Manalyze report for aeac88b0c6c5b9a308b92f94c4b1fa0a

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2018-Jan-30 03:57:48
Detected languages	English - United States

Plugin Output

Info	Interesting strings found in the binary:	`Contains domain names: http://nsis.sf.net http://nsis.sf.net/NSIS_Error nsis.sf.net`
Suspicious	The PE is an NSIS installer	`Unusual section name found: .ndata`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: GetProcAddress LoadLibraryExW` `Can access the registry: RegCreateKeyExW RegOpenKeyExW RegEnumValueW RegDeleteKeyW RegDeleteValueW RegCloseKey RegSetValueExW RegQueryValueExW RegEnumKeyW` `Possibly launches other programs: CreateProcessW` `Can create temporary files: GetTempPathW CreateFileW` `Functions related to the privilege level: AdjustTokenPrivileges OpenProcessToken` `Changes object ACLs: SetFileSecurityW` `Can shut the system down or lock the screen: ExitWindowsEx`
Suspicious	The file contains overlay data.	`13906435 bytes of data starting at offset 0x13a00.` `The overlay data has an entropy of 7.99924 and is possibly compressed or encrypted.` `Overlay data amounts for 99.4253% of the executable.`
Malicious	VirusTotal score: 8/72 (Scanned on 2022-10-26 11:55:25)	`ESET-NOD32: a variant of MSIL/4Dots.A potentially unwanted` `APEX: Malicious` `Comodo: ApplicUnwnt@#33hh4y5bshicv` `Webroot: W32.Adware.Gen` `Gridinsoft: Malware.Win32.GenericMC.cc` `Malwarebytes: Generic.Malware/Suspicious` `Rising: PUA.4Dots!8.1272B (CLOUD)` `Yandex: Trojan.Igent.bX7UCJ.1`

Hashes

MD5	`aeac88b0c6c5b9a308b92f94c4b1fa0a`
SHA1	`2dfbe96d384b920033aee0343f66a3c2c70d8aa7`
SHA256	`e80732491245dcb522d1f4954e504b7276578c16e3b15c33885346fc1c09de6e`
SHA3	`c923ef3a98eec02f00f8e30ebfa7eb757818796f0e83435504e30ec9773bfd61`
SSDeep	`196608:nzBRKxoApJzPrzZmUf3AWr/HJuYRwiAtTfLuO4uaTDR6fQN+hulUqIzvZeDDAer:DqoApJLg+//HPRcTfGJdLzduvZeDfr`
Imports Hash	`b34f154ec913d2d2c435cbd644e91687`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xd8`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`5`
TimeDateStamp	2018-Jan-30 03:57:48
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`6.0`
SizeOfCode	`0x6800`
SizeOfInitializedData	`0x2d800`
SizeOfUninitializedData	`0x800`
AddressOfEntryPoint	`0x0000338F (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x8000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`6.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x6b000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`8c030dfed318c62753a7b0d60218279b`
SHA1	`349da8e473c123e192640316d2ea6c79d7437963`
SHA256	`c7b10e3a6cde18e1c43f9421c9b33c6c8ac6ea4520f69192af7c265400bfa0e9`
SHA3	`fefcef9a734a03d6ad32d77e112c9bc90f4722bc52ace7f561d587120636b25f`
VirtualSize	`0x6627`
VirtualAddress	`0x1000`
SizeOfRawData	`0x6800`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.45224`

.rdata

MD5	`966a3835fd2d9407261ae78460c26dcc`
SHA1	`fc99c0fed038281332bd1f0f6d0122c042664860`
SHA256	`d24bd8dac0eb0a93bf87e6f181071c5fe53f0172274aca40170b2f262b484a0c`
SHA3	`3fff4e1196b63c27357233e3827301e890c47d38a09acbc8bd827909a7e56d01`
VirtualSize	`0x149a`
VirtualAddress	`0x8000`
SizeOfRawData	`0x1600`
PointerToRawData	`0x6c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.00708`

.data

MD5	`939516377e7577b622eb1ffdc4b5db4a`
SHA1	`dfe4aa4b6f00c4a65fdd013b129abc7a6e162a55`
SHA256	`0db4d1718eba51bd64f28a8d0d90bbc19b4c43ba6aeb960d3da1becce68894e7`
SHA3	`998ce113e8aa3b38887eaeb89d09b55ef099c186c07b1638a9a843958ddcbcfe`
VirtualSize	`0x2aff8`
VirtualAddress	`0xa000`
SizeOfRawData	`0x600`
PointerToRawData	`0x8200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`4.03532`

.ndata

MD5	`d41d8cd98f00b204e9800998ecf8427e`
SHA1	`da39a3ee5e6b4b0d3255bfef95601890afd80709`
SHA256	`e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855`
SHA3	`a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a`
VirtualSize	`0x2a000`
VirtualAddress	`0x35000`
SizeOfRawData	`0`
PointerToRawData	`0`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_UNINITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`

