94eb3de6900dfa5c1165cfe416096a72

Summary

Architecture IMAGE_FILE_MACHINE_AMD64
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date 2021-Apr-10 08:04:04
Detected languages English - United Kingdom
English - United States
CompanyName Zhorn Software
FileDescription Caffeine
FileVersion 1, 9, 7, 0
InternalName caffeine
LegalCopyright Copyright (C) 2021
OriginalFilename caffeine.exe
ProductName Caffeine Application
ProductVersion 1, 9, 7, 0

Plugin Output

Info Interesting strings found in the binary: Contains domain names:
  • http://www.zhornsoftware.co.uk
  • http://www.zhornsoftware.co.uk/
  • www.zhornsoftware.co.uk
  • zhornsoftware.co.uk
Malicious The PE contains functions mostly used by malware. [!] The program may be hiding some of its imports:
  • LoadLibraryA
  • LoadLibraryExW
  • GetProcAddress
  • LoadLibraryW
 Functions which can be used for anti-debugging purposes:
  • FindWindowW
 Code injection capabilities (PowerLoader):
  • FindWindowW
  • GetWindowLongW
 Can access the registry:
  • RegEnumKeyW
  • RegSetValueExW
  • RegCreateKeyExW
  • RegOpenKeyW
  • RegQueryValueW
  • RegDeleteKeyW
  • RegQueryValueExW
  • RegOpenKeyExW
  • RegCloseKey
 Possibly launches other programs:
  • ShellExecuteW
 Uses functions commonly found in keyloggers:
  • GetAsyncKeyState
  • CallNextHookEx
  • GetForegroundWindow
 Can take screenshots:
  • GetDC
  • FindWindowW
  • BitBlt
  • CreateCompatibleDC
Safe VirusTotal score: 0/68 (Scanned on 2021-07-07 22:06:10) All the AVs think this file is safe.

Hashes

MD5 94eb3de6900dfa5c1165cfe416096a72
SHA1 a098e25990ad1f0e8bedb0764ab63f6ba5fc5926
SHA256 c0593b4b65bb264a982d61a7b84f38b10a41972b49a217ef3a80a906a0c4ee08
SHA3 160d222f830cf4f12fe7534342445072853c15f0026003c0daf55c3dcd53911c
SSDeep 6144:E41JKq9T+/k5AgVHDljl5g/dObY34CkfSy5rJUgj2TpgdEhpNACHXivi5:ja0+/i9Tl5gmYrMSy5uuEzHXv5
Imports Hash 794faaf7ec3bf564d9e4659c9b3f6346

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0xe8

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_AMD64
NumberofSections 5
TimeDateStamp 2021-Apr-10 08:04:04
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xf0
Characteristics IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_RELOCS_STRIPPED

Image Optional Header

Magic PE32+
LinkerVersion 9.0
SizeOfCode 0x3c000
SizeOfInitializedData 0x2da00
SizeOfUninitializedData 0
AddressOfEntryPoint 0x000000000002601C (Section: .text)
BaseOfCode 0x1000
ImageBase 0x140000000
SectionAlignment 0x1000
FileAlignment 0x200
OperatingSystemVersion 5.2
ImageVersion 0.0
SubsystemVersion 5.2
Win32VersionValue 0
SizeOfImage 0x72000
SizeOfHeaders 0x400
Checksum 0x6e669
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 eb1773e61a8680dee9ae4f6f013d5770
SHA1 957c3e249ce14d8bbb3f3f91970b40ece707e73d
SHA256 44dc3a42ef6a9b87f08e5e2b23ce9795aec63068aee4a4fdf80915c0abf2223b
SHA3 3d5316b62fd90cd30597f30ce3eb3b546a8e47890d3bed692765fdba4fa4fb7d
VirtualSize 0x3be98
VirtualAddress 0x1000
SizeOfRawData 0x3c000
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 6.31185

.rdata

MD5 d33cdc2bc40bdeb9e2e9803838c0a896
SHA1 fe5c716ae364f48f2cfd5dbe8caae37732e1b002
SHA256 903e3f212fc5fe9745c3211274f967f69ad2fa56c5b88676c91a77deb443e35e
SHA3 2a4295280869141019c21a02b0c8cb586c081f90de61ee572e3a2980960ab5bc
VirtualSize 0x16a4a
VirtualAddress 0x3d000
SizeOfRawData 0x16c00
PointerToRawData 0x3c400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.36026

.data

MD5 24530bb36e7c247e010491667008b192
SHA1 4d8a5998f9474c5083549ce1ca3a2b5f81eea323
SHA256 712bb42a85e4504632e92ba9c997387e0a7fd6f1c84b51595186ea3a9109dbdb
SHA3 24d81d13a9246b4a999349a72b43e392ae3cc3c9194b6dbf315b19c9436858ca
VirtualSize 0x8f30
VirtualAddress 0x54000
SizeOfRawData 0x3000
PointerToRawData 0x53000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 3.46345

.pdata

MD5 f571bc2dc3dcc93bd5c8b0a5370d8140
SHA1 d572df35e5617b07f850c498be0b6077a0333284
SHA256 3b9a693c8c93614d7a111094cb64a9a52c29d779fc38fd29e8bd39f8cd67b04c
SHA3 f470ed0f8f6cec04974531fa59c70247f2d50bc8c67cbab5d421311ecf1529b1
VirtualSize 0x46f8
VirtualAddress 0x5d000
SizeOfRawData 0x4800
PointerToRawData 0x56000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 5.544

.rsrc

MD5 5d46cd01f525e8134e6f1184e335e11b
SHA1 71450579afdbacfe5dd347b003157a8a15b52c12
SHA256 58b3f5bab621dc89d18cc63f2c113b805500fbb440f9df62b2cea60bf5ca3686
SHA3 4c823616bb7a9eab2086eaf581f53261a4054adbe7509f76db9d19b5d4902c2f
VirtualSize 0xf520
VirtualAddress 0x62000
SizeOfRawData 0xf600
PointerToRawData 0x5a800
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 3.74068

