Manalyze report for 5ca075544e4b92afed74321c057433cac9b9fe793cfee7fb87402fd8e2b3e627

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	1970-Jan-25 06:32:32
Detected languages	English - United States
TLS Callbacks	2 callback(s) detected.

Plugin Output

Suspicious	PEiD Signature:	`ASPack v2.12`
Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains another PE executable: This program cannot be run in DOS mode.`
Suspicious	The PE is possibly packed.	`Section .text is both writable and executable.` `Section .rsrc is both writable and executable.` `Unusual section name found: \xe0\x14\x00\x00\xa3u"` `Section \xe0\x14\x00\x00\xa3u" is both writable and executable.`
Info	The PE contains common functions which appear in legitimate applications.	`[!] The program may be hiding some of its imports: GetProcAddress LoadLibraryA`
Malicious	VirusTotal score: 63/71 (Scanned on 2026-06-25 09:53:11)	`ALYac: Win32.VJadtre.3` `APEX: Malicious` `AVG: Other:Malware-gen [Trj]` `Acronis: suspicious` `AhnLab-V3: Win32/VJadtre.Gen` `Alibaba: Virus:Win32/Nimnul.402c` `Antiy-AVL: Virus/Win32.Nimnul.f` `Arcabit: Win32.VJadtre.3` `Avast: Other:Malware-gen [Trj]` `Avira: W32/Jadtre.B` `BitDefender: Win32.VJadtre.3` `Bkav: W32.FamVT.DumpModuleInfectiousNME.PE` `CTX: exe.unknown.vjadtre` `ClamAV: Win.Malware.Wapomi-10020301-0` `CrowdStrike: win/malicious_confidence_100% (D)` `Cylance: Unsafe` `Cynet: Malicious (score: 100)` `DeepInstinct: MALICIOUS` `DrWeb: BackDoor.Darkshell.246` `ESET-NOD32: Win32/Wapomi.BA virus` `Elastic: malicious (high confidence)` `Emsisoft: Win32.VJadtre.3 (B)` `F-Secure: Malware.W32/Jadtre.B` `Fortinet: W32/CoinMiner.EC2B!tr` `GData: Win32.Virus.Wapomi.A` `Google: Detected` `Gridinsoft: Trojan.Heur!.03202301` `Ikarus: Virus.Win32.Wapomi` `Jiangmin: Win32/Nimnul.f` `K7AntiVirus: Virus ( 0040f7441 )` `K7GW: Virus ( 0040f7441 )` `Kaspersky: Virus.Win32.Nimnul.f` `Kingsoft: Win32.Nimnul.f.168959` `Malwarebytes: Malware.AI.143219663` `MaxSecure: Virus.Nimnul.F` `McAfeeD: Real Protect-LS!19667F6B6C67` `MicroWorld-eScan: Win32.VJadtre.3` `Microsoft: Virus:Win32/Mikcer.B` `NANO-Antivirus: Trojan.Win32.Banload.cstqaj` `Panda: W32/Pcarrier.A` `Rising: Virus.Wapomi!1.9E10 (CLASSIC)` `Sangfor: Trojan.Win32.Save.a` `SentinelOne: Static AI - Malicious PE` `Skyhigh: BehavesLike.Win32.Infected.dz` `Sophos: W32/Nimnul-A` `Symantec: W32.Wapomi.C!inf` `TACHYON: Virus/W32.Ramnit.C` `Tencent: Virus.Win32.Loader.aab` `Trapmine: malicious.high.ml.score` `TrellixENS: W32/Kudj` `TrendMicro: PE_WAPOMI.BM` `TrendMicro-HouseCall: PE_WAPOMI.BM` `VBA32: Virus.Nimnul.19209` `VIPRE: Win32.VJadtre.3` `Varist: W32/PatchLoad.E` `ViRobot: Win32.Ramnit.F` `VirIT: Win32.Nimnul.F` `Xcitium: Virus.Win32.Wali.KA@558nxg` `Zillya: Virus.Nimnul.Win32.5` `ZoneAlarm: W32/Nimnul-A` `Zoner: Probably Heur.ExeHeaderL` `alibabacloud: Virus:Win/Jadtre.A(dyn)` `huorong: Virus/Jadtre.ax`

