b6036706b3090108ef08f94bf473bff7b832d4e4cc554c68d672ef23a834cf6b

Summary

Architecture IMAGE_FILE_MACHINE_AMD64
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date 2026-May-23 13:30:55
Detected languages English - United States
Debug artifacts C:\Users\demee\OneDrive\Bureau\TracteurClicker\x64\Release\TracteurClicker.pdb
CompanyName
FileDescription Opera installer SFX
FileVersion 128.0.5807.78
InternalName 7zS.sfx
LegalCopyright Opera Software 2026
OriginalFilename 7zS.sfx.exe
ProductName 7-Zip
ProductVersion 128.0.5807.78

Plugin Output

Info Matching compiler(s): MASM/TASM - sig1(h)
Suspicious Strings found in the binary may indicate undesirable behavior: Tries to detect virtualized environments:
  • SYSTEM\CurrentControlSet\Control\SystemInformation
 May have dropper capabilities:
  • CurrentControlSet\Services
 Contains another PE executable:
  • This program cannot be run in DOS mode.
 Contains domain names:
  • comodo.net
  • comodoca.com
  • crl.comodo.net
  • crl.comodoca.com
  • crl.microsoft.com
  • crl.sectigo.com
  • crl.usertrust.com
  • crt.sectigo.com
  • crt.usertrust.com
  • github.com
  • http://crl.comodo.net
  • http://crl.comodo.net/AAACertificateServices.crl0
  • http://crl.comodoca.com
  • http://crl.comodoca.com/AAACertificateServices.crl04
  • http://crl.comodoca.com/AAACertificateServices.crl06
  • http://crl.microsoft.com
  • http://crl.microsoft.com/pki/crl/products/MicRooCerAut_2010-06-23.crl0Z
  • http://crl.sectigo.com
  • http://crl.sectigo.com/SectigoPublicCodeSigningCAEVR36.crl0
  • http://crl.sectigo.com/SectigoPublicCodeSigningRootR46.crl0
  • http://crl.sectigo.com/SectigoRSATimeStampingCA.crl0t
  • http://crl.usertrust.com
  • http://crl.usertrust.com/USERTrustRSACertificationAuthority.crl0v
  • http://crt.sectigo.com
  • http://crt.sectigo.com/SectigoPublicCodeSigningCAEVR36.crt0#
  • http://crt.sectigo.com/SectigoPublicCodeSigningRootR46.p7c0#
  • http://crt.sectigo.com/SectigoRSATimeStampingCA.crt0#
  • http://crt.usertrust.com
  • http://crt.usertrust.com/USERTrustRSAAddTrustCA.crt0%
  • http://ocsp.comodoca.com0
  • http://ocsp.sectigo.com0
  • http://ocsp.sectigo.com0H
  • http://ocsp.usertrust.com0
  • http://www.microsoft.com
  • http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt0
  • http://www.microsoft.com/pkiops/Docs/Repository.htm0
  • http://www.microsoft.com/pkiops/certs/Microsoft%20Time-Stamp%20PCA%202010
  • http://www.microsoft.com/pkiops/certs/Microsoft%20Windows%20Third%20Party%20Component%20CA%202014.crt0
  • http://www.microsoft.com/pkiops/crl/Microsoft%20Time-Stamp%20PCA%202010
  • http://www.microsoft.com/pkiops/crl/Microsoft%20Windows%20Third%20Party%20Component%20CA%202014.crl0
  • https://github.com
  • https://reqrypt.org
  • https://sectigo.com
  • https://www.microsoft.com
  • https://www.microsoft.com/en-us/windows
  • microsoft.com
  • reqrypt.org
  • sectigo.com
  • usertrust.com
  • www.microsoft.com
Info Cryptographic algorithms detected in the binary: Uses constants related to SHA256
Uses known Mersenne Twister constants
Malicious The PE contains functions mostly used by malware. [!] The program may be hiding some of its imports:
  • LoadLibraryW
  • GetProcAddress
  • LoadLibraryA
  • LoadLibraryExW
 Functions which can be used for anti-debugging purposes:
  • CreateToolhelp32Snapshot
 Code injection capabilities:
  • WriteProcessMemory
  • OpenProcess
  • VirtualAllocEx
 Can access the registry:
  • RegSetValueExW
  • RegCloseKey
  • RegQueryValueExW
  • RegOpenKeyExW
 Possibly launches other programs:
  • ShellExecuteA
 Can create temporary files:
  • GetTempPathW
  • CreateFileW
  • CreateFileA
  • GetTempPathA
 Uses functions commonly found in keyloggers:
  • MapVirtualKeyW
  • GetAsyncKeyState
  • CallNextHookEx
  • GetForegroundWindow
 Memory manipulation functions often used by packers:
  • VirtualProtectEx
  • VirtualAllocEx
 Functions related to the privilege level:
  • CheckTokenMembership
 Manipulates other processes:
  • WriteProcessMemory
  • OpenProcess
  • Process32NextW
  • Process32FirstW
  • ReadProcessMemory
 Reads the contents of the clipboard:
  • GetClipboardData
Malicious The PE is possibly a dropper. Resource 200 detected as a PE Executable.
Resource 201 detected as a PE Executable.
Malicious VirusTotal score: 16/59 (Scanned on 2026-06-04 12:34:48) APEX: Malicious
Antiy-AVL: RiskWare[RiskTool]/Multi.WinDivert
Bkav: W32.Malware.983E95B2
CTX: exe.unknown.windivert
CrowdStrike: win/malicious_confidence_60% (W)
Cylance: Unsafe
DeepInstinct: MALICIOUS
Elastic: malicious (high confidence)
Google: Detected
Lionic: Riskware.Win32.WinDivert.1!c
Malwarebytes: RiskWare.WinDivert
McAfeeD: ti!B6036706B309
Paloalto: generic.ml
Sophos: Generic Reputation PUA (PUA)
Symantec: ML.Attribute.HighConfidence
Varist: W64/ABApplication.STEE-9016

