Manalyze report for f7441ecd8e991cb11615ff939d07bb3652735c9220bd2ba929fdabb8c48dc432

Summary

Architecture	`IMAGE_FILE_MACHINE_AMD64`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2026-Apr-14 03:36:43
Detected languages	English - United States
FileDescription	My Custom Application
FileVersion	`1.0.0.0`
CompanyName	My Custom Company
LegalCopyright	(c) 2026 My Custom Company
ProductName	My Custom App
ProductVersion	`1.0.0.0`

Plugin Output

Info	Matching compiler(s):	`MASM/TASM - sig1(h)`
Info	Interesting strings found in the binary:	`Contains domain names: example.com https://example.com`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryW GetProcAddress LoadLibraryExW LoadLibraryExA` `Functions which can be used for anti-debugging purposes: CreateToolhelp32Snapshot` `Code injection capabilities: OpenProcess WriteProcessMemory VirtualAllocEx` `Possibly launches other programs: CreateProcessW` `Can create temporary files: CreateFileW GetTempPathW` `Memory manipulation functions often used by packers: VirtualProtect VirtualAllocEx` `Enumerates local disk drives: GetVolumeInformationW GetDriveTypeW` `Manipulates other processes: OpenProcess WriteProcessMemory ReadProcessMemory Process32NextW Process32FirstW`
Suspicious	No VirusTotal score.	`This file has never been scanned on VirusTotal.`

Hashes

MD5	`d875f087a216a5ddfe4a89e397456334`
SHA1	`7b1d980087435366f4334be74b450c27507bc918`
SHA256	`f7441ecd8e991cb11615ff939d07bb3652735c9220bd2ba929fdabb8c48dc432`
SHA3	`f93e7d6de35f90f3deca43dfe6a7eb586e23e12e916e11e1645cf9992dae43e5`
SSDeep	`24576:GTz2wRlWDpDoVy6yaIonRd2hMoPus/Ny4:GPdLYDoY6G4R5oR/`
Imports Hash	`dc844d4eaaa72d2409fea3ab8b8a02c3`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x118`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_AMD64`
NumberofSections	`5`
TimeDateStamp	2026-Apr-14 03:36:43
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xf0`
Characteristics	`IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LARGE_ADDRESS_AWARE` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32+`
LinkerVersion	`14.0`
SizeOfCode	`0x89a00`
SizeOfInitializedData	`0x3de00`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x0000000000089A10 (Section: .text)`
BaseOfCode	`0x1000`
ImageBase	`0x140000000`
SectionAlignment	`0x1000`
FileAlignment	`0x200`
OperatingSystemVersion	`6.0`
ImageVersion	`0.0`
SubsystemVersion	`6.0`
Win32VersionValue	`0`
SizeOfImage	`0xcb000`
SizeOfHeaders	`0x400`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
DllCharacteristics	`IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA`
SizeofStackReserve	`0x400000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`393d8ceb26b351f049f0a08caebabc92`
SHA1	`3c21252cfd4dba789cf0c14cd2f037cc64d15603`
SHA256	`03a950f8828ffc539537eec40105f32dd19a865494b7da310c9b8dd855db2eed`
SHA3	`917c067b457a421b070e5a10561b6fa4a5f3c76a6c215f7b47d9c94f78dad925`
VirtualSize	`0x89868`
VirtualAddress	`0x1000`
SizeOfRawData	`0x89a00`
PointerToRawData	`0x400`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.51146`

.rdata

MD5	`2bc0f0bb291ede795dd02aa02dfd347b`
SHA1	`94e067f89e8c549cdbb4377134652f554d41124f`
SHA256	`0503891476495b13fc70f26ff670c512f30884a852692343cf7b9e03f57864ae`
SHA3	`a5d947198a4bfc0ae0a97b0be586860e67065935f533b0381d4b304c1ce6903c`
VirtualSize	`0x29216`
VirtualAddress	`0x8b000`
SizeOfRawData	`0x29400`
PointerToRawData	`0x89e00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`4.76762`

