Manalyze report for 472232ca821b5c2ef562ab07f53638bc2cc82eae84cea13fbe674d6022b6481c

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2014-Aug-31 15:34:44
Detected languages	English - United States French - France Italian - Italy
Comments	http://nssm.cc/
FileDescription	The non-sucking service manager
FileVersion	`2.24`
LegalCopyright	Public Domain; Author Iain Patterson 2003-2014
ProductName	NSSM 32-bit
ProductVersion	`2.24`

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0`
Suspicious	Strings found in the binary may indicate undesirable behavior:	`May have dropper capabilities: CurrentControlSet\Services` `Contains domain names: http://nssm.cc`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA GetProcAddress LoadLibraryW` `Functions which can be used for anti-debugging purposes: CreateToolhelp32Snapshot` `Can access the registry: RegDeleteKeyW RegOpenKeyExW RegQueryValueExW RegCloseKey RegCreateKeyExW RegSetValueExW RegDeleteValueW` `Possibly launches other programs: CreateProcessW` `Functions related to the privilege level: CheckTokenMembership` `Interacts with services: CreateServiceW ControlService DeleteService QueryServiceConfig2W ChangeServiceConfigW QueryServiceConfigW OpenServiceW EnumServicesStatusW OpenSCManagerW QueryServiceStatus` `Manipulates other processes: OpenProcess Process32NextW Process32FirstW`
Suspicious	VirusTotal score: 2/72 (Scanned on 2026-04-15 07:36:29)	`DrWeb: Tool.Nssm.5` `Rising: HackTool.NSSM!1.CABB (CLASSIC)`

Hashes

MD5	`d9ec6f3a3b2ac7cd5eef07bd86e3efbc`
SHA1	`e1908caab6f938404af85a7df0f80f877a4d9ee6`
SHA256	`472232ca821b5c2ef562ab07f53638bc2cc82eae84cea13fbe674d6022b6481c`
SHA3	`3714fee492000dcd771c059d9ceb269165a41d546ea0d2f140ca26d724c129a3`
SSDeep	`6144:4BULviqYnI3QA7JTXRnZSHL2GZbkG/TZgLgst2rDkXNBD:wqBlG/TZgUsxXNBD`
Imports Hash	`18e3eac3e047c2416ca9a716d742272f`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xe0`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`4`
TimeDateStamp	2014-Aug-31 15:34:44
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`9.0`
SizeOfCode	`0x1be00`
SizeOfInitializedData	`0x2be00`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00013E53 (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x1d000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`5.0`
ImageVersion	`0.0`
SubsystemVersion	`5.0`
Win32VersionValue	`0`
SizeOfImage	`0x4c000`
SizeOfHeaders	`0x400`
Checksum	`0x55306`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`b92c191c9f939ce4c12bf8e55319e935`
SHA1	`a1303ade33cfbe18102087e01e49c16e643ed2a1`
SHA256	`7d5983360de177782dd2f3ce39687e15ab5b162d0e92b97f2e14143466b1cb6e`
SHA3	`49bcfbee3fd879ee02229eacc2a05003710c887ca850f487ba1836b7f2c49dd9`
VirtualSize	`0x1bc13`
VirtualAddress	`0x1000`
SizeOfRawData	`0x1be00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.45383`

.rdata

MD5	`0d1cd74dc435d64afcb78a0cd2f923ec`
SHA1	`7c70766b68bae4b4ce8682de0eae359acf7b5424`
SHA256	`b5c0a8103ca21b2632165ea7994e64939343229990ddb37cee4c1e37c4c6b586`
SHA3	`8d305c46624c9ca2b4e45296f25738731b30d797cd26303ba0e7870211c29db2`
VirtualSize	`0x49d2`
VirtualAddress	`0x1d000`
SizeOfRawData	`0x4a00`
PointerToRawData	`0x1c200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.0008`

.data

MD5	`4492984c066180a50b40cbb63640632f`
SHA1	`5ff5a10824833bbdc3844e56a96517e5c6a746d3`
SHA256	`0aa23861ec0c2368b6ca13792106817f73afad1863452cb2408dc62ce103c441`
SHA3	`76c9134f1f054169d9bf0548043f2e709691965ade0323b3090e892f1b5fa096`
VirtualSize	`0x30c4`
VirtualAddress	`0x22000`
SizeOfRawData	`0x1400`
PointerToRawData	`0x20c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`2.45677`

