Manalyze report for 3d35385ce3200120551c9bc2680458bc

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2003-Apr-20 15:01:12
Detected languages	English - United States

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0` `Microsoft Visual C 5.0` `Microsoft Visual C++`
Suspicious	PEiD Signature:	`PeStubOEP v1.x`
Info	Interesting strings found in the binary:	`Contains domain names: amazon.com geekhideout.com http://www.amazon.com http://www.amazon.com/exec/obidos/ASIN/B000002KGA/o/qid http://www.geekhideout.com http://www.geekhideout.com/druglord.shtml http://www.geekhideout.com/hs.shtml?code http://www.paypal.com paypal.com www.amazon.com www.geekhideout.com www.paypal.com`
Info	The PE contains common functions which appear in legitimate applications.	`[!] The program may be hiding some of its imports: LoadLibraryA GetProcAddress` `Can access the registry: RegCloseKey RegSetValueExA RegCreateKeyExA RegOpenKeyExA RegQueryValueExA RegDeleteKeyA` `Possibly launches other programs: CreateProcessA ShellExecuteA`
Suspicious	The PE is possibly a dropper.	`Resources amount for 79.0699% of the executable.`
Safe	VirusTotal score: 0/68 (Scanned on 2021-04-20 06:04:34)	`All the AVs think this file is safe.`

Hashes

MD5	`3d35385ce3200120551c9bc2680458bc`
SHA1	`d1998b8dc57f3662070f2b19ec85e92e19e039a1`
SHA256	`187515f94d434567c58ecee5ced5c909c3fa6a0cb5054f81987ddb04be5aa5fb`
SHA3	`af07c6d5eb2c790b51200b06b8e26fcbe308c8c4880784f0e32c52a07302777e`
SSDeep	`12288:627jPLTizDCyzXuXnY12i/XKQH9bjW/RfrW5tG1E7YOXr8euEGK:D/3y6pMHx8BuUiErK`
Imports Hash	`9852860c018d6adc535f271f9e7e4a44`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`5`
TimeDateStamp	2003-Apr-20 15:01:12
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`5.0`
SizeOfCode	`0x16200`
SizeOfInitializedData	`0xb0400`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00012060 (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x18000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0xcb000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`8be86d536eac431aad363e458b4c0246`
SHA1	`6670c77e432b3886f30d5c90e3460086a482feee`
SHA256	`ce407a2f7ae8c6f706a6cf5afd97744a94f92423db7a3117640fa25b31af2e05`
SHA3	`b95d836dfe74fa12e9646e768d10486818894327a4d2bddf585aec57e4cbae78`
VirtualSize	`0x16010`
VirtualAddress	`0x1000`
SizeOfRawData	`0x16200`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.33689`

.rdata

MD5	`7ff28bcf08852575d424f4b089b46160`
SHA1	`d58a98d2cb9ae6ec973dc5396df812f907bf6f6a`
SHA256	`47325ed914332b7c5289e9057df15cbcf0c108037278eebe97cffde6cb3087f4`
SHA3	`e40148d9ce801af351494c90ba7f5181104926abcf4d33d34722e71a2745e321`
VirtualSize	`0x807`
VirtualAddress	`0x18000`
SizeOfRawData	`0xa00`
PointerToRawData	`0x16600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.28552`

.data

MD5	`fa471b3f40510e6dd4066a1561300a1e`
SHA1	`b21422e9a6df5687941b7171d1e13dba3cf83b6f`
SHA256	`0a517be43b34e8bb6766b5f8a0478ba134fbf461a0b52b68335f7229263b74ce`
SHA3	`6cb89f55e48dc99be0439f5ad3a12f53617cbb7eb8293acfedb304e4d8fca982`
VirtualSize	`0x13018`
VirtualAddress	`0x19000`
SizeOfRawData	`0xf800`
PointerToRawData	`0x17000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`1.50334`

.idata

MD5	`2a641c2d7a8cacaeafbdc1c28fe53311`
SHA1	`85eef523b33321f29e7596a0b3079aeee4cd2dad`
SHA256	`6860812e5d92e97bfa821e6d964418e5598edfc1b18cf88928a8679b9fec308b`
SHA3	`fca7004f4d3e40d7d76e375acc711cfb42436779ae3a3f140433ca2e24934fd9`
VirtualSize	`0x1176`
VirtualAddress	`0x2d000`
SizeOfRawData	`0x1200`
PointerToRawData	`0x26800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`5.39761`

.rsrc

MD5	`05f536bb830a58e61cb0e0034d48962f`
SHA1	`9804ae3a30d1b3ad514b26bfa2b1872ecf0505af`
SHA256	`5420c7265f332e26aa7818149188d9cdadcb49ac4c8870b2fa160ed1e4f42a04`
SHA3	`27e933ecff458b680150397419655d22dd4e20642f5d460a0bbdf61adfefc1ae`
VirtualSize	`0x9b4f8`
VirtualAddress	`0x2f000`
SizeOfRawData	`0x9b600`
PointerToRawData	`0x27a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`6.71939`

