Manalyze report for d8ec7afe761a221755987b1b4dc695c7

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2062-Jul-25 12:18:00
Detected languages	Chinese - PRC English - United States
Debug artifacts	wextract.pdb
CompanyName	Microsoft Corporation
FileDescription	Win32 CAB 自动解压缩程序
FileVersion	`11.00.19041.1706 (WinBuild.160101.0800)`
InternalName	Wextract
LegalCopyright	© Microsoft Corporation. All rights reserved.
OriginalFilename	WEXTRACT.EXE .MUI
ProductName	Internet Explorer
ProductVersion	`11.00.19041.1706`

Plugin Output

Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains references to system / monitoring tools: rundll32.exe` `May have dropper capabilities: CurrentVersion\Run` `Contains domain names: Command.com`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA GetProcAddress LoadLibraryExA` `Can access the registry: RegDeleteValueA RegOpenKeyExA RegQueryInfoKeyA RegSetValueExA RegCreateKeyExA RegQueryValueExA RegCloseKey` `Possibly launches other programs: CreateProcessA` `Can create temporary files: GetTempPathA CreateFileA` `Functions related to the privilege level: OpenProcessToken AdjustTokenPrivileges` `Enumerates local disk drives: GetDriveTypeA GetVolumeInformationA` `Can shut the system down or lock the screen: ExitWindowsEx`
Malicious	The PE header may have been manually modified.	`Resource CABINET detected as a CAB Installer file.` `The resource timestamps differ from the PE header: 1982-Dec-19 00:56:02` `Resources amount for 79.2302% of the executable.`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`d8ec7afe761a221755987b1b4dc695c7`
SHA1	`7d36e5431bfc99c458741960c553cd41a977f33e`
SHA256	`5d77610e76218159b7263d8be539d3b33da447d6ab4fddebe86cb3af4a34a9ef`
SHA3	`af380530928051fbe6c66ec81812efebb4348845173f12b20c907f8728f9e9e8`
SSDeep	`3072:nahKyd2n3195GWp1icKAArDZz4N9GhbkrNEkuIroMf4+M0iAeOI9Kughw:nahOdp0yN90QER3+M09I5`
Imports Hash	`4cea7ae85c87ddc7295d39ff9cda31d1`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xe8`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`6`
TimeDateStamp	2062-Jul-25 12:18:00
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`14.0`
SizeOfCode	`0x7c00`
SizeOfInitializedData	`0x30600`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000000000008200 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`A.0`
ImageVersion	`A.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0x3e000`
SizeOfHeaders	`0x400`
Checksum	`0x422b4`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE` `IMAGE_DLLCHARACTERISTICS_GUARD_CF` `IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA` `IMAGE_DLLCHARACTERISTICS_NX_COMPAT` `IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE`
SizeofStackReserve	`0x80000`
SizeofStackCommit	`0x2000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`60800deac1fde21b98089f2241ee6168`
SHA1	`06e63be17d4a58c8b55b36c7342e541d00d61a93`
SHA256	`7576ef50474bb26481c3493e0a630b944feb21231eacea2318712911f9feb056`
SHA3	`b737d0c76b4aba5f95bb178d2645d9d3a3130dd54c89a8dd6b221e38342208af`
VirtualSize	`0x7b80`
VirtualAddress	`0x1000`
SizeOfRawData	`0x7c00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.09626`

.rdata

MD5	`59d15cdf89780817c3d48dd588a6a129`
SHA1	`3b5f897036bf0d72ebd732362c8f60d2e1f1a5cf`
SHA256	`c7d4b98f92719ae90c3c37301242982e9f347e1d63c6f755cd1ac151b0be3873`
SHA3	`5ec34004d600d72bf223f1daf5441dd3f247a2c6adfd93f8dd14c4d1f9e383cf`
VirtualSize	`0x22c8`
VirtualAddress	`0x9000`
SizeOfRawData	`0x2400`
PointerToRawData	`0x8000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.72784`

.data

MD5	`9d1580dccaf8e787a43caf4bba48a079`
SHA1	`7f0ee10c956d86fef4e6351c3ee77dd00350a9c9`
SHA256	`63b8e6b32cd23956319cc43c5d0c7e44d067103511f800431a852978fced638a`
SHA3	`eaa542af2b1efe6c1307241883ded87cfcd9ecb44ee51891f77232e6245e845d`
VirtualSize	`0x1f00`
VirtualAddress	`0xc000`
SizeOfRawData	`0x400`
PointerToRawData	`0xa400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`3.18898`

.pdata

MD5	`15cd12257317071f28e4f7b728f8825e`
SHA1	`ad44ea7406ea6c51a0ab1ea04598f448ce47d593`
SHA256	`2150243a9c4f52a071023ab21b5bb12c148640bff6d9518cab89f5091049d4b5`
SHA3	`adaa5da9018ff6e4d33f0106e25683e01c6266e194b050acc98cfb348fa6beb7`
VirtualSize	`0x408`
VirtualAddress	`0xe000`
SizeOfRawData	`0x600`
PointerToRawData	`0xa800`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`3.15637`