.data

MD5	`f9b120badc40a356301c02a2fe1a4971`
SHA1	`136e5b4609712cc3d70f6e0d1f6f2feb550cb0ae`
SHA256	`fdc64a7b9699f9b878d26570f23525a336e871f02a7ee5fb81a865a22108f523`
SHA3	`670f9a6cf7441cfc25ff556a1fc1bfcbbd0a71f4d36f65346c436c2e595f13ec`
VirtualSize	`0xbae0`
VirtualAddress	`0xb5000`
SizeOfRawData	`0x8400`
PointerToRawData	`0xb3200`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`3.40258`

.pdata

MD5	`f7247805feb4306b24805d9b27826a70`
SHA1	`b3f3b7b381d161ef99761b9a0885925fd9f4a45f`
SHA256	`add65f17c45f4d971ddc64c9e17a560cc707d3a05c035976cc55e99e2536ffe0`
SHA3	`94a6d9bed8ceae34cdaf086d0f2053021c5d978983d01d105638abeca4756923`
VirtualSize	`0x4284`
VirtualAddress	`0xc1000`
SizeOfRawData	`0x4400`
PointerToRawData	`0xbb600`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.71793`

.rsrc

MD5	`69a02e6cbda2816fcff5d7c8debc6a10`
SHA1	`b5846550319532fcae98cc39cb762ff7c8aaec06`
SHA256	`bb6a1ef233233aba43cd5889e654d2682393f5ca3a83002a10354f4fa9cdcccb`
SHA3	`a4247a10e77e1d7c314fb3f649e71366da02d52fd39fafb6665602af0da7e39f`
VirtualSize	`0x4938`
VirtualAddress	`0xc6000`
SizeOfRawData	`0x4a00`
PointerToRawData	`0xbfa00`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`6.80285`