Imports

COMCTL32.dll	`ImageList_Create` `#17` `ImageList_AddMasked` `ImageList_Destroy`
KERNEL32.dll	`GetCurrentProcess` `GetCurrentThread` `ResumeThread` `CreateProcessA` `CloseHandle` `WriteFile` `CreateFileA` `SetPriorityClass` `GetModuleFileNameA` `GetCommandLineA` `lstrcmpiA` `GlobalLock` `GlobalUnlock` `FindResourceA` `LoadResource` `LockResource` `SizeofResource` `lstrlenA` `GetWindowsDirectoryA` `CreateDirectoryA` `GetLastError` `CopyFileA` `RemoveDirectoryA` `LoadLibraryA` `FreeLibrary` `MultiByteToWideChar` `lstrcatA` `lstrcpyA` `GlobalAlloc` `DeleteFileA` `SetThreadPriority` `GetStringTypeA` `RtlUnwind` `GetFileType` `GetStdHandle` `SetHandleCount` `GetOEMCP` `GetACP` `GetCPInfo` `WideCharToMultiByte` `GetEnvironmentStringsW` `GetEnvironmentStrings` `FreeEnvironmentStringsW` `FreeEnvironmentStringsA` `UnhandledExceptionFilter` `HeapSize` `TerminateProcess` `ExitProcess` `HeapReAlloc` `VirtualAlloc` `VirtualFree` `HeapCreate` `HeapDestroy` `GetVersion` `GetStartupInfoA` `GetModuleHandleA` `SetFilePointer` `GetSystemTime` `GetTimeZoneInformation` `GetLocalTime` `HeapFree` `GetStringTypeW` `HeapAlloc` `SetStdHandle` `FlushFileBuffers` `GetProcAddress` `CompareStringW` `SetEnvironmentVariableA` `CompareStringA` `LCMapStringW` `LCMapStringA`
USER32.dll	`OpenClipboard` `EmptyClipboard` `DialogBoxParamA` `CloseClipboard` `GetFocus` `SetFocus` `GetDlgItemTextA` `ShowWindow` `SetClipboardData` `LoadBitmapA` `SendDlgItemMessageA` `GetDlgItem` `SetDlgItemTextA` `SendMessageA` `LoadCursorA` `SetCursor` `IsDlgButtonChecked` `MessageBoxA` `wsprintfA` `SetWindowTextA` `ScreenToClient` `DestroyCursor` `GetCapture` `SetCapture` `PtInRect` `ReleaseCapture` `SetWindowLongA` `RegisterClassA` `UnregisterClassA` `GetParent` `DefWindowProcA` `GetMenuItemCount` `DrawTextA` `BeginPaint` `GetClientRect` `CreateDialogParamA` `EndPaint` `GetMenuItemInfoA` `DestroyMenu` `GetCursorPos` `TrackPopupMenu` `GetDlgCtrlID` `GetWindowLongA` `CreatePopupMenu` `InsertMenuItemA` `SetClassLongA` `MapWindowPoints` `InvalidateRect` `DestroyWindow` `SetWindowPos` `GetWindowRect` `SetScrollPos` `GetSysColor` `GetSysColorBrush` `CheckDlgButton` `EnableMenuItem` `DestroyIcon` `LoadIconA` `IsWindowEnabled` `UpdateWindow` `EndDialog` `EnableWindow` `GetDesktopWindow` `ClientToScreen`
GDI32.dll	`GetStockObject` `SetBkColor` `SetTextColor` `SetBkMode` `Ellipse` `DeleteObject` `LineTo` `MoveToEx` `CreatePen` `SelectObject` `CreateFontIndirectA` `CreateSolidBrush` `GetObjectA`
ADVAPI32.dll	`RegCloseKey` `RegSetValueExA` `RegCreateKeyExA` `RegOpenKeyExA` `RegQueryValueExA` `RegDeleteKeyA`
SHELL32.dll	`SHGetSpecialFolderLocation` `SHBrowseForFolderA` `CommandLineToArgvW` `SHGetPathFromIDListA` `ShellExecuteA`
ole32.dll	`CoInitialize` `CoUninitialize` `CoCreateInstance`
WINMM.dll	`PlaySoundA`

Delayed Imports

101

Type	`MIDI`
Language	English - United States
Codepage	UNKNOWN
Size	`0x63fd`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`5.58161`
Detected Filetype	MIDI file
MD5	`748aefd85a4a06404be4881fa3e05469`
SHA1	`28e5f8ff9b9ff8f5019043b5029b6ecf4244038c`
SHA256	`86e1a29f2c1189de3093b7c994c65020f460dd7f87dc58d151da540ad59141ee`
SHA3	`4956b23d05d8236fdf8b4bfc4a9dfae0339b9482f8c7abcbd05e8b6dff6438da`
Preview

102

Type	`MIDI`
Language	English - United States
Codepage	UNKNOWN
Size	`0x18710`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.29504`
Detected Filetype	Windows animated cursor
MD5	`3528bda51597ea7b048ee15152c57688`
SHA1	`603fc3676d24cf85b3438d21e20b171e633deab5`
SHA256	`ca3cc43909aaa51f974bd89601ed46a62d2747c9e2a130e5b5daa69c6c6a9001`
SHA3	`a37043286e8e19527410b2e69d04644fc1c86a396d031d4c5747ef3cc5183863`
Preview

101 (#2)

Type	`RTF`
Language	English - United States
Codepage	UNKNOWN
Size	`0x25b`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`4.81817`
Detected Filetype	RTF Document
MD5	`d41fcbbc6dfa5a9da6fe5ed0f1b25093`
SHA1	`c069b29fea3d6fff7dbaf4c7c821012542fce77d`
SHA256	`d319c32e6d7dc8dd218c6f54acbe2814b95a1d2fa167026462c4c3426f25d0c3`
SHA3	`d019320026f7fc7f50dec99562af401003a514b993cca37865b59e8707ee467a`

102 (#2)

Type	`RTF`
Language	English - United States
Codepage	UNKNOWN
Size	`0xc41`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`5.14429`
Detected Filetype	RTF Document
MD5	`3cf697c2c9d41fe09eba919c40d4e504`
SHA1	`f0bf7cc77bbf0f1d3dd896d2c1c5cffcb09c36cf`
SHA256	`238b7114dc5e54f9f69e612d7eabc4648f2423775db72af501302c2fef2e7556`
SHA3	`4e54fe2be90634786fe2ee2eafec3696cdb96736d1165df7c6a9bc69f32691cc`

103

Type	`RTF`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4edc`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`4.89815`
Detected Filetype	RTF Document
MD5	`5e14bd686a50d5bf3e98e774e27a19f7`
SHA1	`f300934d58dca315793f79b1e9608c3498dafbc8`
SHA256	`9cafea4f0790f5d50abf403f413ee9c59290e73bfae6e7b9df7a45fe35db68f1`
SHA3	`b9bccd5d5892946b8a4518fe5e418597e1737d5ec619de21a61fd4fecd01452e`

