c33177898abac95f1a692bd2dfdb89cf

Summary

Architecture IMAGE_FILE_MACHINE_I386
Subsystem IMAGE_SUBSYSTEM_WINDOWS_CUI
Compilation Date 2016-Nov-11 10:38:34
Detected languages English - United States
Debug artifacts c:\users\ricna\documents\visual studio 2015\Projects\ConsoleApplication3\Release\ConsoleApplication3.pdb

Plugin Output

Info Matching compiler(s): MASM/TASM - sig1(h)
Safe VirusTotal score: 0/72 (Scanned on 2019-12-14 16:40:07) All the AVs think this file is safe.

Hashes

MD5 c33177898abac95f1a692bd2dfdb89cf
SHA1 60ab7b4062f7d8cfbf7c4f29b50997aca3532683
SHA256 e12520ec9dd0abe404133dab56ae79496b86fc9989599a5e881d96503f1f5765
SHA3 e597d1a79e4dd870af96f0a28f63b112dca023824ab7eda75f9adea5b9b4b1cd
SSDeep 192:1NAaC3IVA/2bMqdNzooQcvkO0epYxcTF7E5pz6k3R+9:3NSIVA/29dNbQcvkOteIF7a+9
Imports Hash a7e6f088068cd7b1c47df6d33b4b7974

DOS Header

e_magic MZ
e_cblp 0x90
e_cp 0x3
e_crlc 0
e_cparhdr 0x4
e_minalloc 0
e_maxalloc 0xffff
e_ss 0
e_sp 0xb8
e_csum 0
e_ip 0
e_cs 0
e_ovno 0
e_oemid 0
e_oeminfo 0
e_lfanew 0xf8

PE Header

Signature PE
Machine IMAGE_FILE_MACHINE_I386
NumberofSections 6
TimeDateStamp 2016-Nov-11 10:38:34
PointerToSymbolTable 0
NumberOfSymbols 0
SizeOfOptionalHeader 0xe0
Characteristics IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE

Image Optional Header

Magic PE32
LinkerVersion 14.0
SizeOfCode 0xe00
SizeOfInitializedData 0x1600
SizeOfUninitializedData 0
AddressOfEntryPoint 0x0000142E (Section: .text)
BaseOfCode 0x1000
BaseOfData 0x2000
ImageBase 0x400000
SectionAlignment 0x1000
FileAlignment 0x200
OperatingSystemVersion 6.0
ImageVersion 0.0
SubsystemVersion 6.0
Win32VersionValue 0
SizeOfImage 0x7000
SizeOfHeaders 0x400
Checksum 0
Subsystem IMAGE_SUBSYSTEM_WINDOWS_CUI
DllCharacteristics IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
SizeofStackReserve 0x100000
SizeofStackCommit 0x1000
SizeofHeapReserve 0x100000
SizeofHeapCommit 0x1000
LoaderFlags 0
NumberOfRvaAndSizes 16

.text

MD5 46d8d3d083db0a33a56e1d5cbca79f37
SHA1 c81f8724d31a02738db0e826ec358bb84b825d1e
SHA256 f20ca65c92ff40e42876108e19fe3d5656d2c21869dc0aa2387c771c1e1d6245
SHA3 662257c57976b8ce0044ef3470a161a4d79255bde799e8b699f63b866bd159fb
VirtualSize 0xdb1
VirtualAddress 0x1000
SizeOfRawData 0xe00
PointerToRawData 0x400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Entropy 6.19301

.rdata

MD5 ff7d628c34e73095504f229d7361f090
SHA1 1bf6ac4967b2b93ac39ba8de9851b97c24821329
SHA256 5b664b74c5c093e1a2a9c6f70a4fa0e48b9363aa3b4ca4f101429bedd60f19fa
SHA3 088557d60423326454ab0ee17e0c729cf916bcf90d3a63ce14256dc89203022e
VirtualSize 0xbbc
VirtualAddress 0x2000
SizeOfRawData 0xc00
PointerToRawData 0x1200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.77816

.data

MD5 550b6d19eefd3a6f89a89a9be78fdbaf
SHA1 8ecc1f32ace62555c4813cde841b42d4d2b96f5a
SHA256 001cc148d185d7d29246eff5375f33b25cb070b959413a1f8dcf1ec3a4475bbd
SHA3 cf54e2e6646dab051d22e2fb2f63c5526b6cd7107b05660aa03783d21ec08748
VirtualSize 0x384
VirtualAddress 0x3000
SizeOfRawData 0x200
PointerToRawData 0x1e00
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Entropy 0.280401

.gfids

MD5 b65f8c4251948181c105796e168065b2
SHA1 9d804be793851218afaf0822c2c560016cb72de2
SHA256 8111fe16443bb5990117bde86f61369b0fc5714be37ba5e3070ffa06eea15ae2
SHA3 0d18c5c7f2f85a16fcd54e821af3b50388ea74ad6da3944fa8f2e7c92c8801b1
VirtualSize 0x20
VirtualAddress 0x4000
SizeOfRawData 0x200
PointerToRawData 0x2000
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 0.159084