Hashes

MD5 fe41c29787c88c852ae1c7c4142eac18
SHA1 3ef3e0930f41d4ca425d887b323ac9252b758869
SHA256 b6036706b3090108ef08f94bf473bff7b832d4e4cc554c68d672ef23a834cf6b
SHA3 567fef953b5b2d54c9ca4ef8fa75a26e1c38f15f19fa6a23a78522ad6b79cafe
SSDeep 49152:y51vlPU5D11HKdDrjQuTynIpzjto0KQDp11hFI/:CBU10rja1EprhF
Imports Hash ce16e3dbab914bf2619e0d2d2bf7bdee

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0x118

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_AMD64
NumberofSections 6
TimeDateStamp 2026-May-23 13:30:55
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xf0
Characteristics IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Image Optional Header

Magic PE32+
LinkerVersion 14.0
SizeOfCode 0xbf600
SizeOfInitializedData 0x125400
SizeOfUninitializedData 0
AddressOfEntryPoint 0x000000000008E1A8 (Section: .text)
BaseOfCode 0x1000
ImageBase 0x140000000
SectionAlignment 0x1000
FileAlignment 0x200
OperatingSystemVersion 6.0
ImageVersion 0.0
SubsystemVersion 6.0
Win32VersionValue 0
SizeOfImage 0x1e8000
SizeOfHeaders 0x400
Checksum 0
Subsystem IMAGE_SUBSYSTEM_WINDOWS_GUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 e7c6b13822cd5802bd2e4fee23926566
SHA1 457b6895eea58ca5ed5646bc3d3e772f736e50ca
SHA256 777d5b0f396e86a632f282c2ac2964a4c9a6cf100ef398457654ffa7d957645c
SHA3 e9e3cd3e683583a3448ac9993ab7b06e28356b95f1bf211f696092fcbc88becb
VirtualSize 0xbf594
VirtualAddress 0x1000
SizeOfRawData 0xbf600
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 6.54771