1

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xdb3e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.69057`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`33c6b28ef0d46929bc1ac79a6dff1437`
SHA1	`533fb93e9184c920b9f229d67ae35d70ee817341`
SHA256	`2fd11135bbdb225eaad7dd412823f2893e9ebb0f21b4443a10d978c896841628`
SHA3	`19c26cfb52a72ace546266f76a55076d7e1d0cf16fd201c801f6df9275c27267`

101 (#3)

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x952e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`7.15242`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`6fb00af869f5d6a252c3c3e5372cae2c`
SHA1	`72bcf04621ddbec9c7ab414a1b073ba210b154aa`
SHA256	`f88f7d18657fb17f7c4d5e99a5836bf6c13ae7c092094a1f5f212dfd41ac38aa`
SHA3	`59cc1dcc52fc0b118b46033cf29fc9f16f5f3b3c723f62c378f39d11612eb389`

102 (#3)

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa68e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.66929`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`acc2a243875c3255842dc5b5f49d7efd`
SHA1	`3c2d9996ecc5ba1495cd75ed985ca79e24acaf54`
SHA256	`e8c3ee57a926c63c74a8dfb4a5a1d1c72418df0fafcbf340a9fda21d6083bc64`
SHA3	`0dc3fc6c173dacf4c0785ce165fd514849682fd029ff793331439de1a9db769a`

103 (#2)

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x5dbe`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.74928`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`ee2d95c769a774c0e8d23fb0e49021d3`
SHA1	`582c1c8649c5fbdfc77fd87a965e40d88e39d61d`
SHA256	`4229e43f33b240e00bea85251043baaf34d8788468037268e68a087ad189c320`
SHA3	`ac0ec3f545a1eba7ffa54bbe26958050f76140884f1a8d3e7440d8af8886d7d8`

104

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x33ac`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`7.28247`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`2ec4925ff771ea3c263f5434d49e0a83`
SHA1	`1383b96b5ead0837ee8414afd659138837363046`
SHA256	`4ff89fba3aaab7dff69190f7408e43a3167ae6613fd0d339261692f0cdeabdbd`
SHA3	`04acbd09b0e704f7d025ff555ca114039d18517580afaffd326aba6785b7d956`

105

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2a1a`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`5.72786`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`14b917e016ad829cc9f4c0d9f997cc8c`
SHA1	`90d5564973b95b4b7663779979d7c74ee0fe65d4`
SHA256	`1215b4c57eebda08fe131983524d2aca6b43fe9ecda6f5a7ef68ed07de5d4b2a`
SHA3	`f472a3e9044c6a79b9e6013e380262290747ed8a0fdb77eacbea33c5a2f13d66`

201

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x18c8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`5.03302`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`ef8b42a44d3fd756dbc83d9156d9695e`
SHA1	`e87d07483f95976c987fccd923053f81b500553f`
SHA256	`92cdef70a51ea60012560b83be8b3723ad05c321439c966fae8d65b06ddb433a`
SHA3	`f4bd86e7db3326422d3401dbfd09046ce27b80928eed96275cf59418d94ff4e1`

202

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xac9a`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.55655`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`41531af715dfa815ee693f7ab06e2db5`
SHA1	`2a0e811fed0b9b40ee509b6a1be8c9f17b3314ff`
SHA256	`3cdba7855d3def838e0d347beaa341ce33f3bf8117cf7d636c1c4c485cab595d`
SHA3	`4936842e85e22dd15b5a5601a5dfad4cd044914c80f58b320884dbd9f64bece7`

203

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2298`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`4.12459`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`f33a5aab617da52c5177f811980c8816`
SHA1	`a4cc18d05b77ef1946d90180c49088befb2c35a9`
SHA256	`dd78feb548e77246e01b67d9baea8dae56635dee04bac93b5b66a9aa0c0dfe05`
SHA3	`816d1d6f027fb3dd88941aea436343282483b4be0462b03ca8ef21536d72202a`

204

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10fc`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.76592`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`69aee188ec5fe8c48bcb81650b1920b7`
SHA1	`7f24b74877bc74ed087bab9a76a95abb05cd6855`
SHA256	`725d9b5508a162f7b8e23a09824eb69dc94e8c081a5099873476b63cf64e6ad5`
SHA3	`948c5c644e7371310b314af083e7d2dae22ebdc6ae6bcc3117ba259676a68c82`

205

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x84c6`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.68559`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`4d3288542a62b622c95d81c1c41892a9`
SHA1	`447b4a23756ff3c344f0f8941387861f9b7ee177`
SHA256	`038858bd7b47bfdb353f6177ece2584525caede3e2f5c4bff59aad0c0c174584`
SHA3	`d26dc6def85d129de277fd345c86965d1d0acb567ce640211fbb8fb67e8333b8`

206

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1776`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.69098`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`819e84af713db4b61d14136f20173c44`
SHA1	`459617c67b9410f3b995e0d08143c5263328eea8`
SHA256	`567d660f150e805eb1c5eed112979cad9c7091349c024aa8ce423d70672bb485`
SHA3	`5a050271b9490508f7e6dd72155603827862895bfef4b778a1f98e60f6c05c1d`

207

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x734`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.66027`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`71ee78b851cca86a61e1e9d9154b92d5`
SHA1	`00f7eab7fbe9377850d51b683c106e3f810e34d3`
SHA256	`f340b0d2aa003965c0f8fb1069d9f662f1e678f4c567949b163455912b9679cc`
SHA3	`af3093910db7bc30e6d5f5b48a443a247e7a0f996b1a2a55b675e4f044a84201`

208

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x664`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.53944`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`bb4f860e023914f2841847d22702e39d`
SHA1	`6373b1e18633d4439a38edc92efe44e3112a64b4`
SHA256	`1ae3e06d961f31bce9a9974a9a259c90434d2d1ab213da1d2251e5f71afc8dcc`
SHA3	`445231cf9c806a764dccff5f0383a0c2fb5d86c3702c9e4842d71121a37a1192`

209

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1f9e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.71205`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`0584b88d9aaddcc5f43b4af5910ae735`
SHA1	`0acc19b71b0896b4538a07e10028f6d5c24f641c`
SHA256	`8f423513c66d790838ef5cf4af9d54d944bde41da0de102689972e4905dbd38e`
SHA3	`dbc1f00ce8b9ed38c240858cf29d6a2d8cb9c4a296c230cd60f27050b922ad6d`

