Manalyze report for b24ea09beb65b54aab6815741db06d8450481d40d867b268294e3405fa96427f

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2005-Nov-14 17:05:18
Detected languages	English - United States Finnish - Finland
CompanyName	Mediamond Tmi
FileDescription	DSJ3 Setup
FileVersion	`1, 4, 0, 0`
InternalName	Setup
LegalCopyright	Copyright Â© Jussi Koskela 2005
OriginalFilename	Setup.exe
ProductName	DSJ3 Setup
ProductVersion	`1, 4, 0, 0`

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0` `Microsoft Visual C++` `Microsoft Visual C++ v6.0` `Microsoft Visual C++ v5.0/v6.0 (MFC)`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA GetProcAddress` `Functions which can be used for anti-debugging purposes: FindWindowA` `Code injection capabilities (PowerLoader): GetWindowLongA FindWindowA` `Can access the registry: RegQueryValueExA RegSetValueExA RegCloseKey RegCreateKeyExA RegOpenKeyExA` `Uses functions commonly found in keyloggers: GetForegroundWindow CallNextHookEx` `Can take screenshots: GetDC FindWindowA`
Suspicious	VirusTotal score: 1/62 (Scanned on 2017-04-12 00:34:46)	`Zillya: Trojan.Genome.Win32.91604`

Hashes

MD5	`4aec125374750f88b457dc1fde69e3d9`
SHA1	`070ce25b213199cc2432235ab8653026510590c1`
SHA256	`b24ea09beb65b54aab6815741db06d8450481d40d867b268294e3405fa96427f`
SHA3	`51cf60d43d59393e1dddb24db645798015c4664b477817184501ec9b2edd579e`
SSDeep	`3072:W3f0qooQCNKJqp5jYHrbC0AO/UeoUa1B35iw6qJrooowOW+LteH:WPYggvL5af35iw6qJGW+L`
Imports Hash	`cca76b907b2a0538cbe71996393f3bdb`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xf8`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`4`
TimeDateStamp	2005-Nov-14 17:05:18
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`6.0`
SizeOfCode	`0x18000`
SizeOfInitializedData	`0x12000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00008377 (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x19000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x1000`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x2b000`
SizeOfHeaders	`0x1000`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`8352149fa144bda6aa0f5125e3a6e403`
SHA1	`d4ecf2c8d40aa299b8dcf834695927636bb9e1b0`
SHA256	`57c7f595eba9015e184f9f800e29f82a5b7fdda31f370c574d98cbe88d18bf95`
SHA3	`33d7cdc4597d81eb65bb2d5dc48e9e8f694353a5d546d520b55d96d753c806db`
VirtualSize	`0x17452`
VirtualAddress	`0x1000`
SizeOfRawData	`0x18000`
PointerToRawData	`0x1000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.49949`

.rdata

MD5	`493903c972f197e77fd77b85c4edf0d7`
SHA1	`e4070aacbd5d34fc738b7c96c9afc91546bdc207`
SHA256	`c435bf207f8a8fccd0098591c639049cbc735071a4628de90d7484987a848ad0`
SHA3	`3b7a33410a70c31032798de850a135b635120a8a2783e499f043c7ce5fc9e5fa`
VirtualSize	`0x55e6`
VirtualAddress	`0x19000`
SizeOfRawData	`0x6000`
PointerToRawData	`0x19000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.34767`

.data

MD5	`ae0961307b923183b01f96ed69564d1b`
SHA1	`d2b258380afd6e7c43098aea55bd5b67278347e1`
SHA256	`8e5aa08cb947f68d64b19912fb49444ae19737723fdb14a7dedb0da4c5d31057`
SHA3	`ee61fddba09a180890047286e4ac2033b4fe453cf08f7a7dfced23d96ff9f663`
VirtualSize	`0x6f41`
VirtualAddress	`0x1f000`
SizeOfRawData	`0x4000`
PointerToRawData	`0x1f000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`1.74405`

.rsrc

MD5	`55b1b150c07e0c32adeb576cb6b505bb`
SHA1	`4975371d8e9a7f030e215d7f3ce49e71b61ad6d7`
SHA256	`ecc019b1b031d08eefe53ee13c5400440b97a8025f0dfd497099f980b4b48ad8`
SHA3	`3bc18ec9265bbca13c773a7d69352936c369c10eb26a7bd4f066234832ed7b43`
VirtualSize	`0x42e0`
VirtualAddress	`0x26000`
SizeOfRawData	`0x5000`
PointerToRawData	`0x23000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.64637`