.rsrc

MD5	`70668104351a9ffdd2ac243f11fd214d`
SHA1	`d668a868121bd328956d40f7904962f5b782d4d4`
SHA256	`3a93b9c673c9083b017c23bb90b943e30c3e047871895b6932775cc0456cf5e1`
SHA3	`de6336c8b2168789699787ed76863aca2604a2c6532152e3abbd5bdbbe56e225`
VirtualSize	`0xb110`
VirtualAddress	`0x5f000`
SizeOfRawData	`0xb200`
PointerToRawData	`0x8800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.09386`

Imports

KERNEL32.dll	`SetEnvironmentVariableW` `SetFileAttributesW` `Sleep` `GetTickCount` `GetFileSize` `GetModuleFileNameW` `GetCurrentProcess` `CopyFileW` `SetCurrentDirectoryW` `GetFileAttributesW` `GetWindowsDirectoryW` `GetTempPathW` `GetCommandLineW` `GetVersion` `SetErrorMode` `lstrlenW` `lstrcpynW` `GetDiskFreeSpaceW` `ExitProcess` `GetShortPathNameW` `CreateThread` `GetLastError` `CreateDirectoryW` `CreateProcessW` `RemoveDirectoryW` `lstrcmpiA` `CreateFileW` `GetTempFileNameW` `WriteFile` `lstrcpyA` `MoveFileExW` `lstrcatW` `GetSystemDirectoryW` `GetProcAddress` `GetModuleHandleA` `GetExitCodeProcess` `WaitForSingleObject` `lstrcmpiW` `MoveFileW` `GetFullPathNameW` `SetFileTime` `SearchPathW` `CompareFileTime` `lstrcmpW` `CloseHandle` `ExpandEnvironmentStringsW` `GlobalFree` `GlobalLock` `GlobalUnlock` `GlobalAlloc` `FindFirstFileW` `FindNextFileW` `DeleteFileW` `SetFilePointer` `ReadFile` `FindClose` `lstrlenA` `MulDiv` `MultiByteToWideChar` `WideCharToMultiByte` `GetPrivateProfileStringW` `WritePrivateProfileStringW` `FreeLibrary` `LoadLibraryExW` `GetModuleHandleW`
USER32.dll	`GetSystemMenu` `SetClassLongW` `EnableMenuItem` `IsWindowEnabled` `SetWindowPos` `GetSysColor` `GetWindowLongW` `SetCursor` `LoadCursorW` `CheckDlgButton` `GetMessagePos` `LoadBitmapW` `CallWindowProcW` `IsWindowVisible` `CloseClipboard` `SetClipboardData` `EmptyClipboard` `OpenClipboard` `ScreenToClient` `GetWindowRect` `GetDlgItem` `GetSystemMetrics` `SetDlgItemTextW` `GetDlgItemTextW` `MessageBoxIndirectW` `CharPrevW` `CharNextA` `wsprintfA` `DispatchMessageW` `PeekMessageW` `ReleaseDC` `EnableWindow` `InvalidateRect` `SendMessageW` `DefWindowProcW` `BeginPaint` `GetClientRect` `FillRect` `DrawTextW` `EndDialog` `RegisterClassW` `SystemParametersInfoW` `CreateWindowExW` `GetClassInfoW` `DialogBoxParamW` `CharNextW` `ExitWindowsEx` `DestroyWindow` `GetDC` `SetTimer` `SetWindowTextW` `LoadImageW` `SetForegroundWindow` `ShowWindow` `IsWindow` `SetWindowLongW` `FindWindowExW` `TrackPopupMenu` `AppendMenuW` `CreatePopupMenu` `EndPaint` `CreateDialogParamW` `SendMessageTimeoutW` `wsprintfW` `PostQuitMessage`
GDI32.dll	`SelectObject` `SetBkMode` `CreateFontIndirectW` `SetTextColor` `DeleteObject` `GetDeviceCaps` `CreateBrushIndirect` `SetBkColor`
SHELL32.dll	`SHGetSpecialFolderLocation` `ShellExecuteExW` `SHGetPathFromIDListW` `SHBrowseForFolderW` `SHGetFileInfoW` `SHFileOperationW`
ADVAPI32.dll	`AdjustTokenPrivileges` `RegCreateKeyExW` `RegOpenKeyExW` `SetFileSecurityW` `OpenProcessToken` `LookupPrivilegeValueW` `RegEnumValueW` `RegDeleteKeyW` `RegDeleteValueW` `RegCloseKey` `RegSetValueExW` `RegQueryValueExW` `RegEnumKeyW`
COMCTL32.dll	`ImageList_Create` `ImageList_AddMasked` `ImageList_Destroy` `#17`
ole32.dll	`OleUninitialize` `OleInitialize` `CoTaskMemFree` `CoCreateInstance`

