d5f2d4577ed6d9ceec516c1f5a744`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2016-Sep-10 13:32:15
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`48.0`
SizeOfCode	`0x18800`
SizeOfInitializedData	`0x18000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0001A63E (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0x1c000`
ImageBase	`0x400000`
SectionAlignment	`0x2000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x36000`
SizeOfHeaders	`0x200`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`420d24f183ea5f03075897be0c7fdbd1`
SHA1	`6ee92e1bc5af0d5efcc3d0702053b4b674a2b497`
SHA256	`009c549c8756a757403f54f19f83101b8d160e5c761fec7282510fcd9d20e93a`
SHA3	`b9befe678d0586e1643964c2654328edcd50bb7f61525d7b63c4b6a2b508ccb4`
VirtualSize	`0x18644`
VirtualAddress	`0x2000`
SizeOfRawData	`0x18800`
PointerToRawData	`0x200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`7.46004`

.rsrc

MD5	`75f22cb193c1bf1b6d556ff354dc4e53`
SHA1	`2dcd9b1b29b62dbf907227fba0264a82b663282e`
SHA256	`93e167b3f99629cfd8c3d8744563d61329a9bf0fd80018f7594b09de61f3766e`
SHA3	`909755c08f1b759d2949f1446608d16a573a9b742de739beaad37712d94eacfb`
VirtualSize	`0x17d0c`
VirtualAddress	`0x1c000`
SizeOfRawData	`0x17e00`
PointerToRawData	`0x18a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`7.4578`

.reloc

MD5	`62b6e0bd57a37c5a594ed77f8be28017`
SHA1	`e1f44c0fa0b3b907155a7f323f400504d62b8c05`
SHA256	`3c89fe21ff97ad1cb24520737ba5fc7e7d997c8a6c45a520eca85f974e7923e6`
SHA3	`3e6d601fbe6145843a27f53dee95a3eca2fae016ed5ad9e6ca803e3794f4763b`
VirtualSize	`0xc`
VirtualAddress	`0x34000`
SizeOfRawData	`0x200`
PointerToRawData	`0x30800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.10191`

Imports

mscoree.dll	`_CorExeMain`

Delayed Imports

1

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x668`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.47047`
MD5	`9f148588cbd893cb07dfe48c5a773eda`
SHA1	`4720bc3a370450571bcaa63537f110f48b4ca81e`
SHA256	`184786f037cff82ef69649500bdfad3f26ddac6afbfcf4d66c2679bd626d61c3`
SHA3	`d2b7e648b5049e4f9278f6faacf10a930352f01e7bd9d1ed26432c31a06e58d0`

2

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.65453`
MD5	`27c4ed1f09e2d47a5ed08051ada543d1`
SHA1	`69dea8279a9dc7031bd54e715735523ca8b0bf5d`
SHA256	`9f3359d99d201b587da0e6aebd24e8cdbec6316177358d55ac164f4df5ac999a`
SHA3	`2a78b4566847364790551eaacdb6cdfef6e86b1bc412b76a1584df7b74cd2bcb`

3

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x1e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.5363`
MD5	`298de376904306fc60fb1d703226624c`
SHA1	`7d57893c7813f557eff09fcf9db72ac0e5370573`
SHA256	`2b8cb09d8c4c398fd132f4e2a063dbb7fef450807c61d5d629f2c564cf1d1a14`
SHA3	`03a3f6d582e3c1c824c45f421beda58999b4905c3a3a492eb644899db16b40aa`

4

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.34817`
MD5	`5337cc87196b0cf67030b3b1cc16aa08`
SHA1	`d49381013a79b70bb945a7f094cedf733f92b2a4`
SHA256	`59fd4261527eadeea707655d7f579d427ad767daa2d6cae7835af3c26b9f01a9`
SHA3	`a954b7197fc9e61b3d194dece584993e8490daa3d690cf0034c07ae8917cd884`

5

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.8324`
MD5	`ed7bc81d86a8acfb6de4d670e7f33c62`
SHA1	`b0c8eb408810e4aac0e74b83a9fd2a7d6cb1dc50`
SHA256	`8c61dff76420ba4986703ef47ebefb890fddeab4730a718f73a030e18664bc79`
SHA3	`664b7eb928aba0863f70ade13adf96386995f3166e329c43aef32420012fcc27`

6

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.1941`
MD5	`8b1fc929130fca8c602715df1b24be85`
SHA1	`8495d34f04ebbb063cf3284fcd023d5ac1a3b3d9`
SHA256	`df3c744378a5035add1660691e50a2c6a14f051d191a37acd36037934d4a98cc`
SHA3	`1e9f3f45ee0e7def9f0a4aa8a89e90bc5f258dedc1b185907b22b15529fdfc7f`

7

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x6c8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.20014`
MD5	`bef4c0ba5320c4baa2b53edd393da645`
SHA1	`8847b906ec8e3519e28ae3bc722f833659d2baa3`
SHA256	`cf1ad154263d221a5748d7610cbe97f34c312a33dcb4c99ed871e4187a3b8541`
SHA3	`30d476b498abdcd0b43741f5476f8414d775319d79b95e629471ac34779e2e62`

