Manalyze report for 3587d42df2b7b09f7c831358423048c8

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2062-Jul-25 12:18:00
Detected languages	English - United States Russian - Russia
Debug artifacts	wextract.pdb
CompanyName	Microsoft Corporation
FileDescription	Самоизвлечение CAB-файлов Win32
FileVersion	`11.00.19041.507 (WinBuild.160101.0800)`
InternalName	Wextract
LegalCopyright	© Корпорация Майкрософт. Все права защищены.
OriginalFilename	WEXTRACT.EXE .MUI
ProductName	Internet Explorer
ProductVersion	`11.00.19041.507`

Plugin Output

Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains references to system / monitoring tools: rundll32.exe` `May have dropper capabilities: CurrentVersion\Run` `Contains domain names: Command.com`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA GetProcAddress LoadLibraryExA` `Can access the registry: RegDeleteValueA RegOpenKeyExA RegQueryInfoKeyA RegSetValueExA RegCreateKeyExA RegQueryValueExA RegCloseKey` `Possibly launches other programs: CreateProcessA` `Can create temporary files: GetTempPathA CreateFileA` `Functions related to the privilege level: OpenProcessToken AdjustTokenPrivileges` `Enumerates local disk drives: GetDriveTypeA GetVolumeInformationA` `Can shut the system down or lock the screen: ExitWindowsEx`
Malicious	The PE header may have been manually modified.	`Resource CABINET detected as a CAB Installer file.` `The resource timestamps differ from the PE header: 1987-Mar-16 08:55:36`
Malicious	VirusTotal score: 6/71 (Scanned on 2020-10-27 22:49:23)	`DrWeb: Trojan.MulDrop14.3005` `APEX: Malicious` `Microsoft: Trojan:Win32/Wacatac.C!ml` `Cylance: Unsafe` `Yandex: Trojan.Agent!5knfXlRKm2M` `Cybereason: malicious.5660d3`

Hashes

MD5	`3587d42df2b7b09f7c831358423048c8`
SHA1	`b94204c5660d3ce9927dd05886d12d49904cc513`
SHA256	`2cda9b227777e6d09c445c3f507485cf661bf3846ec7eb0442017ef5b64f917c`
SHA3	`2bc6fe9bc42e55555299a9028f47ca0000fa256cfb73ad13f70ebc4b1db71fb0`
SSDeep	`3072:zahKyd2n31l5GWp1icKAArDZz4N9GhbkrNEk6zAI:zahOxp0yN90QEJ`
Imports Hash	`cebca604acab789d1d65e5eb985c14d7`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xe8`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`6`
TimeDateStamp	2062-Jul-25 12:18:00
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`14.0`
SizeOfCode	`0x7c00`
SizeOfInitializedData	`0x21000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000000000008200 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`A.0`
ImageVersion	`A.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0x2e000`
SizeOfHeaders	`0x400`
Checksum	`0x2dd5f`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_GUARD_CF` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x80000`
SizeofStackCommit	`0x2000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`60800deac1fde21b98089f2241ee6168`
SHA1	`06e63be17d4a58c8b55b36c7342e541d00d61a93`
SHA256	`7576ef50474bb26481c3493e0a630b944feb21231eacea2318712911f9feb056`
SHA3	`b737d0c76b4aba5f95bb178d2645d9d3a3130dd54c89a8dd6b221e38342208af`
VirtualSize	`0x7b80`
VirtualAddress	`0x1000`
SizeOfRawData	`0x7c00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.09626`

.rdata

MD5	`59d15cdf89780817c3d48dd588a6a129`
SHA1	`3b5f897036bf0d72ebd732362c8f60d2e1f1a5cf`
SHA256	`c7d4b98f92719ae90c3c37301242982e9f347e1d63c6f755cd1ac151b0be3873`
SHA3	`5ec34004d600d72bf223f1daf5441dd3f247a2c6adfd93f8dd14c4d1f9e383cf`
VirtualSize	`0x22c8`
VirtualAddress	`0x9000`
SizeOfRawData	`0x2400`
PointerToRawData	`0x8000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.72784`

.data

MD5	`9d1580dccaf8e787a43caf4bba48a079`
SHA1	`7f0ee10c956d86fef4e6351c3ee77dd00350a9c9`
SHA256	`63b8e6b32cd23956319cc43c5d0c7e44d067103511f800431a852978fced638a`
SHA3	`eaa542af2b1efe6c1307241883ded87cfcd9ecb44ee51891f77232e6245e845d`
VirtualSize	`0x1f00`
VirtualAddress	`0xc000`
SizeOfRawData	`0x400`
PointerToRawData	`0xa400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`3.18898`

.pdata

MD5	`15cd12257317071f28e4f7b728f8825e`
SHA1	`ad44ea7406ea6c51a0ab1ea04598f448ce47d593`
SHA256	`2150243a9c4f52a071023ab21b5bb12c148640bff6d9518cab89f5091049d4b5`
SHA3	`adaa5da9018ff6e4d33f0106e25683e01c6266e194b050acc98cfb348fa6beb7`
VirtualSize	`0x408`
VirtualAddress	`0xe000`
SizeOfRawData	`0x600`
PointerToRawData	`0xa800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.15637`