.rsrc

MD5	`7568461a77238b48b3b2e7ae76406d4d`
SHA1	`b2ad1cc30d0dfeb681668830555257c94af7c9e1`
SHA256	`9f785c106b676d0a303c4e192c6bde01a1fd95919f01d67f0169c2befa9ee51a`
SHA3	`d415ee4006305f040c09bd1234941d3239558177ddd09a9340cd6be569d005e5`
VirtualSize	`0x25f1c`
VirtualAddress	`0x26000`
SizeOfRawData	`0x26000`
PointerToRawData	`0x22000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.31369`

Imports

SHLWAPI.dll	`PathUnquoteSpacesW` `PathFindExtensionW`
KERNEL32.dll	`CreateThread` `SetHandleInformation` `CreatePipe` `DuplicateHandle` `GetCommandLineW` `TlsAlloc` `GetProcessTimes` `OpenProcess` `Thread32Next` `Thread32First` `CreateToolhelp32Snapshot` `GenerateConsoleCtrlEvent` `SetConsoleCtrlHandler` `GetExitCodeProcess` `Process32NextW` `Process32FirstW` `SetCurrentDirectoryW` `GetCurrentDirectoryW` `GetWindowsDirectoryW` `DeleteCriticalSection` `UnregisterWait` `WaitForSingleObject` `LeaveCriticalSection` `SetWaitableTimer` `EnterCriticalSection` `ResumeThread` `SetProcessAffinityMask` `RegisterWaitForSingleObject` `GetSystemTimeAsFileTime` `CreateWaitableTimerW` `InitializeCriticalSection` `ReadFile` `CreateFileA` `WriteConsoleW` `GetConsoleOutputCP` `WriteConsoleA` `HeapSize` `RtlUnwind` `GetLocaleInfoA` `GetStringTypeW` `GetStringTypeA` `LCMapStringW` `LCMapStringA` `FlushFileBuffers` `GetConsoleMode` `GetConsoleCP` `WideCharToMultiByte` `VirtualAlloc` `HeapReAlloc` `GetTickCount` `QueryPerformanceCounter` `VirtualFree` `SetLastError` `HeapCreate` `SetStdHandle` `InitializeCriticalSectionAndSpinCount` `LoadLibraryA` `GetFileInformationByHandle` `Sleep` `SystemTimeToFileTime` `CloseHandle` `CompareFileTime` `FileTimeToSystemTime` `MoveFileW` `GetSystemTime` `CreateFileW` `SetFilePointer` `SetEndOfFile` `WriteFile` `FreeLibrary` `GetProcAddress` `LoadLibraryW` `GetCurrentProcess` `GetProcessAffinityMask` `FindResourceExW` `LoadResource` `GetModuleHandleW` `LocalFree` `TlsGetValue` `LocalAlloc` `TlsSetValue` `GetUserDefaultLangID` `FormatMessageW` `GetModuleFileNameW` `CreateProcessW` `TerminateProcess` `GetEnvironmentStringsW` `FreeEnvironmentStringsW` `SetEnvironmentVariableW` `ExpandEnvironmentStringsW` `AllocConsole` `SetConsoleTitleW` `GetStdHandle` `FillConsoleOutputAttribute` `FillConsoleOutputCharacterW` `GetConsoleWindow` `GetCurrentProcessId` `FreeConsole` `GetProcessHeap` `HeapAlloc` `GetComputerNameW` `HeapFree` `GetLastError` `GetCurrentThreadId` `TlsFree` `IsValidCodePage` `MultiByteToWideChar` `ExitProcess` `SetHandleCount` `GetFileType` `GetStartupInfoA` `UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `IsDebuggerPresent` `GetCPInfo` `InterlockedIncrement` `InterlockedDecrement` `GetACP` `GetOEMCP` `GetModuleFileNameA`
USER32.dll	`EnumWindows` `PostThreadMessageW` `PostMessageW` `LoadImageW` `SetWindowLongW` `GetMessageW` `IsDialogMessageW` `TranslateMessage` `DispatchMessageW` `DestroyWindow` `PostQuitMessage` `ShowWindow` `SetFocus` `GetWindowLongW` `CheckRadioButton` `SetWindowPos` `SetDlgItemInt` `SetDlgItemTextW` `SendMessageW` `GetDlgItemTextW` `GetDlgItem` `EnableWindow` `GetDlgItemInt` `SendDlgItemMessageW` `GetWindowRect` `GetDesktopWindow` `MoveWindow` `CreateDialogIndirectParamW` `MessageBoxW` `MessageBoxIndirectW` `GetSystemMenu` `EnableMenuItem` `GetWindowThreadProcessId` `GetSystemMetrics`
COMDLG32.dll	`GetOpenFileNameW`
ADVAPI32.dll	`CreateServiceW` `StartServiceW` `ControlService` `SetServiceStatus` `DeleteService` `QueryServiceConfig2W` `ChangeServiceConfig2W` `ChangeServiceConfigW` `QueryServiceConfigW` `OpenServiceW` `GetServiceKeyNameW` `EnumServicesStatusW` `OpenSCManagerW` `QueryServiceStatus` `RegDeleteKeyW` `RegOpenKeyExW` `RegQueryValueExW` `RegCloseKey` `RegCreateKeyExW` `RegSetValueExW` `StartServiceCtrlDispatcherW` `AllocateAndInitializeSid` `CheckTokenMembership` `RegDeleteValueW` `IsTextUnicode` `RegisterEventSourceW` `ReportEventW` `DeregisterEventSource` `GetServiceDisplayNameW` `CloseServiceHandle` `LsaEnumerateAccountRights` `LsaAddAccountRights` `FreeSid` `LsaLookupSids` `LsaClose` `LsaLookupNames` `LsaFreeMemory` `IsValidSid` `GetSidSubAuthorityCount` `GetSidLengthRequired` `GetSidIdentifierAuthority` `InitializeSid` `GetSidSubAuthority` `LsaOpenPolicy` `LsaNtStatusToWinError` `RegisterServiceCtrlHandlerExW`
SHELL32.dll	`ShellExecuteExW`

