Manalyze report for 31d9994b2c76b836c3b45c26d6e457c7

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2026-Feb-02 19:39:33
Detected languages	German - Germany German - Liechtenstein
Company	Nenad Hrg (SoftwareOK.de)
CompanyName	Nenad Hrg (SoftwareOK.com)
FileDescription	BlankAndSecure
FileVersion	`8.31.0.0`
InternalName	BlankAndSecure
LegalCopyright	Copyright © 2009-2026 Nenad Hrg
OriginalFilename	BlankAndSecure.exe
ProductName	BlankAndSecure
ProductVersion	`8.31.0.0`

Plugin Output

Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains references to system / monitoring tools: rundll32.exe` `Contains references to security software: rshell.exe` `Contains domain names: SoftwareOK.com SoftwareOK.de http://www.softwareok.com http://www.softwareok.de softwareok.com softwareok.de www.softwareok.com www.softwareok.de`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA LoadLibraryW GetProcAddress` `Can access the registry: RegEnumKeyExW RegCloseKey RegCreateKeyExW RegOpenKeyExW RegQueryValueExW RegSetValueExW RegDeleteKeyW` `Possibly launches other programs: ShellExecuteW` `Can create temporary files: CreateFileW GetTempPathW CreateFileA` `Uses functions commonly found in keyloggers: GetAsyncKeyState CallNextHookEx` `Can take screenshots: GetDC CreateCompatibleDC` `Can shut the system down or lock the screen: ExitWindowsEx`
Info	The PE's resources present abnormal characteristics.	`Resource AAAA_UNICODE.TMP is possibly compressed or encrypted.`
Info	The PE is digitally signed.	`Signer: Nenad Hrg` `Issuer: GlobalSign GCC R45 EV CodeSigning CA 2020`
Suspicious	VirusTotal score: 1/66 (Scanned on 2026-02-15 12:45:11)	`APEX: Malicious`

Hashes

MD5	`31d9994b2c76b836c3b45c26d6e457c7`
SHA1	`807611cec61ca9aaf5605fec268d1bd753c8ea2b`
SHA256	`1397ededdf97a9f3079e2e4d401388b9400a7a634b9a6eed6a341971cc784a5e`
SHA3	`fad378d3400469a521c0ffe0d1cae31a9de973680ff0084037a3607a59a21451`
SSDeep	`6144:O+6nEpJ8Vh7QPIPIQH7M4vvDWfO8DbNNCglZ22UIE5XYbdzSm0bHo:8nE92IMMCvDyjJ+Wdzyc`
Imports Hash	`df84107ec58da6c9e662d8ec18e2e2a9`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xf0`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`5`
TimeDateStamp	2026-Feb-02 19:39:33
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`9.0`
SizeOfCode	`0x2e400`
SizeOfInitializedData	`0x2b800`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x000000000001CD78 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`5.2`
ImageVersion	`0.0`
SubsystemVersion	`5.2`
Win32VersionValue	`0`
SizeOfImage	`0x83000`
SizeOfHeaders	`0x400`
Checksum	`0x69734`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`9992910c6d39475d4df88fa24cba1977`
SHA1	`983fe4919845b42fd07eafc204251648ac68bf62`
SHA256	`ea5c51f95febcb42ac96e950a715da2d6c01c4e2b15c98e0027348d6cea08e8e`
SHA3	`cee14d6a0bb7fbde8b54f37e5a5a5ecbdeb24f04a561d85b1afe6eeef04f63d0`
VirtualSize	`0x2e31e`
VirtualAddress	`0x1000`
SizeOfRawData	`0x2e400`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.40512`

.rdata

MD5	`2d28b4ba257724f44decd106fa63a6fd`
SHA1	`835da3a47f2f863f8d349aaba2ecccd76bb58a5b`
SHA256	`7b31e1f47787fdae1fa54334bd83403d96a790310c0056267d3d2523b43601ff`
SHA3	`593733eb66eb299811861fce5b0ea8895e120d3d0cb03c445daa16adf6e9b9cf`
VirtualSize	`0xae64`
VirtualAddress	`0x30000`
SizeOfRawData	`0xb000`
PointerToRawData	`0x2e800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.90286`