Imports

USER32.dll GetWindowRect
InflateRect
PtInRect
SetCursor
GetSystemMetrics
LoadIconW
EnableWindow
GetClientRect
GetDC
SendMessageW
RedrawWindow
SetCapture
GetParent
ReleaseCapture
IsWindow
GetSysColor
MessageBeep
CopyIcon
ReleaseDC
InvalidateRect
IsIconic
UnregisterClassW
GetSysColorBrush
UnpackDDElParam
ReuseDDElParam
DestroyMenu
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
SetRectEmpty
BringWindowToTop
TranslateAcceleratorW
WindowFromPoint
LoadCursorW
SetWindowLongW
GetWindow
SetTimer
GetDesktopWindow
GetCursorPos
GetWindowTextW
GetTopWindow
SendInput
GetAsyncKeyState
FindWindowW
RegisterWindowMessageW
SystemParametersInfoW
GetMenuItemID
GetSubMenu
LoadMenuW
PostMessageW
KillTimer
SetActiveWindow
SetForegroundWindow
SetMenuDefaultItem
TrackPopupMenu
ModifyMenuW
GetClassNameW
CopyRect
FillRect
DrawEdge
DrawTextW
GetMenuItemCount
GetMenuState
GetMenuItemInfoW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
GetMenuStringW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
PostQuitMessage
CheckMenuItem
EnableMenuItem
GetFocus
LoadBitmapW
SetMenuItemBitmaps
ValidateRect
PeekMessageW
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageW
TranslateMessage
GetMessageW
CallNextHookEx
SetWindowsHookExW
ShowOwnedPopups
MessageBoxW
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetWindowThreadProcessId
UnhookWindowsHookEx
GetWindowPlacement
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
GetMenu
CallWindowProcW
DefWindowProcW
GetDlgCtrlID
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
UpdateWindow
SetMenu
MapWindowPoints
GetMessagePos
GetMessageTime
SetWindowLongPtrW
GetWindowLongPtrW
DestroyWindow
GetDlgItem
EndDeferWindowPos
BeginDeferWindowPos
GetForegroundWindow
GetWindowTextLengthW
SetFocus
RemovePropW
GetPropW
SetPropW
GetClassLongPtrW
GetCapture
WinHelpW
SendDlgItemMessageW
SendDlgItemMessageA
IsDialogMessageW
SetWindowTextW
ShowWindow
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
TabbedTextOutW
DrawTextExW
GrayStringW
WTSAPI32.dll WTSRegisterSessionNotification
KERNEL32.dll LoadLibraryA
CompareStringW
GlobalFindAtomW
FreeResource
lstrlenW
GlobalFree
GlobalUnlock
LocalFree
FormatMessageW
GlobalGetAtomNameW
lstrlenA
WritePrivateProfileStringW
GlobalFlags
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
TlsAlloc
GlobalReAlloc
GlobalHandle
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GetVersionExA
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
SetErrorMode
GetStartupInfoW
RtlLookupFunctionEntry
RtlUnwindEx
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
Sleep
ExitProcess
RaiseException
RtlPcToFileHeader
HeapReAlloc
HeapQueryInformation
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
FlsAlloc
HeapSetInformation
HeapCreate
QueryPerformanceCounter
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetCurrentProcessId
SetLastError
GlobalAddAtomW
CloseHandle
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
GetModuleFileNameW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
WideCharToMultiByte
CompareStringA
GlobalLock
GlobalAlloc
GetModuleHandleW
GetProcAddress
GetVersion
GetVersionExW
SetThreadExecutionState
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetSystemPowerStatus
lstrcmpW
MulDiv
GetWindowsDirectoryW
LoadLibraryW
FreeLibrary
GetLastError
GetTickCount
GDI32.dll DPtoLP
CreateSolidBrush
CreatePatternBrush
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
DeleteObject
SetMapMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
Rectangle
ExcludeClipRect
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
GetTextExtentPoint32W
GetObjectW
CreateFontIndirectW
GetStockObject
GetPixel
WINSPOOL.DRV OpenPrinterW
ClosePrinter
DocumentPropertiesW
ADVAPI32.dll RegEnumKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyW
RegQueryValueW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
SHELL32.dll DragQueryFileW
DragFinish
Shell_NotifyIconW
ShellExecuteW
SHLWAPI.dll PathFindExtensionW
PathFindFileNameW
OLEAUT32.dll VariantInit
VariantChangeType
VariantClear
SystemTimeToVariantTime
VariantTimeToSystemTime
pdh.dll PdhOpenQueryW
PdhCloseQuery
PdhGetFormattedCounterValue
PdhCollectQueryData
PdhAddCounterW
OLEACC.dll (delay-loaded) LresultFromObject
CreateStdAccessibleObject

Delayed Imports

Attributes 0x1
Name OLEACC.dll
ModuleHandle 0x5bca0
DelayImportAddressTable 0x56fa0
DelayImportNameTable 0x51820
BoundDelayImportTable 0x51868
UnloadDelayImportTable 0
TimeStamp 1970-Jan-01 00:00:00

18

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.02695
MD5 cab67e9ca149fb79ab4473998412b951
SHA1 2e793d35537bfb5d3f042ed0626d3b119d50519a
SHA256 fbeb3be87e80cb8e1d2af3d8140796c1bb80c6c7056f60897088ff9e355c3867
SHA3 0e72f5537421764effb2ed98e536358bb7e86eed7b0936e606e8d45559685684

19

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0xb4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.74274
MD5 9fa8a914823ac7e5370652146901f4f1
SHA1 eb3224109abb341b6e464d2606fdbed1a7160bc6
SHA256 f64ccc0582bc7c66af8b40049e485e8e241335261ec95ace909293ba50b2e4a3
SHA3 bb348af06514e27cd1fa21ad524dfd037edcd3b36ef4cc6ab24c4a8ec38995ff

