Manalyze report for fdb1136a9cfeb1ce235e912da946cbd1a476d2cd6f8b0366a7fe0f456e9c90de

Summary

Architecture	`IMAGE_FILE_MACHINE_I386`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
Compilation Date	2015-Apr-19 23:09:07
Detected languages	Chinese - PRC
FileVersion	`1.0.0.0`
FileDescription	易语言程序
ProductName	名爵
ProductVersion	`1.0.0.0`
CompanyName	QQ:83705109
LegalCopyright	QQ:83705109 版权所有
Comments	本程序使用易语言编写(http://www.eyuyan.com)

Plugin Output

Info	Matching compiler(s):	`Microsoft Visual C++ 6.0 - 8.0` `Microsoft Visual C++` `Microsoft Visual C++ v6.0` `Microsoft Visual C++ v5.0/v6.0 (MFC)`
Suspicious	PEiD Signature:	`UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser` `UPX V2.00-V2.90 -> Markus Oberhumer & Laszlo Molnar & John Reiser`
Suspicious	Strings found in the binary may indicate undesirable behavior:	`Contains references to system / monitoring tools: rundll32.exe` `May have dropper capabilities: CurrentControlSet\Services` `Contains another PE executable: This program cannot be run in DOS mode.` `Contains domain names: dywt.com.cn eyuyan.com eyybc.com http://dywt.com.cn http://www.eyuyan.com http://www.eyybc.com http://www.eyybc.com/forum-17-1.html/forum-12-1.html/memcp.php/ip.asp/time.asp/gonggao.txt/ec-user6.php/ec-bd.php/ec-jh.php http://www.super-ec.cn http://www.super-ec.cnhttp super-ec.cn www.dywt.com.cn www.eyuyan.com www.eyybc.com www.super-ec.cn`
Info	Cryptographic algorithms detected in the binary:	`Uses constants related to MD5`
Malicious	The PE contains functions mostly used by malware.	`[!] The program may be hiding some of its imports: LoadLibraryA GetProcAddress` `Can access the registry: RegisterHotKey RegQueryValueExA RegOpenKeyExA RegSetValueExA RegDeleteValueA RegDeleteKeyA RegQueryValueA RegEnumKeyA RegCreateKeyExA RegCloseKey RegOpenKeyA` `Possibly launches other programs: WinExec ShellExecuteA` `Uses functions commonly found in keyloggers: GetForegroundWindow CallNextHookEx` `Leverages the raw socket API to access the Internet: htons WSAAsyncSelect closesocket inet_ntoa recvfrom ioctlsocket recv getpeername WSACleanup ntohs accept` `Enumerates local disk drives: GetVolumeInformationA` `Can take screenshots: GetDC BitBlt CreateCompatibleDC` `Reads the contents of the clipboard: GetClipboardData`
Malicious	VirusTotal score: 21/56 (Scanned on 2015-05-05 13:06:19)	`MicroWorld-eScan: Gen:Variant.Graftor.149467` `McAfee: Artemis!03B2253BCBB6` `F-Prot: W32/Agent.EW.gen!Eldorado` `Norman: FlyStudio.CDC` `TotalDefense: Win32/Oflwr.A!crypt` `TrendMicro-HouseCall: TROJ_GEN.R02LB01E315` `BitDefender: Gen:Variant.Graftor.149467` `SUPERAntiSpyware: Trojan.Agent/Gen-OnlineGames` `Tencent: Win32.Trojan.Spy.Fhy` `Ad-Aware: Gen:Variant.Graftor.149467` `Comodo: Worm.Win32.Dropper.RA` `F-Secure: Trojan:W32/DelfInject.R` `VIPRE: Trojan.Win32.Generic!BT` `McAfee-GW-Edition: BehavesLike.Win32.Flyagent.th` `Emsisoft: Gen:Variant.Graftor.149467 (B)` `Cyren: W32/Agent.EW.gen!Eldorado` `GData: Gen:Variant.Graftor.149467` `ALYac: Gen:Variant.Graftor.149467` `AVware: Trojan.Win32.Generic!BT` `ESET-NOD32: a variant of Win32/FlyStudio potentially unwanted` `Fortinet: Riskware/FlyStudio`

