Manalyze report for 89fb79e01790cbfd5cb8ad74dcc72351

This file seems to be a .NET executable.
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2019-Mar-07 21:18:37
Comments	Swift To-Do List
CompanyName	Dextronet
FileDescription	Swift To-Do List
FileVersion	`11.0.0.0`
InternalName	Swift To-Do List.exe
LegalCopyright	Copyright © 2005-2019
OriginalFilename	Swift To-Do List.exe
ProductName	Swift To-Do List
ProductVersion	`11.0.0.0`
Assembly Version	11.0.0.0

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C# v7.0 / Basic .NET` `.NET executable -> Microsoft`
Suspicious	PEiD Signature:	`HQR data file`
Suspicious	Strings found in the binary may indicate undesirable behavior:	`Miscellaneous malware strings: exploit virus`
Info	Cryptographic algorithms detected in the binary:	`Uses constants related to CRC32`
Info	The PE is digitally signed.	`Signer: Ondrej Forda` `Issuer: DigiCert SHA2 Assured ID Code Signing CA`
Safe	VirusTotal score: 0/65 (Scanned on 2019-03-19 19:42:28)	`All the AVs think this file is safe.`

Hashes

MD5	`89fb79e01790cbfd5cb8ad74dcc72351`
SHA1	`7c8a42eb127f32977d165ce1608fac133b155507`
SHA256	`4e3afb8e6622973e969bc0ab39b0a84dea3ec62b9bec0e129c94ed5932e76551`
SHA3	`b2c6209ee2536f44a98e927ae03951bf936e3e2549c898904cac33b40611f338`
SSDeep	`393216:rVWUDYcbJX2gnIUYNvaEMbvrRTDJM70S+nDs36sVYMky:rVrYMJmIKanJe3KCYMJ`
Imports Hash	`f34d5f2d4577ed6d9ceec516c1f5a744`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2019-Mar-07 21:18:37
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`11.0`
SizeOfCode	`0x157ea00`
SizeOfInitializedData	`0xb200`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x015808CE (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0`
ImageBase	`0x400000`
SectionAlignment	`0x2000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x1590000`
SizeOfHeaders	`0x200`
Checksum	`0x158d963`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`3c12a96307a879bdecbc8a134c3873fb`
SHA1	`b477edc73a17442e3024ba442f99f4d7c8693d5c`
SHA256	`49fe8e19e64fa496fffdccc5b95e445be849acba7b882d312d60f9731f7b43c7`
SHA3	`25853eaebd29ce7ee66e72d60a73a1e9a004ea562ef865941c2a723f992b4b8e`
VirtualSize	`0x157e8d4`
VirtualAddress	`0x2000`
SizeOfRawData	`0x157ea00`
PointerToRawData	`0x200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`7.46463`

.rsrc

MD5	`6ddf27d658d6bdb6f9cb01ab96dc0357`
SHA1	`89cefc271861fe7c03fbf6ffdbb437870fb34177`
SHA256	`6a7274191883732d275e6622ecf996cf33ba405b1fa8bd11d1a95d6378079d74`
SHA3	`2c4894effa9d0cafe519f2a0f2f491e6700089bad94422f67abda6455d908261`
VirtualSize	`0xb000`
VirtualAddress	`0x1582000`
SizeOfRawData	`0xb000`
PointerToRawData	`0x157ec00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`6.0137`

.reloc

MD5	`dd0f5df62f29f4bf597790bcd84f7dc0`
SHA1	`58f409dc90aeadd1945d0cb474184b695948c0f0`
SHA256	`75a375d83b8d82c72df79a415b3ef7cd68f6df3c5f9454cc39e6c3732497c5da`
SHA3	`f13dded5868a4ab69da273a7eb99c830729203358c96a44e156de4ac2b23a8f3`
VirtualSize	`0xc`
VirtualAddress	`0x158e000`
SizeOfRawData	`0x200`
PointerToRawData	`0x1589c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.10191`

Imports

mscoree.dll	`_CorExeMain`

Delayed Imports

2

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x9bc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.78161`
Detected Filetype	PNG graphic file
MD5	`a288284164168e87b1bf086f57ebd1b0`
SHA1	`061aa405198c6b127530fb6a5945f8f5e725fa75`
SHA256	`a46d73e0cd62b13c9679809f699bf0ea45a003c9fa63e550629c6b0afc367e0a`
SHA3	`a1a692871b2027aa5410eddd3cd6bbbbd3ea1262bdd238649c3a1586d9cea123`

3

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x668`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.5042`
MD5	`7bb861ef9594357957f3af8d3ffdf83f`
SHA1	`982626d679e772933d77046adb42f0052ce2fccc`
SHA256	`7217d21b5980282c96adf4f1ed63cde96dd110324cf7c3086cba87389159dbad`
SHA3	`3f1cef2b6632374f471f234a9642c2a359c6468f92c879525d8b0385ed088fc1`

4

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9279`
MD5	`112e3320bd9019e3cef21a587d183183`
SHA1	`887d80dca642042e6d618d0ff981807b6611ccfe`
SHA256	`4df56092bf9c50174a066d68529dff36f3b67c8949f26e678abfcd3898277263`
SHA3	`f8a9ff6922803379f6404eaea68b0ed42f4b60d5355761a81a81097ed8c058c6`

5

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.51135`
MD5	`c6304672e00f45f5dc6b665a5edcb061`
SHA1	`e5699bd7cdd11c0914d0beef892ba06faf58f10b`
SHA256	`a31c32a4f9582c404012d11e92eaf3062d08b85ec910e694bee99545420f8b0a`
SHA3	`4100f07a9cb81029b802093b1d4dd102afa8f57377d185c2df4df517fe889224`