.rsrc

MD5	`8847a7210c8d8efd8ca80bfd9ef4dfd8`
SHA1	`2c4d7f0346d5786cb68c1f633d48696c2773d29b`
SHA256	`be60bd0e8f1d60522205e2c423664b7d96872b2f9a96c24b57077f6fad7b5c09`
SHA3	`84d9e401977bd7351f81c03b71c1d49f671db57ad6f667c1a15fd21026cd8428`
VirtualSize	`0x1e000`
VirtualAddress	`0xf000`
SizeOfRawData	`0x1e000`
PointerToRawData	`0xae00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`6.90001`

.reloc

MD5	`637787151ee546a94902de9694a58fd6`
SHA1	`4d5087ba3cb6a051543140baca75212fa7ac8e34`
SHA256	`61761b1f8715b59dfcdbab9a0f91fc990cdf0df65933bd7bec2aa058652dbfc8`
SHA3	`0cae7f0be3ed96ab0bb05262b46cf279e081b2c80bed7957f5795c8fdc2267bf`
VirtualSize	`0x20`
VirtualAddress	`0x2d000`
SizeOfRawData	`0x200`
PointerToRawData	`0x28e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.406847`

Imports

ADVAPI32.dll	`GetTokenInformation` `RegDeleteValueA` `RegOpenKeyExA` `RegQueryInfoKeyA` `FreeSid` `OpenProcessToken` `RegSetValueExA` `RegCreateKeyExA` `LookupPrivilegeValueA` `AllocateAndInitializeSid` `RegQueryValueExA` `EqualSid` `RegCloseKey` `AdjustTokenPrivileges`
KERNEL32.dll	`_lopen` `_llseek` `CompareStringA` `GetLastError` `GetFileAttributesA` `GetSystemDirectoryA` `LoadLibraryA` `DeleteFileA` `GlobalAlloc` `GlobalFree` `CloseHandle` `WritePrivateProfileStringA` `IsDBCSLeadByte` `GetWindowsDirectoryA` `SetFileAttributesA` `GetProcAddress` `GlobalLock` `LocalFree` `RemoveDirectoryA` `FreeLibrary` `_lclose` `CreateDirectoryA` `GetPrivateProfileIntA` `GetPrivateProfileStringA` `GlobalUnlock` `ReadFile` `SizeofResource` `WriteFile` `GetDriveTypeA` `LoadLibraryExA` `SetFileTime` `SetFilePointer` `FindResourceA` `CreateMutexA` `GetVolumeInformationA` `WaitForSingleObject` `GetCurrentDirectoryA` `FreeResource` `GetVersion` `SetCurrentDirectoryA` `GetTempPathA` `LocalFileTimeToFileTime` `CreateFileA` `SetEvent` `TerminateThread` `GetVersionExA` `LockResource` `GetSystemInfo` `CreateThread` `ResetEvent` `LoadResource` `ExitProcess` `GetModuleHandleW` `CreateProcessA` `FormatMessageA` `GetTempFileNameA` `DosDateTimeToFileTime` `CreateEventA` `GetExitCodeProcess` `ExpandEnvironmentStringsA` `LocalAlloc` `lstrcmpA` `FindNextFileA` `GetCurrentProcess` `FindFirstFileA` `GetModuleFileNameA` `GetShortPathNameA` `Sleep` `GetStartupInfoW` `RtlCaptureContext` `RtlLookupFunctionEntry` `RtlVirtualUnwind` `UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `TerminateProcess` `QueryPerformanceCounter` `GetCurrentProcessId` `GetCurrentThreadId` `GetSystemTimeAsFileTime` `GetTickCount` `EnumResourceLanguagesA` `GetDiskFreeSpaceA` `MulDiv` `FindClose`
GDI32.dll	`GetDeviceCaps`
USER32.dll	`ShowWindow` `MsgWaitForMultipleObjects` `SetWindowPos` `GetDC` `GetWindowRect` `DispatchMessageA` `GetSystemMetrics` `CallWindowProcA` `SetWindowTextA` `MessageBoxA` `SendDlgItemMessageA` `SendMessageA` `GetDlgItem` `DialogBoxIndirectParamA` `GetWindowLongPtrA` `SetWindowLongPtrA` `SetForegroundWindow` `ReleaseDC` `EnableWindow` `CharNextA` `LoadStringA` `CharPrevA` `EndDialog` `MessageBeep` `ExitWindowsEx` `SetDlgItemTextA` `CharUpperA` `GetDesktopWindow` `PeekMessageA` `GetDlgItemTextA`
msvcrt.dll	`?terminate@@YAXXZ` `_commode` `_fmode` `_acmdln` `__C_specific_handler` `memset` `__setusermatherr` `_ismbblead` `_cexit` `_exit` `exit` `__set_app_type` `__getmainargs` `_amsg_exit` `_XcptFilter` `memcpy_s` `_vsnprintf` `_initterm` `memcpy`
COMCTL32.dll	`#17`
Cabinet.dll	`#20` `#21` `#23` `#22`
VERSION.dll	`VerQueryValueA` `GetFileVersionInfoSizeA` `GetFileVersionInfoA`