.rsrc

MD5	`ef119a95c36311fae9941d5fd1e045b1`
SHA1	`4dfa84a89e40ed36bc8ac268f68fd16ce313f4c7`
SHA256	`cf367e730325fb2cb52555a3ccc8da773abfa7996518745ce1d1c16b069510b5`
SHA3	`a48b6a74759cd0990ea79930e3614044ec27c3eb6d27747b98588a836f00c113`
VirtualSize	`0x2e000`
VirtualAddress	`0xf000`
SizeOfRawData	`0x2d600`
PointerToRawData	`0xae00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`7.40877`

.reloc

MD5	`637787151ee546a94902de9694a58fd6`
SHA1	`4d5087ba3cb6a051543140baca75212fa7ac8e34`
SHA256	`61761b1f8715b59dfcdbab9a0f91fc990cdf0df65933bd7bec2aa058652dbfc8`
SHA3	`0cae7f0be3ed96ab0bb05262b46cf279e081b2c80bed7957f5795c8fdc2267bf`
VirtualSize	`0x20`
VirtualAddress	`0x3d000`
SizeOfRawData	`0x200`
PointerToRawData	`0x38400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_DISCARDABLE` `IMAGE_SCN_MEM_READ`
Entropy	`0.406847`

Imports

ADVAPI32.dll	`GetTokenInformation` `RegDeleteValueA` `RegOpenKeyExA` `RegQueryInfoKeyA` `FreeSid` `OpenProcessToken` `RegSetValueExA` `RegCreateKeyExA` `LookupPrivilegeValueA` `AllocateAndInitializeSid` `RegQueryValueExA` `EqualSid` `RegCloseKey` `AdjustTokenPrivileges`
KERNEL32.dll	`_lopen` `_llseek` `CompareStringA` `GetLastError` `GetFileAttributesA` `GetSystemDirectoryA` `LoadLibraryA` `DeleteFileA` `GlobalAlloc` `GlobalFree` `CloseHandle` `WritePrivateProfileStringA` `IsDBCSLeadByte` `GetWindowsDirectoryA` `SetFileAttributesA` `GetProcAddress` `GlobalLock` `LocalFree` `RemoveDirectoryA` `FreeLibrary` `_lclose` `CreateDirectoryA` `GetPrivateProfileIntA` `GetPrivateProfileStringA` `GlobalUnlock` `ReadFile` `SizeofResource` `WriteFile` `GetDriveTypeA` `LoadLibraryExA` `SetFileTime` `SetFilePointer` `FindResourceA` `CreateMutexA` `GetVolumeInformationA` `WaitForSingleObject` `GetCurrentDirectoryA` `FreeResource` `GetVersion` `SetCurrentDirectoryA` `GetTempPathA` `LocalFileTimeToFileTime` `CreateFileA` `SetEvent` `TerminateThread` `GetVersionExA` `LockResource` `GetSystemInfo` `CreateThread` `ResetEvent` `LoadResource` `ExitProcess` `GetModuleHandleW` `CreateProcessA` `FormatMessageA` `GetTempFileNameA` `DosDateTimeToFileTime` `CreateEventA` `GetExitCodeProcess` `ExpandEnvironmentStringsA` `LocalAlloc` `lstrcmpA` `FindNextFileA` `GetCurrentProcess` `FindFirstFileA` `GetModuleFileNameA` `GetShortPathNameA` `Sleep` `GetStartupInfoW` `RtlCaptureContext` `RtlLookupFunctionEntry` `RtlVirtualUnwind` `UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `TerminateProcess` `QueryPerformanceCounter` `GetCurrentProcessId` `GetCurrentThreadId` `GetSystemTimeAsFileTime` `GetTickCount` `EnumResourceLanguagesA` `GetDiskFreeSpaceA` `MulDiv` `FindClose`
GDI32.dll	`GetDeviceCaps`
USER32.dll	`ShowWindow` `MsgWaitForMultipleObjects` `SetWindowPos` `GetDC` `GetWindowRect` `DispatchMessageA` `GetSystemMetrics` `CallWindowProcA` `SetWindowTextA` `MessageBoxA` `SendDlgItemMessageA` `SendMessageA` `GetDlgItem` `DialogBoxIndirectParamA` `GetWindowLongPtrA` `SetWindowLongPtrA` `SetForegroundWindow` `ReleaseDC` `EnableWindow` `CharNextA` `LoadStringA` `CharPrevA` `EndDialog` `MessageBeep` `ExitWindowsEx` `SetDlgItemTextA` `CharUpperA` `GetDesktopWindow` `PeekMessageA` `GetDlgItemTextA`
msvcrt.dll	`?terminate@@YAXXZ` `_commode` `_fmode` `_acmdln` `__C_specific_handler` `memset` `__setusermatherr` `_ismbblead` `_cexit` `_exit` `exit` `__set_app_type` `__getmainargs` `_amsg_exit` `_XcptFilter` `memcpy_s` `_vsnprintf` `_initterm` `memcpy`
COMCTL32.dll	`#17`
Cabinet.dll	`#20` `#21` `#23` `#22`
VERSION.dll	`VerQueryValueA` `GetFileVersionInfoSizeA` `GetFileVersionInfoA`