Imports

KERNEL32.dll	`Sleep` `GetTickCount` `MulDiv` `SetErrorMode` `GlobalAlloc` `GlobalFree` `GlobalLock` `GlobalUnlock` `GetCPInfo` `IsValidCodePage` `GetLastError` `OutputDebugStringW` `LoadLibraryW` `GetCurrentThreadId` `GetStringTypeExW` `SetThreadPriority` `CreateMutexW` `GetExitCodeThread` `CloseHandle` `CreateThread` `lstrcmpiW` `GetProcAddress` `FreeLibrary` `VirtualProtect` `SetLastError` `GetModuleHandleW` `WideCharToMultiByte` `GetVolumeInformationW` `GetDiskFreeSpaceW` `DeviceIoControl` `CreateFileW` `SetVolumeLabelW` `GetDiskFreeSpaceExW` `GetDriveTypeW` `SetEnvironmentVariableW` `GetEnvironmentVariableW` `CreateDirectoryW` `ReadFile` `SizeofResource` `FindFirstFileW` `GetFileSizeEx` `GetFullPathNameW` `FindNextFileW` `WriteFile` `SetFileTime` `FindClose` `GetFileAttributesW` `SetFileAttributesW` `MultiByteToWideChar` `LocalFileTimeToFileTime` `LockResource` `DeleteFileW` `LoadResource` `FindResourceW` `FileTimeToLocalFileTime` `GetSystemTimeAsFileTime` `MoveFileW` `QueryDosDeviceW` `SetPriorityClass` `TerminateProcess` `GetProcessId` `OpenProcess` `GetCurrentProcessId` `EnterCriticalSection` `LeaveCriticalSection` `Beep` `GetLocalTime` `GetTimeFormatW` `GetDateFormatW` `GetSystemDefaultUILanguage` `GetTempPathW` `GetDateFormatEx` `GetTickCount64` `GetCurrentDirectoryW` `GetComputerNameW` `GetSystemTime` `GetSystemWindowsDirectoryW` `WaitForSingleObject` `GetExitCodeProcess` `WriteProcessMemory` `ReadProcessMemory` `GetVersionExW` `GetModuleHandleExW` `GetShortPathNameW` `GetModuleFileNameW` `InitializeCriticalSection` `SetCurrentDirectoryW` `DeleteCriticalSection` `CreateProcessW` `SetDllDirectoryW` `FormatMessageW` `CompareStringW` `GetCurrentProcess` `RemoveDirectoryW` `CreateToolhelp32Snapshot` `Process32NextW` `Process32FirstW` `CopyFileW` `WritePrivateProfileStringW` `GetPrivateProfileSectionW` `GetPrivateProfileSectionNamesW` `GetPrivateProfileStringW` `WritePrivateProfileSectionW` `GetStdHandle` `SetEndOfFile` `GetACP` `SetFilePointerEx` `GetFileType` `EnumResourceNamesW` `FileTimeToSystemTime` `VirtualAllocEx` `GetFileSize` `SystemTimeToFileTime` `VirtualFreeEx` `IsWow64Process` `LoadLibraryExW` `GlobalSize` `GetSystemInfo` `InitializeSListHead` `VirtualQuery` `LoadLibraryExA` `RtlCaptureContext` `RtlLookupFunctionEntry` `RtlVirtualUnwind` `IsDebuggerPresent` `UnhandledExceptionFilter` `SetUnhandledExceptionFilter` `GetStartupInfoW` `IsProcessorFeaturePresent` `QueryPerformanceCounter` `RaiseException`
VCRUNTIME140_1.dll	`__CxxFrameHandler4`
VCRUNTIME140.dll	`_CxxThrowException` `__current_exception` `__current_exception_context` `strchr` `memcmp` `wcsrchr` `__std_exception_destroy` `memmove` `_purecall` `wcschr` `__C_specific_handler` `__std_terminate` `memset` `memcpy` `wcsstr` `__std_exception_copy` `__RTDynamicCast`
api-ms-win-crt-string-l1-1-0.dll	`wcsncpy` `iswxdigit` `_wcsdup` `wcscspn` `tolower` `iswdigit` `isalpha` `strcat` `iswspace` `wcsncmp` `towupper` `isalnum` `_wcsnicmp` `wcslen` `strnlen` `toupper` `wcscpy` `wcsnlen` `wcscat` `isxdigit` `wcscmp` `_wcsicmp` `_wcsupr`
api-ms-win-crt-runtime-l1-1-0.dll	`_register_thread_local_exe_atexit_callback` `__p___argc` `__p___wargv` `_c_exit` `exit` `terminate` `_exit` `_initialize_onexit_table` `_register_onexit_function` `_cexit` `_seh_filter_exe` `_set_app_type` `_crt_atexit` `_configure_wide_argv` `_initialize_wide_environment` `_get_wide_winmain_command_line` `_initterm` `_initterm_e`
api-ms-win-crt-heap-l1-1-0.dll	`_msize` `free` `realloc` `_set_new_mode` `malloc` `_expand` `_callnewh`
api-ms-win-crt-stdio-l1-1-0.dll	`__p__commode` `_set_fmode` `__stdio_common_vswprintf`
api-ms-win-crt-convert-l1-1-0.dll	`_wtoi` `wcstol` `_ultow` `_itow` `wcstoul` `wcstod` `_i64tow` `_wtof`
api-ms-win-crt-utility-l1-1-0.dll	`qsort`
api-ms-win-crt-math-l1-1-0.dll	`acos` `ceil` `fmod` `tan` `floor` `exp` `pow` `sqrt` `asin` `log10` `log` `sin` `atan` `cos` `fabs` `__setusermatherr`
api-ms-win-crt-filesystem-l1-1-0.dll	`_wsplitpath`
api-ms-win-crt-locale-l1-1-0.dll	`_configthreadlocale`
WSOCK32.dll (delay-loaded)	`gethostbyname` `WSAStartup` `inet_addr` `gethostname` `WSACleanup`

Delayed Imports

Attributes	`0x1`
Name	`WSOCK32.dll`
ModuleHandle	`0xbd370`
DelayImportAddressTable	`0xbd2c8`
DelayImportNameTable	`0xb0920`
BoundDelayImportTable	`0xb1d78`
UnloadDelayImportTable	`0`
TimeStamp	`1970-Jan-01 00:00:00`