Hashes

MD5	`19667f6b6c678f36f2440c0aaeb4e5dc`
SHA1	`b86fa942cb79533abe497a9d370f625238cb12c0`
SHA256	`5ca075544e4b92afed74321c057433cac9b9fe793cfee7fb87402fd8e2b3e627`
SHA3	`07303fc575e63f728e5ce2338a79c4a82f3e83f941771ddf72f0d670bf33e253`
SSDeep	`1536:bwVTxpKiuoHGCBLUThHpssqCJVSrGCq2iW7z:bYXtBwTAsqCEGCH`
Imports Hash	`e87870aa16875b6b0e1ec58db5bf2551`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`10`
TimeDateStamp	1970-Jan-25 06:32:32
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_DEBUG_STRIPPED` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`2.0`
SizeOfCode	`0xd000`
SizeOfInitializedData	`0x36800`
SizeOfUninitializedData	`0x600`
AddressOfEntryPoint	`0x00050000 (Section: \xe0\x14\x00\x00\xa3u")`
BaseOfCode	`0x1000`
BaseOfData	`0xa000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`1.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x55000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
SizeofStackReserve	`0x200000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`dceed5aefe03249c4ffc1abe43bf6088`
SHA1	`9a9618b19b81d45053b1389adc740321c6c9a8d5`
SHA256	`4b11120f511490f4566e203a1de562a213d2961d807918c4cf7c2021b56963ee`
SHA3	`9ade9acc3e26850954d1c34fe361fe8eed2fe882bffc3dca7e76a7019c283337`
VirtualSize	`0x8cb4`
VirtualAddress	`0x1000`
SizeOfRawData	`0x8e00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_1BYTES` `IMAGE_SCN_ALIGN_2048BYTES` `IMAGE_SCN_ALIGN_256BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_8BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_CODE` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`6.1644`

.data

MD5	`feafa7666813d4b76e71fb6dbbb371e7`
SHA1	`f92d8e7c3470d3921286c331acea8da66094adea`
SHA256	`5ac64befecead2de8e3c50c9d2e0c217039ff0f35f63976a81efa9a2e7542c8b`
SHA3	`421c1a00998c26cdab1e6e44a46f71585b56e927a7cc67f536349c98867c000d`
VirtualSize	`0x240f8`
VirtualAddress	`0xa000`
SizeOfRawData	`0x24200`
PointerToRawData	`0x9200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_2048BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_8BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0.00897757`

.rdata

MD5	`587bd3a0aca91d02be4e4e7d8da56bd0`
SHA1	`d68cbae35fcd1025da8d1b5598deaadd26580f00`
SHA256	`bb10e6bffd66415811514a220a59b1a6908d1c7f547d453581908422c618b8c9`
SHA3	`5db5dc3231234e37ff6bbafd49f6a6af5c7101216d87c450079e6590903f7a3f`
VirtualSize	`0x103c`
VirtualAddress	`0x2f000`
SizeOfRawData	`0x1200`
PointerToRawData	`0x2d400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_2048BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_8BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.10899`

.eh_fram

MD5	`1186eeb27c0d77e68e2a0d7e64e7439b`
SHA1	`aaea3e85b72f4729856fd024e88d156bc638b214`
SHA256	`58b0d7ec1f98d19fc077128bec5dbb68402e704aeb7b9f2453e7aa7f0516941e`
SHA3	`9ccc31a154178bfc01d67c51a9540ed8276cf291bb5fbf9788f47d57cf581a5a`
VirtualSize	`0x1424`
VirtualAddress	`0x31000`
SizeOfRawData	`0x1600`
PointerToRawData	`0x2e600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_1BYTES` `IMAGE_SCN_ALIGN_256BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.64536`

.bss

MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
SHA3	`a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a`
VirtualSize	`0x490`
VirtualAddress	`0x33000`
SizeOfRawData	`0`
PointerToRawData	`0`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_2048BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_8BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_UNINITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`