Delayed Imports

1

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.75321`
MD5	`490e19b7ff2f6c54e3f42f4b8504aafa`
SHA1	`8b63dd33d4cbfc2c218eaa9bc84d195ecb36ef9f`
SHA256	`20dcc7fe1663a5dcaf8571fea76c71476cc49ca57323563ab2af0d0cffe8d8e9`
SHA3	`d2227a3c406b0e73e779dc8779e8401279aa75914f5ee84174118c82646cf21f`

2

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.88389`
MD5	`2cc16bc499b1f364d3095f113b5da57f`
SHA1	`0e7f82375e2f5ce3a4770c0aac81eaff5a85e42a`
SHA256	`60d893aefa06e828a37013ec18605f7939ed13fc4d71d27d44c17fbd63430404`
SHA3	`0a2bc9bbaaa34429f4c439b51fc1bd2866f374d8eaae69217b5def1d05eca434`

3

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.9886`
MD5	`f56e80dcce5b2cc72ec8df55d01c8f44`
SHA1	`7c055a78571958e6fe21007dd57e261766a55b95`
SHA256	`332ef75e85d899a93e36c2a824084a6ec21152b11e39223d776c0baeea7233f8`
SHA3	`c5360126e3f0e2b6d7e59858de39dae9315e926c38d00e7f4c09f1d0ef881bd0`

4

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x988`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.86422`
MD5	`8d536613d791848eeeabe56b8427f249`
SHA1	`39f99b4d927928b43f1f49c286a93b1dfcd4da38`
SHA256	`a744dc08c70caee1b27cb1bd9165b5fbdaf5f99a03b52d263f10acd6d73a5aef`
SHA3	`da214046531ef4dcc9b7462e9c8e7dbefa85deb004cee6310dcd1e466639c0df`

5

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.37527`
MD5	`ce60fe7da536367547870c1c809531a1`
SHA1	`41057ecfb33e92dfe89ca3cd69219b863d515dac`
SHA256	`f953fbce03a41bee6ace30217266ca090ba3b588787f81cc4956169146c5a133`
SHA3	`9c6bc0dcb6e8d3a9f4dd2a4ebbbbd8734398b9959c29f4715a22839befeb1afe`

6

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x6c8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.7079`
MD5	`2fb109bae529fc9df2d009d5b7a8ae24`
SHA1	`3f6b16d2f88467d0e532054862539cd9c65e664b`
SHA256	`eea067bd509f48b304b9d26ed560468eecfab1f7d59d16009fb88e709271dd8d`
SHA3	`6a3f685cf455d3d869ada618f01ccb64b621b9f6cfeeaf6228a9246fa37f2cdf`

7

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x568`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.19195`
MD5	`a1ae3981de6bfb9753a26c162311b023`
SHA1	`31c1a0587d55b3de7e3a844e6cc3e90d71df9eb2`
SHA256	`9307338cf5816e95ed12339f4ffe26e861a7dcf50c116ea82211c489fba83620`
SHA3	`3f40bfc0a8341c38d119c3e082abcc0f6aa155a729e1140d6d93e42acb1449aa`

8

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.78687`
MD5	`d6b76f77ef14880cd5bfa2e21a333767`
SHA1	`c410a5a2aeb2d161ac10bbfebe57251ab7dbc7d8`
SHA256	`e637492d528d64225da97e0cfa7c58f8e3b516219443e64b9a8dfc1aca919f5b`
SHA3	`89360904dd44d7b0883cc6d19ee9130b86b27201b14d86dfe2ea9684645799c4`

102

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.71813`
MD5	`a69caf66f3f899403f8b25b02dc61908`
SHA1	`3e5db9186cf0f75be24676462d88170e5950d9c8`
SHA256	`7854e8d67a11148566ad37c5d23e1534e0990fe31a160e0e7da3ca751830bb50`
SHA3	`1eea945e3712b317143e07560f54b0b9a13b1fd6c2b57cab9176181a9aaf4f79`

103

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x120`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.56193`
MD5	`db6dd0434da4d7cac564518725167e09`
SHA1	`a65a1367d7cd96450f089a8f8108239bbcea9f5b`
SHA256	`c50631fc1f8425a95fd1edcc8e730d339e193a38f18d42372c32847a5ad2c016`
SHA3	`4e3be5455c51e1cb04836e318cb69ecdffd2deadd0f338d4bc985d8f5ca653ff`