Imports

d3d8.dll	`Direct3DCreate8`
DSOUND.dll	`#2`
KERNEL32.dll	`FileTimeToSystemTime` `FileTimeToLocalFileTime` `RaiseException` `RtlUnwind` `FindNextFileA` `GetStartupInfoA` `GetCommandLineA` `ExitProcess` `HeapAlloc` `HeapFree` `TerminateProcess` `HeapReAlloc` `HeapSize` `GetACP` `GetTimeZoneInformation` `SetUnhandledExceptionFilter` `UnhandledExceptionFilter` `FreeEnvironmentStringsA` `FreeEnvironmentStringsW` `GetEnvironmentStrings` `SetHandleCount` `GetStdHandle` `GetFileType` `GetEnvironmentVariableA` `GetVersionExA` `HeapDestroy` `HeapCreate` `VirtualFree` `VirtualAlloc` `IsBadWritePtr` `LCMapStringA` `LCMapStringW` `GetStringTypeA` `GetStringTypeW` `IsBadReadPtr` `IsBadCodePtr` `SetStdHandle` `CompareStringA` `CompareStringW` `SetEnvironmentVariableA` `FindFirstFileA` `FreeLibrary` `LoadLibraryA` `GetModuleFileNameA` `GetLastError` `FindClose` `FlushFileBuffers` `SetFilePointer` `WriteFile` `GetCurrentProcess` `SetErrorMode` `GetOEMCP` `GetCPInfo` `GetProcessVersion` `WritePrivateProfileStringA` `GlobalFlags` `TlsGetValue` `LocalReAlloc` `TlsSetValue` `EnterCriticalSection` `GlobalReAlloc` `LeaveCriticalSection` `TlsFree` `GlobalHandle` `DeleteCriticalSection` `TlsAlloc` `InitializeCriticalSection` `LocalFree` `LocalAlloc` `lstrcpynA` `MulDiv` `SetLastError` `CreateMutexA` `MultiByteToWideChar` `WideCharToMultiByte` `lstrlenA` `CloseHandle` `InterlockedIncrement` `InterlockedDecrement` `GetVersion` `lstrcatA` `GlobalGetAtomNameA` `GlobalAddAtomA` `GlobalFindAtomA` `lstrcpyA` `GetModuleHandleA` `GetProcAddress` `GlobalUnlock` `GlobalFree` `LockResource` `FindResourceA` `LoadResource` `GlobalLock` `GlobalAlloc` `GlobalDeleteAtom` `lstrcmpA` `lstrcmpiA` `GetCurrentThread` `GetCurrentThreadId` `GetEnvironmentStringsW`
USER32.dll	`CopyRect` `AdjustWindowRectEx` `SetFocus` `GetSysColor` `MapWindowPoints` `SendDlgItemMessageA` `UpdateWindow` `IsDialogMessageA` `SetWindowTextA` `ShowWindow` `LoadStringA` `DestroyMenu` `ClientToScreen` `GetDC` `ReleaseDC` `BeginPaint` `EndPaint` `TabbedTextOutA` `DrawTextA` `GrayStringA` `LoadCursorA` `GetClassNameA` `PtInRect` `GetSysColorBrush` `RegisterClassA` `GetMenu` `GetMenuItemCount` `GetSubMenu` `GetMenuItemID` `GetWindowTextA` `GetDlgCtrlID` `CreateWindowExA` `GetClassLongA` `SetPropA` `UnhookWindowsHookEx` `GetPropA` `CallWindowProcA` `RemovePropA` `DefWindowProcA` `GetMessageTime` `GetMessagePos` `GetForegroundWindow` `GetWindow` `SetWindowLongA` `SetWindowPos` `RegisterWindowMessageA` `SystemParametersInfoA` `GetWindowRect` `EndDialog` `SetActiveWindow` `CreateDialogIndirectParamA` `DestroyWindow` `GetDlgItem` `GetMenuCheckMarkDimensions` `LoadBitmapA` `GetMenuState` `ModifyMenuA` `SetMenuItemBitmaps` `CheckMenuItem` `EnableMenuItem` `GetFocus` `GetNextDlgTabItem` `GetMessageA` `TranslateMessage` `DispatchMessageA` `GetActiveWindow` `GetKeyState` `CallNextHookEx` `ValidateRect` `IsWindowVisible` `PeekMessageA` `GetCursorPos` `SetWindowsHookExA` `GetParent` `IsWindowEnabled` `GetWindowLongA` `MessageBoxA` `SetCursor` `PostQuitMessage` `PostMessageA` `EnableWindow` `GetSystemMetrics` `GetClientRect` `DrawIcon` `GetSystemMenu` `AppendMenuA` `SendMessageA` `LoadIconA` `GetTopWindow` `GetCapture` `wsprintfA` `WinHelpA` `GetClassInfoA` `FindWindowA` `GetLastActivePopup` `SetForegroundWindow` `IsIconic` `OpenIcon` `UnregisterClassA` `IsWindow` `GetWindowPlacement`
GDI32.dll	`SetBkColor` `GetObjectA` `DeleteDC` `SaveDC` `RestoreDC` `SelectObject` `GetStockObject` `SetMapMode` `SetViewportOrgEx` `OffsetViewportOrgEx` `SetViewportExtEx` `ScaleViewportExtEx` `SetWindowExtEx` `ScaleWindowExtEx` `SetTextColor` `DeleteObject` `GetDeviceCaps` `PtVisible` `RectVisible` `TextOutA` `ExtTextOutA` `Escape` `GetClipBox` `CreateBitmap`
WINSPOOL.DRV	`OpenPrinterA` `DocumentPropertiesA` `ClosePrinter`
ADVAPI32.dll	`RegQueryValueExA` `RegSetValueExA` `RegCloseKey` `RegCreateKeyExA` `RegOpenKeyExA`
COMCTL32.dll	`#17`