20

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.34038
MD5 d78a341fa7444ba9ccb74ad0c943d0ac
SHA1 a3fdcb001587c47b72f06441087455e8027baca1
SHA256 652988945185cf5d604d9b48de66288d82d8ed0acdd134398e90d002d2d9fc72
SHA3 2ddf8193c735adcec9a83d3a9032dc70796778b1d0c967a43789f1a6bb3da15f

21

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.34004
MD5 07618c451f53db89991c3fb7c567a568
SHA1 0d5cd2bb85bb88024b832f68bdbadd1e69938138
SHA256 0b0e16c38a3d5a85566e67b1d9a7e720e4dee27e163b06099d3d7dfa5dbed9ee
SHA3 f4d98de638008ce348a7ef0cb3feb13207cf5b3eaea4f1ee1d71b3a22397fba4

22

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.51649
MD5 9936fbf67a1d9f755c37852015d09527
SHA1 426016ba6a10cc2634ab7357e4223793c51aa304
SHA256 368f9cb089d206a8b61251f0c85eeda97ee08a56b33be8579246e964d3af6169
SHA3 6bdb1e7d667efe7812e162384a6341edec73311ee7dfcb122adf0cc0f08e7a8f

23

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.45401
MD5 ffacff1dbee315221fd131e951d8e151
SHA1 d2eb9800a1f60d3ea7225fec706d809cf477885b
SHA256 6440c3a38dcfb81d45bc6be31b776fdae116dd7a2933b407b67132f6cfa0e6eb
SHA3 dbe125dd582d83c13a62c87798c900fdc43d97b581935e320c14f9cc761a3868

24

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.34864
MD5 fa681900dd51c997aa67a2c5a4704099
SHA1 b48ebfd25835cb260b5e4f8e7085ea3da102c48a
SHA256 9882a8462ce9de3cc9a5d0ca48c8c4f7ca97f1f846f0c10e6655e33c9734b152
SHA3 157fb750ffc808227ced340c81ed1c1c1e15b05dd0e831678b871515870e0a8b

25

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.34505
MD5 0a12283479aa8a8677dd27bb0f584a34
SHA1 63679153c4d14fc591d1286cc98ff5044a5b589d
SHA256 322e92d75b3fec9e16b81466f4cf111d298b80812d5b238f4ee032c025a02050
SHA3 d6fc5e08b9d51b2cc80c1a2a34ca495e28edd0ca1bc65f317958b773c675de7e

26

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.34864
MD5 d0293b6f84ea96f2662fa2f8e2fd44de
SHA1 240ad776d40208f067dda60701affa3d162cb3bb
SHA256 8db6df648274a0fc3d28430367216e1c17c364ca613066cbb0e133637e92ba62
SHA3 d92c1c2bfba803073152e14d6846474d13ccef3f04aa8670540389efa7c7d995

27

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.31114
MD5 49ca9d25ceb458297ddf84fff64c8d55
SHA1 fbd6d992b7e2a59c9e24372ea8d30a5dcdbd46f9
SHA256 f9c81ce9b4176b305c554a15f0ca2b98b11be76c1f13ef22169999aa07e9612f
SHA3 03f7002b636940864ef7d399ba60fb8de3f455da32f311ee39cdf6602c5d348b

28

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.33609
MD5 27fc5529ad790189bbf410c7e3a70fb7
SHA1 ea2456c9b26f884a7f7abb051f460ec98cb9451c
SHA256 601635482a9b1864ea0c61ce0282c5c9fe1d014aa95dbb4f60770f1c2b6df3da
SHA3 24ab306744896452b2a7f7055c97671ab0aad3965342b3d0cead7a6cb640238d

29

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.81313
MD5 858a63dc597812b0885e8a8f9689227c
SHA1 0a816cd0e6f10038f43bde278eb613f1c7281b33
SHA256 2bf742d2beb4c56dd6eb68347dd8ee28da85bed9e6d165b36c6edb91da01d5d6
SHA3 6974d714fd124f0de87b6f088039e52bcf3123b5e6ae24c7c61864b70b894963

30

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.81491
MD5 ff43eaab521694d0356618a92cd83b55
SHA1 f1ed8d456a5a3d87d1a8349e992c99e22bf3624e
SHA256 cfc4ff9e46fbb61f61b68f36adc6593b137233d1cbaa50fe37e5653f0cb20396
SHA3 7069692bfbe0c043b33390a40f8033c3d0aa3092c3b1ca1b01fc899dc760ec48

31

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.10016
MD5 4bfaa5ad112338fc90bf84b1ba21859d
SHA1 f175fb276720b4f98bc75dd3edc8c53ed563bdf4
SHA256 c4a6e3a7a346baecb09a0c49268eb44f388382a7866a4e912b53d48fa3b34c26
SHA3 eb1f5efadebebc4b756ef49661343ee08641f53184ad8ee83e33d6665028a00d

32

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.97052
MD5 654a61b5fd300aaf86c52a3c48035005
SHA1 e16bdc1b4309abd682e2d0b52aaf370a77ad6a86
SHA256 f273e554605a89aa0994c9d42bc2569be3db5b19b2900dacb30f3218ed1174a0
SHA3 50582dc2bd6d1a2632564b2d3c6fdc1877e401924754069bc2dfccf3e2896340

33

Type RT_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x134
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.22699
MD5 b6946159ef4680b2b03d58bdf3dc83f6
SHA1 b949690a6e071a1fe43cb83a15d5104d1fa9fe0d
SHA256 ebaf4bcc0f0d7ca9a3458ea52520d2dd10811069241940b9b2e79ac1a4c3ca5c
SHA3 4b1152fe0fd4581cc8716682bff8f14d7c903ab6b5414d52876bd37fc58eb0c5