.rdata

MD5 2230c4b0fd02a7bcd53bcd4ac0d0e16d
SHA1 4584691c31f457d9473fa097efa04f82ea23fb95
SHA256 9c017067ba4eb7bb71250f2b82eb17a7c075feb4e12478c35eb5db5102b65d7f
SHA3 7e5cc70f929276ba226ae2fe69ffdc61174fe4c23a0d0e22b355ab5b75eaaa12
VirtualSize 0x29fc4
VirtualAddress 0xc1000
SizeOfRawData 0x2a000
PointerToRawData 0xbfa00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 5.79938

.data

MD5 52b9b4de80bddf6f3b53ab9cad8ec6f4
SHA1 5a03ddbb12a6638216b6e51f9e99a49b07859441
SHA256 59fb5b95c2d9d7f5e1e2d177b59b80860769947bbe2e4f195afcd2c7cc2511ce
SHA3 cfc88c783d35d3efc76fc18ccabc1203fbbbbd3353cb33be30f10e0d3f3b6089
VirtualSize 0x645c
VirtualAddress 0xeb000
SizeOfRawData 0x2000
PointerToRawData 0xe9a00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 3.6902

.pdata

MD5 bc3d264961381471752a384c54a5e16c
SHA1 8695468176c19b3bfdd78392bbe099d69152463e
SHA256 9bb4bf6c4d97925ecf1f6e58c219a25c827a72dfa51436dc94cf88ceb39e71e9
SHA3 02f45b8a834ef9eb0a6b4ffea0be0fc9e107439e85f1912311b3c604b601954c
VirtualSize 0x7908
VirtualAddress 0xf2000
SizeOfRawData 0x7a00
PointerToRawData 0xeba00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 6.01138

.rsrc

MD5 c9dd904fbd8a8eb22bc2dadcadf9ed53
SHA1 ce40ff962e643e1a0e89ae3372e648179a07abf7
SHA256 855949683e3c26deebd72b698dea97df6d01ce41be4044d2b7c8c44f10827486
SHA3 c1a4f8b94e764749a262d94a4e5ad177856c0414d0c468c58af4ac8d04585ed3
VirtualSize 0xec430
VirtualAddress 0xfa000
SizeOfRawData 0xec600
PointerToRawData 0xf3400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 7.32226

.reloc

MD5 f07796cca772b96a94b26603af7eec36
SHA1 ba285c0780bfd4734cfc5259349714ea228297dd
SHA256 a8228d3487ce2489c110f11338513b60e5b3d5798d229d7575b7283ff546bf9f
SHA3 e2a1f7cae875ad362c69e8a12c830f8cb6ac3e8bc06c293bae3eaa7e48b9897e
VirtualSize 0xc98
VirtualAddress 0x1e7000
SizeOfRawData 0xe00
PointerToRawData 0x1dfa00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Entropy 5.20006