401

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x17a2`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.63602`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`e4afd4c5fd3fc1f43f22d0f19e69ce16`
SHA1	`76bc8f75eb71d2f920c2afbdf3c48573b4b43859`
SHA256	`4db5a45e78ea067fcddd48166e0c0a7c534df3739087906cbe5e18cbeffdb789`
SHA3	`96cce07db791eac37dd73e81f2da458cd0bd6e691d32353b03287ab08b3b3b92`

501

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x5da`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.55076`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`734b73e40789d33a58a979486239f38f`
SHA1	`55e6943ee1733ff16ddb591fe3feb5c9d90bd936`
SHA256	`c8ca9d61b2894621ec120573aabedc2b3800e553b80b9b5435a84713e53b32cb`
SHA3	`bfa86744cc5b9970fed4065e3cf516b0151e708459ce5aee1fc5ccf2c817f02e`

502

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x103e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.44916`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`5cdda6f51a9a33c0fb5b9883f204cb08`
SHA1	`957a957931964e155717d922bcae063eb9a4d58c`
SHA256	`56691d4c18524e6f686c1494a9e88b3210a959c30351614ab717db6bf24c8dc3`
SHA3	`b8b5701b55a1083a9a836c266336635fdc965a2f245caf0993d8139f861fdda4`

503

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1a12`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.70847`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`45db46bb927a32431deb5161dc5b6d24`
SHA1	`ce869e0a39490ade61c2f324258ed8ef92510bb9`
SHA256	`0f7797a88d3094a3e9b79dd943941d13a242d1d402758c9148aca15474b7a416`
SHA3	`42ad43dc81a5b4d5d7fcc258d11760b4303faa6a2953b3135a99e656f0dca145`

504

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x248`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`7.34018`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`d4f96eef2a344c05b9be3fa48592abc9`
SHA1	`c2a11322fd98119bb1fba3b9071e08156c2421f1`
SHA256	`a70094af72d7b783877cf4301551cad51b7bef4acd7ff94de5ffac376d5920c7`
SHA3	`bda46e591e80566d4e6ca80af1cfd655ef71437c55d08e81ed9cd4cd41d2d20d`

505

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x30d2`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.69962`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`baf7e90492b47a4f191ed071fa734898`
SHA1	`d97a91ec57b4b6666a3e13a261ed111f4d88d4ab`
SHA256	`97430495ee8bda2c678f959ceebef28bef4badb94191da813ded783a6ea8d5c1`
SHA3	`d9629f6d6dfd007e00c153f345222675f697a0c77d239d7428952043a35935d0`

506

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2a06`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.17367`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`b95f024eb8156e5bcac1331acfe4f3d3`
SHA1	`405db341346111508484be806b5fac2d96f8c7ae`
SHA256	`839c6344e1355a1db35527ec5f6e23b55a8e3e5ecf700f3c7a4a6d4629c5c762`
SHA3	`6ad19b7c9bc6fd61a5fb58c618a35745f29498f11d01be25d4054c2634024577`

507

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x30ea`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.53918`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`6e05043f039ac6252966b67e0f41d608`
SHA1	`b26d40862a59d9fdb27d00120b4532b68db78133`
SHA256	`3015bc205fd43f3ea9191473516733350e3e94561d8f3fdc722d16e199b7a363`
SHA3	`aaab5bf38fb6da1b81437feb7678b2e2766d61fbc3c95bf1e3b6a7bf3e7e7bc4`

508

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x36de`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.42063`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`c916ca30e368d0665345babbeb925d19`
SHA1	`f3527cf29b695f30e4914a78ebcc6d860134c889`
SHA256	`31370bfe599e4933080d5cf7d774889edc20ae9e7eec85e25cfef5207f4a0dd3`
SHA3	`9e465b7cabc82a9c33ec3130736d85bdf019b11bdf7147a83ee5ceadbb035d0d`

509

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf92`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.00468`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`b52732fba96a8593959efac7661d0563`
SHA1	`3713238fe6baf49a958df5fd95290b595448da46`
SHA256	`0868e77f20fa76664172261e181e876a8b245c73358f3de5bcf1638b000554d4`
SHA3	`392976cca82e20841d6fd91083b4e5c7d2b93fad5a10862abffb8c6bc12b8660`

510

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x21e2`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.5054`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`686a07f0d8980e74f49a99814ab33a88`
SHA1	`ce48e2ddfd3b43c2015faa240ef4cd16d9580c4f`
SHA256	`fcf3c2bb5968e6cf1cd33e57a9858d08fca95fc65c3b963b04da31d1d2970f07`
SHA3	`114db672af9f07bbdd262dc6765e9f5874b24a4114684b281dbd42854ab0f076`

511

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2122`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.49384`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`d82e8eb6bdf743e16f71edcf89e370e7`
SHA1	`d02450c00713dc673476bc9932903debda32e9ee`
SHA256	`cf83473059f98c8d0884e0881c0813cd6cbd26941d35308024855e952a1dd823`
SHA3	`411a86dd61a7b5b74f339d5df795f98b2b8deca0f3a20543dcaf83a8bc207867`

512

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x330a`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.58636`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`6cafab21ee8501ebfaa2a7a82042e92f`
SHA1	`031af39a9b83db5c990690cf25dc71eb558151f8`
SHA256	`6d5a2389276c25edfc8a94398ccff4289a47683183768d84febf48413db0f669`
SHA3	`863dcacc0949334feb363ee79f9ce47de113f6ef9e82c923beabadda86f10132`

513

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x714`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.65859`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`7bfdf30eac8f68c00d8ccedd3fd55e44`
SHA1	`9ea7a02ca89d58d638f3402d72907111581a7c6e`
SHA256	`6028bbe8b0f23deb576fc9eec1f8f7dc3b54c1ca62393e9c347b72a256214251`
SHA3	`f9ce059df258c0cfaff09b5502f4f15856d1b6159abd1fe56b76926833389b83`