.idata

MD5	`3a081634470ec681285ffdecf9a13994`
SHA1	`51559517fb69066195c27bcb84c2a7adbc722659`
SHA256	`157c83fc70e24511c310e98362ca8eb3aa86c1b73e5565a193327deee5662de6`
SHA3	`386fefdb5bc264fc48dfd9ad43a473034ba2c8ebe0951c9bcec57c9ae8f09ea0`
VirtualSize	`0x2730`
VirtualAddress	`0x34000`
SizeOfRawData	`0x2800`
PointerToRawData	`0x2fc00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_1BYTES` `IMAGE_SCN_ALIGN_256BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`5.55258`

.CRT

MD5	`2eaedc52f7f8db83274c2807ed31b8d4`
SHA1	`aabddb077f01065dad6994fa0723c3b60d8846be`
SHA256	`6186d8237e935d0927dd072651f82e658d04f814c86395ef869d2511a26b4064`
SHA3	`f69af2165025c3c6677952e912867525f2fb70c7206e333cd5df28f79c806ae0`
VirtualSize	`0x34`
VirtualAddress	`0x37000`
SizeOfRawData	`0x200`
PointerToRawData	`0x32400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_1BYTES` `IMAGE_SCN_ALIGN_256BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0.274825`

.tls

MD5	`8ce9663252d6300aac5b2f0c3338fc53`
SHA1	`b8824894a55a6de20ba83a5d0a608b9b730a156b`
SHA256	`be2dcda5a076894a128d3d1e052af0168ba5f6e1a7acedf6698fa8466f365691`
SHA3	`5c4607730d2dda120b4279bbe194da1546a63a003dac0fdf29a725e3a74c5304`
VirtualSize	`0x20`
VirtualAddress	`0x38000`
SizeOfRawData	`0x200`
PointerToRawData	`0x32600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_1BYTES` `IMAGE_SCN_ALIGN_256BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`0.204488`

.rsrc

MD5	`b3d0f9cedb68ebb390e6db07ea4051d5`
SHA1	`5a2f0f3312bda569f7ff64c78749b0b6aacbbb7e`
SHA256	`1e93c18ba6162b2b2ac1006d96f8411439122e3e3e27f2f91cc8b4d2b74d7364`
SHA3	`eb8b154ce89775b3bec5568810fdeed6a8b217e851a1f6bbd6e3e93117a75f09`
VirtualSize	`0x17000`
VirtualAddress	`0x39000`
SizeOfRawData	`0x4400`
PointerToRawData	`0x32800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`10`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_ALIGN_1024BYTES` `IMAGE_SCN_ALIGN_16BYTES` `IMAGE_SCN_ALIGN_1BYTES` `IMAGE_SCN_ALIGN_256BYTES` `IMAGE_SCN_ALIGN_2BYTES` `IMAGE_SCN_ALIGN_32BYTES` `IMAGE_SCN_ALIGN_4096BYTES` `IMAGE_SCN_ALIGN_4BYTES` `IMAGE_SCN_ALIGN_512BYTES` `IMAGE_SCN_ALIGN_64BYTES` `IMAGE_SCN_ALIGN_8192BYTES` `IMAGE_SCN_ALIGN_MASK` `IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`1.53835`

\xe0\x14\x00\x00\xa3u"

MD5	`0d19d540a8021336ab5756e876e068ec`
SHA1	`2f45591e0294041a0f0f5e1fd14878f22414b952`
SHA256	`70cf146b5ab1e5c3d21646ecad3f47d8470943bb33986efdfaf58b54b27da55b`
SHA3	`77d8d60a2f6b3ee5cb18ca48c557183800ab290d74c5b910bb2ff08b649e12f0`
VirtualSize	`0x5000`
VirtualAddress	`0x50000`
SizeOfRawData	`0x4200`
PointerToRawData	`0x36c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`6.93506`