Delayed Imports

1

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.31574`
MD5	`be6541cc91e6d01f341c411e5d2e07e6`
SHA1	`68de4ad1efb1ce76bb071f836d9d61f8cffe712e`
SHA256	`80148235d69e4d25e902e3338cf94f050e20e0e5f3175f17d2f5ee69d350638b`
SHA3	`42dfbcf2d85a54655776683bacbec6842f93ebc2d8cd0a448fc2044f4899a967`

2

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.42533`
MD5	`62ea5be890ec790bb7dd9ee275a12e78`
SHA1	`f9c23ed2c76688475b5841fb86343badbaec5109`
SHA256	`755397a22f9abbbb2b94df32ba14fd294a03be551941ae22366fce34d77a40d3`
SHA3	`8b2be01d553400be00325aa5634ed8d482ddfa95a51395073ba66cd32523514c`

3

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.04044`
MD5	`92bdf4884ec9a1cfd0468a71a8f59cf4`
SHA1	`21ed9ea67f95e8c1948937ce8224e13739a5b320`
SHA256	`f07e57e89f980398e66f924239e9e56a50764a4411691512d6affcd28d232396`
SHA3	`bd18516f80f8aeb59e63e3324d3afddeed99a2d5fc5dc23aa76303a1bb64ba82`

4

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x422a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.91209`
Detected Filetype	PNG graphic file
MD5	`8503220a15d6ddcdb87f7f80a2effa37`
SHA1	`a9bf3b892c64799b83f1d2a91fd1a3195a68677e`
SHA256	`f1be5e187489674580949580730ec244aa89e2572c446fe0cc67d7f050479fba`
SHA3	`89810c341a16778e3ccfa2bf4aec270c0b2efd91b73fbc02f85f779705be2005`

102

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x14a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.29608`
MD5	`c6871e7fcd221d937c7355f77dd1a5e6`
SHA1	`3ad4df5f836faace84d812a77c8f2c6542aa30a5`
SHA256	`6c10738386eda94b40392f462535e1d26a62df4e4996c858f6102169561943d9`
SHA3	`ad5a7b15593f0eb04c3f5dfe92069d3ea7783ea721ba1ffc2161f5f0d0691e7e`

102 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x16c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.34648`
MD5	`ea17b827c9b6334ccdef65338ea23cc2`
SHA1	`388dc936bc9b0d683632063c9fe9f4413289066d`
SHA256	`8b600dfbd0665c18f26b2f9259b56717dad61a959d2a7aa7468e64e2837f9688`
SHA3	`343e39b08b3d713758c3ba5421fc48d034f0bd9a03acb8a8dcac53cc4cd15e53`