Delayed Imports

3001

Type	`AVI`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x2e1a`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.52241`
Detected Filetype	AVI Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`f9035cf32b756fd6a452e9fdfd4a5dd9`
SHA1	`6912e88a3ee4d2c98ca69772cec564c6334fd9c4`
SHA256	`3bd1d253c90f7e82dc70dc1e4b869cc2e5e154e6b4079be93837e4a6c68044c0`
SHA3	`8cd00290363b6d3e609845f2e5828f3e2adaf35c4a97561bcf427bbd054401a6`

1

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x668`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.0699`
MD5	`1119ea8ccf13471c5cb7981c00112bd1`
SHA1	`5311a1759e6269a3cb555795379241550dc70baf`
SHA256	`689e072bec88a4f92eeadc6ada816cbcbedc4de9e76b27c38183f820bcc11e04`
SHA3	`2829f8159ff036d9f6a40b9fad5416e1c3458ad61e83e0139a92c36620b75e99`

2

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x2e8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.15864`
MD5	`46db957427f76e2faed509fa0f083815`
SHA1	`9f062ff76b99cdbbdbc040adca1ec94fd7e0ebf8`
SHA256	`3032bc8ec0d2b10c731ce65338958a69401a6ea5c13bf43236be1cadfaaa796f`
SHA3	`d64af304edb5ed919be1e617b3194ad9d40d97f07942bc10ffe3529713358797`

3

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1e8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.07737`
MD5	`53892c6e1aa6882a0e541da89c8bed9b`
SHA1	`74093737e0c001a618623b84ae2a7c0ae105870b`
SHA256	`c6f49cc3ab503756f46a301d8543d1ed4db7e037b4df86407d24de6542a9b241`
SHA3	`28c5ddd935a6f3e2a9112068eb23447d12c5b75a05fabd52aba335a36d3cd694`

4

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x128`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.50949`
MD5	`77c3fdd8ab3a5023f948ef9dc0a75588`
SHA1	`3c10786225e3af4724ad179081ab67b7bdddb002`
SHA256	`472af970994f80d1368af62de093894cdef4e2ea76f661eabc49e4f7e41a5860`
SHA3	`c7ef5cf31e71ee1211fe1b9ec1aab03e0cc3d9c88d358837f2bf4982d8e83469`

5

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xea8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.56662`
MD5	`9291ba83d585b4e27b489e5e6c0b9e6d`
SHA1	`6a1823c83ba0ee8a9088c2d96c951ff7b0aad0ed`
SHA256	`828bf50bd62a7fca6f0ee8d03970215d1550d31a4f9382b1608b76742ef8aa95`
SHA3	`2201c2224048249b39ff38a95ea21061ad85214a9912fb00474b96082ce81112`

6

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x8a8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.94251`
MD5	`dd6416457884b08fb3b97e48cd8b296d`
SHA1	`460407ba589b388b7095dac3cba861d07d0bc32d`
SHA256	`5a2bcb6347493ac6873330f55603ae586a8b21ab1a7137f7b326b6e682827892`
SHA3	`ff855ab2a14ba17cb2d90b6bdaee4e2257ee959788fa22e7a62a25a86fe401ec`

7

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x6c8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.99361`
MD5	`d9189a0ae5a4ce576b2cd6a3aee869d2`
SHA1	`546acefecec2664dafd9c62b84211d32c5c25ddc`
SHA256	`563e2c3128746f769950f3ccb9267525888c91c6437692a719541acd71afad5c`
SHA3	`4589be5962a881128d7157d9d319ba7ed7c15b7a5c322de0ce2ec6b795bf4191`

8

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x568`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.37828`
MD5	`ff4b77125d8d6dd0bb13557a6e043d70`
SHA1	`4f401d2b2fdd25337757c115b0c3d16850ee90df`
SHA256	`4429f0eabd35418cb2022378e73ee2e766841d35aca4a8b7369359d1341304fe`
SHA3	`915504672b75c8aa786fa9065ade3aaccb2a03a46fe59b92c0f65e502ae43196`

9

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xd9d2`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`7.98515`
Detected Filetype	PNG graphic file
MD5	`d58effc60f9809303be37c9da12ec938`
SHA1	`5f5d1459f715b6d7ac0c9f5e6c86112d02c611a8`
SHA256	`f169eed8248d8f9efd20dd716790f2b3bb0547687546811b4137be21b5c63b71`
SHA3	`927f706c7c34a5b18477f72fb37fca3487c206f65f015b40463be7083a461c7b`

10

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x25a8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.33023`
MD5	`6f18b3932aca200c19eda2c0a8389fe2`
SHA1	`454e38e44e9570502d4134818f983e6b3514c595`
SHA256	`ebfd8bce706bc334ada961a2489fb266101c8960e05bd20fbf2e8ee66af64060`
SHA3	`2f401e2395d28434ceed9c91f17de1595dcfd794e537304dd0c8867ea9c4be60`