Imports

libgcc_s_dw2-1.dll	`_Unwind_Resume` `__deregister_frame_info` `__register_frame_info`
KERNEL32.dll	`DeleteCriticalSection` `EnterCriticalSection` `FreeLibrary` `GetCurrentProcess` `GetCurrentProcessId` `GetCurrentThreadId` `GetLastError` `GetModuleHandleA` `GetProcAddress` `GetStartupInfoA` `GetSystemTimeAsFileTime` `GetTickCount` `InitializeCriticalSection` `LeaveCriticalSection` `LoadLibraryA` `QueryPerformanceCounter` `SetUnhandledExceptionFilter` `Sleep` `TerminateProcess` `TlsGetValue` `UnhandledExceptionFilter` `VirtualProtect` `VirtualQuery`
msvcrt.dll	`__dllonexit` `__getmainargs` `__initenv` `__lconv_init` `__set_app_type` `__setusermatherr` `_acmdln` `_amsg_exit` `_cexit` `_fmode` `_initterm` `_iob` `_lock` `_onexit` `_unlock` `abort` `calloc` `exit` `fprintf` `free` `fwrite` `malloc` `memcpy` `memset` `signal` `strlen` `strncmp` `vfprintf`
USER32.dll	`RegisterDeviceNotificationW`
libstdc++-6.dll	`_ZNSs4_Rep10_M_destroyERKSaIcE` `_ZNSs4_Rep10_M_disposeERKSaIcE` `_ZNSsC1EPKcjRKSaIcE` `_ZTVN10__cxxabiv117__class_type_infoE` `_ZTVN10__cxxabiv120__si_class_type_infoE` `_ZTVN10__cxxabiv121__vmi_class_type_infoE` `_ZdaPv` `_ZdlPv` `_Znaj` `_Znwj` `__cxa_begin_catch` `__cxa_end_catch` `__cxa_rethrow` `__gxx_personality_v0`
QtCore4.dll	`_Z17qt_message_output9QtMsgTypePKc` `_Z5qFreePv` `_ZN10QByteArray7reallocEi` `_ZN10QByteArrayC1EPKc` `_ZN10QTextCodec12codecForNameERK10QByteArray` `_ZN10QTextCodec17setCodecForLocaleEPS_` `_ZN10QTextCodec4cftrE` `_ZN11QMetaObject8activateEP7QObjectPKS_iPPv` `_ZN11QTextStreamC1EP7QString6QFlagsIN9QIODevice12OpenModeFlagEE` `_ZN11QTextStreamD1Ev` `_ZN11QTextStreamlsERK7QString` `_ZN11QTextStreamlsEc` `_ZN11QTextStreamlsEi` `_ZN16QCoreApplication13processEventsE6QFlagsIN10QEventLoop17ProcessEventsFlagEE` `_ZN16QCoreApplication19applicationFilePathEv` `_ZN4QDir10setCurrentERK7QString` `_ZN5QFile4openE6QFlagsIN9QIODevice12OpenModeFlagEE` `_ZN5QFileC1ERK7QString` `_ZN5QFileD1Ev` `_ZN6QTimer10singleShotEiP7QObjectPKc` `_ZN7QObject10childEventEP11QChildEvent` `_ZN7QObject10timerEventEP11QTimerEvent` `_ZN7QObject11customEventEP6QEvent` `_ZN7QObject11eventFilterEPS_P6QEvent` `_ZN7QObject13connectNotifyEPKc` `_ZN7QObject16disconnectNotifyEPKc` `_ZN7QObject5eventEP6QEvent` `_ZN7QObject7connectEPKS_PKcS1_S3_N2Qt14ConnectionTypeE` `_ZN7QString11shared_nullE` `_ZN7QString13fromLocal8BitEPKci` `_ZN7QString16codecForCStringsE` `_ZN7QString16fromAscii_helperEPKci` `_ZN7QString4freeEPNS_4DataE` `_ZN7QString6numberEii` `_ZN7QString6removeEii` `_ZN7QString8fromUtf8EPKci` `_ZN7QString9fromAsciiEPKci` `_ZN7QStringaSERKS_` `_ZN7QThread11qt_metacallEN11QMetaObject4CallEiPPv` `_ZN7QThread11qt_metacastEPKc` `_ZN7QThread16staticMetaObjectE` `_ZN7QThread3runEv` `_ZN7QThread5sleepEm` `_ZN7QThreadC2EP7QObject` `_ZN7QThreadD2Ev` `_ZN9QIODevice4readEPcx` `_ZN9QListData11detach_growEPii` `_ZN9QListData11shared_nullE` `_ZN9QListData6appendEv` `_ZN9QListData6detachEi` `_ZNK11QMetaObject2trEPKcS1_` `_ZNK5QFile5atEndEv` `_ZNK7QString11lastIndexOfERKS_iN2Qt15CaseSensitivityE` `_ZNK7QString11toLocal8BitEv` `_ZNK7QString7toAsciiEv` `_ZNK7QStringeqERK13QLatin1String` `_ZNK7QStringeqERKS_`