30994

Type RT_BITMAP
Language English - United States
Codepage Latin 1 / Western European
Size 0xb8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.23666
MD5 8cf65be17e506ff24c2177078f88b56e
SHA1 3e397dc7597caeb844df0ea760b64231c8ce3dbf
SHA256 e7c0005285d1ab59732d5f99f77a9bdd6342b01cf44437ebd7a07611a227e272
SHA3 7da4c7aab356574679f0f9107740f01647864c846c04f699deef67577fd6aded
Preview

30996

Type RT_BITMAP
Language English - United States
Codepage Latin 1 / Western European
Size 0x144
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.87621
MD5 5a9c81cdbf480cf01daa71ba0e233c5f
SHA1 28e04c01584654e1974347d1baa462b2784e9c47
SHA256 abdf36bde89a26349f5741c17c235dacea88d441d8662ba16a598dc50c3c4864
SHA3 99dec83590ac444359a5a6f8924dae5615d93f4df527e10a8a61319ce3a5beaf
Preview

1

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0xc5e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.43964
Detected Filetype PNG graphic file
MD5 40d3edc05f990dc7acb66e5c06baed7c
SHA1 257d1b1218ed7d2297c8610cf498dc6963bec575
SHA256 aaacb2c4b8cbc698ba3e2a51fe1e45eb9882b25a31b8b315ee9e93e0f23d8c10
SHA3 d2cd493b3b604bb4bb29cb624b3a4688431ef16f0f3c7c98bedd7c45cca9c7ad

2

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x25a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.72036
MD5 55ded4a221b91cfde40c6948f8488e53
SHA1 8f8bead4f1de50e2bdaa31c5e7ff9aa4c6f036d1
SHA256 20b5441628542733099e801d688c7693014ae81d088855c050ca2d592481dc36
SHA3 5a86f221fe9c64ad025abffc18a77297c820cbc87342e8375e7a484cd7d98236

3

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.7521
MD5 83ecc665458f91926391790b968c65fd
SHA1 6ccf47234f58f1fad00c59f90f63106db62ca770
SHA256 6c5871c9962b4dcf9f0078780e48c990fca82d5860eba1a07ee31befb86eeb8e
SHA3 407098e5f7d839b3cda249d5801c689a610ab974f25fee42f5baffc2f48d340e

4

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x988
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.02949
MD5 80d2285c463455980164a2749108e897
SHA1 0fabb809898f8a5471b19dc111d36826ea53454c
SHA256 93ff5465f11c1fa4c660d36526966aad863f448a142f87e016e78df0cb23b088
SHA3 296146ed842235d0f832884ec506cc0d8257a9c2c31efcd5868fb0d709801a72

5

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.35403
MD5 9b80247535e2b610d70fe5d7f35f862e
SHA1 ec4f28cb7b0e43fad25b31d4b96e867ccc092548
SHA256 dc7fdfedc146542c830c98e8945f861cccccbabf4b5d7de95e68f68a5b5d49e0
SHA3 f1b847dff4e5b143791e85d4aefc7cee0f20fac434dab953d3dbba29fa35fcfc

6

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.02386
MD5 ac92a7b122818de4988ecf6fabc4b869
SHA1 1a6daa0b4812fb3ae18e0aa8ced9ac80c7b4a9d4
SHA256 de2a7760412e702a4ffbd0d59228f18570487f827c5ee2cc9bcc42ee33651f0b
SHA3 5a7ee172286aa35723be18a805d76f69f8798104b02dba368e94e6cd818996a3

7

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.02097
MD5 23fd2261736458e23ec68a81c47b06bb
SHA1 0bac25213d58f39678180c9aed1898651dda0506
SHA256 d129b2c220c2e880c53cb848ccef03cae7fd2f97bcc4cbb0a268bb346a0391f7
SHA3 0c80c712409c4a5ee7dd436d988efde3eaef46647354b28b40030bf519d7cf4c

8

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.10792
MD5 86ea1e97cc476456e09a79bdc5904cd3
SHA1 ca89f03ad68cdfbfb16ad98b0c99ff069d58296e
SHA256 86b324602029628955388d5df45505272f096bf928cadad220741986d73c7983
SHA3 bcaae25af10a4c9f3acc00e20a59981de88d30598bef3762863cbc07466e6fb5

9

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.16607
MD5 dd7393c19252d3683cf6d14d4f73f57b
SHA1 b23baac2f117ec674ad2735aeac024dc6786bd5e
SHA256 b217077cf1e5ffffee04a36167084a92f7330e064d147871df59e7e3a9bb4405
SHA3 23a7a30214bb5481d8cc3281c1f8a37548c1830a4d83163c1ae10e4ad054b387

10

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x128
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.3778
MD5 854065abfa25b03107bf459f27ef5013
SHA1 08871d80b0ace03b31a9948efd74b4f04494667a
SHA256 091435c26cb9fe02e2b0cbee420ea4fcfc4353f9047be2d4c56af12412aa25dd
SHA3 c6af18016c9ec7a07a29f3a32dabe1d450a3063503b5c3e0b238a9621c86b29f

11

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x2e8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.38354
MD5 b54aedc18d0a9a03cae808bf19c79358
SHA1 64f27811634187798464edbfcc9a31468f86cfa2
SHA256 aed8b9fb851a41a26b96f7bcc8ae9c3f9a327124e1f098781233089519f12c93
SHA3 6483311c9a84645dceaeddeb3bc72b6f47feb0a9fe54698774e9dfd37029f946

12

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x128
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.50672
MD5 b6d5aae4d27fed1cb6d1c00347a2f919
SHA1 28a9b4d3dacbf7c8476af4466d29db4d805f4622
SHA256 84620ac8a837a999dabcd4cf73289a93060eae8e6df8f26f65d0cdfe423f9fa6
SHA3 36be1876970c421ee5ae92aec630e2dcd82b55917045ba4b0a662b0571bb3864

13

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x2e8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.59653
MD5 0cf516696c539fe7962e2b0489b30b83
SHA1 1ccfe791e486f973bf8654106b05cd3f00031d58
SHA256 eb8f43665a8d99e475b8262cf2d456bca3ef59786ccc7aedb93abff1c41e53a3
SHA3 a07c96ab8a8fdcd6223b1a3cc8bae0adc7ffd1620bc3e2caf9fd215a3aa200f5