102 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x160`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.3417`
MD5	`f65957012734a6e96d8df2e1309a762a`
SHA1	`dcfeb4eadc603d289ff5f8cb71fba08a408b2206`
SHA256	`5f27ff5a76598a630362284b08258797d71ee9c085b8192edbffe6fff9d3a2b0`
SHA3	`69340a85dec7ed4aa4657928055549a89dd4065be4d79c083ce07939f1e61b91`

103

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xe6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.15661`
MD5	`c5bf4f885115c1e8cc8217f2cb864fcf`
SHA1	`4509d8ee2c5920f086f552aff6bebb70efcb327d`
SHA256	`c9b3a6ec6336e780ea77d75606d51785b258252839b03f64b7f4622d5009f2e1`
SHA3	`c9ca247cf2aa15bda9947586488efa18492bf0f713c28ee05b785c7ead77b171`

103 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x106`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.30086`
MD5	`88a67a6ffc8c127a168d94d497cf9f6a`
SHA1	`f15f1226b3709b435b1cf7dfd5a5f6e3dc224dcb`
SHA256	`28e62135c8c60abb11dd859ab6f525f448249a72c5b7dfcb25b70fc760ed3c1c`
SHA3	`42d5c23e631490ebc9ba9c81f5b107457b0a4dc6f9e3fa18ee7c2e9973f2599e`

103 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0xf6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.20755`
MD5	`920247607b0c7aee49a70ec2a093309f`
SHA1	`79f2bff7fe83c553ed26c4b158c97b0fea94a42a`
SHA256	`e91be243823cde3eb14919b24863e1fd59835760a173ff792700a9a2bd9f3c8e`
SHA3	`e5b5cea50464c4c93857d6dfbcdfe24e56b361312fe4a87ebc49c4c24bab63c8`

104

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x13e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.29149`
MD5	`31142cceb221872d9c91433d0e93f0ab`
SHA1	`d24e288c4c15c963ec26d398a97f64075411ac23`
SHA256	`ec7fb2ffef35e7b8f7a069bd48b0be777aa0b31d4f345af430d8c946ac723f2a`
SHA3	`31c94a3db92b731d19de819b63209ef9285f5de981d452f705cbfc6296ffc2b0`

104 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.37505`
MD5	`ba030eb64cbe237e864f1c7e437864e3`
SHA1	`e64f5de6276b2b61fac2efc27e832aa7a5347fa4`
SHA256	`35db2ff286fda8e3a8e8765883c5a2cf599059901f17df287a612244a93e63f7`
SHA3	`2f6bfd00deda35f2227547f15429b53102a9d9974704523c647bd8b3c343747e`

104 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.33488`
MD5	`0d7846d0d399c2f9fef89d55bc759cff`
SHA1	`8360aa882928f4da6f6158f22cee3f2d5ef1f6fb`
SHA256	`2fcb2cb79b4ba974e786fc5b5f6933a3f11271465b91bd28ba254699ef7c8c9d`
SHA3	`80b82b199c202048ff6ef231a0ab2650c01dbc817d7f747f339cdddbc5ac52d0`

105

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x18e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.40568`
MD5	`fba17cc54258460281ebf8f70ba7bda4`
SHA1	`73d237fc63538d82571761778f2644049fc33eb9`
SHA256	`243f00da1161a2435b965f91e1de96b4438c13d296b9e740f35e304f85f8fec4`
SHA3	`4fd9fc74bd2deecaf9143f47e2890ff807434f439192e47b2a6e03f7a9488742`

105 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x192`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.40293`
MD5	`33f8e5b7464c974ab848ec1c04b0e26b`
SHA1	`f952ab6d2a7188458fa2ce2550b687247b4c8602`
SHA256	`95c5353263f94f94658104cef5763f287de4ae2d0a1062007e67e30ff9e879c1`
SHA3	`8b9729b4a50772b3f453ac95175c3133641e352a7d726456ff6697c6e6e3c96c`

105 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x192`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.37278`
MD5	`e2d389290cf2947143e33b88f1c4e281`
SHA1	`84a08e6c9744e8f9a03671090f91612e9e86ca53`
SHA256	`2c53ed6f988426abbde6342c88c13894e4447708ad4d5bb899baa185ae5b40cf`
SHA3	`fdbc75bce9a8274a2813ba116f888f86abd66108fffa308402b317ff64da3b36`

