×
This file seems to be a .NET executable .
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!
Architecture
IMAGE_FILE_MACHINE_I386
Subsystem
IMAGE_SUBSYSTEM_WINDOWS_CUI
Compilation Date
2019-Apr-19 11:52:35
Debug artifacts
D:\c++\VisStudProjects\ConsoleApplication3\ConsoleApplication3\obj\Release\ConsoleApplication3.pdb
Comments
CompanyName
FileDescription
ConsoleApplication3
FileVersion
1.0.0.0
InternalName
ConsoleApplication3.exe
LegalCopyright
Copyright © 2019
LegalTrademarks
OriginalFilename
ConsoleApplication3.exe
ProductName
ConsoleApplication3
ProductVersion
1.0.0.0
Assembly Version
1.0.0.0
Info
Matching compiler(s):
Microsoft Visual C# v7.0 / Basic .NET
.NET executable -> Microsoft
Suspicious
No VirusTotal score.
This file has never been scanned on VirusTotal.
MD5
9d938d4b7576a219fd8c8b28039a8ab8
SHA1
90b5cd97c5ee6e672bb4cba4825dcdf645ad93f7
SHA256
949d93bbf7b80a2d9ca242259dfe1b5233be27554cb012552674732e33e36104
SHA3
138a22dbf3997aec8e860ca7287c485b1c3cef5c1b79a133aa5ddb0b34ba9f97
SSDeep
48:6iaTaKHmKac6Iul/6NMijvCOeNxl0yltltqlDRar6vFzpfbNtm:MNHsIu09eXs/DzNt
Imports Hash
f34d5f2d4577ed6d9ceec516c1f5a744
e_magic
MZ
e_cblp
0x90
e_cp
0x3
e_crlc
0
e_cparhdr
0x4
e_minalloc
0
e_maxalloc
0xffff
e_ss
0
e_sp
0xb8
e_csum
0
e_ip
0
e_cs
0
e_ovno
0
e_oemid
0
e_oeminfo
0
e_lfanew
0x80
Signature
PE
Machine
IMAGE_FILE_MACHINE_I386
NumberofSections
3
TimeDateStamp
2019-Apr-19 11:52:35
PointerToSymbolTable
0
NumberOfSymbols
0
SizeOfOptionalHeader
0xe0
Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Magic
PE32
LinkerVersion
48.0
SizeOfCode
0xa00
SizeOfInitializedData
0x800
SizeOfUninitializedData
0
AddressOfEntryPoint
0x00002862 (Section: .text)
BaseOfCode
0x2000
BaseOfData
0x4000
ImageBase
0x400000
SectionAlignment
0x2000
FileAlignment
0x200
OperatingSystemVersion
4.0
ImageVersion
0.0
SubsystemVersion
6.0
Win32VersionValue
0
SizeOfImage
0x8000
SizeOfHeaders
0x200
Checksum
0
Subsystem
IMAGE_SUBSYSTEM_WINDOWS_CUI
DllCharacteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve
0x100000
SizeofStackCommit
0x1000
SizeofHeapReserve
0x100000
SizeofHeapCommit
0x1000
LoaderFlags
0
NumberOfRvaAndSizes
16
MD5
db41514e9a35ef2d3b53c8b62f17405a
SHA1
ba5dff92d3765955a0cfccabc41d25e8fe05be55
SHA256
64d7977a572748c0a56b7fc85fb1f4d809d492764de107d3b2ea46b47a35952e
SHA3
64b298679a4a0a029be32e74dfa32f9e273d35006e808829f446c91fc707593c
VirtualSize
0x868
VirtualAddress
0x2000
SizeOfRawData
0xa00
PointerToRawData
0x200
PointerToRelocations
0
PointerToLineNumbers
0
NumberOfLineNumbers
0
NumberOfRelocations
0
Characteristics
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy
4.34305
MD5
cf14a919d1fef6adc83c54c82d64998b
SHA1
04e7db3bc5b68efd4531b379012c6820debee57b
SHA256
a1c813b650c5fa14e4547f1105b2f36f038558f636b2b8b2870cfa4aae2ae0cc
SHA3
dfbd9e22754573bb5335d7cd4e722b9601f5985155d5117bc3280d88852add80
VirtualSize
0x5fc
VirtualAddress
0x4000
SizeOfRawData
0x600
PointerToRawData
0xc00
PointerToRelocations
0
PointerToLineNumbers
0
NumberOfLineNumbers
0
NumberOfRelocations
0
Characteristics
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy
4.19093
MD5
bd92b0ab8a53114ffdb76408d0c57d9a
SHA1
dc2571a81e9bc293245c8d5938dd3a70b5a1833d
SHA256
4886be6c6601f84a021801aa5c4391e6675782b94fb22466b6a0ea839058c7f0
SHA3
0fcb94ea77d9585e899d36b4e1455d27764f32b54266ce4bcaca451210782d0d
VirtualSize
0xc
VirtualAddress
0x6000
SizeOfRawData
0x200
PointerToRawData
0x1200
PointerToRelocations
0
PointerToLineNumbers
0
NumberOfLineNumbers
0
NumberOfRelocations
0
Characteristics
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Entropy
0.0815394
Type
RT_VERSION
Language
UNKNOWN
Codepage
UNKNOWN
Size
0x36c
TimeDateStamp
1980-Jan-01 00:00:00
Entropy
3.27995
MD5
1f1dbcc99785ddbf4c5150f05b4f38f3
SHA1
d656f4cc59f5674ce1cd8b78e758b2119778ff8a
SHA256
172503d7481731905ef15cb2fe26e4ec3862ed96cbd438a2f55c12c1403ad03f
SHA3
e03963abac7f478688b1d42edf0e9f5bd6381b437011ed9ec9a3d110504d6b82
Type
RT_MANIFEST
Language
UNKNOWN
Codepage
UNKNOWN
Size
0x1ea
TimeDateStamp
1980-Jan-01 00:00:00
Entropy
5.00112
MD5
b7db84991f23a680df8e95af8946f9c9
SHA1
cac699787884fb993ced8d7dc47b7c522c7bc734
SHA256
539dc26a14b6277e87348594ab7d6e932d16aabb18612d77f29fe421a9f1d46a
SHA3
4f72877413d13a67b52b292a8524e2c43a15253c26aaf6b5d0166a65bc615cff
Signature
0xfeef04bd
StructVersion
0x10000
FileVersion
1.0.0.0
ProductVersion
1.0.0.0
FileFlags
(EMPTY)
FileOs
VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
FileType
VFT_APP
Language
UNKNOWN
Comments
CompanyName
FileDescription
ConsoleApplication3
FileVersion (#2)
1.0.0.0
InternalName
ConsoleApplication3.exe
LegalCopyright
Copyright © 2019
LegalTrademarks
OriginalFilename
ConsoleApplication3.exe
ProductName
ConsoleApplication3
ProductVersion (#2)
1.0.0.0
Assembly Version
1.0.0.0
Characteristics
0
TimeDateStamp
2019-Apr-19 11:52:35
Version
0.0
SizeofData
284
AddressOfRawData
0x26f4
PointerToRawData
0x8f4
Referenced File
D:\c++\VisStudProjects\ConsoleApplication3\ConsoleApplication3\obj\Release\ConsoleApplication3.pdb