1

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x244`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.33249`
Detected Filetype	PNG graphic file
MD5	`9d07814a27f482c2d7c563ff6868c539`
SHA1	`bcfd3b11a28ff193373d7dab4ffca072b533c3de`
SHA256	`8f5cb2266f8445405c75921de831112f60a2262041ed60039e0871bffd6d7203`
SHA3	`e8c0f6c3cf8716e8c9e004156c373dbfa924237651b3d0306f07367cad85be43`

2

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x197`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.85349`
Detected Filetype	PNG graphic file
MD5	`95eee4f269dc68bf7d0937d648cf38bf`
SHA1	`f9226a77de6ec90b53720252560cdd466ac244ef`
SHA256	`efe628398ba9727fe5341b60615e17b10977f05bce50adf6af5d4d1da7c740d2`
SHA3	`1929d34939e214cf8df483e60d239f7d70d422883bb4f9212f6124742a68b253`

3

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1d1`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.09487`
Detected Filetype	PNG graphic file
MD5	`9a3ea4fc3821f4b35ab512fe156de5df`
SHA1	`7fe5efea95e344b46d89b258e0235728bb1bf530`
SHA256	`18fc0f58bc71965f32e49f236adc23ee32155a8d00c805838692a3f98cffb1f9`
SHA3	`5f1691754db788ca6254c0c5f5d9cc1040a04b87f4eba36956671e52e92f96c8`

4

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x229`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.29607`
Detected Filetype	PNG graphic file
MD5	`defd3602a640726e1335484c2ee9c265`
SHA1	`04f31f314ace2e0410a2c90c24c0df5cbe0da589`
SHA256	`53f2680efff7f2fb903f30bf590e8fb8111053f382011deaed2f6f90607d0a5e`
SHA3	`14e47b005e52020fe7315308c909705be19e9ca3c1ba9b0b9362dea6f5d31121`

5

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x26f`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.36765`
Detected Filetype	PNG graphic file
MD5	`6db39e3193561f607a6020f15fe6c1bd`
SHA1	`efaa36a2d23a92a8b315c07c27166d17d238cd7c`
SHA256	`7e4f77e0f5362354999d079e0f27f864c2a277922ce727da05d837c136cc146f`
SHA3	`c8ba3cb2955e14184b52c97d767f8966a789cbd49b3ba0db387765673139a6a6`

6

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x322`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.53731`
Detected Filetype	PNG graphic file
MD5	`990feace7c4409fae8e239931c5abd5a`
SHA1	`c75d568990b914bf6a5ff158cffea8ba8c9f9eae`
SHA256	`48f08d3608f503a2d816727054dd09d8f2f42f079592a63f1de366224ba3af30`
SHA3	`d0e2060b781480d3753759ddc5e8cd3cfad31326a1cfb9d9ebe9441c242e873a`

7

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x3ab`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.58591`
Detected Filetype	PNG graphic file
MD5	`d3d22e825073cc221f9a9fc53896ec1d`
SHA1	`14dfa1ce4e91c635f6682c124ac93a9e8a511504`
SHA256	`66f975428676309833a756c08a8baa591a61e24256e6227b194d42ec660473c4`
SHA3	`90de716265e2556928e97c414c8f8aa79941235312646d9f1815adca8e7e7f4c`

8

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x413`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.61505`
Detected Filetype	PNG graphic file
MD5	`55610ca28a4fef948e52acb26c9f22d0`
SHA1	`9bf26e1e03ecfb149cbd9efe3e049a1dcb2f78cf`
SHA256	`74a5a43f25592d2ce093f28b4c0a459a7726f9dbec604832e69ee50805474baa`
SHA3	`cb49c8bde1f4b67fbbb8200af86afd0dacced6970074ddfb9a7a95ae3a0f0ff3`