106

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x14e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.33873`
MD5	`54a4ce8a08ec8517fa07946b8332cdbe`
SHA1	`724a4eb780c0cba92792ffc1456bca5cb10aec5c`
SHA256	`eaa6f62afb440e9efd629216738b7a479444c103d8200ecb204496861cf29ca5`
SHA3	`47125b1cc48c7990fa0f4aaff0b15d1255193061c1a64b6b43c04f49e1f22599`

106 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x15a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.36135`
MD5	`81e4f42f3eb326260b4e2591130e147f`
SHA1	`9159cbf300625332a0a0173d33ccc7e56f60b5df`
SHA256	`14f64309bb50c4c0facb4657889a250d6125c8950c1c68b5fd6b5b6a5eced3e5`
SHA3	`410c22b61ab55500840b7a674ee37e8040e757212ceb31c43142e7a85a532542`

106 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x162`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.32635`
MD5	`4808fe79c16c1c1710f137a48e64bc50`
SHA1	`d23bb5d057f5bc2a1b68cf1fa5db73be20665153`
SHA256	`85f08a8e6e35edd2e4581125d41b138c9b25e9660b60c35032cf95f16455914c`
SHA3	`7bde3da7a315377a74e999547ffd94c7510569bdbc9ebc347869af989ae3bdaf`

107

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1ee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.43315`
MD5	`848560f17c07c409562381f68442bc61`
SHA1	`297e64886ba0abeb70529006d58b5f92148304cb`
SHA256	`dd154edf48146a1459c41c4bcf16bb29b1cba4272e5fa5d45e9ca1e8129e7cf3`
SHA3	`fe8812aefbe768d737d5d615fbeb10c6d2bb91c52ab50381db6196fedae823ec`

107 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x216`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.41526`
MD5	`dd29a15d962c513145d9b2c7f13ca12c`
SHA1	`bd9cb38833e8ebce2a6b3ec0e7b2506e44e16979`
SHA256	`a3bf77853f748ebe315bf0d0075cea4ffe8ecd8c0d89645bba335c87c5fe94ed`
SHA3	`579daba5d5c1f22002a728027471479d350d6c8bf05442a25e553d6261824747`

107 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x1ea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.39648`
MD5	`73925bd0b06959dcdcd73f56d1e0ab21`
SHA1	`37a8c1ef49b0635b3a1295a1b05695d2a8f4f558`
SHA256	`c28df4809e11d03da3440e83465174c87212e9f12970112664ba192a24f88751`
SHA3	`b902bfca297a019872da0ac170fad9ac76e36c8af12725747b1f86f12471f8d4`

108

Type	`RT_DIALOG`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x1d0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.44379`
MD5	`bdc32811bddf0727a985663daeaa3398`
SHA1	`d1b0fc5f63783f2e3a0595c913fee43469d8ea50`
SHA256	`f1a7b32e83bcaff4144ddeec5eae11ca31b9279145b9a750b4d3573441e737da`
SHA3	`86c9c97d8bf1d1a909385a10e7f9d679ff0fec12081fcb16401cd295ef0946a0`

108 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x208`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.47057`
MD5	`23b7ba533d6dc2ca1c892d41ae7c3827`
SHA1	`c60fc8b5a6d674bae6d41b1450023b840572e15e`
SHA256	`444644ddf3c6570840846eac14351aa65fac6aca6a525766b55e176537a80d16`
SHA3	`1e51d1fba655fc0b85e54f81bd31aa417262b7479d9a4e5f3654c3fbe0246103`

108 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x1d4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.44451`
MD5	`8805f486b2edb11c42f7a59831ead628`
SHA1	`e3666afd6d500a2a7b30243f4315a1954abc4ca8`
SHA256	`32f2a6259237c4aab4c8e7bf16be39709dd03c42d76546b1a92a32f730162c22`
SHA3	`7646babc0ad6af48e04bc034c7e7b0a99f7c26d9f226d5462a466fcfb611b22e`

109

Type	`RT_DIALOG`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x2b8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.42415`
MD5	`a4198c438998345c0ff6ea611b882800`
SHA1	`ac0993eb4667683755be1c0cf7ef351d14312501`
SHA256	`4d741a5e5f3fc7d5ce093d964a27f7ae43b76b5e9b9285582b3160e1d5cef113`
SHA3	`e974c0e4675366bd4998942b0b2118f7efc00fd087148766ab4cd446c9f811ab`