14

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.70906
MD5 6261edbc14813ebb702ad9bd0c757bbf
SHA1 fdc3dc0b1d8432814a04cb0856fc4cdb4e995d41
SHA256 d0a7d0155a6c53a90e6acb997ea6e93ee156456084f6f6e9852810739a35cda9
SHA3 8a2d28b8e78a15c71ae1f43c1ab4a6acaea0fefe089188144ac287d81c346f93

15

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.74425
MD5 3acb72c729dc5a10285b27ecb243c528
SHA1 ed0c3c20d25bb087987ca0d4aeecbf657cb7c576
SHA256 3aabe2004071b2bfbbdec9b714908dfecc1c4db71511d7ac081ee0d51a407261
SHA3 2b9fea79872960c05953f08189b54c00d611a5c3ee028c4f13f1c82e17473646

16

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x10a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.90308
MD5 14ccd15d1f60e1072ff192f777e3b40b
SHA1 f08c95cdad17105348eb174522125ea5438d11c0
SHA256 f4748b6ef0d33a6c277358aea4e379a324791dea17376f83239c4fec09c48f40
SHA3 62e8868178363de0e5d3758c354df36cba7c6ecb0b98345b2c8ecc00d188b200

17

Type RT_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x468
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.98788
MD5 c443b9b2e01ff835a4c66354c389d154
SHA1 4cec1e8f48cc815a4ce8ead32a107198250bfec3
SHA256 19e41edafdfb58086aaae234eaf79e87e3358655b033ff07cc1ebc01054a4ccf
SHA3 e83f9a2c7cbb7008f2313ee7a60659c94b5356289c1542773abbaa88c1a44bea

129

Type RT_MENU
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x23e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.1024
MD5 91da72041e4f9e045301574d1f17198f
SHA1 f510d83edef675c0dfb86b987d2d8de8198150ce
SHA256 916ebd4750562059c6d765f7c80d0ddcede3c7e63bf402790ea51f06eff297a3
SHA3 4eb217492d5ccc5f3fb6b3bb3b13484487a5bee7cceacbc56dbad995ae4304c8

138

Type RT_DIALOG
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x2c8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.43801
MD5 8c17a18a7d71a02e02e6cd54e324baa6
SHA1 4a18174856f2e04554129632924d9d882a4e9bbd
SHA256 e77aebc5b6b360991a0a557c759afbd5b6d08133be4f9402c8a6097f34b6407f
SHA3 53269911da80a55185ea38a566d90bd7dbc6fa1df1248460b0022d750fb90c19

139

Type RT_DIALOG
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x74
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.84893
MD5 7bd23e0cebcd69f7a841941142e8c78d
SHA1 853c9457e3b4411e41c87dcbd17dedffc9114d53
SHA256 13ddbffb83da6a0d53dca463c4e310c95a61b790891c5840ca838201c724df89
SHA3 e63c92c067ecb490bdc6f27c4523e1b5ed809bbc5da61137ef727f5884dafd1b

146

Type RT_DIALOG
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x34
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.13265
MD5 335b0a137c8461077994c818074d388b
SHA1 0ae2ebeb0238578a568aa914c93acca6305625b1
SHA256 1c427f96803269f4726f3aa321d0bf57e0069bedc4b100d3ef7c16ac0e0ab205
SHA3 b2dd841f20a0e8863618dd8bcd66d083f0b7d3089b12dd8ed9c0a1d68da12596

30721

Type RT_DIALOG
Language English - United States
Codepage Latin 1 / Western European
Size 0xe8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.06676
MD5 ad7b15160c8bf80910606d417f40fef5
SHA1 9752acb8e012635c4356f7f2a20191d656b53faf
SHA256 6e113fd8e9f3156ae68251c6076beb9b59fe29e589d06398e7019802521f69d3
SHA3 50c74f1eeba91cb4ecc237c0b18cd2f6c0e2b6064e8d13ce1a779160c03b5d48

30734

Type RT_DIALOG
Language English - United States
Codepage Latin 1 / Western European
Size 0x34
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.41669
MD5 72723d63b211c60717138184c1675b66
SHA1 ecd2be6587bb32a080e51b5c3f3a816e8b637c85
SHA256 4cf716efaf68e0cb2ec45ec55d291050b5712b05653cae68edbb999f803d2a98
SHA3 6031fa1100e39d04c89ed42890fe9833adb0503fe1857940533b7356aec9d306

3841

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x82
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.81705
MD5 8bb814f43734537868736a6df5dcc012
SHA1 3ae7a8f8678bc2aed76f745960730097032389b6
SHA256 d91dc4e26fd86def5ee907c72f32457bea07d21fa618012245f641d08501548d
SHA3 73fabbc3aad03738eda288b6d45b076e7f94f1ff8de37df5ac4d6e7dc7a48f98

3842

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x2a
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 0.960953
MD5 0131ce1c2237957b6926d5097b0af63d
SHA1 2ce37b98065cc4de92e99eb0777e0e1159102068
SHA256 05e0d5787611ed4f643733e3e6e62d00f426422b5d3e443ceebac22e9d294bc4
SHA3 9ee7bcb02f48332a4fac72465297312ef9c765b03edf2ab24a4b3de0840bda6c

3843

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x184
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.08634
MD5 58655591099de216feb4cc512012d318
SHA1 4001db00e1535b26b506e6d033e9759351ae6874
SHA256 9665348f07508c6c2a568fc90ec4c04736668adc3521e311a4c7659973d92313
SHA3 296c00546a67204c06806ff85a9e3e065559b2b85b22fec4166afc19cad4b6f9