105

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x202`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.73893`
MD5	`386770584473e271f23dced36427f4ff`
SHA1	`d14ce95f784b35e4e3ebee535476ebcd3e380c19`
SHA256	`425b8270f7ca42a927eae6bea468acf414a3e4b58b5ba2c56aaae4d1b2c11014`
SHA3	`db13e5969376b27e8443eebff685230e2b74685aeb2fba73973f06e5cddc8662`

106

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.91148`
MD5	`fa83652660409e90e0db9731ad2adb17`
SHA1	`0a8f0af67723c87fe26ccf676b8e19ec6357b4dc`
SHA256	`4a55bd714f5d50cd8eabba10e57f0618f1842717dcfa582d73a917b1933cd1d4`
SHA3	`5b3e1cb25be7a2dbae4f08f0d4794ed23dbd6ea37a3f9702be12dba588f42a7b`

107

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.52183`
MD5	`6ffba239dcfcab2080195f23947b70aa`
SHA1	`bcda1ca8ee9bb9878bde83aa06c670bb5a4d5843`
SHA256	`a7e5ea849cb343e9b58de221aeb25c9dd4a3748070bfba879a30c4265fc39023`
SHA3	`a75544b4c3fcbcb32fe4e02d1a631e045b2e58516aa1065bb96cce681aea7030`

111

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.89887`
MD5	`663040d6315b1d6ce8c0334d182ed8fc`
SHA1	`ebcfff801a12fb8ad1200a4526fca8bd2c3e96cf`
SHA256	`cb3c86cbcb579244a6f819f9c1807a7e89b6e600982ec6ea0841fcdcb16a9efd`
SHA3	`6a25a2cb16aeb17693f10e8aaa0245c701701db571b458fde7830291a4a01cfc`

202

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.63447`
MD5	`fab97a8381f73abc22dadd71f1e3ddc6`
SHA1	`1b7b6407f406adeb2d987f1e56bf4c253f39a239`
SHA256	`532e2112c57a72219970c759f62865067d6d31b4e1acf97280cd8e9aaee2b59f`
SHA3	`a0a71bed82f24790856fa562cfdfbc200a2caaaa8b595251b244661ce7897b28`

203

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.47654`
MD5	`888fbcc92ebd6174786b32d45350005a`
SHA1	`ba4959d06247a07012fbca926691e2e709c7aa8f`
SHA256	`b98ac97ffc283bc465d34958c79f8a31480c0f98eb44c5e23977bee9ba52b703`
SHA3	`1ec3fb0c9114bc10f7c71e9bf1d15c48a5e39fd99193dfce3db02c097cbb626c`

205

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1ee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.68733`
MD5	`c0c4f9be63c9d286b8d1265977ac9d86`
SHA1	`f9c0d915ded3ea188f342d0e5341e67701eed813`
SHA256	`349420ba5b5de0b0081e96a686c826e0f409f2f3413f2e9fb7e6f71cb544c325`
SHA3	`dce55e6d53e014b0786bba9e4f6c7d81ed0c04fde8279c3b54f7c2f5a9fe121a`

206

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.86626`
MD5	`8c69d2c81dd2d9050d0fa94df90ff16b`
SHA1	`cd71d904da747d7141e5abdde9363f7e240b26bd`
SHA256	`1a39a3aabdee2aa68c507c55ff37c38722b05b7f8bde66185a2462792381d8cd`
SHA3	`b80b33ab6bf40b07bc32c7a6a11831084f7c97a27dff86d576769d0aab14b979`

207

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.4032`
MD5	`9b3723824cb53db37937eae597b204e4`
SHA1	`4c8e5e1eb9c1ac7330ed5b1a86b7017659f2ddcf`
SHA256	`8ec647f9650b79179d5afc3e2bd8ecaa4b4617ada8c69c22382321a16f2153e0`
SHA3	`adae96de10c1b72db08f70fe15ca3214c3f374b2af3305eef7d58ba569766e0e`

211

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xda`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9304`
MD5	`2497a44fff8b76b5129662b60a617c85`
SHA1	`f73bd7c9caa4c1f7a0e4840d69b0accdc6d167a0`
SHA256	`a10617b39293152a65ad5c91ca4f35135845c7b785e3a582e58f6c8229045b85`
SHA3	`aaf1dc708c305944a11a7180ef5ee2c8f722c3dd6d4bf91e0ae0f6c2b1a331ca`

302

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.77222`
MD5	`ac4c0f9289476de2ac0063307fdb2b5d`
SHA1	`c7ba5d223d0dec4e73bad3b6c259a41c9ce3bb21`
SHA256	`41e897b69ea656aada8496cd365ce0a68e8cac392fa204d05decbc8e5ceb5fb4`
SHA3	`5ecbed8eedefa8abfec5d36a2cf6c49a7b1ef789b478f6be6173123bc539fd6e`