109 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x34a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.41077`
MD5	`f9e79cf11e1c72abb11c5dce8542ba9e`
SHA1	`1b5c3693c40411488526113941015b1b09d79144`
SHA256	`1ec1deeb06f2f4d47599a42196a90ad5478bc22a119258f9b6faaa0936df76b1`
SHA3	`8f4450e8a26179f364b1fe7d8707a07a940caee2aa25dafd28566532ee2406f7`

109 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x2cc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.45038`
MD5	`30c85b4cd5e66c42ea108f404d8c127a`
SHA1	`ccc76798360c8ca95e0b40b2fef47b606092bf87`
SHA256	`81a38e150762141634b7f8c14456c16f560c059d5d814e7037436dbc77cf1d10`
SHA3	`dc313bdf5ee652b1bc73976b7e9d5a74475e56dab4c4ee06e2b3d47671e0a85c`

110

Type	`RT_DIALOG`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x2ae`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.42857`
MD5	`a07386e567dd8c44077f3dc6177aecd2`
SHA1	`bd8f93f2662c5d35198f95922c7867955870fb84`
SHA256	`a4a48a601e6e1c6ae7a7f578c691c39567abc7c4b58f4f3da5f2684f228c6930`
SHA3	`bd86b7e52fc4ee8a05f2aab64e5a6265bde1f69fdda9233a722b51e2fadd6174`

110 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x2fe`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.45863`
MD5	`2e536d4cfc1689913ee9235ad6e81ac9`
SHA1	`6d9a16b8ab0bb3f3d85bf5a556d5ee007d442357`
SHA256	`e20dc2326b9594e197f0b7615543ecbbff396037f6de6d95d8531c544cc97d87`
SHA3	`73e86b9818e60165b5131bb875d43921b775f6a182309d7066a3a344fce330cb`

110 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x2be`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.39749`
MD5	`7deb00465174ce09b2354ff72c430e5b`
SHA1	`e340c8743876e8a72fe332638621d55c0eb213b1`
SHA256	`db116c6addc08cb4b80f15b9b739fa2bc636c7fcdd9fdf5b13b54433a2b8e7d1`
SHA3	`262bbe6235f643b4ce81f0b9f23109feb646598e462836e5f29280d99fdb4cf9`

111

Type	`RT_DIALOG`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x2ac`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.43171`
MD5	`1f681a36cd452c964160665712ae69ec`
SHA1	`852f573405ff360950e076806d1dfa6137e18c78`
SHA256	`49e96442693b4b7e39a3f7935977433146c31434c0eea29634d23745b82bafbb`
SHA3	`d2f30533f8d8a2162432abacf0ec6f73eb581b0a5faf035535d5efc4f9d74576`

111 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x2dc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.50316`
MD5	`1960a14011e03b0e05101a02b6899667`
SHA1	`37a61cb66a3e4462fa7fc876a7d338f272821399`
SHA256	`e02acb6982e02acd218eeab0bf015671e74d0b89a3578d0c25e2e470b83759b7`
SHA3	`40a6fd9503952fa1e09ecdba954aea7c7bcd188ae919d7a1a4a9b57465d65c22`

111 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x2ba`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.44764`
MD5	`fce3536223a912d4061c53ba55379ea0`
SHA1	`b5889ec2347543d38a073a4ae5e0c7c809f79af1`
SHA256	`b347fe03fa66c9f54e047b77ed4148a405f1ae9baf5d997e6591f34eb3fc8466`
SHA3	`49a49872a29eeb51cf4dc91caf986866661a54dc469424511c6c9cbc8337a25c`

112

Type	`RT_DIALOG`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x110`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.43517`
MD5	`35ee3a14fafd5c304d3a5f69100d29ad`
SHA1	`18b1b7d13a2d84b69d94824253fa4bba4fc83951`
SHA256	`94e910a65093fb8bae177f8b505f02fb3e88ab83db8205c9f18f3f7ea84bf404`
SHA3	`7e1cd9c8d67eca58540e9b2dc797c7b14ed04938cb28f3ca119db14eb0198898`