Delayed Imports

4

Type	`RT_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.02695`
MD5	`cab67e9ca149fb79ab4473998412b951`
SHA1	`2e793d35537bfb5d3f042ed0626d3b119d50519a`
SHA256	`fbeb3be87e80cb8e1d2af3d8140796c1bb80c6c7056f60897088ff9e355c3867`
SHA3	`0e72f5537421764effb2ed98e536358bb7e86eed7b0936e606e8d45559685684`

5

Type	`RT_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.74274`
MD5	`9fa8a914823ac7e5370652146901f4f1`
SHA1	`eb3224109abb341b6e464d2606fdbed1a7160bc6`
SHA256	`f64ccc0582bc7c66af8b40049e485e8e241335261ec95ace909293ba50b2e4a3`
SHA3	`bb348af06514e27cd1fa21ad524dfd037edcd3b36ef4cc6ab24c4a8ec38995ff`

26567

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0x5e4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.09838`
MD5	`055505a1940f27993d40e136bc915615`
SHA1	`f6223d2c97df05fa6b6ca54b47c92438777eae79`
SHA256	`a9bb58f43df34b3dc05b79015210b5a1ca84f8ff97555cf7344ef8bb662e1a6d`
SHA3	`cf77404babde2509159cac5542bdbc409a869e1633222f15e62ccb39bb8ad59b`
Preview

30994

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0xb8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.23666`
MD5	`8cf65be17e506ff24c2177078f88b56e`
SHA1	`3e397dc7597caeb844df0ea760b64231c8ce3dbf`
SHA256	`e7c0005285d1ab59732d5f99f77a9bdd6342b01cf44437ebd7a07611a227e272`
SHA3	`7da4c7aab356574679f0f9107740f01647864c846c04f699deef67577fd6aded`
Preview

30995

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0x16c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.20022`
MD5	`a2153b6134d93fd17964b36be4821db4`
SHA1	`43d43980d7e6c1f080cc3eca82d84dc2ab8241b1`
SHA256	`4406c7739acdebe7be0510fb2cf7043ebec1f3dfd4fd876e1b6d0eb29fa79a14`
SHA3	`c6bfd5b740368d3cc00322a1d1ed6905cefec2b5a411b2100444a37e72f79fe6`
Preview

30996

Type	`RT_BITMAP`
Language	English - United States
Codepage	UNKNOWN
Size	`0x144`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.87621`
MD5	`5a9c81cdbf480cf01daa71ba0e233c5f`
SHA1	`28e04c01584654e1974347d1baa462b2784e9c47`
SHA256	`abdf36bde89a26349f5741c17c235dacea88d441d8662ba16a598dc50c3c4864`
SHA3	`99dec83590ac444359a5a6f8924dae5615d93f4df527e10a8a61319ce3a5beaf`
Preview