303

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x110`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.58011`
MD5	`088199de88ee4293982cec0b65748394`
SHA1	`ccce70fc022137c746dfb6bf52cd785b8675768d`
SHA256	`583b62d87b496612f7e10bf1da5113b8a4c83f0a2155184d03c0b2ec14fb5ed1`
SHA3	`855ba3bd893d691d7c7f704da34c23efd96142d6deefc65d3bdb0e2968f97d95`

305

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1f2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.74143`
MD5	`0af4d59488d775d20c2e6725f3ed95a9`
SHA1	`f7c55407fa28f7d3eb8f6a4d4b988947f57c4c4a`
SHA256	`ab979c8f6052af662e37a55c3aa42a884f0ce537317ce85f25d6c2307eb198f5`
SHA3	`cbd4ee359d3f62e7dfb156ecd5dcd05351e2728ee88efb928161a5f2b62fd5c3`

306

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.96511`
MD5	`c33758ab32a791644973dfd60cbf6034`
SHA1	`ee7eb0a27279d39a959f5d35b6dfd4c18c7123fa`
SHA256	`6e7bca0054a1785929747807906d8527c2c2a231ca5975d8ebb3a3f98353f129`
SHA3	`8883e9e9fe2e8e33f0c0a0dcb5c13456e825a62100aa3e10099e225770ecc9ff`

307

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x90`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.57512`
MD5	`08b86cd771567bfb5592cee9a624f8db`
SHA1	`c6ad899a33a52c7aaaa2413bba825f00a80f0c58`
SHA256	`35a4541f6a8d718c035768b617d0f2f59e7b57653058ad2cc0e7ddb77d9513e6`
SHA3	`59c16e6302f73e702aa57c613ca8a6831f081642b82011aa81f85fa54eb2ae31`

311

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xde`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.03655`
MD5	`2802ee53bc08ac9a2cfaed81b3d79d05`
SHA1	`b7faac6a14545ea9c03651f69ae27cce0e62b010`
SHA256	`65fb71b054977a55435f45bbcddddedaa1e1cf43fdd9fc230938d625c3f7edcd`
SHA3	`1b03466617102ef078d2690bf5a361563eae8b960554205937f87a6c81d328c5`

402

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xac`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.85266`
MD5	`b4a711ea331ef37edbdcfba3261c7d6f`
SHA1	`e0637b9d34f0f7e6062d57c16b4966b82992c017`
SHA256	`a840add98ce3e545a78516701570cc7f667edceafb59fdd5067fcf5f7f1a1f50`
SHA3	`1dd7bb05d075b71ea1a2a58dc99c4a011966c0dadf66d50d7f92671018a15f7f`

403

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x118`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.64541`
MD5	`44c009c9e1abc2355198b432965c61ef`
SHA1	`4c090f75f279e474a9ca4a07ac84935aa769b0dd`
SHA256	`85f659842e9aa525dc22d0ff4e18e14d4e4ccfc924d1fdfa03d50a0410e6c0d6`
SHA3	`f829f224ca0ee8e4f9b0c51c79cc819098ab16c3d55912e0c1aade1677d1a921`

405

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1fa`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.78574`
MD5	`2c1f44c0a248a53a50a661eb9a65cdcf`
SHA1	`69a0418cac4aaa30203faa1f0bdbe74fe1cc29c6`
SHA256	`1382f1e9260b7e203ceafc6936ef1dae48898fcf8fb04a446cd27a4384bc40c3`
SHA3	`2391f29b4bbdb35210160bdff0e5454a66809bd69915f6c5af5ec10cbbf057aa`

406

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.04696`
MD5	`c7239ce55362dabbe3887e5fc4bdf5fe`
SHA1	`a2908207ffb889a12da3cbdbe7446e04b254e7ed`
SHA256	`012557f58e68234d4a88df0b713c59800f798ecce19dfd589d326b458dddcbd8`
SHA3	`34f4adf15b3169820de0c298735a1ea7bc4e5c9737c5baac458a5fbfb356b1f6`

407

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x98`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.67356`
MD5	`20fb1c16c2fb378f7898586b5fead1f1`
SHA1	`422ebb7d48e88efe0018bab324b8d22daf843913`
SHA256	`fac1657ebf59503492e63acd008993e2f4e99eeea783438c2bc439d5ec61d061`
SHA3	`108352320e2fcffcb3038a953d93e57625136e0d5fec98ea3d32dd26c05f5758`

411

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.09674`
MD5	`30dab3583979c2008e8de9295ab7c36b`
SHA1	`186cd9560b358bbf8b523d1050573f22bb00264d`
SHA256	`8c64a2341dc473a7d8ab4956af589e9a7257c4f05a8dc229f862c16d49ba37e5`
SHA3	`4449f57b4725dc59d7d66dc9b817250112828d0f5d6b31cba247cd36ff544268`