Delayed Imports

3001

Type	`AVI`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x2e1a`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.52241`
Detected Filetype	AVI Resource Interchange File Format
Detected Filetype (#2)	Windows animated cursor
MD5	`f9035cf32b756fd6a452e9fdfd4a5dd9`
SHA1	`6912e88a3ee4d2c98ca69772cec564c6334fd9c4`
SHA256	`3bd1d253c90f7e82dc70dc1e4b869cc2e5e154e6b4079be93837e4a6c68044c0`
SHA3	`8cd00290363b6d3e609845f2e5828f3e2adaf35c4a97561bcf427bbd054401a6`

1

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x668`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.0699`
MD5	`1119ea8ccf13471c5cb7981c00112bd1`
SHA1	`5311a1759e6269a3cb555795379241550dc70baf`
SHA256	`689e072bec88a4f92eeadc6ada816cbcbedc4de9e76b27c38183f820bcc11e04`
SHA3	`2829f8159ff036d9f6a40b9fad5416e1c3458ad61e83e0139a92c36620b75e99`

2

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x2e8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.15864`
MD5	`46db957427f76e2faed509fa0f083815`
SHA1	`9f062ff76b99cdbbdbc040adca1ec94fd7e0ebf8`
SHA256	`3032bc8ec0d2b10c731ce65338958a69401a6ea5c13bf43236be1cadfaaa796f`
SHA3	`d64af304edb5ed919be1e617b3194ad9d40d97f07942bc10ffe3529713358797`

3

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1e8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.07737`
MD5	`53892c6e1aa6882a0e541da89c8bed9b`
SHA1	`74093737e0c001a618623b84ae2a7c0ae105870b`
SHA256	`c6f49cc3ab503756f46a301d8543d1ed4db7e037b4df86407d24de6542a9b241`
SHA3	`28c5ddd935a6f3e2a9112068eb23447d12c5b75a05fabd52aba335a36d3cd694`

4

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x128`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.50949`
MD5	`77c3fdd8ab3a5023f948ef9dc0a75588`
SHA1	`3c10786225e3af4724ad179081ab67b7bdddb002`
SHA256	`472af970994f80d1368af62de093894cdef4e2ea76f661eabc49e4f7e41a5860`
SHA3	`c7ef5cf31e71ee1211fe1b9ec1aab03e0cc3d9c88d358837f2bf4982d8e83469`

5

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xea8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.56662`
MD5	`9291ba83d585b4e27b489e5e6c0b9e6d`
SHA1	`6a1823c83ba0ee8a9088c2d96c951ff7b0aad0ed`
SHA256	`828bf50bd62a7fca6f0ee8d03970215d1550d31a4f9382b1608b76742ef8aa95`
SHA3	`2201c2224048249b39ff38a95ea21061ad85214a9912fb00474b96082ce81112`

6

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x8a8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.94251`
MD5	`dd6416457884b08fb3b97e48cd8b296d`
SHA1	`460407ba589b388b7095dac3cba861d07d0bc32d`
SHA256	`5a2bcb6347493ac6873330f55603ae586a8b21ab1a7137f7b326b6e682827892`
SHA3	`ff855ab2a14ba17cb2d90b6bdaee4e2257ee959788fa22e7a62a25a86fe401ec`

7

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x6c8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.99361`
MD5	`d9189a0ae5a4ce576b2cd6a3aee869d2`
SHA1	`546acefecec2664dafd9c62b84211d32c5c25ddc`
SHA256	`563e2c3128746f769950f3ccb9267525888c91c6437692a719541acd71afad5c`
SHA3	`4589be5962a881128d7157d9d319ba7ed7c15b7a5c322de0ce2ec6b795bf4191`

8

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x568`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.37828`
MD5	`ff4b77125d8d6dd0bb13557a6e043d70`
SHA1	`4f401d2b2fdd25337757c115b0c3d16850ee90df`
SHA256	`4429f0eabd35418cb2022378e73ee2e766841d35aca4a8b7369359d1341304fe`
SHA3	`915504672b75c8aa786fa9065ade3aaccb2a03a46fe59b92c0f65e502ae43196`

9

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xd9d2`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`7.98515`
Detected Filetype	PNG graphic file
MD5	`d58effc60f9809303be37c9da12ec938`
SHA1	`5f5d1459f715b6d7ac0c9f5e6c86112d02c611a8`
SHA256	`f169eed8248d8f9efd20dd716790f2b3bb0547687546811b4137be21b5c63b71`
SHA3	`927f706c7c34a5b18477f72fb37fca3487c206f65f015b40463be7083a461c7b`

10

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x25a8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.33023`
MD5	`6f18b3932aca200c19eda2c0a8389fe2`
SHA1	`454e38e44e9570502d4134818f983e6b3514c595`
SHA256	`ebfd8bce706bc334ada961a2489fb266101c8960e05bd20fbf2e8ee66af64060`
SHA3	`2f401e2395d28434ceed9c91f17de1595dcfd794e537304dd0c8867ea9c4be60`