3857

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x4e6
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.25779
MD5 3c0e880ffca8f519b51579c8c0825858
SHA1 24a521aba0485f373d4d8993d704c86e556bcbf1
SHA256 0519d7704cb64bab3aeca7c3b96affd55641099a2a162e88537cb1b8dbfcd540
SHA3 6d04d7acb581fbf887f75a077583ce66c949d3f197bfb8445aab6ff2ba93fc01

3858

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x264
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.11275
MD5 3dbecd982474b9072ecd4aefe7406857
SHA1 ee81b0d03aebe1cde90de59031771f416d29eef2
SHA256 eaa0b4fe4704e193dd2ed1f8de1cb20e1001034fdb30307ee44aa664966d4ffc
SHA3 9053da012393a18a8a9012e2ab17735c7c864f0463086c9439c3a74a37ed7ee7

3859

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x2da
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.16694
MD5 9e3221160c33e15054ff236daf2263d7
SHA1 cf41e0cdd3377698f819c4ef95ab56de40c57a5a
SHA256 cffcd4956911b3d50eef378cb051e598baba0db48246b07780af03b01c67c64d
SHA3 663e17de8922b049f83fdeca37a68d626bb83566bc377d85be42c653707a2b74

3860

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x8a
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.71087
MD5 5988b72b85cd1c121906b20e7526fdf2
SHA1 45efa4995e9c25a32e3f47a15b63a813cc6e8fc4
SHA256 35b5abb90316b4017d5531e031cbf15bae6e8dd46f6dd221701693a22a7795be
SHA3 afa115b83c9f9b2f16ce1e14424b4e2cf6216cbcee84835e0b5cec4a23510a93

3865

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0xac
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.63903
MD5 5fbbd2a5f564e043553889eec9147920
SHA1 2ddafabdf2bf5b62090419f07f731c4d02f0d987
SHA256 1b8660b0c53b94f3e029de58e56d08c8097a080244e9dc65d4155a9b603820d8
SHA3 1a90cf149f1fc5cfa9cd3f82f9a079ec48c7f7ce76dc4be601e538ae5c052ab9

3866

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0xde
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.87807
MD5 a0838b75a6ffc345212d18178663bb7d
SHA1 a90a0eccdf4cc4c50f430195695a3b65adefe5e8
SHA256 31bff9afbf08a8869318cd946a1d73a4425afefc5693c6e06671bde1e86de1dc
SHA3 ad576d2bedb8e173fb207310f244bee3ad8c898a2101cb67da930fadf80ec7d0

3867

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x4a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.24671
MD5 7e0e2d984d6d743b4d90b04758507505
SHA1 bec6af6197b875caf3064c7e053b64044904c1bb
SHA256 2b5551644093e58a4af74928fb744bd735fa2ef5f99824e6918ff9f6a33a3803
SHA3 08f040ebd50cc1809f91378999331d0d19e7364612041db3805a0ff1d37050e5

3868

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x228
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.10695
MD5 cd11e247927c7360d3447bbb2e01d326
SHA1 0e6b76a1cf9824dac91fad3a346388589987cb9a
SHA256 e9212b16f2d3292d0b0eb67134a70778ff1b0aede4918831e5bdba3f950db2a7
SHA3 7a0a3e741ea89b752fca14451f1e9b9ac5600d99a7408d04c7835e30688f8fcf

3869

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x2c
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.07875
MD5 4b18eed800e2806db8e0aacb95fd54f2
SHA1 8b09634f818d6823f6466717f3863cbb466d97c1
SHA256 0714c554acd308b38c3d6319f7e470f76a16d712f696545eacac2bdc725dfb95
SHA3 067dea0fda55e331beab407da1e0e79a9d71fe8a8d0c965384d459ce0a8d499a

3887

Type RT_STRING
Language English - United States
Codepage Latin 1 / Western European
Size 0x42
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.95964
MD5 c65b487f823c0a91a2eec94148eb1ff6
SHA1 3fd26a7911c5c5d45d0dfc94dfd2fd11a1fd1574
SHA256 1f1b61a7f04edc3691a6c9350132b09929d5bfa1c900f6ff500e55c5ebc63212
SHA3 e89fdaf864b56d3012a7c4518ff3db5dee97ab11fa819b22076973a8f607d95f

30977

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.25451
Detected Filetype Cursor file
MD5 dfdc01a062b80e61a53db5a3761e586b
SHA1 db99b6199898558cf83c1beb23be0040980c8746
SHA256 744b3daba424ceb5e8d7d49c70ed4a70c0ff221cbe5ff142cf793c9d85909197
SHA3 c3afa8907265772f94fd165f0601e374df3a57213780b6e7794dd2b2286cb13f
Preview

30998

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 eaf1b83c561a97555fc0cde38891a389
SHA1 29eca824a284b26bb760963ad84bce64799dc770
SHA256 b077d477d0775d0b86be9bedee8ec134bdc213d6941e9ae60adcf8bdd18623cc
SHA3 2f4c2fa13d5c6dda7479c65d1e74e7d1977e50560f25c62b466daad9e75722ae
Preview

30999

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 79bc23c45190436b2c51ff2941fa8720
SHA1 0a8234176fad8831709703a0a34337a08987a983
SHA256 b328fe22a904a2e7e1341a95dbf00e2fdffc9ab350bc64c5ee348d3007c2b479
SHA3 b897f30ec85dad865a74be84cd616e0066da486befd0983d87e2b6f5d66a6c6b
Preview

31000

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 2fbccba7b754792dfc2070456e66fbd7
SHA1 6017f22c993c7d724876e35e8c54e7c4603eafae
SHA256 60a0a8bc0169228c8af42c377d93a218ccc9712a17b76ef014f81e156a36c66f
SHA3 f1edf8c8df156e449682ec443c0a87232b94e17062148388949ba84b7eb55227
Preview

31001

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 459379b9418ad5b62b1bf409300acb32
SHA1 5363fc84172d6b624542a0b52edbbfe21e2443ae
SHA256 1085b7390dbd2b2006f85619521047c6ca58a8b274196eeed48e74ad8a1b746a
SHA3 2b8f3218d3da7e4ee463a712c6c3b8f5b58cc6799a84f5e582b6a40da38a2bfc
Preview