.data

MD5	`11bb3a5b7ecf2bef33d8cd404eaa9e2a`
SHA1	`977fb5444cc53ecca65d5b8ec95d7dd0e8109a0b`
SHA256	`90794819aafbe6844e68d6dcb447e9dce8b6991a5225e92451257877864e5f9b`
SHA3	`da1a70fb2f9109840d8858cf418a38071c6325d3fedc5a2d75d1db0331ad2704`
VirtualSize	`0x331b8`
VirtualAddress	`0x3b000`
SizeOfRawData	`0xda00`
PointerToRawData	`0x39800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`7.65379`

.pdata

MD5	`8bd630d6830c3e25b2c7892468447a1e`
SHA1	`6092a27589c1b20fa4f555269f6e9f16ec025eff`
SHA256	`2e35e68242dae33ce8c304c37577348afa16038c0eb8c963374d9352e8622e6d`
SHA3	`55a66761f88c41a20989c843fa2c3e079e37e64f6cf865e921302177a467a7af`
VirtualSize	`0x2b38`
VirtualAddress	`0x6f000`
SizeOfRawData	`0x2c00`
PointerToRawData	`0x47200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.39957`

.rsrc

MD5	`9b5f182f810ef7026eeb3fa9df5c34ab`
SHA1	`31a10a6705da4f82fcc0549181f81094a2c8d2a7`
SHA256	`8b6273574c17c12f83d509387d71dd755a18269726e181cc6cf9faacf24967d8`
SHA3	`381eb7adaa9d65be040da4b585ad435c09d37f78e7321afc94cee2f006bd60fb`
VirtualSize	`0x100d4`
VirtualAddress	`0x72000`
SizeOfRawData	`0x10200`
PointerToRawData	`0x49e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`7.46616`