11

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x10a8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.61313`
MD5	`56e519ddae3afada70d9d5afc3e20414`
SHA1	`584a6b17a1a2174921a185cc123bb8e609f0f0ba`
SHA256	`fa6b2f5422746f7377a3ed24f2b108f04f963caa0cc096c51cb49ac74266b107`
SHA3	`1896fe210c328289e0e771e497715e6c92d6e2545625858358002ceb5d1c7ee9`

12

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x988`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.90788`
MD5	`5102430eabaa9f88a657c8a2d9a00547`
SHA1	`6f202d879a72db4c054632a883f9d3c3d1a28dac`
SHA256	`6f44d16ede32521ef7336056baff805a3305f225430de3bd01203ff0625c23d1`
SHA3	`5e8efdae85f063f0502553f6fe4fd93d6882663a77b5513c8e06b5e23f1f99a0`

13

Type	`RT_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x468`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`4.85349`
MD5	`6948b3a73688c3ea8fbd7f533a579e25`
SHA1	`931d017e52aa63fec9f1401436e07e3df2573e1b`
SHA256	`8561da4d70ae051d1f146859ba0b50467258730daae8af73726e0700c034b737`
SHA3	`2e6fc86970dfb7e8d036900a05d4c89591b3ab0a597a5074ea56489aa68d3414`

2001

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x2f2`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.25575`
MD5	`733ab5b92105575b10e4716e64f874a7`
SHA1	`84177368dd4658cebdc991269a7584907f5dcc57`
SHA256	`ea6588cf6a9eaa2daaeace3bcd90ad19cfaca72505c0cbba9f10a0db2923d888`
SHA3	`7ed0210cc660b29977851bb04b3cf3c27eb4ea9953117e019b774d7b974ec128`

2001 (#2)

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x1ba`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`4.74035`
MD5	`87ed76ef8c6a1592f3bb8ba5bd3e84e3`
SHA1	`201ab455327e046389330805dbf31b4827de9706`
SHA256	`bdbfafbb7a453d87b75256c9f7f539f3ee4152973563e0ea193a28496998eec5`
SHA3	`cff9d415f11a4411749abccdfd238a5118453233038ec00b15381ed7fb278438`

2002

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1b0`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.16025`
MD5	`57c16fb56b83819ba4b6267c6dddb013`
SHA1	`1477b9eb543fbd469c392064e4147d47e74dbb46`
SHA256	`1abfad902cece4ff79c75ee25d79fe254e3c6af72c161295c7ba006e56cd74b1`
SHA3	`941c199bcd737811c390814980c5ac4b546ef6538677f9599de9e7afed0bcb46`

2002 (#2)

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x130`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.6479`
MD5	`0558e8cafcd1870eab2db96bfa8a4161`
SHA1	`4d3e10cf0dd0504501b989a573f16b391d2951f5`
SHA256	`77f8c929fcefacef115f04c36bb9b5dd048b59e80e6ca1f4c4a45eaad7bd6848`
SHA3	`1a462cdec0101fe75f3019915de960fc6977a1f723527f47c209e2fe26a63688`

2003

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x166`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.99713`
MD5	`dc468a007b317c7439d83a5985cea5a7`
SHA1	`3d89aacc7eebd8c046e2f0e95f66b2b54d577568`
SHA256	`ec8a0548b6bb169afe513ec8a366e746255c3556fe66c95067756fb3ec8b895b`
SHA3	`505917a9fccb89b46551e12f0ced60758a952248cd6f0f7c69967e2e6eabea8d`

2003 (#2)

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x126`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.29313`
MD5	`1c05ca582db92394cdf6225042b24985`
SHA1	`48d18ba3ab56f995810d42ce01406c2b10398982`
SHA256	`1d54c3073262021a0da8eef028b1448b4ea691c6c44f32104816208fe9c335a4`
SHA3	`01fc7bf26bd21d1893baca2ebb34e9238abaec59eca1c581ee4de55abde0cf69`

2004

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x1c0`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.11992`
MD5	`a5187dc5894162b201fe774046408732`
SHA1	`81611f2aa32cfc8b03f00856f319870e97554b7d`
SHA256	`a3565ee9a8656bbdf37e3a50d14d954280cba4895576687a261200aefa1b5b39`
SHA3	`f9fe30ec54d6b149fa57e2cff2eeece6354e12fb7903c85ec221418ac11e94d0`

2004 (#2)

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x18c`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.50553`
MD5	`4b9864b6071fb072007326610aeec617`
SHA1	`523c9fbd91c58a00636131794df9f44675ac7b56`
SHA256	`960a7953510d76fcddd886cfda127c14ae3923f29e23e9b32ed6b7a5131aa46f`
SHA3	`448b9c7d6469514a168a608b140ed9aff280825f7bbe4b9edab9a5f70ff4f950`

2005

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x130`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.97326`
MD5	`ecc5f63aedee66cebcda9ed8fcb3e9f7`
SHA1	`60fadb22b7c1ac3638b8a4d12e2cbe174941ac71`
SHA256	`238d6c2e50312c555901a61e92afad3c7c6b42b9abd5acdda68658c2e2b48678`
SHA3	`b0eb2e4784dc0ae082c941596324510ddcdcd045da590b9db81d1c41f08f02da`