9

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x26b`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.29574`
Detected Filetype	PNG graphic file
MD5	`1ddb64d710c05dafe3256176d12bc3ad`
SHA1	`4ef7a3714d72ef572a887f10c1c10afbf3ea41ad`
SHA256	`b6fbf3ceb35024a07fd66ee0824d2cef959ab17a1b68200710f3b0c880f72f32`
SHA3	`84e3a33e368b978c0672d43045526b49746cc0f58c73538693b0d8ad8a28b41d`

10

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x19b`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.00148`
Detected Filetype	PNG graphic file
MD5	`6a35ea83990a3d13af252a5022572494`
SHA1	`abcb7f00e1c673c07ffbc882e47826c208417c3b`
SHA256	`8d6d8a637a5f657b305fddd9d66596005909bf53d5ab3d518923b1c3dca7652f`
SHA3	`37c122057bc5cd9719683a37328a4b747a72312067bdc885d3f014ed3d2c0ff2`

11

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1d8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.15376`
Detected Filetype	PNG graphic file
MD5	`e79ede524fa56efc003e874587f63206`
SHA1	`3d4bf14637525979fa60130c418e63e139bf2cfd`
SHA256	`942cf5c52660c7a527c9517493b60b4f60eb71dcfca736f0f8e8185cb5be2d0f`
SHA3	`af2673688f8bdf64d70f49b42b633d23b09d39d9c5b3f3b81fe5aca4159094f8`

12

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x22a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.28867`
Detected Filetype	PNG graphic file
MD5	`47395a13bc1650a3d82734b132aec81e`
SHA1	`e7eb5c0c4a184ed4ada61fa26e5e9bcaf6b3eb73`
SHA256	`7cf0fd6c17edcc198c60512f8421b4c1fe2d9fd28c73c4f4488e8a3be7b0c438`
SHA3	`53b53782fb4ac322c95967c33a6c565bcfab3bdf4b50106ae9ceedeb6328a221`

13

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x252`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.39902`
Detected Filetype	PNG graphic file
MD5	`7b8f4b199f8d141a44c0ba54790fede1`
SHA1	`060d69286cc4333d983f87c131f50c8a954c038f`
SHA256	`47669513bb1877096089bb363dcaf8daf877274381e8f6f2e4fb9e89f4b83a44`
SHA3	`376dc5063489cbd158e8c1482086a28ff5f8eb454ba59339781c2ac82967d66a`

14

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x16e`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.69583`
Detected Filetype	PNG graphic file
MD5	`fec1048117bb1e558e784c7ba3793e7e`
SHA1	`b0517af8129fa5e61b6d44695c5e544945b14ba3`
SHA256	`dc3085cae57efefe7ff1b589740823f72eed1f5d20e6f5958479d8472a31237d`
SHA3	`aa12c4a92f09e24a803709a698272b1a3e7ce7560c6b7b231d5cf142ff21d8a7`

15

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1b0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.08313`
Detected Filetype	PNG graphic file
MD5	`4f9a17a9976d74d6047bc6c067748fba`
SHA1	`cf0958a9a3bee216684a5b48543441f17c3ebf39`
SHA256	`625e6ebc94122061e7bae32a778e666694569aa95a37093481c7d8df404bcf8c`
SHA3	`fe8b139dd869747c178bf9753ab1bd6b1ec13659c1403849c545939488816daa`

16

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1ed`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.17673`
Detected Filetype	PNG graphic file
MD5	`fa817e56e99d52835450e687d18e9bfd`
SHA1	`c3270b47bc88387b649c71da1049ced23e736ec7`
SHA256	`41db533b488d82833c324b20c9ba4e0ad6b0ce88aea4d80b93db7d017f01242e`
SHA3	`800598656c8625bd3d6dac5b335d7ef1b22bc40865fd7843db8cd7987e45c730`

17

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x22a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.25042`
Detected Filetype	PNG graphic file
MD5	`0cbacd3ff15622acdbcd00098b6ffb5d`
SHA1	`a4a605284ac1eb1962de2d2ce897ed7da8dc780f`
SHA256	`8543aca233240bd4b3c2f4f9d334afb94498f17fab05f0d75604bc52d15c6d2c`
SHA3	`fb7bcde5ef21e7a9476be6bc735abbf0b51720a207a4d7d198e64afd1d046423`

