Manalyze report for 66b91b2f53593d519b69f0aa5597c955

This file seems to be a .NET executable.
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2022-Sep-22 11:18:09
Comments	Sigorta Hızlı Teklif Yazılımı
CompanyName	Doğanium
FileDescription	Doğanium Hızlı Teklif
FileVersion	`1.4.5.3`
InternalName	Doganium.FormUI.exe
LegalCopyright	Copyright © 2021
LegalTrademarks	Doğanium
OriginalFilename	Doganium.FormUI.exe
ProductName	Doğanium Hızlı Teklif
ProductVersion	`1.4.5.3`
Assembly Version	5.7.1.0

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C# v7.0 / Basic .NET` `.NET executable -> Microsoft`
Suspicious	PEiD Signature:	`HQR data file`
Info	Interesting strings found in the binary:	`Contains domain names: http://www.w3.org http://www.w3.org/1999/xlink http://www.w3.org/2000/svg http://www.w3schools.com http://www.w3schools.com/jsref/tryit.asp?filename https://cefsharp.example inkscape.org w3schools.com www.inkscape.org www.w3.org www.w3schools.com`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`66b91b2f53593d519b69f0aa5597c955`
SHA1	`bdac66990bb473bdaff34d03dcc0a954ff83ac22`
SHA256	`2be6348d48bdf1e7a5ec8c65ce7cd7f03fb2b9c73114bb76128c36128ed7eb56`
SHA3	`59c947e99570ebee4fe742033cdcb6089c06e7fe75aadfa144bbd00ab755c434`
SSDeep	`49152:IAmAy7GF1CVnvwyFvn3nRMMdhbjDH774YavUj//U9AzZVZiVMzQ:II1CVnvLvnNNDH774Y2a/HzZzXQ`
Imports Hash	`f34d5f2d4577ed6d9ceec516c1f5a744`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2022-Sep-22 11:18:09
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`48.0`
SizeOfCode	`0x52fc00`
SizeOfInitializedData	`0x54c200`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00531B92 (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0x532000`
ImageBase	`0x400000`
SectionAlignment	`0x2000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x552000`
SizeOfHeaders	`0x200`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`7fc9033b796abe6d38dc040d7ecc40dc`
SHA1	`567582e4cc77f6472bbf98ee6146b232cb3c6910`
SHA256	`c83e0eb572f7c0f0c4c9ce57a4d099034013e713b3a550678c35799bc706548c`
SHA3	`da390798a86f6dfa7dbeb99b6cd61032ed698c5e676af18631daf5a5d96a2bb5`
VirtualSize	`0x52fb98`
VirtualAddress	`0x2000`
SizeOfRawData	`0x52fc00`
PointerToRawData	`0x200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.74148`

.reloc

MD5	`f4c4ee0244375539d1029ac13c86fd09`
SHA1	`c978a19f5ce780dc739eb93ce8af97947d2301fc`
SHA256	`e5cc9b16889c0334af783a7b1bab115cdd44f5cdd55ac4d2c407285d9ece536b`
SHA3	`9f41d87261dbd979bce9adfcf43a544b97ef98c9dfd3afd3ac61f362f5a1ce4c`
VirtualSize	`0xc`
VirtualAddress	`0x532000`
SizeOfRawData	`0x200`
PointerToRawData	`0x52fe00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.10191`

.rsrc

MD5	`2488ebd866e7bdc01f58297c8ee250c8`
SHA1	`dba1ea7d0975a7dbec84c1fe44b3e2eeb7d58a3d`
SHA256	`d32cf06b03662b122e0efb1868e034e43414c28464c51ff1cdf1bcbb17e06149`
SHA3	`6e4b2d88d0bac4d548bfdf159bc0fec4b2f1e02e003e445d0156b116a878eb62`
VirtualSize	`0x1c5c0`
VirtualAddress	`0x534000`
SizeOfRawData	`0x1c600`
PointerToRawData	`0x530000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.93459`

Imports

mscoree.dll	`_CorExeMain`

Delayed Imports

1

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x3892`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.96809`
Detected Filetype	PNG graphic file
MD5	`2361aa66af1b09ea2938b41def1daf00`
SHA1	`cb0454de779b93d969cc468ad6f2070b8d5dbb94`
SHA256	`778db2ceebe60edb882bf4e5b5ae215f2e36202d666b1e13a8bc92e5d882e544`
SHA3	`2be3838ed1131fa2cc1eaf60420d5bda4fe9119a88626141ccab63b998bec944`

