5d71bf91f7f8760097be36b38b76bb09

Summary

Architecture IMAGE_FILE_MACHINE_AMD64
Subsystem IMAGE_SUBSYSTEM_WINDOWS_CUI
Compilation Date 2017-Mar-10 21:08:38
Detected languages English - United States
Debug artifacts C:\Users\david\.jenkins\workspace\LoaderAndValidationLayers\build\demos\RelWithDebInfo\vulkaninfo.pdb

Plugin Output

Info Matching compiler(s): MASM/TASM - sig1(h)
Info The PE contains common functions which appear in legitimate applications. [!] The program may be hiding some of its imports:
  • GetProcAddress
  • LoadLibraryExW
Info The PE is digitally signed. Signer: LunarG
Issuer: DigiCert SHA2 Assured ID Code Signing CA
Suspicious VirusTotal score: 1/72 (Scanned on 2019-12-30 23:24:17) eGambit: Unsafe.AI_Score_100%

Hashes

MD5 5d71bf91f7f8760097be36b38b76bb09
SHA1 f111da512ec21c11ae289e4bfca070b68e73b344
SHA256 af1a8cfd2ae813a9e8785f4b043015401594205ba480f6a36feecf7d4c62e468
SHA3 3b17bd47cf22c0a9c6dc9dabd2b3f1dfca69d3abbd1b5a469484ddc82f9f159d
SSDeep 3072:ljb0vc9rrqQT0SH+dbRdBadqP4xE4x4q8VualrNd8lChgPG:l8vCeQTZ6DBKYi+l
Imports Hash 60f8f1bb527592ebba5e3a34c94e4db9

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0xf0

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_AMD64
NumberofSections 7
TimeDateStamp 2017-Mar-10 21:08:38
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xf0
Characteristics IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Image Optional Header

Magic PE32+
LinkerVersion 12.0
SizeOfCode 0x26000
SizeOfInitializedData 0x18800
SizeOfUninitializedData 0
AddressOfEntryPoint 0x0000000000006E90 (Section: .text)
BaseOfCode 0x1000
ImageBase 0x140000000
SectionAlignment 0x1000
FileAlignment 0x200
OperatingSystemVersion 6.0
ImageVersion 0.0
SubsystemVersion 6.0
Win32VersionValue 0
SizeOfImage 0x42000
SizeOfHeaders 0x400
Checksum 0x3e2ae
Subsystem IMAGE_SUBSYSTEM_WINDOWS_CUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 30df6a962310c8222951e1dd3204dfea
SHA1 6d2c9b41acc68c372067a6c482c73df222c4e1a9
SHA256 39322b31b2875ab464d0766eae4d70b2ff847ffc0906107bfa7588c32fbda7fb
SHA3 7f0418e66b9fbaf332f4677f9aee3463e0daa839995b8dbff42a2247f15c3f0a
VirtualSize 0x25f73
VirtualAddress 0x1000
SizeOfRawData 0x26000
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 5.63683

.rdata

MD5 8171d16d19350a5b8cb7d0fee8757369
SHA1 265db885cca5e0bb964a0f4e3997df7b0ba7d1e0
SHA256 2b7e6ee64197e5b602a4984a8495ec669f158d3bc436f921b22414b3cc0e8b95
SHA3 8aad5dbbfc01dc30308fc8130b74fe415adea569dae7e2f9db32097428d8bc8a
VirtualSize 0xfe69
VirtualAddress 0x27000
SizeOfRawData 0x10000
PointerToRawData 0x26400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.02078

.data

MD5 c9e36d39ae00ab5727ca02e6e441e968
SHA1 bb3cc34c58c7bc59d6dd779e2b479c5eef55a856
SHA256 c86de952a651e1aa616fb04e1ca3402c192c8dcd6170d13d9068ebd82f6d40d9
SHA3 c1e931705af0effcc15f66ad78cbf6e730c8bc51fd3e73d8e6d2a9dba3e715b1
VirtualSize 0x42e0
VirtualAddress 0x37000
SizeOfRawData 0x1c00
PointerToRawData 0x36400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 2.49235

.pdata

MD5 445f8245f85cc7b298ab34c5b1651805
SHA1 e91392c3d9951ee5cf578549dc1a52497d67bdc8
SHA256 62d6369c01d23c192543c45660b8a63d819af0aea2046a73701bad383ce245f1
SHA3 69e56c00cff172c2162b8f1d6052949d35e9afe5eb420bef373105433c0f5fc4
VirtualSize 0x1b30
VirtualAddress 0x3c000
SizeOfRawData 0x1c00
PointerToRawData 0x38000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.74191

.idata

MD5 a35c22ea90795a44a8172ac28872dda0
SHA1 ed71e5e7c8170a1f7d830ad7869e17410a2d6130
SHA256 2ff3f5d8cda6f92904dfff51ea3e01bdd664803f0fbf791e8ef6c1c8e91650a1
SHA3 8eb1deda62f0eafba85d8292e76583b1981131bc865fe16d40dbd7c617244ec8
VirtualSize 0x160a
VirtualAddress 0x3e000
SizeOfRawData 0x1800
PointerToRawData 0x39c00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 3.58426