8

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.93313`
MD5	`1e4768bd8011775c845aeaf07f6a0e73`
SHA1	`39b2a91d5d90eb2f5947bac06d01a15293b30bbd`
SHA256	`e3361d4bf90eddcedeeb9f957509bdb85bbb05b41ad71fcb29bb3fa99e1290d1`
SHA3	`08fccebd8b222c2a4c2be01df835a8f99e2b694e628b0bd0f72d6bf9075ac9c1`

9

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xff5c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.98535`
Detected Filetype	PNG graphic file
MD5	`899db9f82b20b55309e516701314dc06`
SHA1	`747ca242f7e91685352e9295d63bd09b0665dcf5`
SHA256	`ab8cbe46a337aa626fecfa98bc0884a44b46c7735fddfeddbf98bb50177bc352`
SHA3	`7a7d1267815710458c678b60310e9d57035dbe0a8dc4593635eca5c1cc7ec490`

10

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.28722`
MD5	`13a1ff354c6191417d396cfa61e4e532`
SHA1	`48d2623f2ca02f71f2d308fdeb7f634244f22e7e`
SHA256	`0f27cee9d311339dada2ea1ee2a839d7117581556664e8633cf989c141b2c74c`
SHA3	`2974b00807f90b1850321960b1d89aa3519c5a104d9287c148aa8c76ad3c9378`

11

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.40036`
MD5	`93bedc049a2af1ef65e2ea62383e9b51`
SHA1	`4ba7695b737027a97decf32c665da3beaf6d64d3`
SHA256	`7a2ddf17fcb6b5071df7835b267ad5bb901287a63edfcf1afdbcbdb2af2ca952`
SHA3	`7100a3b538edb8d7cfb658d37b7deda9fa432ed08b5a626631805293a6ecf584`

12

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x988`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.49513`
MD5	`16fc6b846fcc4ac8bd36822600f3bdad`
SHA1	`93629b3ff398e012f598b4f86737c2dd03445c05`
SHA256	`c9497e5f1cb7c1707a5f829075571dc818dd427ac45cd4f6ffd2707229574ab6`
SHA3	`8d7e172e922592ab5081bcb2748d77d62b3dd613ff666efd156ee97294c203bc`

13

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.08663`
MD5	`45e2374f85b02b724fea4591e3a1d603`
SHA1	`bf077f4a0e4af812d3ccb7b9ca9300aea09f5cfa`
SHA256	`fe8134ce751acc8ef66578431696a555b20537e5418a11ee9ac30c75022febd1`
SHA3	`df99e86f9cced943bc8bc13517ab1c6aedda0a2a41c9dd4af7b7221042b30c59`

32512

Type	`RT_GROUP_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xbc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06903`
Detected Filetype	Icon file
MD5	`63bb398a6b3d19057a331d2bab94898d`
SHA1	`58d3d17879e555ee7df77f4932bb50ce056864d3`
SHA256	`d2874aeb1d4d47aa0b0f02259b7049b5b669f3542f440b3eb39a560f05f57138`
SHA3	`fe0f05ef26bb9689b88e0546ec74a865bae26f18eac39f2641404083eccb55c5`

1 (#2)

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x374`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.36934`
MD5	`d5f56167cfd5aaac4367bc6677ca6a73`
SHA1	`125f8cfdef82b7d8832f139f4ed3987084345a1b`
SHA256	`a6cce6e2677300a8e15b52c1758db08f232630918a0b6c67c9fb16abeaffd852`
SHA3	`182dc1e260e44cec2e9c06796adbbbd4c80261b8570e2a92b6415d4640d48123`

1 (#3)

Type	`RT_MANIFEST`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x1ea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.00112`
MD5	`b7db84991f23a680df8e95af8946f9c9`
SHA1	`cac699787884fb993ced8d7dc47b7c522c7bc734`
SHA256	`539dc26a14b6277e87348594ab7d6e932d16aabb18612d77f29fe421a9f1d46a`
SHA3	`4f72877413d13a67b52b292a8524e2c43a15253c26aaf6b5d0166a65bc615cff`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.1.1.0
ProductVersion	1.1.1.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Comments
CompanyName	Jeff Key
FileDescription	Taskbar CPU Meter
FileVersion (#2)	1.1.1.0
InternalName	TaskbarCpuMeter.exe
LegalCopyright	Copyright © Jeff Key 2016
LegalTrademarks
OriginalFilename	TaskbarCpuMeter.exe
ProductName	Taskbar CPU Meter
ProductVersion (#2)	1.1.1.0
Assembly Version	1.1.1.0

Resource LangID	UNKNOWN

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2016-Sep-10 13:32:15
Version	`0.0`
SizeofData	`284`
AddressOfRawData	`0x1a4d0`
PointerToRawData	`0x186d0`
Referenced File	C:\Users\jkey\Source\Workspaces\taskbarmeters\TaskbarMeters\TaskbarCpuMeter\obj\Debug\TaskbarCpuMeter.pdb

TLS Callbacks

Load Configuration

RICH Header

2c84ad391e6afe713effd1cf8379ca64

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rsrc

.reloc

Imports

Delayed Imports

1

2

3

4

5

6

7

8

9

10

11

12

13

32512

1 (#2)

1 (#3)

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

TLS Callbacks

Load Configuration

RICH Header

Errors