Manalyze report for d276d61a291da029cc24fd90a31683f0

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
Compilation Date	2067-Mar-01 18:46:15
Debug artifacts	C:\Users\zhous\Documents\workspace\scanmasterplus\UploadMain\obj\Debug\UploadMain.pdb
Comments
CompanyName	HP Inc.
FileDescription	UploadMain
FileVersion	`1.0.0.0`
InternalName	UploadMain.dll
LegalCopyright	Copyright © HP Inc. 2021
LegalTrademarks
OriginalFilename	UploadMain.dll
ProductName	UploadMain
ProductVersion	`1.0.0.0`
Assembly Version	1.0.0.0

Plugin Output

Suspicious	The PE is possibly packed.	`The PE only has 1 import(s).`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`d276d61a291da029cc24fd90a31683f0`
SHA1	`bfe81e563130b37a19f9063ebe6e1418f844ba8d`
SHA256	`7fc5e316a170073c3dfd56b1504c004ba26f7d56c23b770e6666bb6b96508a8a`
SHA3	`32431df1ddb3dcdec590baae32a16ed62f8db2f12552b2e0b4826b369f14003f`
SSDeep	`96:d9t0djyxeuaijLe7otFl6K6GrD6WcNUDlfKqTxUCter3mlz:B0Ry4ijLUgvtrIKtN8rgz`
Imports Hash	`dae02f32a21e03ce65412f6e56942daa`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x80`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`3`
TimeDateStamp	2067-Mar-01 18:46:15
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_DLL` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32`
LinkerVersion	`48.0`
SizeOfCode	`0x1600`
SizeOfInitializedData	`0x600`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000340A (Section: .text)`
BaseOfCode	`0x2000`
BaseOfData	`0x4000`
ImageBase	`0x10000000`
SectionAlignment	`0x2000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0x8000`
SizeOfHeaders	`0x200`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_CUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NO_SEH` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`3b209dfd09fa9d061d08269b3cb20699`
SHA1	`05bfb8985347e90ce58b6697bb19e3f4f14725cf`
SHA256	`1d80c99aef5213cab9df5f41eccd9a00abd9ef6a05ee64a19509ded705f60f48`
SHA3	`244138518270c776e672af1298e9ac9e49fac1bd6c9b660fa49dab499b81c402`
VirtualSize	`0x1410`
VirtualAddress	`0x2000`
SizeOfRawData	`0x1600`
PointerToRawData	`0x200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`5.08301`

.rsrc

MD5	`137b14b78d68fae9cce83bb24a4bf395`
SHA1	`d5167b5dcf668ad276e012c748ad66c483967e18`
SHA256	`63e65502fdef1fdf0b403efe052ca4688a72b7615aafa05516653a22185f5619`
SHA3	`54d1cc647320aaa01db6980b7484c5f1c837051e4499601f8ac87cec1db82f41`
VirtualSize	`0x3a4`
VirtualAddress	`0x4000`
SizeOfRawData	`0x400`
PointerToRawData	`0x1800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`2.92296`

.reloc

MD5	`7e869ecfab8500f7ae684d163ce13bb6`
SHA1	`eaa1d4626adee0a511eca29d5f6aa5fb084351f0`
SHA256	`daf348d3df7fbddad3259cc404fc2cced5777744750ffa648d20c7bc3519966d`
SHA3	`0b2f25d65db5c5f44724e04c0c6f4bc6d74828e02427066c3147d03ecb5d2c2a`
VirtualSize	`0xc`
VirtualAddress	`0x6000`
SizeOfRawData	`0x200`
PointerToRawData	`0x1c00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.0776332`

Imports

mscoree.dll	`_CorDllMain`

Delayed Imports

1

Type	`RT_VERSION`
Language	UNKNOWN
Codepage	UNKNOWN
Size	`0x348`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.27548`
MD5	`9f5ebdc5ff2f84dda5933ae646dc3414`
SHA1	`d277ae284671068ea2d395e4603f65a27fb50430`
SHA256	`dcec60348e4dc1bbdde34d0e8adf66a4d3467ebf040fa6534d1e1c9a94ee195c`
SHA3	`7ca8b3a6ae64babe7f7a6d64ca41493ed97870cb1f2d273eef6c60575b79e588`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.0.0.0
ProductVersion	1.0.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_DLL`
Language	UNKNOWN
Comments
CompanyName	HP Inc.
FileDescription	UploadMain
FileVersion (#2)	1.0.0.0
InternalName	UploadMain.dll
LegalCopyright	Copyright © HP Inc. 2021
LegalTrademarks
OriginalFilename	UploadMain.dll
ProductName	UploadMain
ProductVersion (#2)	1.0.0.0
Assembly Version	1.0.0.0

Resource LangID	UNKNOWN

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2066-Apr-24 06:28:26
Version	`0.0`
SizeofData	`110`
AddressOfRawData	`0x3348`
PointerToRawData	`0x1548`
Referenced File	C:\Users\zhous\Documents\workspace\scanmasterplus\UploadMain\obj\Debug\UploadMain.pdb

UNKNOWN

Characteristics	`0`
TimeDateStamp	1970-Jan-01 00:00:00
Version	`0.0`
SizeofData	`0`
AddressOfRawData	`0`
PointerToRawData	`0`

TLS Callbacks

Load Configuration

RICH Header

d276d61a291da029cc24fd90a31683f0

Summary

Plugin Output

Hashes

DOS Header

PE Header

Image Optional Header

.text

.rsrc

.reloc

Imports

Delayed Imports

1

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

UNKNOWN

TLS Callbacks

Load Configuration

RICH Header

Errors