Imports

d3d11.dll D3D11CreateDeviceAndSwapChain
D3DCOMPILER_47.dll D3DCompile
dwmapi.dll DwmSetWindowAttribute
KERNEL32.dll RemoveDirectoryW
GetTempPathW
CreateFileW
GetLastError
DeleteFileW
CloseHandle
LoadLibraryW
FindResourceW
GetProcAddress
GetCurrentProcessId
GetModuleHandleW
FreeLibrary
SetDllDirectoryW
SetFileTime
GetModuleFileNameW
CreateFileA
ExitProcess
GetFileTime
WriteProcessMemory
OpenProcess
CreateToolhelp32Snapshot
Process32NextW
Process32FirstW
Module32FirstW
VirtualProtectEx
ReadProcessMemory
Module32NextW
VirtualAllocEx
VirtualFreeEx
VirtualQueryEx
MultiByteToWideChar
GlobalAlloc
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
GetLocaleInfoA
LoadLibraryA
QueryPerformanceFrequency
QueryPerformanceCounter
HeapReAlloc
ReadConsoleW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
HeapAlloc
WriteFile
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
GetFileType
SetFilePointerEx
GetFileSizeEx
GetStdHandle
ReadFile
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
SetLastError
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetStringTypeW
LCMapStringEx
DecodePointer
CreateDirectoryW
CreateDirectoryA
GetThreadId
LoadResource
LockResource
GetTempPathA
Sleep
FindResourceA
SizeofResource
GetProcessHeap
SetStdHandle
EncodePointer
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
HeapSize
WriteConsoleW
SetEndOfFile
HeapFree
RtlUnwind
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
GetCurrentThreadId
FormatMessageA
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
WaitForSingleObjectEx
GetExitCodeThread
LocalFree
GetLocaleInfoEx
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
SetFileInformationByHandle
AreFileApisANSI
GetFileInformationByHandleEx
InitializeCriticalSectionEx
GetSystemTimeAsFileTime
USER32.dll SendInput
PostThreadMessageW
SetWindowsHookExW
mouse_event
GetKeyState
GetMessageExtraInfo
GetCapture
ClientToScreen
TrackMouseEvent
GetKeyboardLayout
LoadCursorW
SetCapture
SetCursor
GetClientRect
IsWindowUnicode
ReleaseCapture
SetCursorPos
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
MapVirtualKeyW
GetWindowLongW
DefWindowProcW
GetWindowRect
IsWindowVisible
SetWindowPos
CreateWindowExW
ScreenToClient
UnregisterClassW
RegisterClassExW
ShowWindow
GetAsyncKeyState
ChangeDisplaySettingsW
PeekMessageW
SetWindowDisplayAffinity
EnumWindows
SetWindowLongW
GetWindowLongPtrA
PostQuitMessage
EnumDisplaySettingsW
SetWindowLongPtrA
UpdateWindow
GetCursorPos
GetMessageW
CallNextHookEx
GetClassNameA
DispatchMessageW
GetWindowTextA
GetForegroundWindow
UnhookWindowsHookEx
TranslateMessage
ADVAPI32.dll CheckTokenMembership
RegSetValueExW
RegCloseKey
FreeSid
AllocateAndInitializeSid
RegQueryValueExW
RegOpenKeyExW
SHELL32.dll SHChangeNotify
ShellExecuteExW
ShellExecuteA
SHGetKnownFolderPath
ole32.dll CoCreateInstance
CoTaskMemFree
CoInitializeEx
CoCreateGuid
CoUninitialize
WINMM.dll mciSendStringA
timeBeginPeriod
timeEndPeriod
IMM32.dll ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Delayed Imports

101

Type WAVE
Language English - United States
Codepage UNKNOWN
Size 0x12e4e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.92826
Detected Filetype WAV Resource Interchange File Format
Detected Filetype (#2) Windows animated cursor
MD5 0f9fd918184f54cb26fdb6ecc28a4030
SHA1 4b91d9e2f8f61a4d0053ad664e87883066d1becd
SHA256 c73560d9b0dea5c79ae438a1a0f8692dedda862f93447a10e871cb5aa4ae0695
SHA3 3085b0ad72b144f41b5d7ba91d27008091b34d503b01c4149467b76e20105443

102

Type WAVE
Language English - United States
Codepage UNKNOWN
Size 0xc64e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.76009
Detected Filetype WAV Resource Interchange File Format
Detected Filetype (#2) Windows animated cursor
MD5 d0ae3467707d1eb8b40866586d50c22e
SHA1 612db138e8b1bb608e82f3656f415178bde6c322
SHA256 aff6c246dd54e24dfdc3d8a930566e4562f894b1f1a2876ebee8af7112c9aceb
SHA3 8a6fe0843e2763feeb8e2058034be6fd7ba6acca8d7822c47820044f45f863ed

103

Type WAVE
Language English - United States
Codepage UNKNOWN
Size 0xa64e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.59594
Detected Filetype WAV Resource Interchange File Format
Detected Filetype (#2) Windows animated cursor
MD5 8662f5216fdf3291800e728aaae8d6d6
SHA1 27830822ad008ef71295187b5d70fc360dd8910c
SHA256 b27ad220f94f0a308607b0c736bd53114481404ef0f884c834f71a404787ff56
SHA3 dae8f37500bf7977648f0e6388622212013c182775ae29fb59f881f3cd7537c8