1

Type	`RT_ICON`
Language	Finnish - Finland
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.52541`
MD5	`7c738cffe6886a11e911ce9ddcfca04f`
SHA1	`efb275097ef0bdc68dd40d86264577205c802c63`
SHA256	`791f489a16efc1a83b05ffcfe467b343582b42b3f3c5cf45d2f535b2548e383e`
SHA3	`9d37c1219c5a15a074c3e4d7c9fa4daaa797a125fdbd92537054676ca0f10f7e`

2

Type	`RT_ICON`
Language	Finnish - Finland
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.4529`
MD5	`bf0cfd277905410072fdf7b21fbaddda`
SHA1	`e78094249621a087763d87989303409bbf2aeb6f`
SHA256	`28ec1483355f229a75d657edd29d03fdf774b2a130e0e847d5a163ead3cefad2`
SHA3	`81a545027373a0302c163b5babc28c23727847f49634a077dbb4c925ac984518`

3

Type	`RT_ICON`
Language	Finnish - Finland
Codepage	UNKNOWN
Size	`0xea8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06928`
MD5	`d5e2413f5eca064b8b4290042211b41c`
SHA1	`16b974aec98a8d5f27846ea0f524f6619408c872`
SHA256	`d7be3e25b7ac96b95bff3cc574438f381ea7b8ed169164f66757de0110e1c98d`
SHA3	`3ccb0939b2639350b53a4d6c36677e94bc51d555905b33b1027b7bec2430c3ca`

100

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x174`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.34766`
MD5	`4948b02c3485bb194008e8097f063efc`
SHA1	`843304f2c584cffdfbe81e3e940fb1f129548b28`
SHA256	`0beda7901d84329df9de57d2c8cf5b35e42eb9d8ca47cfee1d858402cf93afec`
SHA3	`f997144117e7f5e46340b30a6cefd010e979dea3e6945aaa2d477b16a177c857`

102

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x34a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.20507`
MD5	`b4a9033cfdbc6cc102ad15a2458fc3ff`
SHA1	`5c808183764fd495e787d8a21b96d79f5d250cd7`
SHA256	`e005fecf6cd4f7ac98304f0a25bafe5f9ce8da86c55e41f0878f75daf62a816a`
SHA3	`d647b029f976bba19003df53ffaf8a380ab8dc608e44ecff219069937fdc60ac`

30721

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06676`
MD5	`ad7b15160c8bf80910606d417f40fef5`
SHA1	`9752acb8e012635c4356f7f2a20191d656b53faf`
SHA256	`6e113fd8e9f3156ae68251c6076beb9b59fe29e589d06398e7019802521f69d3`
SHA3	`50c74f1eeba91cb4ecc237c0b18cd2f6c0e2b6064e8d13ce1a779160c03b5d48`

7

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x3e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.71486`
MD5	`c2d6bbd77a19d8e6bfb6b89f09b9262d`
SHA1	`9171e95bba70df6ebfe9c7fb7d2c86d400510c71`
SHA256	`96d4a411818bebb170d4c97ae3347b46e11d31fc40ecfd157c4a3a9551ffe674`
SHA3	`a91d23210a3af5f243e24e4f5e88b72bfcdbea7b270e71b317116ebcaf794aa2`

3841

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x82`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.81705`
MD5	`8bb814f43734537868736a6df5dcc012`
SHA1	`3ae7a8f8678bc2aed76f745960730097032389b6`
SHA256	`d91dc4e26fd86def5ee907c72f32457bea07d21fa618012245f641d08501548d`
SHA3	`73fabbc3aad03738eda288b6d45b076e7f94f1ff8de37df5ac4d6e7dc7a48f98`

3842

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`0.960953`
MD5	`0131ce1c2237957b6926d5097b0af63d`
SHA1	`2ce37b98065cc4de92e99eb0777e0e1159102068`
SHA256	`05e0d5787611ed4f643733e3e6e62d00f426422b5d3e443ceebac22e9d294bc4`
SHA3	`9ee7bcb02f48332a4fac72465297312ef9c765b03edf2ab24a4b3de0840bda6c`

