Manalyze report for edba40558a7783070ecce94e232d03a7c095ee417980e8723f1896f7f6a85970

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2005-Mar-31 22:21:17
Detected languages	English - United States
Comments	http://fy.chalmers.se/~appro/nt/TXMouse/
CompanyName	<appro@fy.chalmers.se>
FileDescription	True X-Mouse Gizmo App
FileVersion	`1, 4, 0, 0`
InternalName	TXMOUSE
LegalCopyright	Copyright Â© 2003-2005 <appro@fy.chalmers.se>
OriginalFilename	TXMouse.exe
ProductVersion	`1.4`

Plugin Output

Info	Matching compiler(s):	`MASM/TASM - sig1(h)` `Microsoft Visual C++` `Microsoft Visual C++ v6.0`
Suspicious	Strings found in the binary may indicate undesirable behavior:	`Looks for VMWare presence: vmware` `Contains another PE executable: This program cannot be run in DOS mode.` `Contains domain names: chalmers.se fy.chalmers.se http://fy.chalmers.se http://fy.chalmers.se/`
Info	The PE contains common functions which appear in legitimate applications.	`[!] The program may be hiding some of its imports: GetProcAddress LoadLibraryA` `Can access the registry: RegSetValueExA RegCloseKey RegQueryValueExA RegOpenKeyExA` `Can create temporary files: GetTempPathA CreateFileA` `Enumerates local disk drives: GetDriveTypeA`
Malicious	The PE is possibly a dropper.	`Resource TXMOUSE_HOOK detected as a PE Executable.`
Info	The PE is digitally signed.	`Signer: Chalmers Tekniska Hogskola Aktiebolag` `Issuer: Thawte Code Signing CA`
Safe	VirusTotal score: 0/72 (Scanned on 2025-07-02 02:28:06)	`All the AVs think this file is safe.`

Hashes

MD5	`d760ddde4656f30e6bdb371134034dc4`
SHA1	`779dbfa2374a85f2b5cc9ab39a86d2594912ce8c`
SHA256	`edba40558a7783070ecce94e232d03a7c095ee417980e8723f1896f7f6a85970`
SHA3	`d2c43542f3e3fca9c9e95316422cc8921c6c656dc11a398d88c0e49392a154d2`
SSDeep	`768:N8WBRixIBrilGXWwSd00nNLGBDqmJ14tUjnoL3C:N8EnWZPNLGUmJ6UjnoW`
Imports Hash	`52f8c9d2586ec753e8cb72bd83d0f949`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0xe8`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`4`
TimeDateStamp	2005-Mar-31 22:21:17
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`6.0`
SizeOfCode	`0x1a00`
SizeOfInitializedData	`0x7200`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000264A (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x3000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0xc000`
SizeOfHeaders	`0x400`
Checksum	`0x1747d`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
SizeofStackReserve	`0x2800`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`26354b92fb2cb7bd1d00600956f41629`
SHA1	`ad18fcb636254533bf73c3cf78c3a13d5c1ada99`
SHA256	`c11944b35cbd4de95966887943ca23b1e876576a7064ddfa628b5500886d5928`
SHA3	`abb7128b63ade67a9be512db6930454290e258979d4ae7da829dc2ada2177b61`
VirtualSize	`0x19c4`
VirtualAddress	`0x1000`
SizeOfRawData	`0x1a00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`5.98788`

.rdata

MD5	`e3fb6dcafb89512c2dce5ee7004e4102`
SHA1	`cb8c7c4e3858c3c206dc8f90145b2625d550907e`
SHA256	`8bb3de3976c9f13307291c17e7abc574f8b3a8834edce1c7793569d7ffa36f6c`
SHA3	`b34155e256173e16ab672b917b89f374f3440d93ba99bbeb816c4e8689507c90`
VirtualSize	`0x15dc`
VirtualAddress	`0x3000`
SizeOfRawData	`0x1600`
PointerToRawData	`0x1e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.0741`