11

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x10a8`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.61313`
MD5	`56e519ddae3afada70d9d5afc3e20414`
SHA1	`584a6b17a1a2174921a185cc123bb8e609f0f0ba`
SHA256	`fa6b2f5422746f7377a3ed24f2b108f04f963caa0cc096c51cb49ac74266b107`
SHA3	`1896fe210c328289e0e771e497715e6c92d6e2545625858358002ceb5d1c7ee9`

12

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x988`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.90788`
MD5	`5102430eabaa9f88a657c8a2d9a00547`
SHA1	`6f202d879a72db4c054632a883f9d3c3d1a28dac`
SHA256	`6f44d16ede32521ef7336056baff805a3305f225430de3bd01203ff0625c23d1`
SHA3	`5e8efdae85f063f0502553f6fe4fd93d6882663a77b5513c8e06b5e23f1f99a0`

13

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x468`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`4.85349`
MD5	`6948b3a73688c3ea8fbd7f533a579e25`
SHA1	`931d017e52aa63fec9f1401436e07e3df2573e1b`
SHA256	`8561da4d70ae051d1f146859ba0b50467258730daae8af73726e0700c034b737`
SHA3	`2e6fc86970dfb7e8d036900a05d4c89591b3ab0a597a5074ea56489aa68d3414`

2001

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x2f2`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.25575`
MD5	`733ab5b92105575b10e4716e64f874a7`
SHA1	`84177368dd4658cebdc991269a7584907f5dcc57`
SHA256	`ea6588cf6a9eaa2daaeace3bcd90ad19cfaca72505c0cbba9f10a0db2923d888`
SHA3	`7ed0210cc660b29977851bb04b3cf3c27eb4ea9953117e019b774d7b974ec128`

2001 (#2)

Type	`RT_DIALOG`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x35c`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.91005`
MD5	`8f41d52e74e01d679c8c6eff0529b264`
SHA1	`28b6fc8bebf86f872267d13910fbe8dfa6694fe6`
SHA256	`087674337f53b2042b7ceff24a47e2e8d2ac45a0fb278c9236eb0ed149d35808`
SHA3	`565d98afeb33ceb3c42e3b9d78f9549a203be732115e85e90c82b7d96d352398`

2002

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1b0`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.16025`
MD5	`57c16fb56b83819ba4b6267c6dddb013`
SHA1	`1477b9eb543fbd469c392064e4147d47e74dbb46`
SHA256	`1abfad902cece4ff79c75ee25d79fe254e3c6af72c161295c7ba006e56cd74b1`
SHA3	`941c199bcd737811c390814980c5ac4b546ef6538677f9599de9e7afed0bcb46`

2002 (#2)

Type	`RT_DIALOG`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x1b4`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.72423`
MD5	`a47b9e1f192ccbcb809b8db599b0662a`
SHA1	`57c8f6652fe34d856667cf74b8a1a8128a9eb673`
SHA256	`393b6f32174e830aecfe89648be90b652ea6cc651b8e399802ff192e9accab49`
SHA3	`40930cead955e135ae015a0533732d177f0c0446ec6e1ccebe3084c5b3457442`

2003

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x166`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.99713`
MD5	`dc468a007b317c7439d83a5985cea5a7`
SHA1	`3d89aacc7eebd8c046e2f0e95f66b2b54d577568`
SHA256	`ec8a0548b6bb169afe513ec8a366e746255c3556fe66c95067756fb3ec8b895b`
SHA3	`505917a9fccb89b46551e12f0ced60758a952248cd6f0f7c69967e2e6eabea8d`

2003 (#2)

Type	`RT_DIALOG`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x168`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.50388`
MD5	`87ff0bb75244555d575d803a3e634030`
SHA1	`cd51ddf9cf9223f5a0d56310a7fbdb9833643dfb`
SHA256	`97dc3a548ad900aacfb1a44ae1604b40c9ec07939a92ad8b546a1c4c5a9e28ba`
SHA3	`4b430b36e401be54b405c0387dde1ba4af576607511773d19088c8c36da87080`

2004

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1c0`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.11992`
MD5	`a5187dc5894162b201fe774046408732`
SHA1	`81611f2aa32cfc8b03f00856f319870e97554b7d`
SHA256	`a3565ee9a8656bbdf37e3a50d14d954280cba4895576687a261200aefa1b5b39`
SHA3	`f9fe30ec54d6b149fa57e2cff2eeece6354e12fb7903c85ec221418ac11e94d0`

2004 (#2)

Type	`RT_DIALOG`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x1e0`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.69243`
MD5	`59c9e2bfd752a1e046a7c393154ef56c`
SHA1	`7eea332641f47d0e0ffc2ac3728a6ecf1714c94f`
SHA256	`b93ee51442ac152eed7dc59a3157dfa8b30fe26ab91d58d4d38d822a95d8ae85`
SHA3	`70c5b354a36b6f4304d248d7e47ef704ff0ad50ba60a22b164ce965557288cb6`

