Manalyze report for 707aaf229de5d4a3d747318ad706acb1

This file seems to be a .NET executable.
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2016-Sep-10 13:32:16
Debug artifacts	C:\Users\jkey\Source\Workspaces\taskbarmeters\TaskbarMeters\TaskbarMemoryMeter\obj\Debug\TaskbarMemoryMeter.pdb
Comments
CompanyName	Jeff Key
FileDescription	Taskbar Memory Meter
FileVersion	`1.1.1.0`
InternalName	TaskbarMemoryMeter.exe
LegalCopyright	Copyright © Jeff Key 2016
LegalTrademarks
OriginalFilename	TaskbarMemoryMeter.exe
ProductName	Taskbar Memory Meter
ProductVersion	`1.1.1.0`
Assembly Version	1.1.1.0

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C# v7.0 / Basic .NET` `Microsoft Visual C++ 8.0` `.NET executable -> Microsoft`
Suspicious	VirusTotal score: 2/74 (Scanned on 2020-06-24 19:26:40)	`APEX: Malicious` `Trapmine: malicious.high.ml.score`

Hashes

MD5	`707aaf229de5d4a3d747318ad706acb1`
SHA1	`ee59d0ac7a0f7efd4749835f73b251c7ba7c8bcd`
SHA256	`170423d2e3b13e0363f5fb1d3e9fe450e4dd4df7e1daafd7d1b5cf13d08a258b`
SHA3	`130bad2de7b00d90dcab7bb8e50fc948a9b8f659f59e2ed27f97cba47f137e7b`
SSDeep	`1536:cnsEwCyIeNbZooqCcnUfDDCjwCyIeNbZooqCcnUpiwSX:DEwCTodCjwCTodC`
Imports Hash	`f34d5f2d4577ed6d9ceec516c1f5a744`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2016-Sep-10 13:32:16
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`48.0`
SizeOfCode	`0xda00`
SizeOfInitializedData	`0xd200`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000F97E (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0x10000`
ImageBase	`0x400000`
SectionAlignment	`0x2000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x20000`
SizeOfHeaders	`0x200`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`beec8bb73a33ea41d211df5909d0ba70`
SHA1	`9da12492ae4d7fdc0bb89c24fb7cfb80ac16dbb9`
SHA256	`f1b082ed2a9d11fb09599af124c5087c7fbb278540e6c24f266141f70bf7dc06`
SHA3	`6f8df50d4798c2741340ea6a3d1ebf2dbe47bbcf1c17d5095795b4854c5ef6a5`
VirtualSize	`0xd984`
VirtualAddress	`0x2000`
SizeOfRawData	`0xda00`
PointerToRawData	`0x200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.19896`

.rsrc

MD5	`406507355ff83870213f93d2276ea0ec`
SHA1	`4b615534d8ae1b45fbc530804ae394fb43177177`
SHA256	`c4bda191239468816d35e87aa5f3a4ae620d4d064945939ae73181565e484bfb`
SHA3	`af5b2483ff5b17a154bf00092931b023f02904b1011e17125dc06b8f48a9e498`
VirtualSize	`0xcfa4`
VirtualAddress	`0x10000`
SizeOfRawData	`0xd000`
PointerToRawData	`0xdc00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`6.12872`

.reloc

MD5	`9c861d0041d3362353e2e07398c65547`
SHA1	`58eb2b27bc41dcdc61cbdc7f54bb9e6af7d23f38`
SHA256	`60a07f36223848509114b36ac1955f8d3d6014b9c28d82ea2b1299aff3ba7628`
SHA3	`39b565c8fb6b70451d92098a69c06942a8470d33f4cbb6f08763ecb7d413018e`
VirtualSize	`0xc`
VirtualAddress	`0x1e000`
SizeOfRawData	`0x200`
PointerToRawData	`0x1ac00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.0815394`

Imports

mscoree.dll	`_CorExeMain`

Delayed Imports

1

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x668`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.51984`
MD5	`e545dbe7b39b4188fff31029c26e19ca`
SHA1	`833aa2ca6789851d976b4a2ff2d1c98c9e17a631`
SHA256	`5ff305ff22056dc5348f304899bff0675577b7f66b868b42c7f42cfbd4e3720e`
SHA3	`c32731c67ae66ff53a5de0199770d79d1122f0d986a4aa2f319cc0ebf5698202`

2

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.75214`
MD5	`cf6c0e4d3f49511b734e8caba3017a77`
SHA1	`98fd1d79fe52c61a8806761310440f698c48cf00`
SHA256	`a58ea48a8fb8e83f1a3a851eb223ad50e63d272eda5d6640bbc5dabb4f97e095`
SHA3	`70247e5086fa2179abd2fcb89247a103669b16017deee85a11ac579baddc8cdc`

3

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.26223`
MD5	`8d1e5eeac42e78462598abe04dac8761`
SHA1	`5696aac38d3b59d4142b4740e59c4f646c9eec91`
SHA256	`d24b6725f3a0066d1ac09373adc4b8ee3df8bf8ccb7e7b24a10142cb80767cf0`
SHA3	`6e0ecc544101ce5dfb73fcf82fda67245b86f8951716aebcc8277648459e9e5e`

4

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.59387`
MD5	`ad74d7d14bd6049789e46fa2c763d6c8`
SHA1	`9ed8977fb33ddb4be90fda15219e4d281510bc96`
SHA256	`b1625d7204228313c9159ff01147b6bc53f9610c274cd058ad48720a4fe5da9a`
SHA3	`6cab57252b6e11f3f86f159fed82577a8db4a8e3fcbc548839be9ca76d7575fc`