Imports

KERNEL32.dll	`GetTimeZoneInformation` `CloseHandle` `WriteFile` `CreateFileW` `RemoveDirectoryW` `CreateDirectoryW` `GetTempPathW` `GetFileSize` `SetFileAttributesW` `lstrcpynW` `GetUserDefaultLangID` `WritePrivateProfileStringW` `GetPrivateProfileStringW` `GetLastError` `CreateMutexW` `InitializeCriticalSection` `DeleteCriticalSection` `EnterCriticalSection` `LeaveCriticalSection` `GetProcessHeap` `SetEndOfFile` `CreateFileA` `WriteConsoleW` `GetConsoleOutputCP` `WriteConsoleA` `FlushFileBuffers` `SetStdHandle` `GetLocaleInfoA` `GetStringTypeW` `GetStringTypeA` `LCMapStringW` `LCMapStringA` `GetCurrentProcessId` `GetTickCount` `GetCommandLineW` `GetEnvironmentStringsW` `FreeEnvironmentStringsW` `HeapReAlloc` `HeapCreate` `HeapSetInformation` `HeapSize` `ReadFile` `GetConsoleMode` `GetConsoleCP` `SetFilePointer` `GetStartupInfoA` `GetFileType` `SetHandleCount` `InitializeCriticalSectionAndSpinCount` `LoadLibraryA` `GetModuleFileNameA` `GetStdHandle` `IsValidCodePage` `GetOEMCP` `GetACP` `GetCPInfo` `FlsAlloc` `FlsFree` `FlsSetValue` `FlsGetValue` `DecodePointer` `EncodePointer` `GetStartupInfoW` `MoveFileW` `HeapFree` `HeapAlloc` `RtlCaptureContext` `RtlVirtualUnwind` `IsDebuggerPresent` `SetUnhandledExceptionFilter` `UnhandledExceptionFilter` `TerminateProcess` `GetSystemTimeAsFileTime` `RtlPcToFileHeader` `RtlUnwindEx` `RtlLookupFunctionEntry` `RaiseException` `GetLocaleInfoW` `GetNumberFormatW` `SetFileTime` `SystemTimeToFileTime` `LocalFileTimeToFileTime` `GetUserDefaultLCID` `EnumDateFormatsW` `EnumTimeFormatsW` `GetTimeFormatW` `GetDateFormatW` `GetDiskFreeSpaceW` `DeleteFileW` `GetFileAttributesW` `GetVersionExW` `GetCurrentThreadId` `GetLocalTime` `GetModuleHandleW` `OutputDebugStringW` `DebugBreak` `lstrlenA` `FindFirstFileW` `GetFullPathNameW` `SetLastError` `FindClose` `FindNextFileW` `lstrcatW` `lstrcpyW` `MultiByteToWideChar` `WideCharToMultiByte` `lstrlenW` `MulDiv` `GetModuleFileNameW` `CreateThread` `ExitProcess` `LoadLibraryW` `GetProcAddress` `GetCurrentProcess` `Sleep` `QueryPerformanceCounter` `OutputDebugStringA`
USER32.dll	`RegisterClassExW` `DestroyWindow` `EnumWindows` `SetMenu` `IsWindow` `GetAsyncKeyState` `keybd_event` `SetForegroundWindow` `LoadCursorW` `CreateDialogParamW` `GetSubMenu` `FrameRect` `LoadIconW` `LoadImageW` `InsertMenuW` `GetActiveWindow` `PostQuitMessage` `EnableWindow` `GetMessageW` `DispatchMessageW` `TranslateMessage` `TranslateAcceleratorW` `IsDialogMessageW` `LoadAcceleratorsW` `RegisterWindowMessageW` `GetMessagePos` `GetMenuItemCount` `DestroyMenu` `UnhookWindowsHookEx` `SendMessageTimeoutW` `TrackPopupMenuEx` `MessageBoxW` `CopyRect` `OffsetRect` `IsWindowVisible` `GetSysColorBrush` `CharNextW` `CheckMenuItem` `SetMenuItemInfoW` `AppendMenuA` `SetParent` `GetWindowPlacement` `SetRect` `MoveWindow` `CreatePopupMenu` `AppendMenuW` `TrackPopupMenu` `ClientToScreen` `DialogBoxParamW` `EndDialog` `GetDlgItem` `SetWindowTextW` `SetTimer` `KillTimer` `SetDlgItemTextW` `ExitWindowsEx` `GetSysColor` `SetWindowsHookExW` `CallNextHookEx` `GetClassNameW` `GetDC` `GetSystemMetrics` `GetParent` `GetWindowTextW` `DefWindowProcW` `GetMenuItemInfoW` `InvalidateRect` `RedrawWindow` `InflateRect` `BeginPaint` `IsWindowEnabled` `GetFocus` `DrawTextW` `DrawFocusRect` `GetCursorPos` `ScreenToClient` `PtInRect` `EndPaint` `PostMessageW` `GetWindowLongPtrW` `SetWindowLongPtrW` `CallWindowProcW` `CreateWindowExW` `SendMessageW` `ShowWindow` `GetWindowLongW` `SetWindowPos` `GetClientRect` `MapWindowPoints` `GetWindowRect` `GetWindowDC` `FillRect` `ReleaseDC` `SetPropW` `SystemParametersInfoW` `wvsprintfW` `CharLowerW` `wsprintfW` `LoadStringW` `UpdateWindow`
GDI32.dll	`CreateCompatibleBitmap` `CreateCompatibleDC` `CreateFontIndirectW` `GetObjectW` `CreatePatternBrush` `GetCurrentObject` `SetDIBitsToDevice` `SetStretchBltMode` `OffsetWindowOrgEx` `GetTextExtentPoint32W` `GetClipBox` `CreateSolidBrush` `SetBkMode` `Polyline` `ExcludeClipRect` `Rectangle` `CreatePen` `SelectObject` `GetStockObject` `RoundRect` `SetTextColor` `ExtTextOutW` `SetPixel` `DeleteObject` `SetBkColor`
COMDLG32.dll	`GetOpenFileNameW`
ADVAPI32.dll	`RegEnumKeyExW` `RegCloseKey` `RegCreateKeyExW` `RegOpenKeyExW` `RegQueryValueExW` `RegSetValueExW` `RegDeleteKeyW`
SHELL32.dll	`DragQueryFileW` `DragFinish` `#190` `SHGetPathFromIDListW` `#25` `ShellExecuteExW` `SHGetDesktopFolder` `SHGetMalloc` `SHGetSpecialFolderLocation` `SHGetFileInfoW` `SHChangeNotify` `SHGetSpecialFolderPathW` `ShellExecuteW` `SHBrowseForFolderW`
ole32.dll	`CoCreateInstance` `OleInitialize` `CoInitialize`
OLEAUT32.dll	`SysAllocStringLen`
WINMM.dll	`timeGetTime`
COMCTL32.dll	`ImageList_Create` `#17` `InitCommonControlsEx` `ImageList_ReplaceIcon` `ImageList_Draw`