Hashes

MD5	`03b2253bcbb611502eba5b43df3e1dc7`
SHA1	`16803cdf8fbedebbbba2f2c8fb0a5f10b1b16b26`
SHA256	`fdb1136a9cfeb1ce235e912da946cbd1a476d2cd6f8b0366a7fe0f456e9c90de`
SHA3	`4a1f6584a1619cb8ff9b879eb4a041645d60b1fedb68c7ed64131820e5941f65`
SSDeep	`24576:GifLtZ5KrB9BrMlqQX2OiXSD3Fbb9j2Zwnooa:GOZyBnCtwWpRaenov`
Imports Hash	`8007a45417d206213c866d9fac2c524c`

DOS Header

e_magic	`MZ`
e_cblp	`0x90`
e_cp	`0x3`
e_crlc	`0`
e_cparhdr	`0x4`
e_minalloc	`0`
e_maxalloc	`0xffff`
e_ss	`0`
e_sp	`0xb8`
e_csum	`0`
e_ip	`0`
e_cs	`0`
e_ovno	`0`
e_oemid	`0`
e_oeminfo	`0`
e_lfanew	`0x120`

PE Header

Signature	`PE`
Machine	`IMAGE_FILE_MACHINE_I386`
NumberofSections	`4`
TimeDateStamp	2015-Apr-19 23:09:07
PointerToSymbolTable	`0`
NumberOfSymbols	`0`
SizeOfOptionalHeader	`0xe0`
Characteristics	`IMAGE_FILE_32BIT_MACHINE` `IMAGE_FILE_EXECUTABLE_IMAGE` `IMAGE_FILE_LINE_NUMS_STRIPPED` `IMAGE_FILE_LOCAL_SYMS_STRIPPED` `IMAGE_FILE_RELOCS_STRIPPED`

Image Optional Header

Magic	`PE32`
LinkerVersion	`6.0`
SizeOfCode	`0x74000`
SizeOfInitializedData	`0xaf000`
SizeOfUninitializedData	`0`
AddressOfEntryPoint	`0x00055036 (Section: .text)`
BaseOfCode	`0x1000`
BaseOfData	`0x75000`
ImageBase	`0x400000`
SectionAlignment	`0x1000`
FileAlignment	`0x1000`
OperatingSystemVersion	`4.0`
ImageVersion	`0.0`
SubsystemVersion	`4.0`
Win32VersionValue	`0`
SizeOfImage	`0x165000`
SizeOfHeaders	`0x1000`
Checksum	`0`
Subsystem	`IMAGE_SUBSYSTEM_WINDOWS_GUI`
SizeofStackReserve	`0x100000`
SizeofStackCommit	`0x1000`
SizeofHeapReserve	`0x100000`
SizeofHeapCommit	`0x1000`
LoaderFlags	`0`
NumberOfRvaAndSizes	`16`

.text

MD5	`13cefcb74f23166a69bfbde281509279`
SHA1	`6153029747f6fca3e50a82d368c0afa11ea9bd29`
SHA256	`c36dfbd604f683bf494fd2998375c21705ed81ad5b2e830928a89b18342e07df`
SHA3	`650b8f37873cf644c533d166be9473fa130c62b04c96d39e10a56a906b3958f4`
VirtualSize	`0x7362a`
VirtualAddress	`0x1000`
SizeOfRawData	`0x74000`
PointerToRawData	`0x1000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_CODE` `IMAGE_SCN_MEM_EXECUTE` `IMAGE_SCN_MEM_READ`
Entropy	`6.51456`