31002

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 975596b334c3811a6899d17dc1083c83
SHA1 77adb688a202706cd60619067d29413db049e2c3
SHA256 749de8c6268f233434feebbff1f5f5539d32cb07e993e3683224a191a035362e
SHA3 f71229575da7bdbcc657ce7b3d0ea4a9395a2a1c748478c6d01ff7cc47ba620c
Preview

31003

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 690a20e696fc4e33ffb377a8ef54fb97
SHA1 972159605fa069921dbdee9b7a35879e6f1928a6
SHA256 6c2ef97bca5cdc6aa6de65b1f1ae8328bcb3494a16025eee870231d991e2cd56
SHA3 fd9d56519b5bf976a4ae748fe0c51dcd47ac27ce6a7c271fa2bbb3e00f473b22
Preview

31004

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 b17264d20faaa8ae0bcfffd2a28b5821
SHA1 cc3a0c683d3a70e81de9bd8dca7c7da25df1ec9a
SHA256 04fe4c49379fb61d65560745031cf797d5234fbc2886e1ee5245141e3f71cdba
SHA3 b9748f87bc9a8bad6f25bd2088709ce4bf07c044674cd302e3cc76e3bc878a83
Preview

31005

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 1e219dd609ce399df95ba7af59ef113f
SHA1 436a16dd20d5e3ec42342a4d005a664cd227f517
SHA256 8f51832638675f16ec5f251ab59251b3f85d84e5129025d44c45b3191b331c58
SHA3 9e44adcf523bb484f416a99197d947211027feae6b6665b457883e548218befd
Preview

31006

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 79ae5478465a9feb537afcca01f560d8
SHA1 48a70a0e9667e0f1726a2bac4c971616e1980c1a
SHA256 90b143ec83ef48639ea48969a1d0850aa14b573b48dadef87e4230e42bdb5971
SHA3 db5dc137de891f95ecec33bb5ab37284a6b6e93c595a6892970111442b14c483
Preview

31007

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 d3d02cf14dbfe1523c1ef143cea3eb85
SHA1 af4b9b5a7c69ac8682ec367b7873e0ddbc5acf40
SHA256 a9453e1af624a62f80defdca32aacf5bb0e031e40db0bcaba38707b209354914
SHA3 71fc8dced4a4b7c0d8aee098303fa90f4832bb4092bf96393fbb47d267e2ea5b
Preview

31008

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 c8872a05e76e0ef00f1eae141c9035b7
SHA1 dd2072409381c136906a4ec3e7a313d469061703
SHA256 6963da9b0f501c836ec1faa3291509c14f590e21c9dab60334935b82bf96ed2c
SHA3 f0a5677f68149eadaf661d29b05e710554d8701e3eb134487273b48b45995b69
Preview

31009

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 a8e3d308634fed8be67e2407a0a5baf7
SHA1 573f5ca20167e20eb7e8d2fcba8ddda418fc4f55
SHA256 24bcf1184228f7899773ec8556b32250ddfe39b85fd4262886a2c7812f867e53
SHA3 1205719114281d8e4f7d38768e99d60dc728e005067fb30665fb453880e1ddbd
Preview

31010

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.91924
Detected Filetype Cursor file
MD5 4634b24e3e8ba5549e36c8ce0da4db72
SHA1 6f933990cefa2e67147e6d3b9132f74281bfa183
SHA256 1dfd89b18fd53004c4a6f623c36e459408b4788b4619d38b42e75c2847e2ed72
SHA3 c56c27c633699841e29005512e7c7fb0560eca864520aa59d859c1edc02d9c3f
Preview

31011

Type RT_GROUP_CURSOR
Language English - United States
Codepage Latin 1 / Western European
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.01924
Detected Filetype Cursor file
MD5 ed8179c5f20ff874be1bd0098af76eca
SHA1 7aa6b6ba529c2710c7bea69fb18a2067852ef987
SHA256 64e17430676e2113178247a5c0d792ae704d00899cb60c56156fc7d9bf824b99
SHA3 37e8817122ee0379e2458e8b55132d062482ae553cf88b45725908a67012b190
Preview

128

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x4c
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.64638
Detected Filetype Icon file
MD5 89cc70d18c9c8fdb3f54bd472f42ac4c
SHA1 d1813b2fa290ddf54cd1299fba366598dbf32525
SHA256 8d1ba2e31fd8efcb91890c5be48c164e5e3e6f82fed8cae600305602956f59fb
SHA3 7bb4bd67406487d746dd53227db018751aac8d892bfaf3c6d34bb842590a21e6

130

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.36486
Detected Filetype Icon file
MD5 f450601c55ed21618c3f1a5ba1f27a4f
SHA1 06f1824063568ba0dd86aacd8159af2cf3a47f54
SHA256 bd48b5685ffe8ec4a32dc5da2aff7b279e3ad02a2671beb80d1b8f44cf7e416f
SHA3 45ca28fd4210bca3d6a7a16d8f069db4d8b04dd5c88b05ed882aa5f0f570c7a2

140

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.36486
Detected Filetype Icon file
MD5 8d84e3667a9a98215811748a6bbf0604
SHA1 52d34f3d17f7bc54ea53174be25e652d6fd80746
SHA256 e6a7d011b75a825b81903cffae7dd4710ca28b953551f4f808b36ed3b2229a7d
SHA3 1d23ce3bc242ed4d34f9033a3c69af4702b32c4c1ff161c9d9c2012943b588ee

142

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.55805
Detected Filetype Icon file
MD5 d25dc529d5313fde0278af9a0b94cb07
SHA1 e5b81e0978c1d90db5be82aa44d36ee90cbdb8ce
SHA256 f089e7f55b8c779bef37c1be8c75a2f2d7b2f515b4880de7c18033c80afab997
SHA3 d49ea3f9933ddb67ee36876113832964bcb0851eab2465b4e19d44fa2008aacc