2005 (#2)

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xfc`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.49918`
MD5	`69749eaad4103e3fa735ca6598d7ad19`
SHA1	`709fad728e88259511640cbca4fcbbb56e7d7162`
SHA256	`d12787e0ae81bfc6a64ec0d22e93aa10b6a79eaae52376cc6b4d895f90a8869f`
SHA3	`dba2a76064b3d8485616e58e9847830f158a2c1cbb597d85e98ab1d77f257aeb`

2006

Type	`RT_DIALOG`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x120`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.97672`
MD5	`42e1aa8919d27f02bcfc6981dbe5248e`
SHA1	`ec432b9979fad89557dd0b0ff1de774750f03f76`
SHA256	`cc21e9115c14c21af11786ff781dcf25c81beda500acf4966d0ddc7260610b06`
SHA3	`a11e5a0307464c1c66d9615a47d5568ab6bcd39c6bd6858842ad3c535272a129`

2006 (#2)

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xf2`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.28193`
MD5	`8e3bae941359d66fa83a9e1ed9c74374`
SHA1	`5ad4f838420210afa283ff195dc166e34fb07a87`
SHA256	`70ad5415ce00f8cde8e602aca3ad4a62462c4c03651d10d20e329771ca2bb9cd`
SHA3	`d7c4523019e050a631bd3a7182c189fe5c6ca1c03ff14feb3a224007a0751ba1`

63

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x8c`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.48958`
MD5	`ad0fe039aecc9c8af6f573923f182a0a`
SHA1	`b4fd492a37127d31fc36b7bd07084cc2f1ae18a1`
SHA256	`29b228ae95784d37b8729fe88e3bf1346c4b1339231dd1e9f702fab0654c5b1f`
SHA3	`7a67b4664ab18841c125d33dbe110fe774b16f91d1471094307c0ac35be5d8a8`

63 (#2)

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x44`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.54695`
MD5	`f8e6111586552f2ab67a317fdda4fc01`
SHA1	`9593ca2f46f7be71881808bfc5dfa1f1087a6060`
SHA256	`e00eff721e26c2aedb06f37340829861233e1d7d792caa8eeb0c487dbf06d37e`
SHA3	`cc3d1d32744f9e3b9f6edd23596149ff556e844e4216e9d5fdaeaacf22f1ad5a`

76

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x520`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.2674`
MD5	`0f3f664bff00f8c4a1b42349d2956963`
SHA1	`d0ec056db75705bd79b7ebf1767c91dce955d79a`
SHA256	`7cc882dbb9f1315968f31bf40b57a535ff468271e253575752e03cb4aaa25f0c`
SHA3	`a81b1ab97bb98d4fb6d1619bf8bdee495b3176693e77305e438805563e952b91`

76 (#2)

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x1c6`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`6.39463`
MD5	`651fcbbb27c8b02d7e73ff721d40d7e7`
SHA1	`b380354b75bcc4ea90f1c04f3724d52e8fac43f4`
SHA256	`8f090c9475d590706569bc485928574cdb2113c34e2da26a88b68398080aa2f9`
SHA3	`ca3b4974188631648ff103df6d9d891ff27f3d4189cf865dc72d2eda573578a9`

77

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x5cc`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.29977`
MD5	`5f3ef55a113dc5f00ffc647e8be50df1`
SHA1	`cf04ac59ce78d6b2ffde0990ef76cf40ee1c439b`
SHA256	`3f715c8970d240cb57ba8ae8914ea8385b42728ffd48a3916493422a80cc3ed4`
SHA3	`fdabc44cd05ee45599b1e28ee3ca323cd6768db6606bffe95ceb6025b31b4d2f`

77 (#2)

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x296`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.76287`
MD5	`8c6bff2c1f2181067a798ffee04eda57`
SHA1	`91dda9d3e0f28e88b3c50d1342795d40adbb68d9`
SHA256	`dd70e4e44de44d7d0504c37e6a99a348e1f84e18e88ec60730e3b8dc8fdd6124`
SHA3	`bdb0e4958ef4b1a895acebee67ed04c023173a1efea432f66cdf556d933a0dc1`

80

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x4b0`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.27174`
MD5	`1f268a77ca8f853ff0c410e622706bef`
SHA1	`75afb11daf446704dddb5ef5fe39b2009aecf01d`
SHA256	`39023f15fbabf4be02e0d84a76c363003374b11076406f84cd8f92e49aecd3ba`
SHA3	`5e684d700849b8552f5449c5869807ce32caa8ae657695824e4a41be4a2ee55d`

80 (#2)

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x21c`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.78028`
MD5	`dd09e1732fd7e7f01352b9b30730df9b`
SHA1	`f52e0a273b57f802c7e66e2a769e3076b870ad66`
SHA256	`b0424b7a3e6704024b62f7caff18929b5d094b9d953c97662d3341ac79daf214`
SHA3	`41379443a3c9db7917613956ae6de641ef779a6764502fad1d88d0a8f07cb9c6`