.rsrc

MD5 119559559fdbf8c8403651a557c647ee
SHA1 81c1ec9686aed0ff739c343c0e875f199813164e
SHA256 d004095ab56abd1cf265515207449680fcb80b7ab5ad94091f168785a410c3e3
SHA3 e7a3744789efcf4fcea333f65ace47f18004154f7b8d0eca2b4856e1518cf43f
VirtualSize 0x43c
VirtualAddress 0x40000
SizeOfRawData 0x600
PointerToRawData 0x3b400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 2.13913

.reloc

MD5 d31f9f87b3237b17947dfae21fe40ec2
SHA1 76e1cb6e53c1d8586f0f53d8f30cd7d291bdcd24
SHA256 4ebb0e3f0e4b5395b05bb987349d3f184a24a7583245f01bb16108b4c17c7b15
SHA3 819417e470ace4af0a7a405afaf6046215b1a76b92fcea6f0601722c06c311dd
VirtualSize 0x979
VirtualAddress 0x41000
SizeOfRawData 0xa00
PointerToRawData 0x3ba00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Entropy 4.09762

Imports

KERNEL32.dll GetModuleHandleA
GetConsoleScreenBufferInfo
SetConsoleScreenBufferSize
SetConsoleWindowInfo
SetConsoleTitleA
GetConsoleProcessList
Sleep
GetStringTypeW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
CloseHandle
GetStdHandle
GetTimeFormatW
GetDateFormatW
HeapSize
OutputDebugStringW
WriteConsoleW
SetFilePointerEx
SetStdHandle
HeapReAlloc
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetCurrentThreadId
GetCurrentThread
GetProcessHeap
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
GetLastError
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
GetCommandLineA
DeleteCriticalSection
FatalAppExitA
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
RtlUnwindEx
IsDebuggerPresent
IsProcessorFeaturePresent
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetTickCount
GetModuleHandleW
CreateSemaphoreW
GetModuleFileNameW
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
CreateFileW
USER32.dll RegisterClassExA
CreateWindowExA
DestroyWindow
AdjustWindowRect
LoadCursorA
LoadIconA
DefWindowProcA
GDI32.dll GetStockObject
vulkan-1.dll vkGetInstanceProcAddr
vkGetPhysicalDeviceMemoryProperties
vkGetPhysicalDeviceQueueFamilyProperties
vkGetPhysicalDeviceProperties
vkCreateDevice
vkGetPhysicalDeviceFeatures
vkEnumeratePhysicalDevices
vkDestroyInstance
vkCreateInstance
vkDestroyDevice
vkEnumerateInstanceExtensionProperties
vkEnumerateDeviceExtensionProperties
vkEnumerateInstanceLayerProperties
vkDeviceWaitIdle
vkDestroySurfaceKHR
vkCreateWin32SurfaceKHR
vkGetPhysicalDeviceFormatProperties

Delayed Imports

1

Type RT_MANIFEST
Language English - United States
Codepage UNKNOWN
Size 0x17d
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.91161
MD5 1e4a89b11eae0fcf8bb5fdd5ec3b6f61
SHA1 4260284ce14278c397aaf6f389c1609b0ab0ce51
SHA256 4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df
SHA3 4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics 0
TimeDateStamp 2017-Mar-10 21:08:38
Version 0.0
SizeofData 126
AddressOfRawData 0x3435c
PointerToRawData 0x3375c
Referenced File C:\Users\david\.jenkins\workspace\LoaderAndValidationLayers\build\demos\RelWithDebInfo\vulkaninfo.pdb

IMAGE_DEBUG_TYPE_VC_FEATURE

Characteristics 0
TimeDateStamp 2017-Mar-10 21:08:38
Version 0.0
SizeofData 20
AddressOfRawData 0x343dc
PointerToRawData 0x337dc

TLS Callbacks

Load Configuration

Size 0x70
TimeDateStamp 1970-Jan-01 00:00:00
Version 0.0
GlobalFlagsClear (EMPTY)
GlobalFlagsSet (EMPTY)
CriticalSectionDefaultTimeout 0
DeCommitFreeBlockThreshold 0
DeCommitTotalFreeThreshold 0
LockPrefixTable 0
MaximumAllocationSize 0
VirtualMemoryThreshold 0
ProcessAffinityMask 0
ProcessHeapFlags (EMPTY)
CSDVersion 0
Reserved1 0
EditList 0
SecurityCookie 0x1400373c0

RICH Header

XOR Key 0xd7198af8
Unmarked objects 0
C++ objects (20806) 30
C objects (20806) 106
ASM objects (20806) 9
221 (VS2013 UPD4 build 31101) 2
Imports (65501) 7
Total imports 109
C objects (VS2013 UPD4 build 31101) 1
Resource objects (VS2013 build 21005) 1
Linker (VS2013 UPD4 build 31101) 1

Errors

<-- -->