3843

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.04939`
MD5	`7076fb3ae32a748de6a3418a66192a8e`
SHA1	`dde3419cf897be2f5511a3daffc195ef132afcd2`
SHA256	`45e62b458c61b6cbdda7b5e9d11f5a6df837cf398c16a6257cd3b970a4ba051f`
SHA3	`f570484090cc667aaba4c771246cf979c70ef084b24fd08874b2ebfc95a53d95`

3857

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4e2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.26139`
MD5	`a9e50c9388d7cdac902c23acec7aa23c`
SHA1	`d54e8c937a904c58112c0fd868012f1808bc7def`
SHA256	`d036e1af5639fb867f5035330e81788bbc24eff762610e3f6bba5d78903a845a`
SHA3	`d6269db5a679dd9690f84a835d71985ba4651061b49478a4df8690ece671a473`

3858

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2a2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.99242`
MD5	`baaa947d6b05abd2548055fa7716fef3`
SHA1	`4ab0c053f47617c11883897e52ecda97f99ed49d`
SHA256	`1bf3b476c90b4d69ffacf814700ff58d3745713ee100baa8d6a5f6c64862d4d4`
SHA3	`8d872e55129a7d342578ba0fdc42f71b15e6e764872b5b50458c5632f43137b4`

3859

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2dc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.16997`
MD5	`8e2ac8a2e85ae2a4a7d1b1fec0c30687`
SHA1	`e8ad7766b7c342e2721e21c0d7f0c222ee8720e9`
SHA256	`c1bc5318a82ea1a1809618040026851947f6aa5171d904a9e60966f4551ca1a3`
SHA3	`b12ff47988f4fe62a2460361df0144ad3366d59e0ffa2b6f38b3469d7b24fc79`

3865

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0xac`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.63903`
MD5	`5fbbd2a5f564e043553889eec9147920`
SHA1	`2ddafabdf2bf5b62090419f07f731c4d02f0d987`
SHA256	`1b8660b0c53b94f3e029de58e56d08c8097a080244e9dc65d4155a9b603820d8`
SHA3	`1a90cf149f1fc5cfa9cd3f82f9a079ec48c7f7ce76dc4be601e538ae5c052ab9`

3866

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0xde`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.87807`
MD5	`a0838b75a6ffc345212d18178663bb7d`
SHA1	`a90a0eccdf4cc4c50f430195695a3b65adefe5e8`
SHA256	`31bff9afbf08a8869318cd946a1d73a4425afefc5693c6e06671bde1e86de1dc`
SHA3	`ad576d2bedb8e173fb207310f244bee3ad8c898a2101cb67da930fadf80ec7d0`

3867

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4c4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.23259`
MD5	`f2cb4a170c1677e5a01e7be62eb9cb0d`
SHA1	`2dd9a30c267d734a1b6da203ac4ddf4512ce30bf`
SHA256	`36db380991291cac5c99e42332efda20210f63985544d95e8fa6ef85bf2bdf8e`
SHA3	`2a1b4ca5a692c8deed0fef985b009b14ce015981e2b6bcf1469bba5700456504`

3868

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x264`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.09466`
MD5	`22bc73fe721ab70d0af71b166577d914`
SHA1	`3f6f9d5eacc66775e33fa6644ffcb06e141b8955`
SHA256	`7f51554313c6765ba649783a942064cdfe6f5a70248a6f56840f71969f87ced0`
SHA3	`a37cc4b7ff7538179044beda7e177e62d1691994b518d2151622c975b5f282ef`

3869

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.07875`
MD5	`4b18eed800e2806db8e0aacb95fd54f2`
SHA1	`8b09634f818d6823f6466717f3863cbb466d97c1`
SHA256	`0714c554acd308b38c3d6319f7e470f76a16d712f696545eacac2bdc725dfb95`
SHA3	`067dea0fda55e331beab407da1e0e79a9d71fe8a8d0c965384d459ce0a8d499a`

30977

Type	`RT_GROUP_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x22`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.25451`
Detected Filetype	Cursor file
MD5	`9244000dcf389837295888fefab8dce1`
SHA1	`e46c5acc929847e1e35a047fb6a8e58113b7a67c`
SHA256	`f9cb2c13ebaaa826fc9e85033fffe3259f22f28d9cff2d53f9086d2f3bfafaed`
SHA3	`d81bc09070362bbc36790e17a1e37ad835c048f46dc284a9012423edae50f3ab`
Preview