6

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xd9a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.47895`
Detected Filetype	PNG graphic file
MD5	`8b1fee8eb383ac1e9637e44f3ec9ba66`
SHA1	`d512c4ad1ccf79e071bd88a04a57388ea34533cc`
SHA256	`a8bd9df1435f7ef68864005cc283579b3b7fc3ca0c99627a8bb957095826419d`
SHA3	`34ac6b87de06234789a259aa374ffe3912dcf7ef63ae3cad7f29860759441d7e`

7

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.90017`
MD5	`ab35e80a5741ede2a2021654b3ff7082`
SHA1	`a4ed4579cb655609755008ffbd89d06c493408ca`
SHA256	`c9ce92550090ef68986b07c54fab6413fe914edf8728bfd91e75ccfaf5ac0a41`
SHA3	`b3743e1c77b57e55b4bf0f59959f9566d57a96cb4b691ee353c68f0329f10a87`

8

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.62537`
MD5	`4957b8b8f497fef1081b786053a82b07`
SHA1	`98da3d3c134836ef1f8a41941fcea44804364121`
SHA256	`cd55de511a414b41eff2135b4869117fda7825486bbaa1fb14c3580aa543dfe2`
SHA3	`d86ae0ac1d98b68617f42a05e51f140af4a99bf03e087cc28ffc7a00d7f41002`

9

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.5531`
MD5	`1c6076e5fe846cd85c275d447c52046e`
SHA1	`e2dc2a5a784dd6e40abbec133d4fb4e585f148e9`
SHA256	`ff770e0a0c12e9fc968963ce8aa252b6f3d57eb07bf19477478534bab72ac41d`
SHA3	`dcfd41883382934eec4dd47ad6681e6aa74e2baca3b44f709f715c6a61a6ce44`

10

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x2954`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.82276`
Detected Filetype	PNG graphic file
MD5	`5da57e6bba154e4a48b68266b74845a9`
SHA1	`5076a9e340ec1999c7ecf72c08de5778316712e8`
SHA256	`697bcadc3e2d1a65d77d2766cc33b5d71809099bbe45b1a5a4dabc118d742033`
SHA3	`335fd0e944270225c32085f3c127e3507dbd85b8bf8b213b1ba7337a8591a440`

11

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.11601`
MD5	`84f309660acd8ef100c9d1c818c720cb`
SHA1	`e31c2acfa4019929fd68e230885ccd5e99904b84`
SHA256	`fe39d41afb96abcc7a4b8aaeaa9ee9f76cbee6f738e42603051f0d18081a84f1`
SHA3	`2c189a726032919c16f826f9ee1165d1f287717144bc624192a5f14cd0cca9eb`

12

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.41501`
MD5	`5cec222ce4d195fe8063b4fd50c8b09d`
SHA1	`39c86b4e06b3e64727ece5caf03558368bbdf8aa`
SHA256	`6315a00520c3b721c64df1f47fc352c269ca196463c3c593540bb4d3db2014f5`
SHA3	`b563bdd663575bc2594dbfd93c5f7ffdbeda7da71629affd19bed526dac3a2e9`

13

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.51435`
MD5	`03159c57617ef7d32d581de22fdca490`
SHA1	`ffb2e27413100b671b76ef1f226fe6130e5808c0`
SHA256	`cba380d84bfb1968fbd3cd0c70bf856f915ab05831f613a582ae7c6b1bc1e09c`
SHA3	`507932300e0175945faf29e6f3849dac1f0c5fd959bfc8bc505aaf8f8d0f049d`

32512

Type	`RT_GROUP_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0xae`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.95946`
Detected Filetype	Icon file
MD5	`0b1baa48bfa212071883f7f132a58112`
SHA1	`c17d064ff1aeaa75459dae57fa133b2a84dfb3d0`
SHA256	`b28f4902603e5cd8c08f05ddb9c33ae626c71a821a7e3fcf739fffb4c0076bd1`
SHA3	`465e0f0b078e60d91f338ca872435890a51e5311937f1ba1f2528ca5c45f7059`

1

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x374`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.32096`
MD5	`45aab551d109e803b77944a8e371a85c`
SHA1	`eb86b174f87108afef7acdec0baf08e94086d25f`
SHA256	`eaf4d5783b88db8c52f45436a661c144058abce41e151180a12b74668d889f61`
SHA3	`419612f749188cc4d53e3bacb0931904e21e38751dd2a25e2892beeda60fa16c`

1 (#2)

Type	`RT_MANIFEST`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x4aa`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.12103`
MD5	`48906a34b5eeb8caf1d9bf1ba167272e`
SHA1	`985889cb893f01a3f6a5a3393d43dc82d8db2cbd`
SHA256	`a10f72a2a8077a5778c821bfe2c6159bcc1d3297efdd0323c0887be7cebadf4d`
SHA3	`e140071838db5b6947227ae68b550373b190d53f07fed803cbc2dd0789d4709d`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	11.0.0.0
ProductVersion	11.0.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Comments	Swift To-Do List
CompanyName	Dextronet
FileDescription	Swift To-Do List
FileVersion (#2)	11.0.0.0
InternalName	Swift To-Do List.exe
LegalCopyright	Copyright © 2005-2019
OriginalFilename	Swift To-Do List.exe
ProductName	Swift To-Do List
ProductVersion (#2)	11.0.0.0
Assembly Version	11.0.0.0

Resource LangID	UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

89fb79e01790cbfd5cb8ad74dcc72351

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rsrc

.reloc

Imports

Delayed Imports

2

3

4

5

6

7

8

9

10

11

12

13

32512

1

1 (#2)

Version Info

TLS Callbacks

Load Configuration

RICH Header

Errors