83

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x44a`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.2912`
MD5	`586fc633195baca29ef84b9271b42689`
SHA1	`69d5712401f0ca87f897c68f3a07ee9e01de8a25`
SHA256	`c1a5490b8a26165048de894aacdcd25e09cec0c4aebc5ff1d435f2cc4757118b`
SHA3	`04492be8d1f2fd83ad6633ec69825c302118f6039586e9f2bd804e00fdcc0913`

83 (#2)

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x1ba`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.68538`
MD5	`0a32cdd536d85d33a85e858394b62aa8`
SHA1	`6364f9a7fdb42d884782e536bb472898012492ac`
SHA256	`31336884d01fa7293542e42361f164ceb5e46ea706d399c8053114a457b36bb2`
SHA3	`4ea64f7ff4024f010ff3df412db68c746f1cd0a1bb13c2c0316c9396b65f3ee8`

85

Type	`RT_STRING`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x3ce`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.13591`
MD5	`949714f4f3946ad108bb0817d170c459`
SHA1	`01b3524390968f27c27943e9f06f145b8527f8de`
SHA256	`59d8ad57a3629edd20c7b298a6e3604eeb95dfc7c507ad7e329ea0bff7a571ff`
SHA3	`6447983c227f98b8cd5f4045d58626cd5f965fa8e9cb99c33a68a58136ceb655`

85 (#2)

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x132`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.75145`
MD5	`605c333b386ed7e8a9a88c791721bcb8`
SHA1	`45a59b6dcfd79264986c91304b76866da027083b`
SHA256	`e9d1db76dff77ad61724788a9d5ce570460fa4c24b22d3e7e9b915f76633a633`
SHA3	`17f7c00de5d63b7a69727ed400939884115da21c546bb37ff9fe75dccc85d4ce`

ADMQCMD

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

CABINET

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x109e5`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`7.98494`
Detected Filetype	CAB Installer file
MD5	`5c15085d31872904c18e3af0ba8764aa`
SHA1	`d60e0f7ffa0f7f23c988f9c2c61f67206a74d057`
SHA256	`a8548e72964a115b9aca5e48fbdb3d2347f6d840bdcda2dd7c5178aed0637ad4`
SHA3	`b1a077612332dbbf8f5a8200175dc224aee2359b544af745cfad8b618a8f8eef`

EXTRACTOPT

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`0.811278`
MD5	`4352d88a78aa39750bf70cd6f27bcaa5`
SHA1	`3c585604e87f855973731fea83e21fab9392d2fc`
SHA256	`67abdd721024f0ff4e0b3f4c2fc13bc5bad42d0b7851d456d88d203d15aaa450`
SHA3	`295cd1698c6ac5bd804a09e50f19f8549475e52db1c6ebd441ed0c7b256e1ddf`

FILESIZES

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x24`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.53909`
MD5	`cf94b51307a1628a621ef6b7e8dc4843`
SHA1	`2cd253648a039b8e35a839b33b531bc9945afa31`
SHA256	`fbbddfdfb627a84fab09c08e5e3e1a4c700a9901582883c89af91a897571a88b`
SHA3	`6f0ad1486c130f61272360af59879fe448efb6916f6dea30bb0236cc1dc55dcc`

FINISHMSG

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

LICENSE

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

PACKINSTSPACE

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`0`
MD5	`f1d3ff8443297732862df21dc4e57262`
SHA1	`9069ca78e7450a285173431b3e52c5c25299e473`
SHA256	`df3f619804a92fdb4057192dc43dd748ea778adc52bc498ce80524c014b81119`
SHA3	`8b0a2385d83c8bf7be27e59996f7d881d3bf1fc6606f81ce600b753ad94192a2`

POSTRUNPROGRAM

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

REBOOT

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`0`
MD5	`f1d3ff8443297732862df21dc4e57262`
SHA1	`9069ca78e7450a285173431b3e52c5c25299e473`
SHA256	`df3f619804a92fdb4057192dc43dd748ea778adc52bc498ce80524c014b81119`
SHA3	`8b0a2385d83c8bf7be27e59996f7d881d3bf1fc6606f81ce600b753ad94192a2`

RUNPROGRAM

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x10`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.5`
MD5	`2b06f11892b019c50a743ac696bebd69`
SHA1	`3bbcfd4633c46af33634ada21641956e3e145c3b`
SHA256	`45b4a28db1ec87eaeeb5ae26e89cc07a5dd5e568f483ffa8d7cac9e92e008f90`
SHA3	`b58843be40f8c03b7315ab7ba28971ade3214a35d718574e5d49a9c1089ea401`

SHOWWINDOW

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x4`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`0.811278`
MD5	`4352d88a78aa39750bf70cd6f27bcaa5`
SHA1	`3c585604e87f855973731fea83e21fab9392d2fc`
SHA256	`67abdd721024f0ff4e0b3f4c2fc13bc5bad42d0b7851d456d88d203d15aaa450`
SHA3	`295cd1698c6ac5bd804a09e50f19f8549475e52db1c6ebd441ed0c7b256e1ddf`

