Manalyze report for b709ac8754dee3cb6cc752f0b5fbce66

This file seems to be a .NET executable.
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2018-Nov-16 11:11:37
Debug artifacts	C:\development-ash_inet\own\trunk-cs\SetupDownloader\SetupDownloader\obj\Release\SetupDownloader.pdb
Comments	SetupDownloader
CompanyName
FileDescription	SetupDownloader
FileVersion	`3.0.2.107`
InternalName	SetupDownloader.exe
LegalCopyright
LegalTrademarks
OriginalFilename	SetupDownloader.exe
ProductName
ProductVersion	`3.0.2`
Assembly Version	3.0.2.107

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C# v7.0 / Basic .NET` `.NET executable -> Microsoft`
Info	The PE is digitally signed.	`Signer: Ashampoo GmbH & Co. KG` `Issuer: Symantec Class 3 SHA256 Code Signing CA`
Safe	VirusTotal score: 0/72 (Scanned on 2022-10-09 02:12:56)	`All the AVs think this file is safe.`

Hashes

MD5	`b709ac8754dee3cb6cc752f0b5fbce66`
SHA1	`8f3dd7c17423e82dc559aa078ac47e97ce421e33`
SHA256	`e020304911d0022f96aadf566309201d5613aba2236125b83724730396092831`
SHA3	`d87420d635c2ebf7b839598b2937752e3b9b941ef69a2a7b4f4946bd40479ff3`
SSDeep	`768:9NtN81MVGNEzCXwAXp68Rn9c2Lap6GxuJdqpjU13hR:d2N8CZpvRn9cKaAGxDVU13hR`
Imports Hash	`f34d5f2d4577ed6d9ceec516c1f5a744`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2018-Nov-16 11:11:37
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`48.0`
SizeOfCode	`0x5400`
SizeOfInitializedData	`0x4400`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00007246 (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0x8000`
ImageBase	`0x400000`
SectionAlignment	`0x2000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x10000`
SizeOfHeaders	`0x200`
Checksum	`0x15fa4`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`26b90e096aada576fd5e00c685f57c70`
SHA1	`19523195bcb73c3169c668f57a6a718b24fe83ac`
SHA256	`c65c7c6dd8dd47066236b1c886f52ac4e57f9df696592cae3f2922fb4ac7a41b`
SHA3	`a9f84a42a0e3883a696d06806525cb1adc8c4a24be554588a2c10f993cfdbe4f`
VirtualSize	`0x524c`
VirtualAddress	`0x2000`
SizeOfRawData	`0x5400`
PointerToRawData	`0x200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`5.64494`

.rsrc

MD5	`87d153e51ce1dee55c149ed5386d6d0a`
SHA1	`2e684136d6c91fa5bda227cafd0a2ff3ea67e773`
SHA256	`eb7e5aed243e869bdaedfc38919677200b1f96fe6b04b7bdcd524b5e9d2ca985`
SHA3	`405bf8a2593ab5609a8ec27c91f71a7e4148928c06702bb872ad44407e5a4a8f`
VirtualSize	`0x4198`
VirtualAddress	`0x8000`
SizeOfRawData	`0x4200`
PointerToRawData	`0x5600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`6.02862`

.reloc

MD5	`b138312e0a95aea515bc89f281680d94`
SHA1	`1c86b25c67173836876771360fde97de276723fb`
SHA256	`c8ec34307b466d482edc308c1c2fb8f65dd1277dcc54b2d396238d92c1d255d6`
SHA3	`e4892f4228ccf27306ee89d3d99bcdac393de84cf972af2cd68063f95e8c590f`
VirtualSize	`0xc`
VirtualAddress	`0xe000`
SizeOfRawData	`0x200`
PointerToRawData	`0x9800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.0815394`

Imports

mscoree.dll	`_CorExeMain`

Delayed Imports

1

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.143`
MD5	`c27caed71b769875880b1b3a5e5a49c7`
SHA1	`ac8c6a408501d97a04f1c965a2c9a398d67de33e`
SHA256	`d14f1f350fe3ca1c24e39ad6691a1d34d504530a8817fd16b589a7fcd82dcdc3`
SHA3	`df5d97dcb711a1daf45603fd8fe60ae0e613edcce5082a1177cdda0e8b483564`

2

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.91986`
MD5	`6f54c4951ffae67c3c146bcb45b885b3`
SHA1	`d8dcd9bfb3081a75053a83e4e8258b91d09d2b36`
SHA256	`15845669f4b7c55e96f5a5a842b90bfa88eecccd63281a743fa6cb50a2c3fa30`
SHA3	`e57d35f8ffce6866db94d834bff19b34be689258eb5d8ef75ea959b7a2dabfba`

3

Type	`RT_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.70989`
MD5	`ce4ba9954dea17cf70cb0e7e71d17c0b`
SHA1	`d0fc91d5b5c6b9d6c60a04a5237cf8011588aede`
SHA256	`ad23e503606381fac6611e638a18581a8bb11f0f5ae97a08648944735d8f4fa6`
SHA3	`cbc194b6371a27ea3cfffb1df4f59d7673cd691d337ce32197db475b92b6f943`

32512

Type	`RT_GROUP_ICON`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x30`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.45849`
Detected Filetype	Icon file
MD5	`1ec6a7b3300970378c29695a6cc13d36`
SHA1	`99ce74251d19d800608e30bed6e0d793931da56e`
SHA256	`77a1efb6136f52dd2372987b13bf486aa75baeacb93bad009aa3e284c57b8694`
SHA3	`7a94ba315b3ab461cec9dad3048599d32b0e597047f9655159bd6dfdc694e4a3`

1 (#2)

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x330`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.29814`
MD5	`b98c892770f313876965f8d7eca29471`
SHA1	`11050b39e8e695e8713ba102bb074ca27ed356bf`
SHA256	`ee7284ca2754c3605e3e2bb343e17fb4b69c77561c0741cef364f71a8957538d`
SHA3	`13237e040e922744da25b738145b69d86da5a67b7ea79adfa52a987646aeeadb`

1 (#3)

Type	`RT_MANIFEST`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x1ea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.00112`
MD5	`b7db84991f23a680df8e95af8946f9c9`
SHA1	`cac699787884fb993ced8d7dc47b7c522c7bc734`
SHA256	`539dc26a14b6277e87348594ab7d6e932d16aabb18612d77f29fe421a9f1d46a`
SHA3	`4f72877413d13a67b52b292a8524e2c43a15253c26aaf6b5d0166a65bc615cff`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	3.0.2.107
ProductVersion	3.0.2.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Comments	SetupDownloader
CompanyName
FileDescription	SetupDownloader
FileVersion (#2)	3.0.2.107
InternalName	SetupDownloader.exe
LegalCopyright
LegalTrademarks
OriginalFilename	SetupDownloader.exe
ProductName
ProductVersion (#2)	3.0.2
Assembly Version	3.0.2.107

Resource LangID	UNKNOWN

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2018-Nov-16 11:11:37
Version	`0.0`
SizeofData	`284`
AddressOfRawData	`0x70d8`
PointerToRawData	`0x52d8`
Referenced File	C:\development-ash_inet\own\trunk-cs\SetupDownloader\SetupDownloader\obj\Release\SetupDownloader.pdb

TLS Callbacks

Load Configuration

RICH Header

b709ac8754dee3cb6cc752f0b5fbce66

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rsrc

.reloc

Imports

Delayed Imports

1

2

3

32512

1 (#2)

1 (#3)

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

TLS Callbacks

Load Configuration

RICH Header

Errors