104

Type WAVE
Language English - United States
Codepage UNKNOWN
Size 0x1364e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.78219
Detected Filetype WAV Resource Interchange File Format
Detected Filetype (#2) Windows animated cursor
MD5 fc1b4c4466341355cd3382370f02bb0b
SHA1 36ac4dff44987d5bce9cc99b62281463c9d58ce5
SHA256 80287e73b60a09a4117980d37ad1861c23530a37a39622c5c666c52cf1f80a57
SHA3 dfd230131d62150e3a5b2ea40276c1e5185a904e765f9b622b47af6207728874

105

Type WAVE
Language English - United States
Codepage UNKNOWN
Size 0x12e4e
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.66265
Detected Filetype WAV Resource Interchange File Format
Detected Filetype (#2) Windows animated cursor
MD5 33ab04f7d301467401ea8770b4e05a89
SHA1 44b4e1fb51a040066670c4b3bd590540c3de8156
SHA256 05804dcf69e277cc1c20005d141fe1e21209f984df92533c3571a8046a29bc92
SHA3 b8b1e2578d2bc1052d32970089b16ae469ce030acf957509df1d7b405e2aea3b

1

Type RT_ICON
Language English - United States
Codepage UNKNOWN
Size 0x25a8
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.09831
MD5 bc233a28292339caaa9c1bf7469eb02a
SHA1 98171b79b03ab4380aed4c6c8e8f1ff993f1b0d2
SHA256 567f400071438d1eef81c71f1fe1fa703768751e5116a428018c9e20d218ecfe
SHA3 72071dab2dd47dcc60349d39a38ff3ccd0e5362ffa7a1bf63be4570665947844

106

Type RT_RCDATA
Language English - United States
Codepage UNKNOWN
Size 0x6cb94
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.99798
Detected Filetype PNG graphic file
MD5 2d56092c402a2c17067e0fb51555a5e3
SHA1 b9bb2a63f9dd16484a7051ad90b03f2d36d05b72
SHA256 de9fdb7bcd7b112a13c8a74fcc65601411b5bd6eea299467b8d61fbf0cbec9d6
SHA3 5f829304e4a4d52e8b035ff56ef369a11834505d06bc4a1a276a165dcea2e968

107

Type RT_RCDATA
Language English - United States
Codepage UNKNOWN
Size 0xa1fe
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 7.77852
Detected Filetype JPEG graphic file
MD5 0e3af7ce2dbb56b4cb88744abdda81c0
SHA1 66aa191a237a21006f630d1e47166fa299aa7ab0
SHA256 bd0613d0b5b7961aa771c93d17124ff9d55de9ce1b21d5aa7ffec8e983501b61
SHA3 bf06593636b32aa9719124270d8fe6e8cb70090fdaa06e34167c51417baf0dca

200

Type RT_RCDATA
Language English - United States
Codepage UNKNOWN
Size 0xba00
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 5.72391
Detected Filetype PE Executable
MD5 b2014d33ee645112d5dc16fe9d9fcbff
SHA1 aa69498562d350f2de06954b133e59fac1e57002
SHA256 c1e060ee19444a259b2162f8af0f3fe8c4428a1c6f694dce20de194ac8d7d9a2
SHA3 e8ac33fcbd09503dfef17a5ae094b9aced8b8e2cbe63bd3ac0b461a5425d40f5

201

Type RT_RCDATA
Language English - United States
Codepage UNKNOWN
Size 0x16fc0
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 6.46443
Detected Filetype PE Executable
MD5 89ed5be7ea83c01d0de33d3519944aa5
SHA1 4c9b9c74529399abacc2284de1dead5f2332ee9b
SHA256 8da085332782708d8767bcace5327a6ec7283c17cfb85e40b03cd2323a90ddc2
SHA3 04d1930fca7258dda77c9020a03a5e1f79a785a381b9c716cad637f5b25f8e42

IDI_MAIN

Type RT_GROUP_ICON
Language English - United States
Codepage UNKNOWN
Size 0x14
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 1.51664
Detected Filetype Icon file
MD5 06b5b11e54ea1cf00c71c843359fcc3b
SHA1 6730acea9142cf0425df1c135ce0055a687bdb71
SHA256 09c499bde4092ae73941ab4a37c48c58d80ea7e69dee757a2455d2b4a879f6dd
SHA3 824d3e00864b251a2faff96c5310c61fe08291c68e5753a34c0fe71f80b9e4d4

