Architecture |
IMAGE_FILE_MACHINE_I386
|
---|---|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
Compilation Date | 2024-Jun-12 14:59:19 |
Detected languages |
English - United States
|
CompanyName | Igor Pavlov |
FileDescription | 7z Setup SFX |
FileVersion | 23.01 |
InternalName | 7zS.sfx |
LegalCopyright | Copyright (c) 1999-2023 Igor Pavlov |
OriginalFilename | 7zS.sfx.exe |
ProductName | 7-Zip |
ProductVersion | 23.01 |
Info | Matching compiler(s): | Microsoft Visual C++ 6.0 - 8.0 |
Info | The PE contains common functions which appear in legitimate applications. |
[!] The program may be hiding some of its imports:
|
Info | The PE is digitally signed. |
Signer: Opera Norway AS
Issuer: DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1 |
Suspicious | No VirusTotal score. | This file has never been scanned on VirusTotal. |
e_magic | MZ |
---|---|
e_cblp | 0x90 |
e_cp | 0x3 |
e_crlc | 0 |
e_cparhdr | 0x4 |
e_minalloc | 0 |
e_maxalloc | 0xffff |
e_ss | 0 |
e_sp | 0xb8 |
e_csum | 0 |
e_ip | 0 |
e_cs | 0 |
e_ovno | 0 |
e_oemid | 0 |
e_oeminfo | 0 |
e_lfanew | 0x100 |
Signature | PE |
---|---|
Machine |
IMAGE_FILE_MACHINE_I386
|
NumberofSections | 5 |
TimeDateStamp | 2024-Jun-12 14:59:19 |
PointerToSymbolTable | 0 |
NumberOfSymbols | 0 |
SizeOfOptionalHeader | 0xe0 |
Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
|
Magic | PE32 |
---|---|
LinkerVersion | 14.0 |
SizeOfCode | 0x3a200 |
SizeOfInitializedData | 0x16a00 |
SizeOfUninitializedData | 0 |
AddressOfEntryPoint | 0x000213C0 (Section: .text) |
BaseOfCode | 0x1000 |
BaseOfData | 0x3c000 |
ImageBase | 0x400000 |
SectionAlignment | 0x1000 |
FileAlignment | 0x200 |
OperatingSystemVersion | 6.0 |
ImageVersion | 0.0 |
SubsystemVersion | 6.0 |
Win32VersionValue | 0 |
SizeOfImage | 0x58000 |
SizeOfHeaders | 0x400 |
Checksum | 0x323425 |
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
DllCharacteristics |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
|
SizeofStackReserve | 0x100000 |
SizeofStackCommit | 0x1000 |
SizeofHeapReserve | 0x100000 |
SizeofHeapCommit | 0x1000 |
LoaderFlags | 0 |
NumberOfRvaAndSizes | 16 |
KERNEL32.dll |
VirtualFree
VirtualAlloc GetVersion IsProcessorFeaturePresent GetSystemDirectoryW GetProcAddress GetModuleHandleW LoadLibraryExW EnterCriticalSection LeaveCriticalSection DeleteCriticalSection ReleaseSemaphore InitializeCriticalSection WaitForSingleObject CreateEventW GetLastError SetEvent CloseHandle ResetEvent CreateSemaphoreW MultiByteToWideChar WideCharToMultiByte FreeLibrary GetModuleFileNameW FormatMessageW LocalFree CreateFileW SetFileTime SetFileAttributesW RemoveDirectoryW CreateDirectoryW DeleteFileW SetLastError SetCurrentDirectoryW GetCurrentDirectoryW GetTempPathW GetTickCount GetCurrentThreadId GetCurrentProcessId GetFileInformationByHandle FindClose FindFirstFileW FindNextFileW GetModuleHandleA GetFileAttributesW GetFileSize SetFilePointer ReadFile WriteFile SetEndOfFile GetCurrentProcess GetProcessAffinityMask GetSystemInfo GlobalMemoryStatus GetStdHandle Sleep GetVersionExW GetCommandLineW CreateProcessW GetExitCodeProcess HeapSize SetStdHandle GetProcessHeap FreeEnvironmentStringsW GetEnvironmentStringsW GetCommandLineA GetOEMCP GetACP IsValidCodePage ReadConsoleW GetConsoleMode GetConsoleOutputCP FlushFileBuffers SetFilePointerEx GetFileSizeEx GetFileType EnumSystemLocalesW GetUserDefaultLCID IsValidLocale GetLocaleInfoW LCMapStringW HeapAlloc HeapFree HeapReAlloc ExitProcess GetModuleHandleExW WriteConsoleW FreeLibraryAndExitThread ExitThread CreateThread TlsFree UnhandledExceptionFilter SetUnhandledExceptionFilter TerminateProcess IsDebuggerPresent GetStartupInfoW QueryPerformanceCounter GetSystemTimeAsFileTime InitializeSListHead FormatMessageA QueryPerformanceFrequency GetLocaleInfoEx FindFirstFileExW AreFileApisANSI InitializeCriticalSectionEx EncodePointer DecodePointer LCMapStringEx GetStringTypeW GetCPInfo RtlUnwind RaiseException InitializeCriticalSectionAndSpinCount TlsAlloc TlsGetValue TlsSetValue |
---|---|
USER32.dll |
LoadIconW
EndDialog KillTimer SetTimer DestroyWindow SendMessageW SetWindowTextW MessageBoxW PostMessageW LoadStringW DialogBoxParamW GetDlgItem GetWindowLongW SetWindowLongW ShowWindow CharUpperW |
SHELL32.dll |
ShellExecuteExW
|
OLEAUT32.dll |
VariantClear
SysStringLen SysAllocStringLen |
Extraction Failed |
File is corrupt |
Cannot create folder '{0}' |
Extracting |
Characteristics |
0
|
---|---|
TimeDateStamp | 2024-Jun-12 14:59:19 |
Version | 0.0 |
SizeofData | 852 |
AddressOfRawData | 0x473e8 |
PointerToRawData | 0x459e8 |
Size | 0xc0 |
---|---|
TimeDateStamp | 1970-Jan-01 00:00:00 |
Version | 0.0 |
GlobalFlagsClear | (EMPTY) |
GlobalFlagsSet | (EMPTY) |
CriticalSectionDefaultTimeout | 0 |
DeCommitFreeBlockThreshold | 0 |
DeCommitTotalFreeThreshold | 0 |
LockPrefixTable | 0 |
MaximumAllocationSize | 0 |
VirtualMemoryThreshold | 0 |
ProcessAffinityMask | 0 |
ProcessHeapFlags | (EMPTY) |
CSDVersion | 0 |
Reserved1 | 0 |
EditList | 0 |
SecurityCookie | 0x44b040 |
SEHandlerTable | 0x446ed0 |
SEHandlerCount | 123 |
XOR Key | 0x84a76d0a |
---|---|
Unmarked objects | 0 |
ASM objects (30795) | 13 |
C++ objects (30795) | 176 |
C++ objects (33218) | 85 |
C objects (33218) | 20 |
ASM objects (33218) | 23 |
C objects (30795) | 22 |
Imports (30795) | 9 |
Total imports | 203 |
C objects (LTCG) (33523) | 86 |
Resource objects (33523) | 1 |
151 | 1 |
Linker (33523) | 1 |