2005

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x130`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.97326`
MD5	`ecc5f63aedee66cebcda9ed8fcb3e9f7`
SHA1	`60fadb22b7c1ac3638b8a4d12e2cbe174941ac71`
SHA256	`238d6c2e50312c555901a61e92afad3c7c6b42b9abd5acdda68658c2e2b48678`
SHA3	`b0eb2e4784dc0ae082c941596324510ddcdcd045da590b9db81d1c41f08f02da`

2005 (#2)

Type	`RT_DIALOG`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x150`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.56522`
MD5	`a639e99968e11ba913e1866738633afe`
SHA1	`500228b60de1d853e299bd11a9846679634a2046`
SHA256	`a9b819ac4030dfc2290e740f2cbd319952f2723ee45b7e46271db51b5ee5e2a8`
SHA3	`cc52afb895ca6a461cfc48da67c27ec2acac4fd276f13dbd4639b7b8f71ef975`

2006

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x120`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.97672`
MD5	`42e1aa8919d27f02bcfc6981dbe5248e`
SHA1	`ec432b9979fad89557dd0b0ff1de774750f03f76`
SHA256	`cc21e9115c14c21af11786ff781dcf25c81beda500acf4966d0ddc7260610b06`
SHA3	`a11e5a0307464c1c66d9615a47d5568ab6bcd39c6bd6858842ad3c535272a129`

2006 (#2)

Type	`RT_DIALOG`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x122`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.46344`
MD5	`82f770db354464545a3d34be00a37b65`
SHA1	`e9957d6a4bc351bd92fcfb78942e506063871dec`
SHA256	`49e612ccfa15988eafe54c2e29b4182351aeafe1d01054597897b6ae2c1791ea`
SHA3	`a01d325ddc09d9c10ad1c3ac21b6823c16d457efb3c0fc2d3eca9f935152a1d9`

63

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x8c`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.48958`
MD5	`ad0fe039aecc9c8af6f573923f182a0a`
SHA1	`b4fd492a37127d31fc36b7bd07084cc2f1ae18a1`
SHA256	`29b228ae95784d37b8729fe88e3bf1346c4b1339231dd1e9f702fab0654c5b1f`
SHA3	`7a67b4664ab18841c125d33dbe110fe774b16f91d1471094307c0ac35be5d8a8`

63 (#2)

Type	`RT_STRING`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x86`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.37777`
MD5	`10892bd224bd8122809f3fe2880921b0`
SHA1	`893440b2e39015f74732b78d7054a3e47f029d7f`
SHA256	`e7f5c191391cceb1e836e25623e04f0d4fa439c9416b6162d2eb438161fc97f8`
SHA3	`cdbbddc064e55db9a420eff758adc608669b0daee7d4255cd0b04973d1799775`

76

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x520`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.2674`
MD5	`0f3f664bff00f8c4a1b42349d2956963`
SHA1	`d0ec056db75705bd79b7ebf1767c91dce955d79a`
SHA256	`7cc882dbb9f1315968f31bf40b57a535ff468271e253575752e03cb4aaa25f0c`
SHA3	`a81b1ab97bb98d4fb6d1619bf8bdee495b3176693e77305e438805563e952b91`

76 (#2)

Type	`RT_STRING`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x52e`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.71806`
MD5	`188e79bfc420bad663fe2097e84420d3`
SHA1	`0a24a18a915c4e06fb2e09d26e8d23ce07bea30b`
SHA256	`584010496717cb5ed35393610d6878d0c32164af9f927e18f5c8cbca18a37057`
SHA3	`3fdeeac4cb4d585d9cbdd8383e7b28a975824f326ac232d2ece18c3a801b5714`

77

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x5cc`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.29977`
MD5	`5f3ef55a113dc5f00ffc647e8be50df1`
SHA1	`cf04ac59ce78d6b2ffde0990ef76cf40ee1c439b`
SHA256	`3f715c8970d240cb57ba8ae8914ea8385b42728ffd48a3916493422a80cc3ed4`
SHA3	`fdabc44cd05ee45599b1e28ee3ca323cd6768db6606bffe95ceb6025b31b4d2f`

77 (#2)

Type	`RT_STRING`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x592`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.99175`
MD5	`4540b4d264ae53ebedb6ae98dc7d7467`
SHA1	`d0e20ee7b10afb0cc914656835b2967146387405`
SHA256	`87883155854d79b158c86bdc136d24706640ffdd1382299e9ecc0d7e6191364c`
SHA3	`d72846796c42d2e8e957a67722e8ed47b28f9c74765fc60dd98bac85e8211032`

80

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x4b0`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.27174`
MD5	`1f268a77ca8f853ff0c410e622706bef`
SHA1	`75afb11daf446704dddb5ef5fe39b2009aecf01d`
SHA256	`39023f15fbabf4be02e0d84a76c363003374b11076406f84cd8f92e49aecd3ba`
SHA3	`5e684d700849b8552f5449c5869807ce32caa8ae657695824e4a41be4a2ee55d`

80 (#2)

Type	`RT_STRING`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x4b2`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.95581`
MD5	`b34af5e90743fe017121b69528547f25`
SHA1	`28f84807c2310b5a46f8b4363090af2a3412db3f`
SHA256	`f9b5803b7ea2eba03ff2fdd0aabb15413c4d18336e878c0904d8240fb15cd76e`
SHA3	`6a2175091b8d8705e11443fc894fcba3eeab933c4147f1508c6cbedb535e4c75`