5

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.86446`
MD5	`dc3b4dd732536de077f83a3f73f10b92`
SHA1	`a2a8dc53e2769858286b8160193542506cb2a702`
SHA256	`0d16bf3725ab5e911c82564100f5caf681d6d068078c0efb6bba361027bfd725`
SHA3	`3446bcf4088b71f669bd11e99d64c59405f23afb15878020370aebb0064443b7`

6

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.25175`
MD5	`d7d63431e3274e324b67f0f386c9c036`
SHA1	`f82d8863a56a21f9508bfb5009b37e2bec61502f`
SHA256	`e2c26c8a9b1043b52e3be6644ee9516c068cf5680fb617897505b4eb7cf41169`
SHA3	`3311b46207fb83a1e174978f40125e05a265a7a25211847fc51d8a2f1904132b`

7

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x64c3`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.96275`
Detected Filetype	PNG graphic file
MD5	`daf51fefccbc1a7440ae138839aeafcd`
SHA1	`aae6148428cd6aa666309666363c7ccf05ef9c70`
SHA256	`b50871038a12c59aecfa084f3c436d2c8e5c24dc8b0ea446c308ab0253464d86`
SHA3	`64e9cb2c578f33e4b1a5dba8b236704b10edd879a58e6496b0241e4ccdb616e6`

8

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.03464`
MD5	`5617648e1578f426805823c813d9e89b`
SHA1	`3e3e14709bbc633dd971ac75e8c54dedb9cf694b`
SHA256	`8f07127450eccdee8cf55ec5e7df52f6b0c52f60a0e8cc636a1e4eabfa26156a`
SHA3	`ccfe45f4ac15e25e8ab2ab80d8968dc78b9efa8ac84f7634716f1a5065d30268`

9

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.30964`
MD5	`7ac6fd4ba03de2bfb100112cd747b6ea`
SHA1	`98644a828487d5cfa5ddbe3250a24ed39114415f`
SHA256	`9d5acbb0af4337f8870c2072a18c3abb0fb86c0f97c449b2d933388f63613784`
SHA3	`b29f44e0691c8ff5aaad85bc42cb460ab3e10305abd83e6a81f63da0373d6b2e`

10

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.25382`
MD5	`98367f8770279bc630f9701d4c038495`
SHA1	`14b9c1cc1a67e6f3c5a4244797bd85da285ee337`
SHA256	`b472f1f852eecb05459c9022b1b7921ce73a4320a7de487701d67232f9e589ae`
SHA3	`804905486164a038a932501adfe4ed672d9291f87ff51a30dd11669356a0f1c6`

32512

Type	`RT_GROUP_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x92`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.90294`
Detected Filetype	Icon file
MD5	`35c57be08e286e04859636b91164bb5f`
SHA1	`24ea2f4a61bb648b6784f3c6bdc9889f5fa0bfdc`
SHA256	`431aecdf949c1f34417bcc400140e88dfadfb804f8d45f72b088384d63a9301d`
SHA3	`fbb08632678b5d15dbab752f51022193cd8289aeae54a245a41d466dcdccd141`

1 (#2)

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x394`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.32502`
MD5	`4c1f2a8f1e73f71f0bb89e7875e0d186`
SHA1	`a80b6acf2d7f3589848abba925fdb93dcc301fbe`
SHA256	`df6f89a1191aeb4ba30b4f8a2918fa0457e66f2796b627c6455dbc35d5575403`
SHA3	`42a7819f99b511f67adbaec3c5a399c175421b648b2dc3d66295a4502cf7bdce`

1 (#3)

Type	`RT_MANIFEST`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x1ea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.00112`
MD5	`b7db84991f23a680df8e95af8946f9c9`
SHA1	`cac699787884fb993ced8d7dc47b7c522c7bc734`
SHA256	`539dc26a14b6277e87348594ab7d6e932d16aabb18612d77f29fe421a9f1d46a`
SHA3	`4f72877413d13a67b52b292a8524e2c43a15253c26aaf6b5d0166a65bc615cff`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.1.1.0
ProductVersion	1.1.1.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Comments
CompanyName	Jeff Key
FileDescription	Taskbar Memory Meter
FileVersion (#2)	1.1.1.0
InternalName	TaskbarMemoryMeter.exe
LegalCopyright	Copyright © Jeff Key 2016
LegalTrademarks
OriginalFilename	TaskbarMemoryMeter.exe
ProductName	Taskbar Memory Meter
ProductVersion (#2)	1.1.1.0
Assembly Version	1.1.1.0

Resource LangID	UNKNOWN

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2016-Sep-10 13:32:16
Version	`0.0`
SizeofData	`284`
AddressOfRawData	`0xf810`
PointerToRawData	`0xda10`
Referenced File	C:\Users\jkey\Source\Workspaces\taskbarmeters\TaskbarMeters\TaskbarMemoryMeter\obj\Debug\TaskbarMemoryMeter.pdb

TLS Callbacks

Load Configuration

RICH Header

707aaf229de5d4a3d747318ad706acb1

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rsrc

.reloc

Imports

Delayed Imports

1

2

3

4

5

6

7

8

9

10

32512

1 (#2)

1 (#3)

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

TLS Callbacks

Load Configuration

RICH Header

Errors