.rsrc

MD5 4dde323af9808a00b376d6895922dc1f
SHA1 bcafff5b6284bc83d01296b1ba160d28faee6ef9
SHA256 79e650fc0d108f0b5cb909904d5cb598b02b04f7c06be6c8622dd073aac8f762
SHA3 d353d855c24ba1ddc170eaeed3be531d0764013724d92ea267b1d5be7264f0d2
VirtualSize 0x1e0
VirtualAddress 0x5000
SizeOfRawData 0x200
PointerToRawData 0x2200
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Entropy 4.69612

.reloc

MD5 2acb1cb74e63ee0ce004cc6685481fe3
SHA1 20861ec78e32f0b15ddbcf646ffa569995a4e1ef
SHA256 067f6828ff5736e16ae48d6c04ad450cf6b730afc51c7ddddea79372c1f327dc
SHA3 1b66ca4c17308c81e06fc79a3bb9f309e33354110f027a8eca301ab482027ee7
VirtualSize 0x154
VirtualAddress 0x6000
SizeOfRawData 0x200
PointerToRawData 0x2400
PointerToRelocations 0
PointerToLineNumbers 0
NumberOfLineNumbers 0
NumberOfRelocations 0
Characteristics IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Entropy 4.80277

Imports

VCRUNTIME140.dll memset
_except_handler4_common
api-ms-win-crt-stdio-l1-1-0.dll __p__commode
__acrt_iob_func
_set_fmode
__stdio_common_vfprintf
getchar
gets_s
api-ms-win-crt-convert-l1-1-0.dll atoi
api-ms-win-crt-string-l1-1-0.dll strlen
api-ms-win-crt-runtime-l1-1-0.dll _register_thread_local_exe_atexit_callback
__p___argc
_seh_filter_exe
_initterm_e
_initialize_onexit_table
_exit
_c_exit
_crt_atexit
_controlfp_s
terminate
_set_app_type
exit
_cexit
__p___argv
_register_onexit_function
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
api-ms-win-crt-math-l1-1-0.dll __setusermatherr
api-ms-win-crt-locale-l1-1-0.dll _configthreadlocale
api-ms-win-crt-heap-l1-1-0.dll _set_new_mode
KERNEL32.dll SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
UnhandledExceptionFilter

Delayed Imports

1

Type RT_MANIFEST
Language English - United States
Codepage UNKNOWN
Size 0x17d
TimeDateStamp 1980-Jan-01 00:00:00
Entropy 4.91161
MD5 1e4a89b11eae0fcf8bb5fdd5ec3b6f61
SHA1 4260284ce14278c397aaf6f389c1609b0ab0ce51
SHA256 4bb79dcea0a901f7d9eac5aa05728ae92acb42e0cb22e5dd14134f4421a3d8df
SHA3 4bb9e8b5a714cae82782f3831cc2d45f4bf4a50a755fe584d2d1893129d68353

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics 0
TimeDateStamp 2016-Nov-11 10:38:34
Version 0.0
SizeofData 129
AddressOfRawData 0x2274
PointerToRawData 0x1474
Referenced File c:\users\ricna\documents\visual studio 2015\Projects\ConsoleApplication3\Release\ConsoleApplication3.pdb

IMAGE_DEBUG_TYPE_VC_FEATURE

Characteristics 0
TimeDateStamp 2016-Nov-11 10:38:34
Version 0.0
SizeofData 20
AddressOfRawData 0x22f8
PointerToRawData 0x14f8

IMAGE_DEBUG_TYPE_POGO

Characteristics 0
TimeDateStamp 2016-Nov-11 10:38:34
Version 0.0
SizeofData 616
AddressOfRawData 0x230c
PointerToRawData 0x150c

IMAGE_DEBUG_TYPE_ILTCG

Characteristics 0
TimeDateStamp 2016-Nov-11 10:38:34
Version 0.0
SizeofData 0
AddressOfRawData 0
PointerToRawData 0

TLS Callbacks

Load Configuration

Size 0x5c
TimeDateStamp 1970-Jan-01 00:00:00
Version 0.0
GlobalFlagsClear (EMPTY)
GlobalFlagsSet (EMPTY)
CriticalSectionDefaultTimeout 0
DeCommitFreeBlockThreshold 0
DeCommitTotalFreeThreshold 0
LockPrefixTable 0
MaximumAllocationSize 0
VirtualMemoryThreshold 0
ProcessAffinityMask 0
ProcessHeapFlags (EMPTY)
CSDVersion 0
Reserved1 0
EditList 0
SecurityCookie 0x403004
SEHandlerTable 0x402270
SEHandlerCount 1

RICH Header

XOR Key 0x805f7ae0
Unmarked objects 0
Imports (VS2008 SP1 build 30729) 14
Imports (VS2015 UPD3 build 24123) 3
ASM objects (VS2015 UPD3 build 24123) 1
C++ objects (VS2015 UPD3 build 24123) 18
C objects (VS2015 UPD3 build 24123) 13
Imports (65501) 2
Total imports 49
C++ objects (VS2015 UPD3 build 24213) 2
Resource objects (VS2015 UPD3 build 24210) 1
Linker (VS2015 UPD3 build 24213) 1

Errors

<-- -->