Delayed Imports

AAAA_UNICODE.TMP

Type	`PNG`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0xc970`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.80777`
MD5	`03cd247b671bf1193e0170a33d8df819`
SHA1	`d6d6e13a1cd50ec6b52562387087dda37e91dae4`
SHA256	`00ee930517bfa5a01adcb5c892332b532adb64b193db302b186d380bba941aff`
SHA3	`d725e816d9b6c30a321b62212d223df0e823d430ab57fb9d6ee0222e1e019b74`

3

Type	`TEXTINCLUDE`
Language	German - Liechtenstein
Codepage	Latin 1 / Western European
Size	`0x49`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.80441`
MD5	`9d372ebb7e3db99547693de5d59f9543`
SHA1	`cb458cc3c9338093e25a6319a00e2552692d95d4`
SHA256	`2ac118fdc2d1975975cbbd7e70263af5ed07e5ee1ba1c56284d4d4a402fa5714`
SHA3	`448a521ee26cc264ad8c3b6754c288750bccbde5262f1a70cbfa5e470fc5cd17`

153

Type	`RT_BITMAP`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x4e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`0.757521`
MD5	`25be47b69447a9621f6f65035f7ec5eb`
SHA1	`8c452e46672f3f136928478891494d94359da052`
SHA256	`cb599523779e7601ce96227a687d723ee503e3c2108a3ea084594e3ee959df41`
SHA3	`571675605e5c56828e0eace2a7a227192b0e4371290dffabd4eabb24d1aaa697`
Preview

162

Type	`RT_BITMAP`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x4e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`0.4689`
MD5	`0c8784efc33a95149dd37e1bf846be9a`
SHA1	`2c54a219678408dcbc6cc38e7b2b58b08657104f`
SHA256	`7f2da2b9c5a87332b7c0f4e5c1b3bca8e485b277c6964b2da60e8f9f4cc597db`
SHA3	`ebc05b8cdd255168d2eb9f0b49cd030f5854759b92c194594ed9cb3da0870ab2`
Preview

1

Type	`RT_ICON`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.68274`
MD5	`39b6160e39ed4e071dc6375ea51cfd32`
SHA1	`57ad0cfde37e4317762b8d4121b58085f96be252`
SHA256	`b95f3847f0abacbb4bcde5ea925c57e5832e5ab07f88e54b466bd3fe921a4944`
SHA3	`69ed0de64384bb917a93043703340c0b3054790062076809fd3dd23e6bbc80fa`

2

Type	`RT_ICON`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.6163`
MD5	`b11962de168861eb5a33cfbdd80f3aea`
SHA1	`75b41e84038aff73c0414cf78315211392b92c2d`
SHA256	`7fd004e1937e6132d5fc15a66aff0daa68ec6e426243275c0c05d0c9392c6552`
SHA3	`a397300646dcb8af9cfe05e9f5295bee7cb3f6c4d9712104af77ec9688378bcd`

109

Type	`RT_MENU`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x9e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.91129`
MD5	`fda047a579d2e65b1be7b64c8c5fae95`
SHA1	`64841a84a26c884a883986b2aac1fb012bcaabee`
SHA256	`de5e2c2db09aec01c5194de1f2caa013e562fd9c0c8662e48242f56d67971a05`
SHA3	`64634dfe960b173188022b5e7b8851fcb5a8d8a722ae57ffeedcb221a215a283`