18

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x203`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.17458`
Detected Filetype	PNG graphic file
MD5	`df3fd59104aeb107f6a2e14bbaa70767`
SHA1	`f5857de0e40c8f975772af21229657bbd0828cac`
SHA256	`0f294cc35adb7f211ba0a6df3883c4df3d1433ddecba1c55ddc2c12bdb12647d`
SHA3	`8e998c215a0c603479d97e4bbb0c8c282183580fe7b8c2fdf8d05f709ba9c092`

19

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x163`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.74336`
Detected Filetype	PNG graphic file
MD5	`03aa5938612807bbac00d4a8610a75c1`
SHA1	`0b4293a1d0b38e2efacbe6b349a024a8263ac144`
SHA256	`b027d29c6b1e9ec2576b1e84e116c4142c0a52c28106dbde21184ae4c018d554`
SHA3	`1666547579c26ea1e309e5500360e1a9080abc2869f1305ffb8e2c8eb6a5c27d`

20

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x19f`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.00224`
Detected Filetype	PNG graphic file
MD5	`61fe63e8d5cef481e88d801dc7e951d1`
SHA1	`d2e78a03ef9a776c4cb78fa6506f2f366a0564dc`
SHA256	`8f9a3ea6252e894176a5b0c1fe743f00d7c27d659682d3be5ca68bee7962b60c`
SHA3	`8861dde39d4e41da9ea0c7f45964a8b871afbf225eb615904363aaef3b349ba9`

21

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1d6`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.13641`
Detected Filetype	PNG graphic file
MD5	`ae372a3fd458088ab25f071dea4cfcab`
SHA1	`0a54b45783828f63cd68da4ccef124b6bbb05f87`
SHA256	`e1022f2f3acdbe70f624fbee8d99b9ced7d97f6761be5fda371e6b2c4ddfbad9`
SHA3	`5ac0fa63ff019b9387d8761801926187ba0d807dcd9d3889936b935b13865be3`

22

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x20f`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.23266`
Detected Filetype	PNG graphic file
MD5	`1e1e54d4fd4eb384c5930bb0e97edfcf`
SHA1	`b6feddd1e0e9950c4a78fcc934a940a274e7a082`
SHA256	`cd65509518e02434177b8bb71aa67018fbdfd9f5141cfe9c7c02f85a56086c33`
SHA3	`cb7845a017c90c16fcd2f38e1a2e20d1d06a1d155753a0772f99809becff90cc`

23

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x1f0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`7.06546`
Detected Filetype	PNG graphic file
MD5	`98c9044262916ccd7f52c38ca67a2640`
SHA1	`b352c3fcac7381e3d5f3b092159d4b6edbbe81e9`
SHA256	`27322b9ead450123f89ef52e2f8d9738d90b28d423278e9104d9b34d22972c2e`
SHA3	`5e83f91edede7e303529c40299e929ad260eeade4a30663e04f2fec5c7ca814f`

24

Type	`RT_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.56056`
MD5	`9104d9f5acc220ac5a9a1c29a283e42d`
SHA1	`7e274a143071c4d7801c07669074cd8fa2972047`
SHA256	`e773c795d1dbb9bf8cd8f73f12c4f02c047f58dc516be4a629fe807610476917`
SHA3	`8cd4a3f7555bedc4ecddbcb83b34780f450c902a91ddda511b41f9b6f1c21103`

211

Type	`RT_MENU`
Language	English - United States
Codepage	UNKNOWN
Size	`0x2c8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.37124`
MD5	`2cfd05e0e8346abd1be8b6933d0684ad`
SHA1	`898c4f11bceec1fb399cc9e0f305e09b9a2df803`
SHA256	`c0306fb5f7462e74df09e5e0627c01a238f291bbdc89c24c0ea1f46e7341ab5a`
SHA3	`8f3778cee4660e3c85805aa4bce2602547080ca7cfc425029bce1441a5af9a1f`

