Manalyze report for c41bfd120af2b93178db23974fe3740f

This file seems to be a .NET executable.
Sadly, Manalyzer's analysis techniques were designed for native code, so it's likely that this report won't tell you much.
Sorry!

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2019-Oct-05 16:33:53
Comments
CompanyName
FileDescription
FileVersion	`0.0.0.0`
InternalName	KayTest.exe
LegalCopyright
LegalTrademarks
OriginalFilename	KayTest.exe
ProductName
ProductVersion	`0.0.0.0`
Assembly Version	0.0.0.0

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C# v7.0 / Basic .NET` `Microsoft Visual C++ 8.0` `.NET executable -> Microsoft`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`c41bfd120af2b93178db23974fe3740f`
SHA1	`019e2f809928703f957add34e5213da6d2688136`
SHA256	`a7b750562607957c717a443420671294f0c63369e8c00814db07e32fa7a635d8`
SHA3	`2c3728b77fd8fbbbd349eeb7b2ff34476ac71ba7c6fb9aeacb14f465853de619`
SSDeep	`24:etGSQvNM3o8qZao8oqhRkXsD7Hh4JixMAOPuZhNBG0gXx/32PNnq:6Q1M3oTaOq3kcDrWJiJOPuls0aPKq`
Imports Hash	`f34d5f2d4577ed6d9ceec516c1f5a744`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2019-Oct-05 16:33:53
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`6.0`
SizeOfCode	`0x1000`
SizeOfInitializedData	`0x2000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000241E (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0x4000`
ImageBase	`0x400000`
SectionAlignment	`0x2000`
FileAlignment	`0x1000`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x8000`
SizeOfHeaders	`0x1000`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_NO_SEH`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`67ea38eb520982757635bcfaef8abc7f`
SHA1	`13e6c0b8936f2a0b6a91a77da15748942f6aea42`
SHA256	`79038fce50ef16244945f405b0bda9aa890f9f74d97cee93d876e64877c316e5`
SHA3	`f51a4fb62ea9665a9986b93cde9f8bb7f897c0c3250297318d180091d76cab9e`
VirtualSize	`0x424`
VirtualAddress	`0x2000`
SizeOfRawData	`0x1000`
PointerToRawData	`0x1000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`1.35434`

.rsrc

MD5	`f4747998989c9369a9b5cbcaa5026361`
SHA1	`ddff2fc124eb41d7748068fdc1046fe9d2600c03`
SHA256	`28a6f3a1e13d1e527a5a7821b8909be5b83a0bc2c83a0eed31739e20b2c6e9af`
SHA3	`98dfc235bba815d8e65d656eed5a4d068d34c1da2b674473aafdfa5e20d16522`
VirtualSize	`0x330`
VirtualAddress	`0x4000`
SizeOfRawData	`0x1000`
PointerToRawData	`0x2000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`0.812911`

.reloc

MD5	`45cc228bcd37420e3abb1a3fa6d7b23e`
SHA1	`ebe891a25798786942b91419ee567ab7d04923ff`
SHA256	`2a7be4f5ff9827ca6c28acba4549f6f93a3a5ab332425358f3d5f351f80e5db1`
SHA3	`b5f371db78a6f47d669c01051bb82fe349eece9c2e9b0efc423d786ff0000a2c`
VirtualSize	`0xc`
VirtualAddress	`0x6000`
SizeOfRawData	`0x1000`
PointerToRawData	`0x3000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.0126387`

Imports

mscoree.dll	`_CorExeMain`

Delayed Imports

1

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x2d4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.20779`
MD5	`527b6f8a00897e3785982059a8088688`
SHA1	`b0b1459fbda3995567cdbd46efebe72dbbc808a9`
SHA256	`72ab90dcee22eb125b048f20ff55ec72ac56ef1ad1ea43ccd030f5a12b2c8900`
SHA3	`d5ba7bd794fd6710a9686765519e9ad3d5b9cd64046af3f2926f8b5960829107`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	0.0.0.0
ProductVersion	0.0.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	UNKNOWN
Comments
CompanyName
FileDescription
FileVersion (#2)	0.0.0.0
InternalName	KayTest.exe
LegalCopyright
LegalTrademarks
OriginalFilename	KayTest.exe
ProductName
ProductVersion (#2)	0.0.0.0
Assembly Version	0.0.0.0

Resource LangID	UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

c41bfd120af2b93178db23974fe3740f

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rsrc

.reloc

Imports

Delayed Imports

1

Version Info

TLS Callbacks

Load Configuration

RICH Header

Errors