149

Type	`RT_MENU`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0xc8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.12183`
MD5	`cfaf6777164c6b2f60d763d375f7f619`
SHA1	`49ac17b7a4507892b812fdf72dc01dcd05a672dd`
SHA256	`662044baede66437b9c4c0d0ee465d6f686e756d65a317ef92248f9e6d80191a`
SHA3	`c4dc2d03970b658b3d3321a4981b86e76c64844ee7d453888da02f6d7c684ab3`

151

Type	`RT_MENU`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x90`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.97523`
MD5	`6006c1eb852343b741e3aa8d208fd449`
SHA1	`10a03f111afddce7d32c8e5ece0c405640ca084c`
SHA256	`6538892973dd14fd945a83181dece5f7521b74173b8c9c9f4f572c76b2ea370c`
SHA3	`77858b8e287bce943b9879739f0d755b54fea9dabc35d3023f71b4a3663f7f96`

103

Type	`RT_DIALOG`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x3e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.74658`
MD5	`e7ea9fc5430be021eb6f87063443419a`
SHA1	`680ceaa59c377ca92a01d49a1b8d21b634bf689d`
SHA256	`d71d1cc557d084f0ff5d42306e3449caba17495f1bec2bd50efca3b246e9e6b3`
SHA3	`e780956d19f95996cd50aaa471871ba725bf934407df68fb46b959ae320bc2aa`

129

Type	`RT_DIALOG`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x196`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.13505`
MD5	`cc75c8e8cb89f56bee4364776128ae08`
SHA1	`c3236cd7065db3475d0614448ff67d1aabcc7cb2`
SHA256	`34a3f629ff49a110a7f293d3ba25d3ebb2c0b2b0347f4b1b38d23b9446b980b8`
SHA3	`7be0fa186222f472d6a90477586804c963f89bc931cb331057c1602c9b7ba628`

145

Type	`RT_DIALOG`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x33c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.18842`
MD5	`c09b2a2e4024702bc27828dad85e8858`
SHA1	`b36428222b250de65863ea34bc69f98c6bc985bd`
SHA256	`1273db772c05ce477324cace03734d4f12ebd2a70cb8c24b5fe022e11f30446b`
SHA3	`ca89b58a71d7eba96f5fb574dd2c7b7279b7373f98cf56d2a3f84b781427f690`

148

Type	`RT_DIALOG`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x17c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.46669`
MD5	`315d5130fe1ec86bdc3ca36516128b6e`
SHA1	`3533ea7c7ed7631d7e529fe559b22c2e24ac1884`
SHA256	`70f00e8a79139ebda299c1f6e6f111a4bbfb909f19ac6c43bbaa9ecc7812295d`
SHA3	`05347a1780d24e196eda02dfd95de8dad60abd75df66583e0e54f527266837a4`

152

Type	`RT_DIALOG`
Language	German - Liechtenstein
Codepage	Latin 1 / Western European
Size	`0xa6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.18516`
MD5	`179fc059f6c907f281ddc9f73c14f5ac`
SHA1	`0d8c644b722bea78ef0285e66292fb509de16850`
SHA256	`fb8e18f8932fec76e5fff084765cea25e271394ffedc9c457d944806c2a338bb`
SHA3	`efe6365ac7bacbae2f54656081227b6e307d8ae68a060a150b0a3691be001d0e`

203

Type	`RT_DIALOG`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x8e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.90261`
MD5	`5f768b479a99b024adc4159af93f4894`
SHA1	`67c963c1affa58b298139dc2e5a0d3820a7265e4`
SHA256	`d84f562c1e0e241d198427b5b9d397ff6aba6df67535438a87880f73cdb2b323`
SHA3	`70e66d347ea73b7b9ce124678ba049270850ef1dab1bf9c6dffaa20476e7cc24`

7

Type	`RT_STRING`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x2e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.00685`
MD5	`1b7f9f1bd6429d44d3890ffbd24f9a3a`
SHA1	`99832022b3fd75e2ef740a56e0870cffa1cc1f84`
SHA256	`7c8e5f6b84a38f977b3ac3e8e4bff00dffad668a67eda101f70391e270d4b1d9`
SHA3	`81ef62474c4ab4db9dd24fcc4587578d56588024fc1d0dc244da2102f2117f83`

109 (#2)