601

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1426`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.74662`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`60ee2f8161d9b6f029e2cc741e1ddbaa`
SHA1	`d2aeb7ce1e4c1a1e4b7b7c2d6c4babcfbea08e68`
SHA256	`fce561bc429a2a2bac70ccf531444e051ab9983928156e47892fb63092813715`
SHA3	`f7188807257eb7a9c503f681b69c555f50db250493f1b78d9a7689bd0c60f05d`

602

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x16c0`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.76356`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`059e104390ec87a4883f82014b147ccb`
SHA1	`1a9acaf69f4e87e3601d709d32f97c877b96e9dd`
SHA256	`14309b093f51f2a07c945a3cd1047f2dd471fb47f3627739d57593279842029b`
SHA3	`dc05997c70fbcbc96c6be65ceb55f06ed930d1226414fa723ff2c847f2d8819f`

603

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14da`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.7675`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`9eccb653727e576175ca7b6200a3b078`
SHA1	`3ca3a2c09e548a88bbaca8e1f355e94b86db29a3`
SHA256	`da7d5fd3749ab3c986aadfbbc0151a1b824d0557333b67dafef3e1513c98bd9a`
SHA3	`0065c15c156049d8e478ef33bf00daaf20b87f6f5f0e93d9cf8a84345537a9fa`

604

Type	`WAVE`
Language	English - United States
Codepage	UNKNOWN
Size	`0x15ea`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`6.71589`
Detected Filetype	WAV Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`853f7ddc916631ac1d340842fc13d179`
SHA1	`102ea10017d1d1828d4b33f2007618ac3255a74d`
SHA256	`347e07c0c72f34b61140d7197411d7a99c5d28baf3ffac11b9e173d8dba89250`
SHA3	`5c057a4ee16ac9a80413dfc68841f9ec755cee4a34e7dd77a986aa15789a49eb`

9

Type	`RT_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x134`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.48972`
MD5	`d32275d699acdd5dc53a1fa4a4506817`
SHA1	`31b6184844383b823ee87df2b82eec0ced4b8386`
SHA256	`276a527e9f4c538fc3bf1c9eb2328176a837ca36330b97bb54fd1ac7c4dc223a`
SHA3	`2c2833a885591dd63fa716e8913e0e92671617afade266e92fe079408abae70c`

101 (#4)

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1e8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.31326`
MD5	`7d649fde03f14bfbb82049437ec5b75c`
SHA1	`04e154b50b4421220b50629d240ae859c5146e99`
SHA256	`3600b755d7292d2434201e88ca041d05b7f8381bc930f04083b93d5e43b530b3`
SHA3	`b4f1f2cbfd3cf64a0ec5c5f96ef44a82a1e3da02988ab369a406b40cff7f192f`

102 (#4)

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0x6d10`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`5.37866`
MD5	`14c77179453baff145dbc24c824ff758`
SHA1	`6e67a2392a310e46106ccf0935783c21726b9715`
SHA256	`6f7d1bb1379c4e3f48cc7d584b2bb92633e517b053990b6b94ebed0064cb218a`
SHA3	`a04f0b6b317556b7c3f82593790a2079d0d6bce0a0a75da236e9aa7b10e4646f`

1 (#2)

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.73121`
MD5	`73d6247b099ee1a7fd03a95b71082074`
SHA1	`f14570057cc1895c2c5fd0ca1310b11e8bbfaf34`
SHA256	`5d605b0f97a7e616991b32d10b03d99868df4c942bde4d6b10c048853f1bcad8`
SHA3	`26bfed565e5703fcb6fa422acd7697614d0baa8d37186f498fc6539871d269d1`

2

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.11816`
MD5	`83d561270cd380b1b44467668d9c4085`
SHA1	`52d0228ec1d943b2df91834361113ca4a1d6e9f4`
SHA256	`23de7460383224e2e77c24b6422bb22a5825daf0a7403f063058594aa153f572`
SHA3	`7be996604b9d6af118870dbc47a5905dd8ff6104a337189b17f93e3c48c5e742`

3

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.9988`
MD5	`9d3b422e65f14abdfbeb0f29f76efe89`
SHA1	`a238ddbe788d17cf79b66bd7fe9c823b22a406fb`
SHA256	`473427a2c9190f4e0400a26cc3af5a472dc40a1778cd3d5e1cdacfbc745b15dd`
SHA3	`d031ce2a9598914ab95c1d99ee2abdb4b1ecb5dcf64fc6164f0e926e40ee4d9a`

4

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.49731`
MD5	`1783fd412b6923fa9fdfc828693b2c99`
SHA1	`9e27a36137625109fba33de040a8e40ae36f57b3`
SHA256	`862f40b29bb1e71ffd5a629603d596ab5c5a3aa7da64aa7180a1a133ad49ce56`
SHA3	`fffa190ea16f3e0de5ff15e50db4943437940dffa8201d8e48c2a3bbf4078fb3`

5

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.49631`
MD5	`f3b2669308dbb12c878d47d3936f4fe0`
SHA1	`c105991cfd043c8fa547a76520a8018dc9941a5d`
SHA256	`c7f74445de85f5e8bfba0483b1af0a82defa93a1ab25781cadd764778f2f3fc7`
SHA3	`8514fbd7727023de25c6c4b69b2e37ce4dd389bab343f6afc6cff9cbce47e80a`

6

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.83654`
MD5	`55bb071f1d839b4b734a48a0462da516`
SHA1	`91d984b9d4d1a0719cd752b2197e8a554ddd05bf`
SHA256	`d987bb8b543ea78c283e89b138d8390342f8dbd857e06631ab0c14f2bc1440c9`
SHA3	`8ab3b836063d48ee769f0fa28926746eb8a1dccdf79d7f6cf87793c94e309c2e`

7

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.29717`
MD5	`8a4a7c1bf33d49b954f7398295598511`
SHA1	`bc8f5c1246de65de2f6dd6345f36f910c63368ed`
SHA256	`2bc96f650d39be407819971da38a584ce007a45a054bebbf5c7e85157377a9cd`
SHA3	`1302ee30fd4b33b1ed5dc7b87dda5242038ef9b1a21eafb3c97228db021bf97f`