.rdata

MD5	`60b2e4f4eb07b579182c50673b4ca327`
SHA1	`ef1508b7b06ab130a016c5a451fbb0cd92a5bfd0`
SHA256	`37a871c72309c1fda136914cd1d75f4d07692fff1e8b56c73e02711aece3450a`
SHA3	`8fda24e0bb84953207efa063fb1f04fabf0005bdfdf5508498228f5d3347c6bb`
VirtualSize	`0x7db36`
VirtualAddress	`0x75000`
SizeOfRawData	`0x7e000`
PointerToRawData	`0x75000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`7.21807`

.data

MD5	`53de7496ac10cc001c02f15394c21a50`
SHA1	`79f4e372fe7bdce9c57b3c69b8931ab5ba5e6a20`
SHA256	`f7c0db5231bd687233ba34cf5369715dd97a1544a92e961c98ea002b5054c509`
SHA3	`0d8cd9d592c390a98ca702696fc58816cf37584589e75ba9fb0ee9bb4480db62`
VirtualSize	`0x536ea`
VirtualAddress	`0xf3000`
SizeOfRawData	`0x13000`
PointerToRawData	`0xf3000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ` `IMAGE_SCN_MEM_WRITE`
Entropy	`5.3966`

.rsrc

MD5	`cf8a4af0ea007b51d81a00425ccc4019`
SHA1	`0bb54ebce15ea840b4ad5b9569d135de16039e93`
SHA256	`bdb08ec7fd54a100f11966d2bd0e1cec12171f472c2bf758e9b3b4031404d33f`
SHA3	`486787068c636982039c395e4ee4220c0688c00aaf2dcef085ae32941ff7bf2e`
VirtualSize	`0x1d448`
VirtualAddress	`0x147000`
SizeOfRawData	`0x1e000`
PointerToRawData	`0x106000`
PointerToRelocations	`0`
PointerToLineNumbers	`0`
NumberOfLineNumbers	`0`
NumberOfRelocations	`0`
Characteristics	`IMAGE_SCN_CNT_INITIALIZED_DATA` `IMAGE_SCN_MEM_READ`
Entropy	`5.13715`