83

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x44a`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.2912`
MD5	`586fc633195baca29ef84b9271b42689`
SHA1	`69d5712401f0ca87f897c68f3a07ee9e01de8a25`
SHA256	`c1a5490b8a26165048de894aacdcd25e09cec0c4aebc5ff1d435f2cc4757118b`
SHA3	`04492be8d1f2fd83ad6633ec69825c302118f6039586e9f2bd804e00fdcc0913`

83 (#2)

Type	`RT_STRING`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x43e`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.84767`
MD5	`d3296ae710a69e6ca22829e98b3742d3`
SHA1	`f0fab17f14aefa58267797acc18bf5e05858fa7a`
SHA256	`8543daa7e1484c7fc10c812100325ded75c3090be67eb47ae5ab0415850a52d4`
SHA3	`f55b511862797f20b8a9d9ab0bb2682d69ef78b563bde3110f96385a1fff0ec3`

85

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x3ce`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.13591`
MD5	`949714f4f3946ad108bb0817d170c459`
SHA1	`01b3524390968f27c27943e9f06f145b8527f8de`
SHA256	`59d8ad57a3629edd20c7b298a6e3604eeb95dfc7c507ad7e329ea0bff7a571ff`
SHA3	`6447983c227f98b8cd5f4045d58626cd5f965fa8e9cb99c33a68a58136ceb655`

85 (#2)

Type	`RT_STRING`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x2fc`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.6985`
MD5	`9fb5f747a0a5542392e9c5d08592fb8c`
SHA1	`b27001b83b5a576a251583c3d75e50a0ad2f1947`
SHA256	`66d56b55e17f981250e14d6c1bb5cd49dd85d1e7812715d34963177464b8500b`
SHA3	`f30c004f8b38b5164fed5312b349da6762e28aa7b215e046102f4efa9c9caebe`

ADMQCMD

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

CABINET

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x12e`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.30292`
Detected Filetype	CAB Installer file
MD5	`53c2e2cba3447bc52abbc731cc9a8fbe`
SHA1	`b72d98062f967b2647c379a2d17552cc1d85fcbe`
SHA256	`2ab3cb8017c3be2dd3537bf4016f550dd904e32084ce4aee8e7fdbe05c3541b2`
SHA3	`0c9c7ea90131a0354b51f7678296e6906506c45d657c1d84032d762fa164ec9d`

EXTRACTOPT

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`0.811278`
MD5	`edcfae989540fd42e4b8556d5b723bb6`
SHA1	`8e146c3c4e33449f95a49679795f74f7ae19ecc1`
SHA256	`9d9f290527a6be626a8f5985b26e19b237b44872b03631811df4416fc1713178`
SHA3	`60c2a8073325723836f33d900267acbb341b4a1ed9cac675e75df2abbad4207b`

FILESIZES

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x24`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`1.5482`
MD5	`cddb9cc80fbf56f41ed425b2eb5f9582`
SHA1	`191a087a965823c9a36bd1806ff40e68c8bfd670`
SHA256	`31ee367536c7f961af87175bb6bbdad7a5c277db56f69161842cee53f8354739`
SHA3	`4cfc88c4e673dfe90f040057b9358b5937ccf87484121f299f144aa3d8a9e534`

FINISHMSG

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

LICENSE

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

PACKINSTSPACE

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`0`
MD5	`f1d3ff8443297732862df21dc4e57262`
SHA1	`9069ca78e7450a285173431b3e52c5c25299e473`
SHA256	`df3f619804a92fdb4057192dc43dd748ea778adc52bc498ce80524c014b81119`
SHA3	`8b0a2385d83c8bf7be27e59996f7d881d3bf1fc6606f81ce600b753ad94192a2`

POSTRUNPROGRAM

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

REBOOT

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`0`
MD5	`f1d3ff8443297732862df21dc4e57262`
SHA1	`9069ca78e7450a285173431b3e52c5c25299e473`
SHA256	`df3f619804a92fdb4057192dc43dd748ea778adc52bc498ce80524c014b81119`
SHA3	`8b0a2385d83c8bf7be27e59996f7d881d3bf1fc6606f81ce600b753ad94192a2`

RUNPROGRAM

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1b`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.83804`
MD5	`6f2688d29070dadcb4ecba69e6abfffb`
SHA1	`160bac85fae629489e1c49e24376015aa334cce4`
SHA256	`0557c1eae6baafa96703b1ae6fc889749ca04e8d1a4c627a88ffbca9f5fdc9b6`
SHA3	`d4565db7a3998bbcf558eef5e83830e1f0d1c9eb59d4d216aeeb8f084d1ecd4f`

SHOWWINDOW

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`0.811278`
MD5	`4352d88a78aa39750bf70cd6f27bcaa5`
SHA1	`3c585604e87f855973731fea83e21fab9392d2fc`
SHA256	`67abdd721024f0ff4e0b3f4c2fc13bc5bad42d0b7851d456d88d203d15aaa450`
SHA3	`295cd1698c6ac5bd804a09e50f19f8549475e52db1c6ebd441ed0c7b256e1ddf`