8

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.59694`
MD5	`f52ebb91321bd1ee5628c210c94cd224`
SHA1	`19781fd6e9c03a8575ddfbf9d4725289da7a9aaf`
SHA256	`b00c1f18ae15b3071ea29f92d87875c9fa1ce5b1d0423eea7d1b105956c35c57`
SHA3	`d19ef6cda1241894916ea7fbc2bdcb105cff3387006d0072d90adab526874457`

101 (#5)

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x822`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.35898`
MD5	`b6cfb9c21b558df1bf2c49c46837cf5e`
SHA1	`41872f4b36ca8b4af51f7983a89e5f7fedde3e7b`
SHA256	`d231c3f128e7b094fcc49fef17d5816da3f2d9ed62c6b76cfba22965b982faad`
SHA3	`482eb7b9bd63fe10519b31c591490bdba103063afeb8cffbd4334a149ef8e7e6`

102 (#5)

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x15a`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.26993`
MD5	`fda3213e7a73027e6e17cbcf5b91b357`
SHA1	`ab0f38f08dc573eaed222204e7ff7c1342addf1b`
SHA256	`43b5f90ada463b87fc73f4a45ccca16c97dc5fdd5696fd76ed9b15a46f882390`
SHA3	`0110395007b4a27433cbec8651885f6166724f0842e037f1fca199821cd2cd33`

104 (#2)

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x478`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.14421`
MD5	`ce1b3276b733e86db604d45bc1a9354d`
SHA1	`2e2fc4f5849d7979dc449b35517d7901b70ebd81`
SHA256	`4399cab352cb59f101b73ab9b2c5a5b0053ae6d2d649047e6f5d96ec98bcc63a`
SHA3	`8bae95f56b5ddbc849fd0b9cdf6332b650089a6cbca728802c1f8db3c2d1dced`

105 (#2)

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x15a`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.18216`
MD5	`a71e3568c9ef2ef0ed41efc7d890682d`
SHA1	`97a346dd021777d8a717a99b8395217fc2ae8c90`
SHA256	`26a5813057e8baafd98e0961df54e0aba84ee1699f3c0c047db4a75247584747`
SHA3	`c6d6e87d9a26c3b09f210d2d50a3464fa2a14ca231454d1cfddf03cf5ec8b689`

107

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x20e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.35033`
MD5	`a1515e305dca2bb0a0baefe8b9c38a10`
SHA1	`9d2b4a6266ebf1d8a7d5364656a733d53343cd6c`
SHA256	`58e87363edc20761e6a073300edd6c74a2e376bfd81420685dfa69f266bfb974`
SHA3	`b59c452b02644db36b12e4f64cdfc3755c52406a9fdacda140dd950e20d38b7e`

108

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.39921`
MD5	`4cf6b144c50192e4f10e2356e9ddd45b`
SHA1	`6deacafc3e402efa1775de7f6bd444c379cd6dc6`
SHA256	`a73627f962bcc3e87ee5e146986b195bf66a2ff71342818d261406043363fc4f`
SHA3	`11f09a9e23a9d93a8b4972edaf47e54fd830dfc769fadff048f270e21605fcfe`

109

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x26e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.34908`
MD5	`d5d882c5d050937b7ba4c6514aa59ba1`
SHA1	`645be6d90892c20fc629875048bbbecb0dd681dc`
SHA256	`1b1c31f986ff7df784793887ac65e5debf5ff7c8fe127d7dc82b3184a9b524da`
SHA3	`c9a5aedd3d6f6d0b98daed523cb587274286eac5f0e9ebb21769ccdabd126cca`

110

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x252`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.23577`
MD5	`67c7838630cac8c2d4f6762a1f12fba4`
SHA1	`56debec7bc6aa766a889a63c1b68101075e14e46`
SHA256	`176d87148a1867985dbd68ffed4b6761e8ed159ab732d66f04c08fa25bfb76e9`
SHA3	`7ae62302c3f305487bbd783571786b657b9f38fb3ac1bdbce55fcd4a77246871`

111

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x31e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.43907`
MD5	`ffe2992143795b9e3e85c026be657e37`
SHA1	`0a93367bc160d25b4e9f372fee6dd65f0edda973`
SHA256	`a1e32860739e975c2ce0485af4bc7d6fa93db5dc9915de7ea99ba51d59a23528`
SHA3	`b463fbe54b54243c50ff82ab925c4e54ee23a6de9fd0e80a2a51e0594c4e2223`

112

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x100`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.2098`
MD5	`f52168fa33e9dc9b270e685103b61c61`
SHA1	`0ce7ee46888bea2e1f4c2a77c6731baef8a40b9c`
SHA256	`ad3ba7bb70d45837effe83662edb6fea536cf1d9acd450b6bedc54f537f95e52`
SHA3	`9e63e8830f1955a0842dd6cc0736884ca058882cbba95ace797637eb70398c12`

113

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x196`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.44182`
MD5	`df94581cb38b174c0b1692bdc9364118`
SHA1	`6dc338a24913fb03d5c349760eb942443cce3ecc`
SHA256	`350b8def61967da97739a4297d7bcb44c82d3394c9dc2c7b8e50fcec9bedbadc`
SHA3	`18416e34d9f2bebce759b7cc659d72937aac9826d2fdf2665cd3092128796983`

114

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x306`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.37867`
MD5	`e0747fac368789343fe2509a6bd35a3d`
SHA1	`01b8f92fe44b435393645d4e25b10ea862d1254a`
SHA256	`93fdb598514cbb282a8f65c4e5aefd259613735f376e7aa7cd45ebc41d687d85`
SHA3	`fd45eff5e1f95d5a1a49e5f83f1846ff6f2d5cd9a5696e106079df78c20003b6`