502

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.62197`
MD5	`1ed2fb1101579baf34b084389badb21d`
SHA1	`1fd06fc03e8ce1d2a1fa3d2aaa75859b92e96a94`
SHA256	`7fbf793fc596333bb6b11552851aa26641d5a314d225807679428703e29e8e3c`
SHA3	`b66674c6ca649a2b29fd887414284ea545014b728ddf144f4f2ee6942d3ada45`

503

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x10c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.484`
MD5	`b21b5bb94f7cb7111620ebfb32534430`
SHA1	`d4fa9452937d98ccb59bdc96660d588a5183bba9`
SHA256	`eb6f4dac693c6249bb157ef5cfe6057af4088d7bacfce7089e13a85f0661389a`
SHA3	`08dbbf11ee68c7b878492fecb06c7ac64f494ec1cde2b58149e4a6b1af9f3913`

505

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1ee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.68176`
MD5	`1cdff3870b4510f9c4a40874187787a2`
SHA1	`a7a0949b603bcbf6fdfe4a68eeba4c06cfda442b`
SHA256	`d542230218a67392c3e8d2c61f29f66f8724d837e83e9c0a49f30bdf02d722d7`
SHA3	`0ebf01d8f7e1f18047d7637f891d36fb662a028e2d4bbfd752c0cf4de4e50c9f`

506

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.86295`
MD5	`cc0021533c65b44747600689ff5fbd43`
SHA1	`b1d1e4594f5ad7b08d56a25cdbe6d9b9378e482b`
SHA256	`ab1e3ad5b5d87630cb0f6a6671c10fe49d9c33839be0d5daeba89ec053dda92c`
SHA3	`84d6def5cee15efe0091dd2b0c1f1293ccd14684a0736bd33e1c5aa70c3471f7`

507

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x8c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.4032`
MD5	`f18e5bc6afd9a34529db189b07c43af9`
SHA1	`7cee0818fb1ce1230b47efa7bbc2b2798da71974`
SHA256	`4d809a7f62bab96e41b9d541bf9326843e646b24d3d6dd621e2f543d79b6db0b`
SHA3	`c854006aa1dbd4f7fe6de00f4abe8688c4373e8ac1597e6b6a56587f8061936b`

511

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xda`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.92694`
MD5	`408a7443d8f432b28a248059d8669d1c`
SHA1	`c199828e8051a2825b1d5e216360eb57cd0b37f7`
SHA256	`4677979c1665998318fcb65b9a0c0b3dd9204c12dbddbd5e76df8822ed6e347a`
SHA3	`a3fbf76ef107912c1222e3203143386903416d7d7c171d53f3e0988bea2e4923`

602

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9709`
MD5	`574849c09594bf406fe5f0b24d9080b8`
SHA1	`38608268473fb2fcd3e0f2315a492c737546c946`
SHA256	`2bf6e20d1b7aac0364482a6e48f6429cf48b8c0f744d6ff1cecbb3297416c893`
SHA3	`e07659d8daf9e860f9bac52009287326aad72cc5806cf3825d64dc1fbb699ff9`

603

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x120`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.84487`
MD5	`12402b54eddc39fa3dae283957b4eb4c`
SHA1	`beccbeac143c7c78d7271c20c73df7e797c6224b`
SHA256	`4017b96a65ef43c2d6781adc75b048ed8568f3068b81ee971154b90886766250`
SHA3	`d1f0eb13adc7d47e9aa7da0e3a996fd742075668a840e149a5f391955e438793`

605

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x202`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.03251`
MD5	`16e4e392aaffaa0ee7e77b5be867e10f`
SHA1	`f7f681d8ec7c8a1aaa98b7a1d6bf14cfe730bbec`
SHA256	`699e0b19b7a5592c6cd94847130b28d57bf86ea61019043b9a6a3c88e6debc3d`
SHA3	`e91dc6b4bb438e908867a57a350a8f08d1116bc10d1694ba284a5a44360277b3`

606

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.10966`
MD5	`1ffe62afd7fe045c34a23ea5c9c7eb22`
SHA1	`ac211007f1f7a65d868d6e9e658d5ff26dec9c8e`
SHA256	`184073a317c843cbe92b68cfacebcf5d73dedb538b3f79c048090f3ee5b614ff`
SHA3	`f34fe335d0a39aedd236cfe40879f6624bc468df8195f5360c1d7267f2bd0113`

607

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.79455`
MD5	`f487ea2664475901e7728e27028f78e1`
SHA1	`05a70c71e7e06c712ca99e8ce88bf6dd5779bdf2`
SHA256	`e705e251daa451ade5cc3f36278401ce4eb8b3e32ca0a7d5b7e03f525934d770`
SHA3	`33f0ad42457a216bac4cb66e6209ff5ba1aa1b9895f7e906a6d70fb58c9ed675`