Imports

WINMM.dll	`midiStreamOut` `midiOutPrepareHeader` `waveOutUnprepareHeader` `waveOutPrepareHeader` `waveOutWrite` `waveOutPause` `waveOutReset` `waveOutClose` `waveOutGetNumDevs` `waveOutOpen` `midiOutUnprepareHeader` `midiStreamOpen` `midiStreamStop` `midiOutReset` `midiStreamClose` `midiStreamRestart` `midiStreamProperty`
WS2_32.dll	`htons` `WSAAsyncSelect` `closesocket` `inet_ntoa` `recvfrom` `ioctlsocket` `recv` `getpeername` `WSACleanup` `ntohs` `accept`
KERNEL32.dll	`ReleaseMutex` `OpenFileMappingA` `UnmapViewOfFile` `MapViewOfFile` `CreateFileMappingA` `UnhandledExceptionFilter` `GetACP` `HeapSize` `RaiseException` `GetLocalTime` `GetSystemTime` `GetStartupInfoA` `GetOEMCP` `GetCPInfo` `GetProcessVersion` `SetErrorMode` `GlobalFlags` `GetCurrentThread` `GetFileTime` `TlsGetValue` `LocalReAlloc` `TlsSetValue` `TlsFree` `GlobalHandle` `TlsAlloc` `LocalAlloc` `lstrcmpA` `GlobalGetAtomNameA` `GlobalAddAtomA` `GlobalFindAtomA` `GlobalDeleteAtom` `lstrcmpiA` `SetEndOfFile` `UnlockFile` `LockFile` `FlushFileBuffers` `DuplicateHandle` `lstrcpynA` `FileTimeToLocalFileTime` `FileTimeToSystemTime` `LocalFree` `InterlockedDecrement` `InterlockedIncrement` `WideCharToMultiByte` `GetVersion` `GetTimeZoneInformation` `SetLastError` `MultiByteToWideChar` `GetSystemDirectoryA` `TerminateProcess` `GetCurrentProcess` `GetFileSize` `SetFilePointer` `CreateSemaphoreA` `ResumeThread` `ReleaseSemaphore` `EnterCriticalSection` `LeaveCriticalSection` `GetProfileStringA` `WriteFile` `ReadFile` `GetLastError` `WaitForMultipleObjects` `CreateFileA` `SetEvent` `FindResourceA` `LoadResource` `LockResource` `GetModuleFileNameA` `GetCurrentThreadId` `ExitProcess` `GlobalSize` `GlobalFree` `DeleteCriticalSection` `InitializeCriticalSection` `InterlockedExchange` `lstrcatA` `WinExec` `lstrcpyA` `FindNextFileA` `GlobalReAlloc` `HeapFree` `HeapReAlloc` `GetProcessHeap` `HeapAlloc` `GetFullPathNameA` `FreeLibrary` `LoadLibraryA` `lstrlenA` `GetVersionExA` `WritePrivateProfileStringA` `CreateThread` `CreateEventA` `Sleep` `ExpandEnvironmentStringsA` `GlobalAlloc` `GlobalLock` `GlobalUnlock` `FindFirstFileA` `FindClose` `SetFileAttributesA` `GetFileAttributesA` `CopyFileA` `SetCurrentDirectoryA` `GetVolumeInformationA` `GetModuleHandleA` `GetProcAddress` `MulDiv` `GetCommandLineA` `GetTickCount` `WaitForSingleObject` `CloseHandle` `FreeEnvironmentStringsA` `FreeEnvironmentStringsW` `GetEnvironmentStrings` `GetEnvironmentStringsW` `SetHandleCount` `GetStdHandle` `GetFileType` `GetEnvironmentVariableA` `HeapDestroy` `HeapCreate` `VirtualFree` `SetEnvironmentVariableA` `LCMapStringA` `LCMapStringW` `VirtualAlloc` `IsBadWritePtr` `SetUnhandledExceptionFilter` `GetStringTypeA` `GetStringTypeW` `CompareStringA` `CompareStringW` `IsBadReadPtr` `IsBadCodePtr` `SetStdHandle` `RtlUnwind`