.data

MD5	`890272dd3b553db0c5de73773e907af3`
SHA1	`556022a5a9270d54b49d5bbac0bbf81931e08156`
SHA256	`beb94c3dee545a21d5f3474159ef65870f9f13c10fa3a7a937d8b9a604670d7a`
SHA3	`6e6af27ef20e1f6d9c3df32584bae40e064d103cbfd901073b76e6d48dcabe40`
VirtualSize	`0x504`
VirtualAddress	`0x5000`
SizeOfRawData	`0x600`
PointerToRawData	`0x3400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`4.07013`

.rsrc

MD5	`d8777c38596098911048aefe55d4751b`
SHA1	`518e6baeee7d41f8d71e5381574053d2f746e5cf`
SHA256	`2dc2a02fe66b4e033dd6f900d0af6dfb20c8c6fbb10b258f4c0c8b9e9f04877d`
SHA3	`f617ae5a84464552c787ea22baa1f1e9ae3e47867cd0c6fa238408b1166d7de2`
VirtualSize	`0x5440`
VirtualAddress	`0x6000`
SizeOfRawData	`0x5600`
PointerToRawData	`0x3a00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.73469`

Imports

MFC42.DLL	`#2055` `#6376` `#3749` `#5065` `#1727` `#5261` `#2446` `#2124` `#5277` `#2982` `#3147` `#3259` `#4465` `#3136` `#3262` `#2985` `#3081` `#2976` `#3830` `#3831` `#3825` `#3079` `#4080` `#4627` `#4425` `#3597` `#641` `#567` `#324` `#825` `#795` `#2302` `#4234` `#2645` `#1200` `#3873` `#5875` `#3089` `#4476` `#2379` `#1842` `#4242` `#3610` `#2723` `#2390` `#3059` `#5100` `#5103` `#4467` `#4303` `#3350` `#5012` `#975` `#5472` `#3403` `#2879` `#2878` `#4151` `#4077` `#5237` `#5282` `#2649` `#2648` `#4436` `#5252` `#4427` `#796` `#674` `#529` `#366` `#656` `#3619` `#2243` `#823` `#2089` `#6000` `#2117` `#4457` `#6215` `#4413` `#800` `#2818` `#540` `#6199` `#537` `#860` `#3663` `#3626` `#2414` `#1799` `#3353` `#4622` `#290` `#614` `#1146` `#1168` `#4220` `#2584` `#3654` `#2438` `#2863` `#1644` `#815` `#6375` `#4486` `#2554` `#2512` `#5731` `#3922` `#1089` `#5199` `#2396` `#3346` `#5300` `#5302` `#2725` `#4079` `#4698` `#5307` `#5289` `#5714` `#3738` `#561` `#4274` `#4441` `#4837` `#3798` `#5280` `#4353` `#6374` `#5163` `#2385` `#5241` `#4407` `#1775` `#4078` `#6052` `#2514` `#4710` `#4998` `#4853` `#4376` `#5265` `#3721` `#4424` `#3402` `#5290` `#1776` `#1665` `#6055` `#1576`
MSVCRT.dll	`_except_handler3` `__set_app_type` `__p__fmode` `__p__commode` `_adjust_fdiv` `__setusermatherr` `_initterm` `__getmainargs` `_acmdln` `exit` `_XcptFilter` `_exit` `_onexit` `__dllonexit` `_setmbcp` `__CxxFrameHandler` `memset` `sprintf` `strcpy` `_mbsrchr` `strncpy` `_mbscmp` `_controlfp`
KERNEL32.dll	`DeleteFileA` `FreeLibrary` `GetProcAddress` `LoadLibraryA` `GetDriveTypeA` `FindResourceA` `GetLastError` `GetModuleFileNameA` `GetModuleHandleA` `GetStartupInfoA` `SizeofResource` `LoadResource` `LockResource` `GetTempPathA` `CloseHandle` `ExitProcess` `CreateFileA` `WriteFile`
USER32.dll	`GetClassNameA` `IsWindowVisible` `LoadIconA` `TrackPopupMenu` `GetCursorPos` `SetMenuDefaultItem` `GetSubMenu` `LoadMenuA` `GetWindowTextA` `LoadStringA` `DestroyCursor` `SetSystemCursor` `SystemParametersInfoA` `SendMessageA` `MessageBoxA` `EnableWindow` `LoadCursorA` `EnumWindows` `UpdateWindow` `CopyIcon` `SetCursor` `SetForegroundWindow`
GDI32.dll	`GetStockObject`
ADVAPI32.dll	`RegSetValueExA` `RegCloseKey` `RegQueryValueExA` `RegOpenKeyExA`
SHELL32.dll	`ShellExecuteExA` `Shell_NotifyIconA`