205

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0xe0`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.7949`
MD5	`4b54c50878e900edccf0410ee62936bd`
SHA1	`e611915c5346058db710121d89c444aa7b5e503a`
SHA256	`ffa9c8ef0bc17102bd0afd2d82569ec0c1d1bc9b960183c191f5753f5c105703`
SHA3	`2fbe970575523b53f36fb2d5f9deb2c512807889cc39c4fbc22b133603816d1d`

500

Type	`RT_DIALOG`
Language	English - United States
Codepage	UNKNOWN
Size	`0x162`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.01687`
MD5	`981469bdfb3dc3e4cdcd85cc93b517ca`
SHA1	`4b7dd38d52851686a0a975e0447f08a869edd487`
SHA256	`19b434a3fa7585be205e9d57e399609c33468f31e7bd07da75dfd5e5cc095571`
SHA3	`2fa42e9cd8107e8f8d8ab7e39e4aaecd71f1db072dbc79493323b7848193c13b`

212

Type	`RT_ACCELERATOR`
Language	English - United States
Codepage	UNKNOWN
Size	`0x48`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.96144`
MD5	`7fb94687aa0fe2b18873dba5ac59ab1d`
SHA1	`e19e8d6b0e33da063de27c83fa0bab4058513332`
SHA256	`86286a59831ad1d0d84eb411ae6fa236b21bca5d3ebfc93a59cf4b6bf1d466d0`
SHA3	`33011788d35d1127a1ee6fbdb975c0d4ef6b36d3896e0d27d3f75f0ff68e3aec`

1 (#2)

Type	`RT_RCDATA`
Language	English - United States
Codepage	UNKNOWN
Size	`0x32`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.74147`
MD5	`fff865d1f248d2d7909ae287bd801625`
SHA1	`9d0293da8d32c449b5df24daf6c4784f41bb8043`
SHA256	`b760d945e2e4959a646a87672d2e47d571316bd466e828782d76c837098fcddb`
SHA3	`7cb46bdc162ca797aef7e79ed6c28a3805ac1476a7d7eb46a720a32a955d36a7`

159

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x76`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.97241`
Detected Filetype	Icon file
MD5	`9fb9077af1c4b1a2a5b5d0a142cd53fb`
SHA1	`243b6f0733c5d6eba208ca108238a76119490bbc`
SHA256	`48523ac82d2330704737c7acba2691a35e6255c2c8f44704a0f76dcbc7aa70f8`
SHA3	`90c62cc33ea186e7f4a9e7a13b4a57b600c10369d1f22c638aa17bd859a4e007`

160

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.02322`
Detected Filetype	Icon file
MD5	`7390835dbde4b519f1bb5d0a43cdecf1`
SHA1	`ace1db88f5c6a7d770deb33fbd310ffd963fa913`
SHA256	`ee9a03aed49512f1392e1f994a315ec1234ce773c3eb6fbdb459a5c09182f8a2`
SHA3	`445c1276c779ae6cc4d1762bc8f459eb3b2c0b890ac3fd8b2f935ee3ed20b2da`

206

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.79349`
Detected Filetype	Icon file
MD5	`56bc843c2228363318721c8e48f8089d`
SHA1	`8a40b1efe5f5663ebf177e5c12e0579027b2e95b`
SHA256	`2407a1db2e60b58687d2ab4f936205a80833cc1c29331896b678cea298b29b7e`
SHA3	`898f9dc95fc47db0ed3dfa6a043cbe0d780c82618b06f5d6b4fed958adb6c422`

207

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.7339`
Detected Filetype	Icon file
MD5	`917012b14a88fcc79a3a6017cce15ba4`
SHA1	`4286eba6df373db6b6ebf28a1f5c818a52a5b289`
SHA256	`0894c6ebf577910dbeafa70b6167b9d39b2e80a1965d96ff8dabfea8799d0f42`
SHA3	`a67e97a621b81afb024740542b060f885b5cd30e43ad329da5a69ac267712f14`