TITLE

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2`
MD5	`70398cda3c71440a13f10a168c513cbf`
SHA1	`928870f06c967d9869cb201b7202c4b248754ade`
SHA256	`7bb8d6b44d9466d607e1ba8d32a4d5c60de9f1d50681a6ffe0413b3725a344b9`
SHA3	`ed0620c55454392d3937e8d72099824bb1d8775a746a95b61ed259521f4af0d6`

UPROMPT

Type	`RT_RCDATA`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

USRQCMD

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

3000

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xbc`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.06903`
Detected Filetype	Icon file
MD5	`fd33ac51d62922419e4891a00f6e6efa`
SHA1	`8cb942ccc95430628eb8200da35c0a5c8240de84`
SHA256	`f327fb34dd8f0143903c681df662ae88c1b36483647d54b9ca074aae9b7620e3`
SHA3	`6752df93dd0adf3e0e172480a7ed20eb5b97bff02646dd17b7eb6880745049c3`

1 (#2)

Type	`RT_VERSION`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x410`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.41362`
MD5	`cc17d613660400461c4643ee563bad6c`
SHA1	`6558a563f18bc97b8abe76552c2c58b54fa26bd6`
SHA256	`f9d58f0617bd7065abaf2d3af32206882907af8812fcb5500deb25e1ba04c7b9`
SHA3	`42050b8a1ddd83360cdeeaf8a0dc3dcc23885f7fef656405b316efcfc64ee38d`

1 (#3)

Type	`RT_VERSION`
Language	Russian - Russia
Codepage	Latin 1 / Western European
Size	`0x418`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`3.74604`
MD5	`2d0ad5f3d6bd475d458090ed5165aa4f`
SHA1	`697aca006d498d8f687fbf6d791377707ccf1b4a`
SHA256	`51b42f10eb6872d443cf86bdf22972a108fea2d082781815585868bc944b9387`
SHA3	`2dc2b94773e5fe4f9d6203d212b07522df45c4791b3478f95db17fc5175af219`

1 (#4)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7e6`
TimeDateStamp	1987-Mar-16 08:55:36
Entropy	`5.00142`
MD5	`24a920dd92e3820a7fb081893dbfdc21`
SHA1	`c107c7e70fcb950a6b489741a9ff95640bf2d1c8`
SHA256	`ea7dbcb656b43eacb4f691740eaf9f53b79c347bffc0cd8c4f3b8e0e2f3e1a2f`
SHA3	`0799a889b78379e7e9e5c751426a1924f93f9fcbd28b9eefa11d281be4ca8999`

String Table contents

Please select a folder to store the extracted files.
%s
Выберите папку для сохранения извлеченных файлов.
%s
Failed to get disk space information from: %s.

System Message: %s.
A required resource cannot be located.
Are you sure you want to cancel?
Unable to retrieve operating system version information.
Memory allocation request failed.
Unable to create extraction thread.
Cabinet is not valid.
Filetable full.
Can not change to destination folder.
Setup could not find a drive with %s KB free disk space to install the program. Please free up some space first and press RETRY or press CANCEL to exit setup.
That folder is invalid. Please make sure the folder exists and is writable.
You must specify a folder with fully qualified pathname or choose Cancel.
Не удается получить сведения о наличии места на диске от: %s.

Сообщение системы: %s.
Не удается найти требуемый ресурс.
Вы действительно хотите отменить?
Не удается получить сведения о версии операционной системы.
Ошибка запроса получения памяти.
Не удается создать поток извлечения.
Недопустимый Cab-файл.
Переполнение таблицы файлов.
Ошибка перехода в папку.
Не удалось найти диск, имеющий %s КБ свободного места для установки программы. Освободите место и нажмите кнопку повтора. Для выхода нажмите кнопку отмены.
Эта папка недействительна. Убедитесь, что папка существует и доступна для записи.
Укажите полный путь к папке или нажмите кнопку "Отмена".
Could not update folder edit box.
Could not load functions required for browser dialog.
Could not load Shell32.dll required for browser dialog.
Error creating process <%s>. Reason: %s
The cluster size in this system is not supported.
A required resource appears to be corrupted.
Windows 95 or Windows NT 4.0 Beta 2 or greater is required for this installation.
Error loading %s
GetProcAddress() failed on function '%s'. Possible reason: incorrect version of advpack.dll being used.
Windows 95 or Windows NT is required to install
Could not create folder '%s'
To install this program, you need %s KB disk space on drive %s. It is recommended that you free up the required disk space before you continue.

Do you still want to continue?
Не удалось обновить поле ввода папки.
Не удалось загрузить функции для диалогового окна обозревателя.
Не удалось загрузить библиотеку Shell32.DLL для диалогового окна обозревателя.
Ошибка создания процесса <%s>. Причина: %s
Размер кластера не поддерживается этой системой.
Требуемый ресурс поврежден.
Для установки требуется Windows 95 или 2-я бета-версия Windows NT 4.0.
Ошибка загрузки %s
Ошибка GetProcAddress() для функции "%s". Возможные причины: неправильная версия advpack.dll.
Для установки необходима операционная система Windows 95 или Windows NT.
Не удалось создать папку "%s"
Для установки программы требуется %s КБ места на диске %s. Освободите необходимое место для продолжения.