112 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x13a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.45825`
MD5	`02e147abe693b100d0fad67ba5d5a811`
SHA1	`4ea514467a5ba6042b5340dc1c423209696a5a25`
SHA256	`d61065ed9931aaed43b13255b1885a79278914fa38848eb64ae0badb6c0a4875`
SHA3	`2e91143c42354898cf66582987ac51b570b5a168da25b529e86e9447cdf8909c`

112 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x126`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.41187`
MD5	`7d1530262ba00f98418151f9b42b90d4`
SHA1	`f2656055498d864854a4b957be66bcda1f6dc765`
SHA256	`fdd23fa8611c707ed74f5b49670a33032d5a05531751698e414ccf9f35805b14`
SHA3	`6fe14a777b7322bc2130a872bf196195aaee5448516c82dafb847db04a11c332`

113

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xaa`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.28224`
MD5	`1bac10bd52c8fcefc81e2b37f38433aa`
SHA1	`9232f714b089699cf5a9dc8b5392afb4783c89ec`
SHA256	`5968e728fb691727781348a62355b21f04f542f3bd5545f845972d52f569e0f1`
SHA3	`b263e1c5d0dbec8df4c651e19bafc7f023ce772b0727da4d10f366ef8ed12706`

113 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0xa2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.22259`
MD5	`4d1345b790ae4c9275dc24cd67319c90`
SHA1	`71ad65dcd245d82605c933cb8ea0c74feba201b9`
SHA256	`564e9e00d97c01c8d0399f6af7ac9151e3821c3bbcdd8ffd459051fd9055d6e2`
SHA3	`b5a3870340bf15be417a62f7ea1b7314e6f1bc28b699ddb4603cf3cb35b9de6f`

113 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0xba`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.21338`
MD5	`e0cf388ee5662311c4112aa76f3dcb57`
SHA1	`4dca90c5b4c0afe6c751759314d5c6dcde229d70`
SHA256	`601e73b0b510ac98b64cfbad40ac2cb86b359e477161052d35b723e7097f1c5b`
SHA3	`3f7c65dc0d927cd24f6441a3a3af45a2fb525da0bdfa90e5486489709450aa47`

114

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x182`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.34887`
MD5	`351a66927ea8885d802c41b12759e5d9`
SHA1	`c615e419f02627e5d83426e48329faa57c9de510`
SHA256	`f261eedc85c8fae4f586e6340eafa20428d3a1d02aeec76db2cfbfcde2cf7022`
SHA3	`dd65c52687b2147efce91a31092101b94b65a47a3820256bd7b3c02e86232ee2`

114 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x196`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.37967`
MD5	`e354dbfdf4e5b1a23760d0dfd2209282`
SHA1	`a8cad2893b35900ec83ca26f48851b5cfdbae0ad`
SHA256	`d15f3064a1bcabcc56d9f1fd8d7114f2302326b9e1ee94a4af30610828d5da53`
SHA3	`5a1ae040045618b3965bee296fda0a2dfd83ec1549a6807846c1af8f51a0324e`

114 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x196`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.33624`
MD5	`d095a83e25dc99a9e398f4d52a5c7111`
SHA1	`b6db27f386dc36ce69c2f9b2858a89d61d614707`
SHA256	`23adae707e4358b70b010604d6005124b8d058bd0ecccb952e6a73a642f84a40`
SHA3	`0a0747203d766876cefca0f96c08b6e73e70abfc8c580799645556b9aae6cef6`

115

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xda`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.37665`
MD5	`cf9df00082f1e7aecc26638f8144f430`
SHA1	`75ac5f51914ad1ccf17846a87aee19741345352d`
SHA256	`e613a504773e11d48e23e8b50bf82e3a8dca1ff67212346da52c89bfcb038a9d`
SHA3	`de9e1e33e96ad0302a3850b8d542061e8245210ee456d3d1c4788b13d119d11d`

115 (#2)

Type	`RT_DIALOG`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0xce`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.36162`
MD5	`869e3ddb3bcbedf50c5f51b3780323d1`
SHA1	`dda8c11df9581b43d6ed5e3c5415e7df013012ca`
SHA256	`5ebe110e5088b58b6c82ae7d944c23b04f99433a40aa84e2cdafd17f82fa1b2c`
SHA3	`256dd110d1696c11c27d5283f040078bb9cdba781bce9613af1a69474bed0112`

115 (#3)