TITLE

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x15`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.74899`
MD5	`905a29b67abffe7c1001c7178fc3846a`
SHA1	`292a48a838711b7a04b92b127a1b28e108a149dd`
SHA256	`d87e25d444e530d13b992582966b713ed78414b3ca9ee85f02dc2af5e63fa94b`
SHA3	`ffcb733fa35e09a24e2ebc80ef03face28f346e97e6eb9ac1daed7b410b08052`

UPROMPT

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

USRQCMD

Type	`RT_RCDATA`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`2.80735`
MD5	`527eeaa35a23dd5cac9bddcc2561a457`
SHA1	`0445b1735fd9797d537d360695940c7e68d25ace`
SHA256	`eaadcdd05a9a7c7f80d53d758f39e4399749d774b09a8a0165fe7c69ad6d8c3c`
SHA3	`28c8e1f57de512535bfd686562ef240323f7331b18e71f0506079f0e67e8f89e`

3000

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0xbc`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.06903`
Detected Filetype	Icon file
MD5	`fd33ac51d62922419e4891a00f6e6efa`
SHA1	`8cb942ccc95430628eb8200da35c0a5c8240de84`
SHA256	`f327fb34dd8f0143903c681df662ae88c1b36483647d54b9ca074aae9b7620e3`
SHA3	`6752df93dd0adf3e0e172480a7ed20eb5b97bff02646dd17b7eb6880745049c3`

1 (#2)

Type	`RT_VERSION`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x410`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.41362`
MD5	`cc17d613660400461c4643ee563bad6c`
SHA1	`6558a563f18bc97b8abe76552c2c58b54fa26bd6`
SHA256	`f9d58f0617bd7065abaf2d3af32206882907af8812fcb5500deb25e1ba04c7b9`
SHA3	`42050b8a1ddd83360cdeeaf8a0dc3dcc23885f7fef656405b316efcfc64ee38d`

1 (#3)

Type	`RT_VERSION`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x3f8`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`3.52504`
MD5	`16fec1197ffa554cd2afb55b4dfb8137`
SHA1	`16ee678b4a5561dbdb4a0420ed2046fb40b9e487`
SHA256	`83ce38ea1ac8c34ac077fe5a956b3a3a73b2ed7cb26028a44bd55cda81229639`
SHA3	`8d512f9c6bb328d3b85606c156eb0cbf489275073cc1224f62a03f2af4be9d04`

1 (#4)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	Latin 1 / Western European
Size	`0x7e6`
TimeDateStamp	1982-Dec-19 00:56:02
Entropy	`5.00142`
MD5	`24a920dd92e3820a7fb081893dbfdc21`
SHA1	`c107c7e70fcb950a6b489741a9ff95640bf2d1c8`
SHA256	`ea7dbcb656b43eacb4f691740eaf9f53b79c347bffc0cd8c4f3b8e0e2f3e1a2f`
SHA3	`0799a889b78379e7e9e5c751426a1924f93f9fcbd28b9eefa11d281be4ca8999`

String Table contents

Please select a folder to store the extracted files.
%s
请选择用于存储提取文件的文件夹。
%s
Failed to get disk space information from: %s.

System Message: %s.
A required resource cannot be located.
Are you sure you want to cancel?
Unable to retrieve operating system version information.
Memory allocation request failed.
Unable to create extraction thread.
Cabinet is not valid.
Filetable full.
Can not change to destination folder.
Setup could not find a drive with %s KB free disk space to install the program. Please free up some space first and press RETRY or press CANCEL to exit setup.
That folder is invalid. Please make sure the folder exists and is writable.
You must specify a folder with fully qualified pathname or choose Cancel.
从 %s 获取磁盘空间信息失败。

系统消息: %s。
未找到所需的资源。
你确定要取消操作吗?
无法检索到操作系统的版本信息。
内存分配请求失败。
无法创建解压缩线程。
CAB 文件无效。
文件表已满。
无法更改目标文件夹。
安装程序没有找到含 %s KB 可用磁盘空间的驱动器，安装过程无法进行。请释放部分空间，然后单击“重试”，或者单击“取消”退出安装程序。
文件夹无效。请确认文件夹是否存在而且可写。
必须指定文件夹路径或选择“取消”。
Could not update folder edit box.
Could not load functions required for browser dialog.
Could not load Shell32.dll required for browser dialog.
Error creating process <%s>. Reason: %s
The cluster size in this system is not supported.
A required resource appears to be corrupted.
Windows 95 or Windows NT 4.0 Beta 2 or greater is required for this installation.
Error loading %s
GetProcAddress() failed on function '%s'. Possible reason: incorrect version of advpack.dll being used.
Windows 95 or Windows NT is required to install
Could not create folder '%s'
To install this program, you need %s KB disk space on drive %s. It is recommended that you free up the required disk space before you continue.