115

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2ae`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.3836`
MD5	`bead7db51f03d365227401d97f101e0d`
SHA1	`b9d63a08da50ae240dcfa4aaa505d76c0736c97c`
SHA256	`82c2765ee89b411cdf624a8f48c6e33fe608fe9f796ef54b2f157da0e9e169f2`
SHA3	`8295991c918772f355444e3e0fc2a8b109e2bf5b72b7890f41c9b6cd67637526`

116

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x9e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.26221`
MD5	`25c068c6aff29faddd12d81ac88dd6f3`
SHA1	`aee1d827162a15b82a83f38b114e8836ea6d27c2`
SHA256	`b27616e5c00ca30b7394b6a9b45b94cc53775b995228dffa4291ea22a9437d70`
SHA3	`e2a36a38e2f4c28f0f2cd59f85ed7d3a7e9670c7dcaf3d5938adda910478a19e`

117

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1e2`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.34255`
MD5	`6d32ce78d914a0f57024530d7303c2ee`
SHA1	`b387095b802e0c13f01e44a62793795f21799e91`
SHA256	`c15b62eea0c947e7f13d2fb152a8799057e7056e5d4bc00727e6ebbb2b30a36d`
SHA3	`05074e88117c819a2f63e2a4e836ae978ef022d7bb81727b96bddfc4dc656f3c`

118

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.25027`
MD5	`f00dd1c77eaa01ff5683801e20afa81d`
SHA1	`f717a7567bbb1c477225f8920770da42ac8e8b8d`
SHA256	`7a031a503d96768ef49a2be1c2c9e93a16bf437152ae18f9aaa5574a46af10e5`
SHA3	`f976420ba3476abbdfb4db5e036f248b412405071341859d1bac63a8094372fc`

119

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x158`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.33824`
MD5	`0c16c2920f9bec11588fbf5be2aba7cc`
SHA1	`12f96c418e5e915b4e1dc92f3aa08be8c9e8a713`
SHA256	`9807d13809b5175a287cba9785332331e10f8d281ee3246e4a548c35631e8474`
SHA3	`fffa96a9ba6a78111cfcc74545524d4a0b28cd408901ef3bf1f390b23d1ee5af`

120

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x13c`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.27454`
MD5	`e306cc749a022f199b48f32ae14db9ad`
SHA1	`24aa66c19423bce6b20c37410c1b4b681ca39dc9`
SHA256	`f8bc4753576de55b57783f1a2204fb0c2baf7e1b32b00d76ab0cbd368da87151`
SHA3	`bbe4d368a1a4aecc83e9939ac0d37a9f1b6c447de62d38c4b972bc829d1fdb1b`

121

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x384`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.43482`
MD5	`e391142574c127cd93e008403e1820c5`
SHA1	`91ff1c9f9f77e2666567df86351755a98c428046`
SHA256	`976b1cb38c045ecbbae838aa5343fa759598bd287d4097c18e51ed73f4059cb2`
SHA3	`aa18c8a1ecd973024f399195e1ff09e9ae1ddcb4fe36df31215076aac3836a81`

122

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xd4`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`3.29402`
MD5	`9a8885fc995a13f9432131820bc59ad0`
SHA1	`cfee582d044bff4f8594bfb9748a82d190103bb2`
SHA256	`3d3b8981fdfd12c41e2060dd188081d50b0c77d3cbfbd6f9f129f4842868f1c5`
SHA3	`b80914f7049d1c9ba9a9830bf4b1813ef1f77be918a3f2eee11ce46733d70410`

64

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x48`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.09035`
MD5	`b49a406423ad6646fd7f1c016d119825`
SHA1	`4a1670c4cf216daafd46c9a9c110d912b65282e2`
SHA256	`9411eed1d7794f7177957973688ca2d2f5987ec143d6582a60831391b284c89e`
SHA3	`6b7cdee887f86d74d994ad354c98267c1d6cd1f216de0b4d546511816c7e23f4`

65

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x32`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.42614`
MD5	`38d7efcac184ced32fde6825a5818ab6`
SHA1	`4aafda9a7a0c424a44b4edb186ec1622305311cc`
SHA256	`98275ad7ce3528cc0cf61f78d2992b2ed6e44dbf4da1f03428181abc01d4bd49`
SHA3	`5193a42c0e0b9c9dfa17f021ba4c682641d689ef59c9e32fde08999b99609032`

66

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4c`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.11033`
MD5	`0693d6d48cab384ad19cca905720364c`
SHA1	`324de39a9354b33fac076b6aa34ce7c29e0b4520`
SHA256	`2164cb7f5450cbeb5b22002d3121dbd1886d7cbb2b7ec3ce7b4511faf96ca28f`
SHA3	`564eb5623e3cb42d472ebcb46acecd81aaf78e8403032987c3e537f1c28cf7fe`

67

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x42`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.97404`
MD5	`d3edb3a9be152fc8beb0b1d15913062c`
SHA1	`9b38a88a83f0497b7af49265e4729c047d98099f`
SHA256	`745d9cd9b8ba15715ad8353702e893b866a023ae351ea91d89e59fd2b57c0cae`
SHA3	`142a5a433106238fd8efb9537dd7db9b4b13f48243ad9cfbb3794c490a421819`

68

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.22998`
MD5	`57098add867cc740ecac24cf7a04b9b5`
SHA1	`562664d85329ba11a82aa039812094ce2e145492`
SHA256	`acd60585f4bcf2d01466892b859b20769d79cb159ff61f3269528760ac51148a`
SHA3	`82362093b2fb04489cbbc52c5ad7825a0340fbcfd20e24076f2927ceea4ea344`

69

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x46`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.09249`
MD5	`1749731ae10c204881f67529cb8c8e5f`
SHA1	`61a26bd00d7c15fc42b935d2e5bde3a0676ab693`
SHA256	`3bb87c67b4cd3ca040f0399ffaa3376a3b8c49953817cfc7d626e7a160d47bcc`
SHA3	`90d0fbae021ea4433739424ba1e9d59c8e249d0e5db6e4d679dad4d2094109c9`