143

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.55805
Detected Filetype Icon file
MD5 d5ceb31b28d24d5d82805526a6cbaafd
SHA1 aed8957ca40d1b0924f3a2fa993202b5f9617158
SHA256 25fd986296a1597cdca467c7114a6d58c322ed539c4f0278a4ba1245b8b945c1
SHA3 7531038c3f21b59941d39fffe4c3edc95971da44e154df1afa49d46f2e8e9377

144

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.36486
Detected Filetype Icon file
MD5 77433b3af856b45f8fa4bea57a887b0b
SHA1 9b0a1f9799b93e34cbd07675bd0b99cc8d8c8768
SHA256 4fae39cf51572be33aa10a5fe33854cbe36634a9d3f4dca0a1479f0d78b4be7f
SHA3 59788d221af48c561f592e41dfca92ee1e269edcfc6cf5e5de808855fc2b0f87

145

Type RT_GROUP_ICON
Language English - United Kingdom
Codepage Latin 1 / Western European
Size 0x22
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 2.26942
Detected Filetype Icon file
MD5 bc81a9be4b8be4ad2925013e86f949d0
SHA1 7f53d69df3d9c4b26fc95162574efc1ad17e2356
SHA256 8e2af3a2db0082af1c037276a2fb017d354bcbcb71041e827bd19d6aac5d9bee
SHA3 b77b8c906065af6916c70c6c10e8be0a23f40fb65ded915a81605e0dfd3c5e99

1 (#2)

Type RT_VERSION
Language English - United States
Codepage Latin 1 / Western European
Size 0x2dc
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.34655
MD5 cc47b27aad30e940bee930e107ee2b19
SHA1 6afc6db4b4a3fa963bef67ad119b32bd3896eb9e
SHA256 88141894dd8159bccebaa19553b4a4d60567021b151ca0de758b5cdb71865d61
SHA3 97908240bf82c56c029988cdc086f4d87b681d8360fe31b4637de3ec3ec49112

1 (#3)

Type RT_MANIFEST
Language English - United States
Codepage Latin 1 / Western European
Size 0x206
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.93841
MD5 6b8283bd7b0b7f6ec459126927924c05
SHA1 a61a853132e21364f8a24535f2dd03978f0a244d
SHA256 dda6e11c4f39538be042b5ff6fece6a9f0d43d00f6c6135b432eaaa937493c31
SHA3 e084dd99023e3fefea57eeecf05f335ebafa0db542467b0b01d63d6a6d0645c7

String Table contents

Open
Save As
All Files (*.*)
Untitled
an unnamed file
&Hide
No error message is available.
Attempted an unsupported operation.
A required resource was unavailable.
Out of memory.
An unknown error has occurred.
Encountered an improper argument.
Incorrect filename.
Failed to open document.
Failed to save document.
Save changes to %1?
Failed to create empty document.
The file is too large to open.
Could not start print job.
Failed to launch help.
Internal application error.
Command failed.
Insufficient memory to perform operation.
System registry entries have been removed and the INI file (if any) was deleted.
Not all of the system registry entries (or INI file) were removed.
This program requires the file %s, which was not found on this system.
This program is linked to the missing export %s in the file %s. This machine may have an incompatible version of %s.
Enter an integer.
Enter a number.
Enter an integer between %1 and %2.
Enter a number between %1 and %2.
Enter no more than %1 characters.
Select a button.
Enter an integer between 0 and 255.
Enter a positive integer.
Enter a date and/or time.
Enter a currency.
Enter a GUID.
Enter a time.
Enter a date.
Unexpected file format.
%1
Cannot find this file.
Verify that the correct path and file name are given.
Destination disk drive is full.
Unable to read from %1, it is opened by someone else.
Unable to write to %1, it is read-only or opened by someone else.
Encountered an unexpected error while reading %1.
Encountered an unexpected error while writing %1.
%1: %2
Continue running script?
Dispatch exception: %1
Unable to read write-only property.
Unable to write read-only property.
Unable to load mail system support.
Mail system DLL is invalid.
Send Mail failed to send message.
No error occurred.
An unknown error occurred while accessing %1.
%1 was not found.
%1 contains an incorrect path.
Could not open %1 because there are too many open files.
Access to %1 was denied.
An incorrect file handle was associated with %1.
Could not remove %1 because it is the current directory.
Could not create %1 because the directory is full.
Seek failed on %1
Encountered a hardware I/O error while accessing %1.
Encountered a sharing violation while accessing %1.
Encountered a locking violation while accessing %1.
Disk full while accessing %1.
Attempted to access %1 past its end.
No error occurred.
An unknown error occurred while accessing %1.
Attempted to write to the reading %1.
Attempted to access %1 past its end.
Attempted to read from the writing %1.
%1 has a bad format.
%1 contained an unexpected object.
%1 contains an incorrect schema.
pixels
Uncheck
Check
Mixed

Version Info

Signature 0xfeef04bd
StructVersion 0x10000
FileVersion 1.9.7.0
ProductVersion 1.9.7.0
FileFlags (EMPTY)
FileOs VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
FileType VFT_APP
Language English - United States
CompanyName Zhorn Software
FileDescription Caffeine
FileVersion (#2) 1, 9, 7, 0
InternalName caffeine
LegalCopyright Copyright (C) 2021
OriginalFilename caffeine.exe
ProductName Caffeine Application
ProductVersion (#2) 1, 9, 7, 0
Resource LangID English - United States

TLS Callbacks

Load Configuration

RICH Header

XOR Key 0x70603345
Unmarked objects 0
C objects (VS2008 SP1 build 30729) 153
ASM objects (VS2008 SP1 build 30729) 11
C++ objects (VS2008 build 21022) 3
Imports (VS2008 SP1 build 30729) 25
Total imports 542
C++ objects (VS2008 SP1 build 30729) 138
Linker (VS2008 build 21022) 1
Resource objects (VS2008 SP1 build 30729) 1

Errors