208

Type	`RT_GROUP_ICON`
Language	English - United States
Codepage	UNKNOWN
Size	`0x4c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.6985`
Detected Filetype	Icon file
MD5	`81690092de8afae80c3e61469a647a9d`
SHA1	`9a4a9e8c2fddf362318017d24c4e12389b56c750`
SHA256	`bbf948d6ecb3a0dc2af289573953839b9a09e04a1cf5b5708ffad5dd2c1e7bbb`
SHA3	`afd8389134ab6a3e196e05b3b0d65b03d078068de7ae789c8966ef2648ed3263`

1 (#3)

Type	`RT_VERSION`
Language	English - United States
Codepage	UNKNOWN
Size	`0x270`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.33472`
MD5	`1d7403159997aab5cac5f35f9dc7aea8`
SHA1	`1c220fbc0a9f6c9686832a0c927c20f7f62b8d6d`
SHA256	`0add0cff2b9107f6b6668106b0e53ad88ba01c74b9eca91d3b3f7c3d93b74b5b`
SHA3	`5573986c6d797e5d7b7c5f2b7df567907a7b4df8e61a4463228c8e69c62bcdff`

1 (#4)

Type	`RT_MANIFEST`
Language	English - United States
Codepage	UNKNOWN
Size	`0x519`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.34899`
MD5	`ae6cbabd61462b1c75647641e27471e0`
SHA1	`ab09ac1c8f01cae017456ea50d62dded0f2d8e0a`
SHA256	`1ac065102b08a083e659f8c0bc22d36e611e9a3fd59af54f3e24a5759ad27e5f`
SHA3	`cf59127e0acec85cabbe5259628d30a408de2609c40f939b05b633df13caee74`

Version Info

Signature	`0xfeef04bd`
StructVersion	`0x10000`
FileVersion	1.0.0.0
ProductVersion	1.0.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	English - United States
FileDescription	My Custom Application
FileVersion (#2)	1.0.0.0
CompanyName	My Custom Company
LegalCopyright	(c) 2026 My Custom Company
ProductName	My Custom App
ProductVersion (#2)	1.0.0.0

Resource LangID	English - United States

IMAGE_DEBUG_TYPE_POGO

Characteristics	`0`
TimeDateStamp	2026-Apr-14 03:36:43
Version	`0.0`
SizeofData	`900`
AddressOfRawData	`0xabfa0`
PointerToRawData	`0xaada0`

IMAGE_DEBUG_TYPE_ILTCG

Characteristics	`0`
TimeDateStamp	2026-Apr-14 03:36:43
Version	`0.0`
SizeofData	`0`
AddressOfRawData	`0`
PointerToRawData	`0`

TLS Callbacks

Load Configuration

Size	`0x140`
TimeDateStamp	`1970-Jan-01 00:00:00`
Version	`0.0`
GlobalFlagsClear	`(EMPTY)`
GlobalFlagsSet	`(EMPTY)`
CriticalSectionDefaultTimeout	`0`
DeCommitFreeBlockThreshold	`0`
DeCommitTotalFreeThreshold	`0`
LockPrefixTable	`0`
MaximumAllocationSize	`0`
VirtualMemoryThreshold	`0`
ProcessAffinityMask	`0`
ProcessHeapFlags	`(EMPTY)`
CSDVersion	`0`
Reserved1	`0`
EditList	`0`
SecurityCookie	`0x1400b5040`

RICH Header

XOR Key	`0xa4db3733`
Unmarked objects	`0`
Imports (VS2008 SP1 build 30729)	`18`
Imports (35207)	`4`
ASM objects (35207)	`3`
C objects (35207)	`9`
C++ objects (35207)	`31`
C objects (33145)	`7`
C++ objects (33145)	`1`
C objects (CVTCIL) (33145)	`1`
Imports (33145)	`3`
Total imports	`539`
ASM objects (35225)	`2`
C++ objects (LTCG) (35225)	`66`
Resource objects (35225)	`1`
Linker (35225)	`1`

Errors

Leave a comment

No comments yet.