Type	`RT_DIALOG`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0xe2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.30505`
MD5	`0fd8d14d5b1d78aef12b4fbfea192499`
SHA1	`8d61720e9f01103845f4bf7f6a012c1e250c55b9`
SHA256	`3df41ee664281b878392185a3073659fd18310fbe1c97de54567c94929954d54`
SHA3	`6885c0959fa00aeee0619cad88eb32d6cff2e51ea7bfc974089f81e32d82a00a`

1 (#2)

Type	`RT_MESSAGETABLE`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7840`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.50256`
MD5	`081319ec6de533561dd04c6c88cc1938`
SHA1	`b433018594bbe3c1319231378a8b64b6f9529ac6`
SHA256	`fb770d3fb1215fa6146a5dd2c5e65c174b5faa4f69a37e0aee793b2723d05d77`
SHA3	`0c18b47555279614ee13430de138dea9f8f365480f161fd4d4a4189f49fa55d3`

1 (#3)

Type	`RT_MESSAGETABLE`
Language	French - France
Codepage	Latin 1 / Western European
Size	`0x9138`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.47591`
MD5	`552c627d1b13fe3191f0872112630d9c`
SHA1	`4445b49ef296d6bdd8736d354984e6800d4a0122`
SHA256	`89526d557dabc7fa907c05558b5afa2c2d8358be910fb8e54632f554534efbca`
SHA3	`af4f7a0ba25ed5d298045ef482d0771909ffd5be4f009ee2f5b255fedc50abfc`

1 (#4)

Type	`RT_MESSAGETABLE`
Language	Italian - Italy
Codepage	Latin 1 / Western European
Size	`0x8758`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.46855`
MD5	`08d96020ffaecd6641260c642358f052`
SHA1	`b08dc0fca63626804ddb30b9838d53a7d77e46ce`
SHA256	`72f28cbe63972d1bd1a49c3793f6eb91e13f77c0f51edf0031b21bb8277569be`
SHA3	`009b627206e561814079ef9cb8ad0dce135810b052778757f086e0e2365512e8`

101

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x3e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.44608`
Detected Filetype	Icon file
MD5	`394358ef4efcfbf283297bc0ff054113`
SHA1	`a1983ae2c378b5e4f2049a9582762e6684bf9123`
SHA256	`9feb3079dc44a3c6350a2944e2eb818590096f1ee66e008b151caf7cdcadef15`
SHA3	`7c889378ef3e26fe445e2dd062b86a2aaaf7b64bfaa728d089b9b92e2b300a08`

1 (#5)

Type	`RT_VERSION`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x29c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.49068`
MD5	`576616d406ae5141735fd3b4acd0e637`
SHA1	`5bb24f66b522e1d73c54cc30b273c7c46da74508`
SHA256	`266c560e2a126148b7c945f296fb5bfa7c9ec428549860d9b2fa51d6f8daffce`
SHA3	`9a769b73b50c300dcc7d42130c185c7855875f49fb0ea2b5f78fc403248ad7d4`

1 (#6)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x15a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.79597`
MD5	`24d3b502e1846356b0263f945ddd5529`
SHA1	`bac45b86a9c48fc3756a46809c101570d349737d`
SHA256	`49a60be4b95b6d30da355a0c124af82b35000bce8f24f957d1c09ead47544a1e`
SHA3	`1244ed60820da52dc4b53880ec48e3b587dbdbd9545f01fa2b1c0fcfea1d5e9e`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	2.24.0.74
ProductVersion	2.24.0.74
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	English - United States
Comments	http://nssm.cc/
FileDescription	The non-sucking service manager
FileVersion (#2)	2.24
LegalCopyright	Public Domain; Author Iain Patterson 2003-2014
ProductName	NSSM 32-bit
ProductVersion (#2)	2.24

Resource LangID	English - United States

TLS Callbacks

Load Configuration

Size	`0x48`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x422760`
SEHandlerTable	`0x420230`
SEHandlerCount	`3`

RICH Header

XOR Key	`0xaa457e7`
Unmarked objects	`0`
ASM objects (VS2008 build 21022)	`17`
C objects (VS2008 build 21022)	`107`
Imports (VS2012 build 50727 / VS2005 build 50727)	`13`
Total imports	`219`
C++ objects (VS2008 build 21022)	`50`
Linker (VS2008 build 21022)	`1`
Resource objects (VS2008 build 21022)	`1`

Errors

Leave a comment

No comments yet.