Type	`RT_ACCELERATOR`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x10`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.79879`
MD5	`3d2b1af3424dbcd504f73918619c7d99`
SHA1	`10d6ed54ea742211a14a05414883f6c00c03080a`
SHA256	`c2f0c188d6c493d7827bf83fb89c704815796445a0178bb2ae79658d96703a3c`
SHA3	`b8c5f28d2c132e5bc304e4dc1b314a3f32a2e48675c06828a2a8a014ea05e7fb`

107

Type	`RT_GROUP_ICON`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.16096`
Detected Filetype	Icon file
MD5	`42cf62b780813706e75fb9f2b2e8c258`
SHA1	`a022d5c1cfdd8aace0089f3e72f2eedd41bda464`
SHA256	`a0c9d012e2bf6b2fe05c2d97cb5594d97cf2f539e97935c12abd7a3562f4d9bf`
SHA3	`0aafc8e3d8b6bde595537da4ffe0efc5fe53f01dafe336a2a5828b6a71283d3c`

153 (#2)

Type	`RT_GROUP_ICON`
Language	German - Germany
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.94375`
Detected Filetype	Icon file
MD5	`d3bdbb19efa0630f837601a23f30ff3d`
SHA1	`f9513900fbb276100e1fcb1b798616c0ae0d4bc6`
SHA256	`852391035320228f8de3412c040f63d082abc6cc8ab8d715d1d5a92c243cbd97`
SHA3	`d64b14bf272ad71e0c7853722283bb1c1c821b983a886b63a7999ba1060420b6`

1 (#2)

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x708`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.45174`
MD5	`d0d132b48a5c23593a050f27b8d23798`
SHA1	`0c8ff06001fd723ac8be280fb8a433a132bb69f8`
SHA256	`244643f5ed9926c7899e0af5cb516d2ad06ca45fd27a9b272111db328330d94e`
SHA3	`1060d4a813ec25bc88c6aac2abec5012958d96713cf2c7085f096ed8d1f43efe`

1 (#3)

Type	`RT_MANIFEST`
Language	German - Liechtenstein
Codepage	Latin 1 / Western European
Size	`0x33c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.17413`
MD5	`089b4de3a33f0f60941eeca1e54e373e`
SHA1	`eb75a452d77a3e439048df8365cfc2ead06575fb`
SHA256	`27da0ae22adf6b70212876a29877e0af20bc24199b2b3caa138b47d745614f10`
SHA3	`dc30a36ada815347e7a6aacc4d44866eed7a99f12c8b8ae1b7cd22d12863da0d`

String Table contents

11
111
11

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	8.31.0.0
ProductVersion	8.31.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT` `VOS_NT_WINDOWS32` `VOS_WINCE` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Company	Nenad Hrg (SoftwareOK.de)
CompanyName	Nenad Hrg (SoftwareOK.com)
FileDescription	BlankAndSecure
FileVersion (#2)	8.31.0.0
InternalName	BlankAndSecure
LegalCopyright	Copyright © 2009-2026 Nenad Hrg
OriginalFilename	BlankAndSecure.exe
ProductName	BlankAndSecure
ProductVersion (#2)	8.31.0.0

Resource LangID	UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0xec1ef6dc`
Unmarked objects	`0`
C objects (VS2008 build 21022)	`160`
ASM objects (VS2008 build 21022)	`12`
C objects (VS2012 build 50727 / VS2005 build 50727)	`1`
128 (VS2012 build 50727 / VS2005 build 50727)	`1`
Imports (VS2012 build 50727 / VS2005 build 50727)	`21`
Total imports	`318`
C++ objects (VS2008 build 21022)	`76`
Linker (VS2008 build 21022)	`1`
Resource objects (VS2008 build 21022)	`1`

31d9994b2c76b836c3b45c26d6e457c7

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rdata

.data

.pdata

.rsrc

Imports

Delayed Imports

AAAA_UNICODE.TMP

3

153

162

1

2

109

149

151

103

129

145

148

152

203

7

109 (#2)

107

153 (#2)

1 (#2)

1 (#3)

String Table contents

Version Info

TLS Callbacks

Load Configuration

RICH Header

Errors