Do you still want to continue?
无法更新文件夹编辑框。
无法加载浏览器对话框所需的函数。
无法加载浏览器对话框所需的 Shell32.dll。
创建进程 <%s> 时出错。原因: %s
不支持此系统的簇大小。
所需的资源可能已被破坏。
此安装程序要求 Windows 95、Windows NT 4.0 Beta 2 或更高版本的操作系统。
加载 %s 时出错
GetProcAddress() 在执行函数 %s 时失败。可能的原因: 所用的 advpack.dll 版本不对。
需要安装 Windows 95 或 Windows NT
无法创建“%s”文件夹
要安装该程序，需要有 %s KB 的磁盘空间保留在驱动器 %s 上。建议在继续安装之前释放出所需的磁盘空间。

是否继续?
Error retrieving Windows folder
NT Shutdown: OpenProcessToken error.
NT Shutdown: AdjustTokenPrivileges error.
NT Shutdown: ExitWindowsEx error.
Extracting file failed. It is most likely caused by low memory (low disk space for swapping file) or corrupted Cabinet file.
The setup program could not retrieve the volume information for drive (%s) .
System message: %s.
Setup could not find a drive with %s KB free disk space to install the program. Please free up some space and try again.
The installation program appears to be damaged or corrupted. Contact the vendor of this application.
检索 Windows 文件夹时出错
NT 系统关闭: OpenProcessToken 出错。
NT 系统关闭: AdjustTokenPrivileges 出错。
NT 系统关闭: ExitWindowsEx 出错。
无法提取文件。很可能是由于内存不足(用于交换文件的磁盘空间不足)或 CAB 文件已损坏。
安装程序无法获取驱动器(%s)的卷标信息。
系统消息: %s。
安装程序无法找到含 %s KB 可用磁盘空间的驱动器，安装过程无法进行。请释放部分空间，然后再试。
安装程序可能已损坏。请与该应用程序的供应商联系。
Command line option syntax error. Type Command /? for Help.
Command line options:

/Q -- Quiet modes for package,

/T:<full path> -- Specifies temporary working folder,

/C -- Extract files only to the folder when used also with /T.

/C:<Cmd> -- Override Install Command defined by author.

You must restart your computer before the new settings will take effect.

Do you want to restart your computer now?
Another copy of the '%s' package is already running on your system. Do you want to run another copy?
Could not find the file: %s.
命令行选项语法错误。键入“命令 /?”可获得帮助信息。
命令行选项:

/Q -- 无提示安装方式，

/T:<full path> -- 指定临时工作文件夹，

/C -- (与 /T 并用)仅将文件提取到指定文件夹。

/C:<Cmd> -- 替代作者定义的安装命令。

必须重新启动计算机才能使新的设置生效。

是否现在重新启动计算机?
正在运行“%s”软件包的另一副本。是否运行新的副本?
无法找到文件 %s。
You do not have administrator privileges on this machine. Some installations cannot be completed correctly unless they are run by an administrator.
The folder '%s' does not exist. Do you want to create it?
Another copy of the '%s' package is already running on your system. You can only run one copy at a time.
The '%s' package is not compatible with the version of Windows you are running.
The '%s' package is not compatible with the version of the file: %s on your system.
你没有该计算机的管理员权限。如果不是由管理员运行，部分程序无法正确安装。
文件夹“%s”不存在，是否创建该文件夹?
正在运行“%s”软件包的另一副本。是否要运行新的副本?
“%s”软件包与你的 Windows 版本不兼容。
“%s”软件包与你计算机系统中的文件 %s 的版本不兼容。

Version Info

IMAGE_DEBUG_TYPE_CODEVIEW

Characteristics	`0`
TimeDateStamp	2062-Jul-25 12:18:00
Version	`0.0`
SizeofData	`37`
AddressOfRawData	`0x9a64`
PointerToRawData	`0x8a64`
Referenced File	wextract.pdb

IMAGE_DEBUG_TYPE_POGO

Characteristics	`0`
TimeDateStamp	2062-Jul-25 12:18:00
Version	`0.0`
SizeofData	`496`
AddressOfRawData	`0x9a8c`
PointerToRawData	`0x8a8c`

UNKNOWN

Characteristics	`0`
TimeDateStamp	2062-Jul-25 12:18:00
Version	`0.0`
SizeofData	`36`
AddressOfRawData	`0x9c7c`
PointerToRawData	`0x8c7c`

TLS Callbacks

Load Configuration

Size	`0x118`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x14000c008`
GuardCFCheckFunctionPointer	`5368747592`
GuardCFDispatchFunctionPointer	`0`
GuardCFFunctionTable	`0`
GuardCFFunctionCount	`0`
GuardFlags	`(EMPTY)`
CodeIntegrity.Flags	`0`
CodeIntegrity.Catalog	`0`
CodeIntegrity.CatalogOffset	`0`
CodeIntegrity.Reserved	`0`
GuardAddressTakenIatEntryTable	`0`
GuardAddressTakenIatEntryCount	`0`
GuardLongJumpTargetTable	`0`
GuardLongJumpTargetCount	`0`

RICH Header

XOR Key	`0x3690b900`
Unmarked objects	`0`
C++ objects (27412)	`1`
ASM objects (27412)	`2`
C objects (27412)	`18`
Imports (27412)	`17`
Total imports	`160`
C objects (LTCG) (27412)	`10`
Resource objects (27412)	`1`
Linker (27412)	`1`

Errors

[*] Warning: Multiple nodes using the name Version Info in a dictionary.