128

Type	`RT_GROUP_ICON`
Language	Finnish - Finland
Codepage	UNKNOWN
Size	`0x30`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.7193`
Detected Filetype	Icon file
MD5	`55d84fb3a4ae16307380358dbdfa6fda`
SHA1	`3f9366c8f1a24eb83bdf4c0ba4c80a970a2b90bc`
SHA256	`d1e1a7d27e0fc5855a5fc12f5a47f67edee075f769133b855d864b153a981e5a`
SHA3	`7a45bbe9f31df96fc5a48d2c80fe6d7f20ee640ea8c6aaa81e068fceb05f0fd5`

1 (#2)

Type	`RT_VERSION`
Language	English - United States
Codepage	UNKNOWN
Size	`0x350`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.36004`
MD5	`c3583db6e28ab15b6859bc6a07e8ed70`
SHA1	`e22fc3aa860f6eda4774c729b5dd2854af14c927`
SHA256	`93289437b85a3e6aeacec911b4123de7ddab0657a880d7bcebce7137b97aac2a`
SHA3	`7c5de4f8d4c5c30c6232287534e4330dfca48a193d18d33eaf54bb7182d18d59`

String Table contents

&About Setup...
Open
Save As
All Files (.)
Untitled
an unnamed file
&Hide
No error message is available.
An unsupported operation was attempted.
A required resource was unavailable.
Out of memory.
An unknown error has occurred.
Invalid filename.
Failed to open document.
Failed to save document.
Save changes to %1?
Failed to create empty document.
The file is too large to open.
Could not start print job.
Failed to launch help.
Internal application error.
Command failed.
Insufficient memory to perform operation.
System registry entries have been removed and the INI file (if any) was deleted.
Not all of the system registry entries (or INI file) were removed.
This program requires the file %s, which was not found on this system.
This program is linked to the missing export %s in the file %s. This machine may have an incompatible version of %s.
Please enter an integer.
Please enter a number.
Please enter an integer between %1 and %2.
Please enter a number between %1 and %2.
Please enter no more than %1 characters.
Please select a button.
Please enter an integer between 0 and 255.
Please enter a positive integer.
Please enter a date and/or time.
Please enter a currency.
Unexpected file format.
%1
Cannot find this file.
Please verify that the correct path and file name are given.
Destination disk drive is full.
Unable to read from %1, it is opened by someone else.
Unable to write to %1, it is read-only or opened by someone else.
An unexpected error occurred while reading %1.
An unexpected error occurred while writing %1.
Unable to read write-only property.
Unable to write read-only property.
Unable to load mail system support.
Mail system DLL is invalid.
Send Mail failed to send message.
No error occurred.
An unknown error occurred while accessing %1.
%1 was not found.
%1 contains an invalid path.
%1 could not be opened because there are too many open files.
Access to %1 was denied.
An invalid file handle was associated with %1.
%1 could not be removed because it is the current directory.
%1 could not be created because the directory is full.
Seek failed on %1
A hardware I/O error was reported while accessing %1.
A sharing violation occurred while accessing %1.
A locking violation occurred while accessing %1.
Disk full while accessing %1.
An attempt was made to access %1 past its end.
No error occurred.
An unknown error occurred while accessing %1.
An attempt was made to write to the reading %1.
An attempt was made to access %1 past its end.
An attempt was made to read from the writing %1.
%1 has a bad format.
%1 contained an unexpected object.
%1 contains an incorrect schema.
pixels

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.4.0.0
ProductVersion	1.4.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	English - United States
CompanyName	Mediamond Tmi
FileDescription	DSJ3 Setup
FileVersion (#2)	1, 4, 0, 0
InternalName	Setup
LegalCopyright	Copyright Â© Jussi Koskela 2005
OriginalFilename	Setup.exe
ProductName	DSJ3 Setup
ProductVersion (#2)	1, 4, 0, 0

Resource LangID	English - United States

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0x2e6bf043`
Unmarked objects	`0`
C++ objects (8047)	`1`
Unmarked objects (#2)	`6`
19 (8034)	`14`
14 (7299)	`26`
C objects (VS98 SP6 build 8804)	`108`
Total imports	`384`
Imports (9210)	`5`
C++ objects (VS98 SP6 build 8804)	`74`
Resource objects (VS98 SP6 cvtres build 1736)	`1`

Errors

Leave a comment

No comments yet.