Delayed Imports

TXMOUSE_HOOK

Type	`BINRES`
Language	English - United States
Codepage	UNKNOWN
Size	`0x3a00`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.27728`
Detected Filetype	PE Executable
MD5	`ce5fb7610f5c6c372c0db0dd8b890de3`
SHA1	`081c03ee476037e9a11018d541ac8153c45d0496`
SHA256	`0b81de44558f6e710b95b85a9ee0b2c2ab894913d90949c3850905f6077bb906`
SHA3	`efe372eebfbaf2b90ff4d077b317b941932ffdcc5b0a5f7138a4696a2ecd9790`

5

Type	`RT_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.98998`
MD5	`b124fc6f40c93a2fd1e4d14bfb5faa25`
SHA1	`7f4d5537fbe0de751c678df0ccbbd83430ad380e`
SHA256	`9c786ddfd82f1708be2e88a4b58c2647ed38693ca0d5338d356342cfaff170e5`
SHA3	`696663d35072e01b9c1e724c1d69cb79b4378faa1bc6415275eb16bb4d94c95f`

6

Type	`RT_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.9899`
MD5	`5d6c35a31a1a3f3e98ded018f2bd4f8c`
SHA1	`943d04336879f6ff8eaf3dbb8f44e83815ac795f`
SHA256	`b3d2b195fbe0c9044ba38a11f9b4c60681fbe62a6e6d115238e6e580a934406d`
SHA3	`e40474708b0a1c948d1286548e3a207ae1895bb1128d017d32a8a8f4c0427bba`

1

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.3232`
MD5	`da66430d05c92f04b97d0aefb3d6d50c`
SHA1	`b69a75f10b0aee95b756723c1809a8df7b2d1ac4`
SHA256	`094425bc1733976f2bff67f0b00e377529a87af8407a17453a5f5ede80957762`
SHA3	`057f76f42ec4645829223d9d1250182efb663d6aae6929d51d15da571e789282`

2

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.29464`
MD5	`d41f4b11346e5d9c2485a565ba4b0a19`
SHA1	`4ebda36e74b6c5e708879ebb49954f4b3349ef8d`
SHA256	`5000f9851ca6bdea56607deee77dcd4baece225509f5659f8973ba9e50c90a74`
SHA3	`74966d5230cd78ae633e60edd819b262cb7ff3bf37eb68966350a2c33e1cefd0`

3

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.30064`
MD5	`ce2e5e6fc3d2bdd6805a58209518e5d3`
SHA1	`9f24b806b6d4a608cfa9d05fb164f24312e4ebd9`
SHA256	`175bfa1f3dd27e251831d06752a0b424f393cd3e88b16b824d000b050d15a78b`
SHA3	`cc9a58923d651add39f2d391da4cf22d43e2d4c7182d22a9dfeaf7cf6bcb743b`

4

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.26027`
MD5	`31818901e2c30ed14d06e1d94dab35ba`
SHA1	`913a772055666ab6408527ffd5e4724469c9b326`
SHA256	`93ce5b8c37e66a85b919763c255d5088aab6a1bb10a5660019381e2f2ba2d840`
SHA3	`0e49ee99efc080462584f347924bad7c4cf13c5e14ceb751eb9d353549379b52`