611

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06584`
MD5	`7ce8a17102daebb8d864cd1063e987d1`
SHA1	`072345a235d4947d36b53fd47da68e7e6a93fe62`
SHA256	`0fd40b240b9df8f2dece8947dabbebce898f12becca8e196136e4231efba2dc1`
SHA3	`59c7281c1d6dca36fed8a44ee5b408f11090812626d5c5fe1da3d72b526208ab`

702

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9709`
MD5	`574849c09594bf406fe5f0b24d9080b8`
SHA1	`38608268473fb2fcd3e0f2315a492c737546c946`
SHA256	`2bf6e20d1b7aac0364482a6e48f6429cf48b8c0f744d6ff1cecbb3297416c893`
SHA3	`e07659d8daf9e860f9bac52009287326aad72cc5806cf3825d64dc1fbb699ff9`

703

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x120`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.84487`
MD5	`12402b54eddc39fa3dae283957b4eb4c`
SHA1	`beccbeac143c7c78d7271c20c73df7e797c6224b`
SHA256	`4017b96a65ef43c2d6781adc75b048ed8568f3068b81ee971154b90886766250`
SHA3	`d1f0eb13adc7d47e9aa7da0e3a996fd742075668a840e149a5f391955e438793`

705

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x202`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.03251`
MD5	`16e4e392aaffaa0ee7e77b5be867e10f`
SHA1	`f7f681d8ec7c8a1aaa98b7a1d6bf14cfe730bbec`
SHA256	`699e0b19b7a5592c6cd94847130b28d57bf86ea61019043b9a6a3c88e6debc3d`
SHA3	`e91dc6b4bb438e908867a57a350a8f08d1116bc10d1694ba284a5a44360277b3`

706

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.10966`
MD5	`1ffe62afd7fe045c34a23ea5c9c7eb22`
SHA1	`ac211007f1f7a65d868d6e9e658d5ff26dec9c8e`
SHA256	`184073a317c843cbe92b68cfacebcf5d73dedb538b3f79c048090f3ee5b614ff`
SHA3	`f34fe335d0a39aedd236cfe40879f6624bc468df8195f5360c1d7267f2bd0113`

707

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.79455`
MD5	`f487ea2664475901e7728e27028f78e1`
SHA1	`05a70c71e7e06c712ca99e8ce88bf6dd5779bdf2`
SHA256	`e705e251daa451ade5cc3f36278401ce4eb8b3e32ca0a7d5b7e03f525934d770`
SHA3	`33f0ad42457a216bac4cb66e6209ff5ba1aa1b9895f7e906a6d70fb58c9ed675`

711

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06584`
MD5	`7ce8a17102daebb8d864cd1063e987d1`
SHA1	`072345a235d4947d36b53fd47da68e7e6a93fe62`
SHA256	`0fd40b240b9df8f2dece8947dabbebce898f12becca8e196136e4231efba2dc1`
SHA3	`59c7281c1d6dca36fed8a44ee5b408f11090812626d5c5fe1da3d72b526208ab`

802

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9709`
MD5	`574849c09594bf406fe5f0b24d9080b8`
SHA1	`38608268473fb2fcd3e0f2315a492c737546c946`
SHA256	`2bf6e20d1b7aac0364482a6e48f6429cf48b8c0f744d6ff1cecbb3297416c893`
SHA3	`e07659d8daf9e860f9bac52009287326aad72cc5806cf3825d64dc1fbb699ff9`

803

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x120`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.84487`
MD5	`12402b54eddc39fa3dae283957b4eb4c`
SHA1	`beccbeac143c7c78d7271c20c73df7e797c6224b`
SHA256	`4017b96a65ef43c2d6781adc75b048ed8568f3068b81ee971154b90886766250`
SHA3	`d1f0eb13adc7d47e9aa7da0e3a996fd742075668a840e149a5f391955e438793`

805

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x202`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.03251`
MD5	`16e4e392aaffaa0ee7e77b5be867e10f`
SHA1	`f7f681d8ec7c8a1aaa98b7a1d6bf14cfe730bbec`
SHA256	`699e0b19b7a5592c6cd94847130b28d57bf86ea61019043b9a6a3c88e6debc3d`
SHA3	`e91dc6b4bb438e908867a57a350a8f08d1116bc10d1694ba284a5a44360277b3`

806

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.10966`
MD5	`1ffe62afd7fe045c34a23ea5c9c7eb22`
SHA1	`ac211007f1f7a65d868d6e9e658d5ff26dec9c8e`
SHA256	`184073a317c843cbe92b68cfacebcf5d73dedb538b3f79c048090f3ee5b614ff`
SHA3	`f34fe335d0a39aedd236cfe40879f6624bc468df8195f5360c1d7267f2bd0113`