QtGui4.dll	`_ZN10QBoxLayout10addSpacingEi` `_ZN10QBoxLayout9addLayoutEP7QLayouti` `_ZN10QBoxLayout9addWidgetEP7QWidgeti6QFlagsIN2Qt13AlignmentFlagEE` `_ZN11QHBoxLayoutC1Ev` `_ZN11QPushButtonC1ERK7QStringP7QWidget` `_ZN11QVBoxLayoutC1Ev` `_ZN12QApplication4execEv` `_ZN12QApplicationC1ERiPPci` `_ZN12QApplicationD1Ev` `_ZN12QProgressBar14setTextVisibleEb` `_ZN12QProgressBar8setRangeEii` `_ZN12QProgressBar8setValueEi` `_ZN12QProgressBarC1EP7QWidget` `_ZN15QAbstractButton5clickEv` `_ZN5QFont12setPointSizeEi` `_ZN5QFont9setFamilyERK7QString` `_ZN5QFontC1Ev` `_ZN5QFontD1Ev` `_ZN6QLabel7setTextERK7QString` `_ZN6QLabelC1ERK7QStringP7QWidget6QFlagsIN2Qt10WindowTypeEE` `_ZN7QWidget10closeEventEP11QCloseEvent` `_ZN7QWidget10enterEventEP6QEvent` `_ZN7QWidget10fontChangeERK5QFont` `_ZN7QWidget10leaveEventEP6QEvent` `_ZN7QWidget10paintEventEP11QPaintEvent` `_ZN7QWidget10setEnabledEb` `_ZN7QWidget10setVisibleEb` `_ZN7QWidget10wheelEventEP11QWheelEvent` `_ZN7QWidget11actionEventEP12QActionEvent` `_ZN7QWidget11changeEventEP6QEvent` `_ZN7QWidget11qt_metacallEN11QMetaObject4CallEiPPv` `_ZN7QWidget11qt_metacastEPKc` `_ZN7QWidget11resizeEventEP12QResizeEvent` `_ZN7QWidget11styleChangeER6QStyle` `_ZN7QWidget11tabletEventEP12QTabletEvent` `_ZN7QWidget12focusInEventEP11QFocusEvent` `_ZN7QWidget13dragMoveEventEP14QDragMoveEvent` `_ZN7QWidget13enabledChangeEb` `_ZN7QWidget13focusOutEventEP11QFocusEvent` `_ZN7QWidget13keyPressEventEP9QKeyEvent` `_ZN7QWidget13paletteChangeERK8QPalette` `_ZN7QWidget14dragEnterEventEP15QDragEnterEvent` `_ZN7QWidget14dragLeaveEventEP15QDragLeaveEvent` `_ZN7QWidget14languageChangeEv` `_ZN7QWidget14mouseMoveEventEP11QMouseEvent` `_ZN7QWidget14setFocusPolicyEN2Qt11FocusPolicyE` `_ZN7QWidget14setMinimumSizeEii` `_ZN7QWidget14setWindowTitleERK7QString` `_ZN7QWidget15keyReleaseEventEP9QKeyEvent` `_ZN7QWidget15mousePressEventEP11QMouseEvent` `_ZN7QWidget15setMaximumWidthEi` `_ZN7QWidget16contextMenuEventEP17QContextMenuEvent` `_ZN7QWidget16inputMethodEventEP17QInputMethodEvent` `_ZN7QWidget16setMinimumHeightEi` `_ZN7QWidget16staticMetaObjectE` `_ZN7QWidget17mouseReleaseEventEP11QMouseEvent` `_ZN7QWidget18focusNextPrevChildEb` `_ZN7QWidget21mouseDoubleClickEventEP11QMouseEvent` `_ZN7QWidget22windowActivationChangeEb` `_ZN7QWidget5eventEP6QEvent` `_ZN7QWidget7setFontERK5QFont` `_ZN7QWidget9dropEventEP10QDropEvent` `_ZN7QWidget9hideEventEP10QHideEvent` `_ZN7QWidget9moveEventEP10QMoveEvent` `_ZN7QWidget9setLayoutEP7QLayout` `_ZN7QWidget9showEventEP10QShowEvent` `_ZN7QWidgetC2EPS_6QFlagsIN2Qt10WindowTypeEE` `_ZN7QWidgetD2Ev` `_ZN9QLineEdit7setTextERK7QString` `_ZN9QLineEditC1EP7QWidget` `_ZNK7QWidget11paintEngineEv` `_ZNK7QWidget14heightForWidthEi` `_ZNK7QWidget15minimumSizeHintEv` `_ZNK7QWidget16inputMethodQueryEN2Qt16InputMethodQueryE` `_ZNK7QWidget5getDCEv` `_ZNK7QWidget5winIdEv` `_ZNK7QWidget6metricEN12QPaintDevice17PaintDeviceMetricE` `_ZNK7QWidget7devTypeEv` `_ZNK7QWidget8sizeHintEv` `_ZNK7QWidget9releaseDCEP5HDC__` `_ZThn8_NK7QWidget11paintEngineEv` `_ZThn8_NK7QWidget5getDCEv` `_ZThn8_NK7QWidget6metricEN12QPaintDevice17PaintDeviceMetricE` `_ZThn8_NK7QWidget7devTypeEv` `_ZThn8_NK7QWidget9releaseDCEP5HDC__`
hidapi.dll	`hid_close` `hid_open_path` `hid_set_nonblocking` `hid_send_feature_report` `hid_write` `hid_get_feature_report` `hid_read` `hid_enumerate` `hid_free_enumeration`
ISPDLL.dll	`LoadProgdata` `GetMCUInfo` `GetChksum` `ConnectToBootloader` `VerifyByPage` `PartialProgram` `BlankCheck` `EraseByPage` `ExecuteProgramFrom` `DisConnectBootloader` `LockAll` `SwitchToUserProgram`