2 (#2)

Type	`RT_MENU`
Language	English - United States
Codepage	UNKNOWN
Size	`0x108`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.31354`
MD5	`19ad51be09a4fdb9c87112e07a2ca16a`
SHA1	`1ad56197e9f476aff94fb85675dea5b6ba944d0c`
SHA256	`77fbe0cf24e091ff766b0451971599f4ade1bfdce580bc125a234a90f75854d8`
SHA3	`e45a70512ee92ed87615645d20d232f3baf29f9c23b76369ca570ddacf55b8d2`

3 (#2)

Type	`RT_MENU`
Language	English - United States
Codepage	UNKNOWN
Size	`0x6e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.0204`
MD5	`d227da34f1ca008562dcaea41abfbcdd`
SHA1	`fd7b8c5ec284605dc0c5a19c00057140269c39ff`
SHA256	`17a42951680540438e47ad32595996b9c0c92c9b05494b1ecbbf2a01f66c990b`
SHA3	`29594805a4e9d217a46a078c52a8e56ecac10d313466655acb16cc2c019ff7e7`

100

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1bc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.5571`
MD5	`c433114ddbcde5f59296c06b0b1a71cb`
SHA1	`dab6576d5c8cad3189b81af783baf09fcba79c14`
SHA256	`844d47ecdcacf0ffccde9f9339a21f127b0a90f3a3bd9cd0c2541ca578cc2fb1`
SHA3	`e1f68bf15b6d47640d569fa2ee4befb7d65f97044cad45780ddd4d052df7e74e`

1 (#2)

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x74`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.51547`
MD5	`d63c98719a7f28f40828e791acf137a4`
SHA1	`d8a5ba76769b307a9e837a05a32c9f97a8d04cb4`
SHA256	`57c864f8cf6823bd5fad2bad004c2a1e7afcc5d3b4bf826b71cca0a6e3654876`
SHA3	`49dffdf5ba132b2faf7178579b6974dc96e367e2ffc46fe401d25bd06ffb1a16`

2049

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1a6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.19623`
MD5	`dc883e0bf25cfd2ebf4674049fb1d356`
SHA1	`358f3c9472035c136719caa82012e548938f7d38`
SHA256	`52b6328aed0c01664c457b863ec66773349f7e588792b975f7ffb3e6b38b03b0`
SHA3	`c455ca7d9c6b83b41096e593d95f5c9bacc12f16d2379e360a0868f1a3151124`

3585

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x42`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.98651`
MD5	`fc9fde0703aaf06143d78382c5886735`
SHA1	`1955db22c3f0cc30ebbe2d6fa50c7a6d4ba7e1fd`
SHA256	`a5e8d3bdf8d08e983ddcfe09d6bc80730acc07ba734d94eeec952afa8823bc4d`
SHA3	`20566042cdd4fc82bc7bde438be7f70a8b8c6a50053f6701ffd28763015addd7`

3605

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x78`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.57574`
MD5	`78921ee021e93aa8aee6801da44a0767`
SHA1	`1fcd95852a3924c55bfba5b7b54f99b07707c00a`
SHA256	`43d815217397f873ead448a065a1f2e3e2b022628a13a48c50f18983a6b54ab1`
SHA3	`25f6ce27ef21c948df8348c8c3f84a75e363f91f5447c80e179d08ca8c4d8bfb`

3713

Type	`RT_STRING`
Language	English - United States
Codepage	UNKNOWN
Size	`0x78`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.4731`
MD5	`6b12757a00c3cdab3d4784af2cbae413`
SHA1	`f3cc33e72430635b4cf683c10e0611007e59f1d7`
SHA256	`b0ee12645a1f08b13e5883951b55f46970b24a22cc6147e53f889cf34ea022e4`
SHA3	`0511ecfdb475feb11645b020697ca8214e6fb7603433a6b54af855e0c370d3e4`