70

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x3a`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.68411`
MD5	`d2201421c8b7e19dd351b8965673d5bc`
SHA1	`438605cfdf7054dc601608088528aa49c1a101c4`
SHA256	`9b9943642c23b4d6e96c9085be52d10cbbf5d83b89f0a14f4e4676365d7b7a3a`
SHA3	`911acf8b3adc3117397900c0759c12663cfcf3309c8b77f348bad9a9e2406f0c`

71

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x46`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.09249`
MD5	`72963e1437cccc50758fc553cf909102`
SHA1	`3441067e2b338defd63a718d235789772e609586`
SHA256	`48fb147bc30d96cb40ec56cc1d176eb9cbd49bab2fd6935cbd477eabd8059886`
SHA3	`3015ae8b8c233ac774b714be9379ba7fd220ef4d4e8cb4f5a8bdfd9ce54b8fac`

72

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4c`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.16296`
MD5	`3435e84003de4f2914b9ff4fac9fdee4`
SHA1	`45a502495030d24ef86ce14209eb7aa39eb9a40e`
SHA256	`c26054863d7434703feb8e6a478a90e2f2c7cc4917817c2e81a9e21c92668bee`
SHA3	`883357872e73f1c56f9b2bd05eadfeaf6b1bbbc3a4ab0e350dfd04adfca4d4ae`

73

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x30`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.24796`
MD5	`14967bb7d793f64e177c6c31fd5c8254`
SHA1	`65f005893bbd51aab9f3afb85745e0f5f540938d`
SHA256	`5a485107981b65f78b0adbcf1bd5cf8b4fc2adf0b4b61bf5c2b532e9edbb0570`
SHA3	`669397e079861b063a06dd8bcab85a2d3bf3850f41af67fabbd981996d66b6f9`

101 (#6)

Type	`RT_GROUP_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`ebb32ed08b06ab16f79c997b7963c57c`
SHA1	`c87e290caff3cf222d5ec678a51927ff22637949`
SHA256	`9c17b4621412d6ded24a76aed74d4425ae61f86b6d4092ca1e28ca66b7c71399`
SHA3	`fb70f94bf4a64a26f2d83b588fe2a233796083fd03aae7835387aeba2646b847`

1 (#3)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.32322`
Detected Filetype	Icon file
MD5	`5b9f6a247243e01b4283daa5209ede80`
SHA1	`964a2d657b20630dd910894878bd374e97156570`
SHA256	`e1aba2ac6edfc83cf871468e3645da3f5836b5ec3793f08a3cbf96c1c53d7d9d`
SHA3	`3517a57a977691c5f629d4acf89b3082b38880ece0458b5a8f37df00270c7a1c`

2 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.32322`
Detected Filetype	Icon file
MD5	`5ae32d259c741094fd7321a97efab12f`
SHA1	`de0c9059c97a1395fffb9e9c713c69b87a2f80f3`
SHA256	`4420d38956c089533731669f88ae00ee4bdf4069a53932dc180b9a5a36ac6fd4`
SHA3	`46acabd2a8fde1e236e7bd40f606204cf74ad896f802e9e5baca1ea8d518abee`

3 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`2.32322`
Detected Filetype	Icon file
MD5	`187f833f8fcc10ae190b9ff857472715`
SHA1	`1d4c267988cb4becdac84abda44239affa3aaa91`
SHA256	`0a45a6f4b326b4fe4972b61721a40371854c7404c7a45ff123cf020069c0f79a`
SHA3	`45ecf39d84fcada4bedf9399fb0a23be662a5d3959e67accde30758778d3b3e3`

201 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.81924`
Detected Filetype	Icon file
MD5	`cbee427fa121aba9b9b265ff05de5383`
SHA1	`24fcae33001c8e0f5ec795c6edf076a69d59589f`
SHA256	`494e4fd717fa1ee0c5c7bb3b4e28fdab4b7f6e95b4f9865f5ab86f03f62ae62c`
SHA3	`a3fa35d56632275ba55716a4964f02031270f61f06a903fc460ac2dd6bebde85`

202 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.9815`
Detected Filetype	Icon file
MD5	`dd0739ecfcf14d5cde3b9fefc2cf4f8a`
SHA1	`a8c6d3902c94b9ba6072d2abf5f82893a1e850ed`
SHA256	`d6252cc737bc1f449bbc76aadb4ab7928e0e012296966ea530dd1b209ba39182`
SHA3	`331e28e534d12d99163123dd7dfc16533e87fb11a45dd344dbe33eb5d4509b0c`

203 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.9815`
Detected Filetype	Icon file
MD5	`e75c84594185903fbc8557c739a7dcf2`
SHA1	`9b084c9be002652d11666145a02e807407cde2dc`
SHA256	`9449dca96f0c439eefb039f50cfbab6816b0fea3cf31039c1ed986c4c8fb7b38`
SHA3	`ae0c1192e82a65d409d4f4f56ee726efd66e2361d4d6e9101da1e68111eab113`

204 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.9815`
Detected Filetype	Icon file
MD5	`6c96ec1dffe0a094cf465535be5f0642`
SHA1	`699a911c18c8032bc5b41f3fee0e709ea04951e4`
SHA256	`806021fa261736af4b6fff44107c6bc722e01405f8782c0b545f490ceae28ab2`
SHA3	`559088c78fc4cef524fb740efe74cb152057979b802774b15d4ff4f0d60c1cea`

205 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	2003-Apr-20 15:01:12
Entropy	`1.9815`
Detected Filetype	Icon file
MD5	`5799f892cf2e49d2baaa80fe00cb8770`
SHA1	`7b23c34e1164dc4928856b5f09518860abea0725`
SHA256	`d3f19e69796c48eac50b0b7669644b97eeb3b6c55e01d3d34e76b51b1460569b`
SHA3	`278090ca189a3e1bd8b072b564972a4d9f7f0ad30380559fb39591683afe68cb`

String Table contents

Acid
1000
Cocaine
20000
Crack
2000
Ecstacy
1000
Hashish
1000
Heroin
1000
Ice
1000
Kat
1000
MDA
1000
Morphine
1000
Mushrooms
1000
Opium
1000
Peyote
1000
Special K
1000
Speed
1000
Weed
1000

Version Info

TLS Callbacks

Load Configuration

RICH Header