Delayed Imports

1

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4228`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.5311`
MD5	`9a5cc6195b120d3351204e13e4f208be`
SHA1	`23ad05816fdd8a687347010ae8830a2d11a8c4cd`
SHA256	`2cb0a3f6ff75fbf5b96917431b3599411ce703679744a1b9a33fe5d093293332`
SHA3	`bed648b2275348c730e529d8b783170f5458cb2ba30763130d14e6132556d49d`

IDI_ICON1

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.91924`
Detected Filetype	Icon file
MD5	`3e1d980f0dc747eec9d946c155cb1498`
SHA1	`15414ced0202f709d400c957d441a8856dde8479`
SHA256	`027e12c81d53ebb492d0e1ce8166c0c004e135274105fb79465b6b97bc6c71cd`
SHA3	`11e83c27ff3b8cca2c537273338202138c94fb4b10a6b2daf0f7d23d177cc049`

Version Info

TLS Callbacks

StartAddressOfRawData	`0x438000`
EndAddressOfRawData	`0x43801c`
AddressOfIndex	`0x4330cc`
AddressOfCallbacks	`0x437020`
SizeOfZeroFill	`0`
Characteristics	`IMAGE_SCN_TYPE_REG`
Callbacks	`0x00407020` `0x00406FD0`

Load Configuration

RICH Header

Errors

[*] Warning: Section .bss has a size of 0!

Leave a comment

No comments yet.