VS_VERSION_INFO

Type RT_VERSION
Language English - United States
Codepage UNKNOWN
Size 0x2b4
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 3.48346
MD5 a12a4a8b35cece66bf4892780b7b58d3
SHA1 f3751d52eb45a64fc15b9572aea6284971f69db4
SHA256 5ad1ac14e4bf5c2adafbebd3a0bd0da80657cb76f50968dd969e24a4305292f4
SHA3 ba752bd3c1275b2e9eb1f14c60eee8ef2f0426cde99d186cff09695b1144b2d4

1 (#2)

Type RT_MANIFEST
Language English - United States
Codepage UNKNOWN
Size 0x17d
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.91161
MD5 1e4a89b11eae0fcf8bb5fdd5ec3b6f61
SHA1 4260284ce14278c397aaf6f389c1609b0ab0ce51
SHA256 4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df
SHA3 4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353

Version Info

Signature 0xfeef04bd
StructVersion 0x10000
FileVersion 128.0.5807.78
ProductVersion 128.0.5807.78
FileFlags (EMPTY)
FileOs VOS_DOS_WINDOWS32
VOS_NT
VOS_NT_WINDOWS32
VOS_WINCE
VOS__WINDOWS32
FileType VFT_APP
Language English - United States
CompanyName
FileDescription Opera installer SFX
FileVersion (#2) 128.0.5807.78
InternalName 7zS.sfx
LegalCopyright Opera Software 2026
OriginalFilename 7zS.sfx.exe
ProductName 7-Zip
ProductVersion (#2) 128.0.5807.78
Resource LangID English - United States

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics 0
TimeDateStamp 2026-May-23 13:30:55
Version 0.0
SizeofData 103
AddressOfRawData 0xdd44c
PointerToRawData 0xdbe4c
Referenced File C:\Users\demee\OneDrive\Bureau\TracteurClicker\x64\Release\TracteurClicker.pdb

IMAGE_DEBUG_TYPE_VC_FEATURE

Characteristics 0
TimeDateStamp 2026-May-23 13:30:55
Version 0.0
SizeofData 20
AddressOfRawData 0xdd4b4
PointerToRawData 0xdbeb4

IMAGE_DEBUG_TYPE_POGO

Characteristics 0
TimeDateStamp 2026-May-23 13:30:55
Version 0.0
SizeofData 1012
AddressOfRawData 0xdd4c8
PointerToRawData 0xdbec8

IMAGE_DEBUG_TYPE_ILTCG

Characteristics 0
TimeDateStamp 2026-May-23 13:30:55
Version 0.0
SizeofData 0
AddressOfRawData 0
PointerToRawData 0

TLS Callbacks

StartAddressOfRawData 0x1400dd908
EndAddressOfRawData 0x1400dd938
AddressOfIndex 0x1400edb28
AddressOfCallbacks 0x1400c17f0
SizeOfZeroFill 0
Characteristics IMAGE_SCN_ALIGN_8BYTES
Callbacks (EMPTY)

Load Configuration

Size 0x140
TimeDateStamp 1970-Jan-01 00:00:00
Version 0.0
GlobalFlagsClear (EMPTY)
GlobalFlagsSet (EMPTY)
CriticalSectionDefaultTimeout 0
DeCommitFreeBlockThreshold 0
DeCommitTotalFreeThreshold 0
LockPrefixTable 0
MaximumAllocationSize 0
VirtualMemoryThreshold 0
ProcessAffinityMask 0
ProcessHeapFlags (EMPTY)
CSDVersion 0
Reserved1 0
EditList 0
SecurityCookie 0x1400eb100

RICH Header

XOR Key 0xc0d6948a
Unmarked objects 0
ASM objects (30795) 24
ASM objects (34321) 10
C objects (34321) 17
C++ objects (34321) 94
C objects (30795) 27
C++ objects (30795) 184
C objects (CVTCIL) (30795) 1
Imports (30795) 23
Total imports 278
C++ objects (LTCG) (34436) 15
Resource objects (34436) 1
151 1
Linker (34436) 1

Errors

Leave a comment

No comments yet.