2

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x10828`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.65846`
MD5	`94e3a532dd41bd68cb37ca6541033f71`
SHA1	`71c8790e4ee5c210e5ab1445b727f69b205e49a7`
SHA256	`5270c08790a2d7f2e03ec032f656d55d8791f2ed55805e107c1c0e32d8ba2f32`
SHA3	`b07469f052ae850021b159f7e4c7351140344d8b7e631f99c48d5a81bf59a58c`

3

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x4228`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.04373`
MD5	`3d0012be9974acac291de2ac835eddfd`
SHA1	`af94564fb68dfc2b27fbfc1c1479372d9a0cda69`
SHA256	`2b44bf5aeb8047f4329fe10c856a9f8eb819e24506eb9e65200428bc4f53363a`
SHA3	`6377b197f5d3b89cf09bc59240915ced3f343b9ab28dfbffe10f333a16f3d848`

4

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.28416`
MD5	`6a7f71b311d359a595e2080ba516ca82`
SHA1	`116fecb1e0837fdc0b180e3b7e6028f729fe74f8`
SHA256	`aa277194cdc89aa55aba8b3736e013e34d23fc2e306313d00ceb4a7f3bb2fc53`
SHA3	`79a6624f1d7230e384a2244420f06d431f926e9c0dbd914cdecdc9cc1cc70e51`

5

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.71641`
MD5	`771b0b01986458ed1f5637f3ef9ff4f9`
SHA1	`7a92d7e548bb689af0733fb0955d4a326b559b26`
SHA256	`00f827804a7cc0c632298f0f1c39d0179a7d97e2e8f0df7080bd768f5d2d80b5`
SHA3	`4c9558e1896a5e2ade70a805336713c1817ec252954f1c2a4e06d56daf1626b6`

6

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.52326`
MD5	`b9856cd781126b8ec68301ec72864364`
SHA1	`f5cf5a154ab1e190789f5838262cf05194694173`
SHA256	`42c2dd60952caf024bb7875a8a17790809f98c4c8e3de8e42e1922cada0b8edd`
SHA3	`3b2e86615951cc0437e96095ee2556c121b78d084ff471672174fa7dc4b7b20a`

32512

Type	`RT_GROUP_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x5a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.79908`
Detected Filetype	Icon file
MD5	`08eddfe2d13ff2a2d834659271ea7f93`
SHA1	`d5faa272018bd15ccdfb7279da2b11af7f8ffedb`
SHA256	`41034d24ef20345a60cbeffccfc018dc642a975fc105988bea2faec477f861d7`
SHA3	`96d3c5d2b2e6263b33e73fb17fc74e12503e67271dcdf2bcc5139b587c59f637`

1 (#2)

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x3bc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.51552`
MD5	`8f6011619e7bd4b8cdc71299dccf541c`
SHA1	`c096bfb0acd36cfd198d2c04deed2c24ab32db0a`
SHA256	`5439c13abb2917b97aa9adb2f80aee7886c0da66ed0cf9fe82a67ae58a83ac37`
SHA3	`97e24a1a20327bc99951352e4cbc36b15a3579a0362a9b9c7bf10d75c39f3914`

1 (#3)

Type	`RT_MANIFEST`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x1ea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.00112`
MD5	`b7db84991f23a680df8e95af8946f9c9`
SHA1	`cac699787884fb993ced8d7dc47b7c522c7bc734`
SHA256	`539dc26a14b6277e87348594ab7d6e932d16aabb18612d77f29fe421a9f1d46a`
SHA3	`4f72877413d13a67b52b292a8524e2c43a15253c26aaf6b5d0166a65bc615cff`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.4.5.3
ProductVersion	1.4.5.3
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Comments	Sigorta Hızlı Teklif Yazılımı
CompanyName	Doğanium
FileDescription	Doğanium Hızlı Teklif
FileVersion (#2)	1.4.5.3
InternalName	Doganium.FormUI.exe
LegalCopyright	Copyright © 2021
LegalTrademarks	Doğanium
OriginalFilename	Doganium.FormUI.exe
ProductName	Doğanium Hızlı Teklif
ProductVersion (#2)	1.4.5.3
Assembly Version	5.7.1.0

Resource LangID	UNKNOWN

UNKNOWN

Characteristics	`0`
TimeDateStamp	2022-Sep-22 11:18:09
Version	`0.0`
SizeofData	`26`
AddressOfRawData	`0x41e824`
PointerToRawData	`0x41ca24`

TLS Callbacks

Load Configuration

RICH Header

66b91b2f53593d519b69f0aa5597c955

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.reloc

.rsrc

Imports

Delayed Imports

1

2

3

4

5

6

32512

1 (#2)

1 (#3)

Version Info

UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

Errors