Продолжить?
Error retrieving Windows folder
NT Shutdown: OpenProcessToken error.
NT Shutdown: AdjustTokenPrivileges error.
NT Shutdown: ExitWindowsEx error.
Extracting file failed. It is most likely caused by low memory (low disk space for swapping file) or corrupted Cabinet file.
The setup program could not retrieve the volume information for drive (%s) .
System message: %s.
Setup could not find a drive with %s KB free disk space to install the program. Please free up some space and try again.
The installation program appears to be damaged or corrupted. Contact the vendor of this application.
Ошибка получения папки Windows
Завершение работы NT: ошибка OpenProcessToken.
Завершение работы NT: ошибка AdjustTokenPrivileges.
Завершение работы NT: ошибка ExitWindowsEx.
Ошибка извлечения файла. Вероятно, недостаточно памяти (нет места на диске для файла подкачки) или файл Cab поврежден.
Программе установки не удается получить сведения о томе для диска (%s) .
Системное сообщение: %s.
Программе установки не удается найти диск с %s КБ свободного места для установки программы. Освободите место и повторите операцию.
Программа установки повреждена. Обратитесь к поставщику приложения.
Command line option syntax error. Type Command /? for Help.
Command line options:

/Q -- Quiet modes for package,

/T:<full path> -- Specifies temporary working folder,

/C -- Extract files only to the folder when used also with /T.

/C:<Cmd> -- Override Install Command defined by author.

You must restart your computer before the new settings will take effect.

Do you want to restart your computer now?
Another copy of the '%s' package is already running on your system. Do you want to run another copy?
Could not find the file: %s.
Ошибка синтаксиса командной строки. Для получения справки введите Command /?.
Параметры командной строки:

/Q -- Тихий режим,

/T:<полный путь> -- Временная рабочая папка,

/C -- Извлекать файлы только в папку при использовании вместе с /T.

/C:<команда> -- Заменить команду установки, указанную автором.

Чтобы новые параметры вступили в силу, необходимо перезагрузить компьютер.

Вы хотите сделать это сейчас?
В вашей системе уже выполняется другая копия пакета "%s". Вы хотите запустить другую копию?
Не удалось найти файл: %s.
You do not have administrator privileges on this machine. Some installations cannot be completed correctly unless they are run by an administrator.
The folder '%s' does not exist. Do you want to create it?
Another copy of the '%s' package is already running on your system. You can only run one copy at a time.
The '%s' package is not compatible with the version of Windows you are running.
The '%s' package is not compatible with the version of the file: %s on your system.
Вы не имеете прав администратора на этом компьютере. Некоторые установки могут быть выполнены только администратором.
Папка "%s" не существует. Вы хотите создать ее?
Уже выполняется другая копия пакета "%s". Вы не можете запускать сразу несколько копий.
Пакет "%s" несовместим с используемой версией Windows.
Пакет "%s" несовместим с версией файла: %s на вашей системе.

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2062-Jul-25 12:18:00
Version	`0.0`
SizeofData	`37`
AddressOfRawData	`0x9a64`
PointerToRawData	`0x8a64`
Referenced File	wextract.pdb

IMAGE_DEBUG_TYPE_POGO

Characteristics	`0`
TimeDateStamp	2062-Jul-25 12:18:00
Version	`0.0`
SizeofData	`496`
AddressOfRawData	`0x9a8c`
PointerToRawData	`0x8a8c`

UNKNOWN

Characteristics	`0`
TimeDateStamp	2062-Jul-25 12:18:00
Version	`0.0`
SizeofData	`36`
AddressOfRawData	`0x9c7c`
PointerToRawData	`0x8c7c`

TLS Callbacks

Load Configuration

Size	`0x118`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x14000c008`
GuardCFCheckFunctionPointer	`5368747592`
GuardCFDispatchFunctionPointer	`0`
GuardCFFunctionTable	`0`
GuardCFFunctionCount	`0`
GuardFlags	`(EMPTY)`
CodeIntegrity.Flags	`0`
CodeIntegrity.Catalog	`0`
CodeIntegrity.CatalogOffset	`0`
CodeIntegrity.Reserved	`0`
GuardAddressTakenIatEntryTable	`0`
GuardAddressTakenIatEntryCount	`0`
GuardLongJumpTargetTable	`0`
GuardLongJumpTargetCount	`0`

RICH Header

XOR Key	`0x3690b900`
Unmarked objects	`0`
C++ objects (27412)	`1`
ASM objects (27412)	`2`
C objects (27412)	`18`
Imports (27412)	`17`
Total imports	`160`
264 (27412)	`10`
Resource objects (27412)	`1`
Linker (27412)	`1`

Errors

[*] Warning: Multiple nodes using the name Version Info in a dictionary.