807

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.79455`
MD5	`f487ea2664475901e7728e27028f78e1`
SHA1	`05a70c71e7e06c712ca99e8ce88bf6dd5779bdf2`
SHA256	`e705e251daa451ade5cc3f36278401ce4eb8b3e32ca0a7d5b7e03f525934d770`
SHA3	`33f0ad42457a216bac4cb66e6209ff5ba1aa1b9895f7e906a6d70fb58c9ed675`

811

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06584`
MD5	`7ce8a17102daebb8d864cd1063e987d1`
SHA1	`072345a235d4947d36b53fd47da68e7e6a93fe62`
SHA256	`0fd40b240b9df8f2dece8947dabbebce898f12becca8e196136e4231efba2dc1`
SHA3	`59c7281c1d6dca36fed8a44ee5b408f11090812626d5c5fe1da3d72b526208ab`

902

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9709`
MD5	`574849c09594bf406fe5f0b24d9080b8`
SHA1	`38608268473fb2fcd3e0f2315a492c737546c946`
SHA256	`2bf6e20d1b7aac0364482a6e48f6429cf48b8c0f744d6ff1cecbb3297416c893`
SHA3	`e07659d8daf9e860f9bac52009287326aad72cc5806cf3825d64dc1fbb699ff9`

903

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x120`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.84487`
MD5	`12402b54eddc39fa3dae283957b4eb4c`
SHA1	`beccbeac143c7c78d7271c20c73df7e797c6224b`
SHA256	`4017b96a65ef43c2d6781adc75b048ed8568f3068b81ee971154b90886766250`
SHA3	`d1f0eb13adc7d47e9aa7da0e3a996fd742075668a840e149a5f391955e438793`

905

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x202`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.03251`
MD5	`16e4e392aaffaa0ee7e77b5be867e10f`
SHA1	`f7f681d8ec7c8a1aaa98b7a1d6bf14cfe730bbec`
SHA256	`699e0b19b7a5592c6cd94847130b28d57bf86ea61019043b9a6a3c88e6debc3d`
SHA3	`e91dc6b4bb438e908867a57a350a8f08d1116bc10d1694ba284a5a44360277b3`

906

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xf8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.10966`
MD5	`1ffe62afd7fe045c34a23ea5c9c7eb22`
SHA1	`ac211007f1f7a65d868d6e9e658d5ff26dec9c8e`
SHA256	`184073a317c843cbe92b68cfacebcf5d73dedb538b3f79c048090f3ee5b614ff`
SHA3	`f34fe335d0a39aedd236cfe40879f6624bc468df8195f5360c1d7267f2bd0113`

907

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xa0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.79455`
MD5	`f487ea2664475901e7728e27028f78e1`
SHA1	`05a70c71e7e06c712ca99e8ce88bf6dd5779bdf2`
SHA256	`e705e251daa451ade5cc3f36278401ce4eb8b3e32ca0a7d5b7e03f525934d770`
SHA3	`33f0ad42457a216bac4cb66e6209ff5ba1aa1b9895f7e906a6d70fb58c9ed675`

911

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xee`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06584`
MD5	`7ce8a17102daebb8d864cd1063e987d1`
SHA1	`072345a235d4947d36b53fd47da68e7e6a93fe62`
SHA256	`0fd40b240b9df8f2dece8947dabbebce898f12becca8e196136e4231efba2dc1`
SHA3	`59c7281c1d6dca36fed8a44ee5b408f11090812626d5c5fe1da3d72b526208ab`

103 (#2)

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x76`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.85812`
Detected Filetype	Icon file
MD5	`f3e30e29f0343da46ffbfb534dbb9770`
SHA1	`83c135b5fa050fa568017838241414b71cc1a094`
SHA256	`352e4635a92378d0dc4004bca6c3f827a373f883091b1869ac03c40a84a4b034`
SHA3	`1b197663d4051f245fe299bd7c42b5ca0a1fb87ed65a1c1d61809aac3a295274`

1 (#2)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x42e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.28813`
MD5	`32dba1641639a5bec4fbd15b33c1055b`
SHA1	`28196cecaef14d046572ed2fb0a71d78242f90f9`
SHA256	`f59972b2a07c186261270f69749b0e9f478deea2350b1a441eacd95bdd2dfd88`
SHA3	`3033c85e0e6226f2169499d9fb77ea2210ec2087571216415f230df0a499c9c5`

Version Info

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0xd26650e9`
Unmarked objects	`0`
C objects (VS2003 (.NET) build 4035)	`2`
Total imports	`165`
Imports (VS2003 (.NET) build 4035)	`15`
48 (9044)	`10`
Resource objects (VS98 SP6 cvtres build 1736)	`1`

Errors

[*] Warning: Section .ndata has a size of 0!