103

Type	`RT_GROUP_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`dcaa3c032fe97281b125d0d8f677c219`
SHA1	`58fe36409f932549e2f101515abee7a40cf47b2c`
SHA256	`6e1e7738a1b6373d8829f817915822ef415a1727bb5bb7cfe809e31b3c143ac5`
SHA3	`02ef292e1b4a70e439e362af6b4fa213e3816ade45222b78dabab712b6afba54`
Preview

105

Type	`RT_GROUP_CURSOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.01924`
Detected Filetype	Cursor file
MD5	`0893f6ba80d82936ebe7a8216546cd9a`
SHA1	`0754cbdf56c53de9ed7fbd47859d20b788c6f056`
SHA256	`a0adcedb82b57089f64e2857f97cefd6cf25f4d27eefc6648bda83fd5fef66bb`
SHA3	`ce6148ade08ef9b829f83cb13b4c650d9d4a7012bfd1ab697a7870a05f4104f8`
Preview

101

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x22`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.37086`
Detected Filetype	Icon file
MD5	`d59e0d372ea5fd8c1f4de744376a6af4`
SHA1	`6883ce60e71a83424db0b41d0ab6bf61080e3de2`
SHA256	`b10e28a32eddb2ab20a46ceae59d9c0786911eb20f0c8dd2a28421f226ea2b8b`
SHA3	`5e39df982879204dd9f129a37d1e1c2ff906e88de9ae01b4418db5e8455e7ae1`

102

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x22`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.47702`
Detected Filetype	Icon file
MD5	`30d3c08a7e102b3c76c369e7d689187e`
SHA1	`0bedf3194368bdd38e251794b400804a566942f0`
SHA256	`cd07dc2185fca682e34141b058a2b4794bfde621a0e355e6e7080686a8c78750`
SHA3	`7f64f455d9bf5e37478805ed41507967845c44a11beb202cbc5f6eacf8327d15`

1 (#3)

Type	`RT_VERSION`
Language	English - United States
Codepage	UNKNOWN
Size	`0x3cc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.4564`
MD5	`c52ca5b8c1f3513aa75e218c230d41f7`
SHA1	`29f252b34c3d50ffe66773223280d173d4d4c92f`
SHA256	`f91e8ddb73c590a12cc36c2ca96cc7c474e92b8c6000bf701d9c9dd608c2cf13`
SHA3	`84938dfe7d02c335d6df10c15e1e351bb2ed708ee39dc57fe914025bd735b95e`

String Table contents

True X-Mouse Tracking and Debugging Window
Toggle the Tray Icon
Erase the contents of the window
Display tray notifications in the main window
Open Debug Window
Quit True X-Mouse and remove from system tray
Toggle Tray &Icon
Toggle &Hand Cursor
True X-Mouse
Ready
Display program information
Close this window
Show or hide the status bar
Toggle StatusBar

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.4.0.0
ProductVersion	1.4.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	English - United States
Comments	http://fy.chalmers.se/~appro/nt/TXMouse/
CompanyName	<appro@fy.chalmers.se>
FileDescription	True X-Mouse Gizmo App
FileVersion (#2)	1, 4, 0, 0
InternalName	TXMOUSE
LegalCopyright	Copyright Â© 2003-2005 <appro@fy.chalmers.se>
OriginalFilename	TXMouse.exe
ProductVersion (#2)	1.4

Resource LangID	English - United States

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0x59093d28`
Unmarked objects	`0`
Imports (2179)	`10`
14 (7299)	`2`
C objects (8047)	`11`
Linker (8047)	`2`
Linker (VS98 SP6 build 8804)	`3`
Total imports	`221`
C++ objects (VS98 SP6 build 8804)	`8`
Resource objects (VS98 SP6 cvtres build 1736)	`1`

Errors

[*] Warning: [plugin_authenticode] Hashing algorithm 1.2.840.1015.13.2.5 is not supported.

Leave a comment

No comments yet.