USER32.dll	`IsZoomed` `GetSystemMenu` `DeleteMenu` `GetClassInfoA` `DefWindowProcA` `PostQuitMessage` `CopyAcceleratorTableA` `GetKeyState` `TranslateAcceleratorA` `IsWindowEnabled` `ShowWindow` `LoadImageA` `EnumDisplaySettingsA` `ClientToScreen` `EnableMenuItem` `GetSubMenu` `GetDlgCtrlID` `CreateAcceleratorTableA` `CreateMenu` `ModifyMenuA` `AppendMenuA` `CreatePopupMenu` `DrawIconEx` `CreateIconFromResource` `CreateIconFromResourceEx` `RegisterClipboardFormatA` `SetRectEmpty` `GetMenu` `SetMenu` `PeekMessageA` `IsIconic` `SetFocus` `GetActiveWindow` `GetWindow` `DispatchMessageA` `SetWindowRgn` `GetMessagePos` `ScreenToClient` `ChildWindowFromPointEx` `CopyRect` `LoadBitmapA` `WinHelpA` `KillTimer` `SetTimer` `ReleaseCapture` `GetCapture` `SetCapture` `GetScrollRange` `SetScrollRange` `SetScrollPos` `InflateRect` `SetRect` `IntersectRect` `DestroyIcon` `GetSysColorBrush` `PtInRect` `OffsetRect` `IsWindowVisible` `EnableWindow` `RedrawWindow` `GetWindowLongA` `SetWindowLongA` `GetSysColor` `SetActiveWindow` `SetCursorPos` `LoadCursorA` `SetCursor` `GetDC` `FillRect` `IsRectEmpty` `ReleaseDC` `IsChild` `DestroyMenu` `SetForegroundWindow` `GetWindowRect` `EqualRect` `UpdateWindow` `ValidateRect` `InvalidateRect` `GetClientRect` `GetFocus` `GetParent` `GetTopWindow` `PostMessageA` `IsWindow` `SetParent` `DestroyCursor` `SendMessageA` `SetWindowPos` `MessageBoxA` `GetCursorPos` `GetSystemMetrics` `EmptyClipboard` `SetClipboardData` `OpenClipboard` `GetClipboardData` `CloseClipboard` `wsprintfA` `GetMessageA` `WindowFromPoint` `DrawFocusRect` `DrawEdge` `DrawFrameControl` `LoadIconA` `TranslateMessage` `GetDesktopWindow` `GetClassNameA` `GetDlgItem` `GetWindowTextA` `CallWindowProcA` `CreateWindowExA` `RegisterHotKey` `UnregisterHotKey` `GetForegroundWindow` `DestroyAcceleratorTable` `UnregisterClassA` `SystemParametersInfoA` `GetWindowTextLengthA` `CharUpperA` `GetWindowDC` `BeginPaint` `EndPaint` `TabbedTextOutA` `DrawTextA` `GrayStringA` `DestroyWindow` `CreateDialogIndirectParamA` `EndDialog` `GetNextDlgTabItem` `GetWindowPlacement` `RegisterWindowMessageA` `GetLastActivePopup` `GetMessageTime` `RemovePropA` `GetPropA` `UnhookWindowsHookEx` `SetPropA` `GetClassLongA` `CallNextHookEx` `SetWindowsHookExA` `GetMenuItemID` `GetMenuItemCount` `RegisterClassA` `GetScrollPos` `AdjustWindowRectEx` `MapWindowPoints` `SendDlgItemMessageA` `ScrollWindowEx` `IsDialogMessageA` `SetWindowTextA` `MoveWindow` `CheckMenuItem` `SetMenuItemBitmaps` `GetMenuState` `GetMenuCheckMarkDimensions` `LoadStringA`
GDI32.dll	`ExtSelectClipRgn` `SelectObject` `GetObjectA` `CreatePen` `PatBlt` `FillRgn` `CreateRectRgn` `CombineRgn` `CreateSolidBrush` `GetStockObject` `CreateFontIndirectA` `EndPage` `EndDoc` `DeleteDC` `StartDocA` `StartPage` `BitBlt` `CreateCompatibleDC` `Ellipse` `Rectangle` `LPtoDP` `GetCurrentObject` `RoundRect` `GetTextExtentPoint32A` `GetDeviceCaps` `CreateFontA` `TranslateCharsetInfo` `LineTo` `MoveToEx` `ExcludeClipRect` `GetClipBox` `ScaleWindowExtEx` `SetWindowExtEx` `SetWindowOrgEx` `GetViewportExtEx` `PtVisible` `RectVisible` `TextOutA` `ExtTextOutA` `Escape` `GetTextMetricsA` `CreateBitmap` `CreateDCA` `CreateCompatibleBitmap` `GetPolyFillMode` `GetStretchBltMode` `GetROP2` `GetBkColor` `GetBkMode` `GetTextColor` `CreateRoundRectRgn` `CreateEllipticRgn` `PathToRegion` `EndPath` `ScaleViewportExtEx` `SetViewportExtEx` `OffsetViewportOrgEx` `SetViewportOrgEx` `SetMapMode` `SetTextColor` `SetROP2` `SetPolyFillMode` `BeginPath` `GetWindowOrgEx` `GetViewportOrgEx` `GetWindowExtEx` `GetDIBits` `RealizePalette` `SelectPalette` `StretchBlt` `CreatePalette` `GetSystemPaletteEntries` `CreateDIBitmap` `DeleteObject` `SelectClipRgn` `GetClipRgn` `SetStretchBltMode` `CreateRectRgnIndirect` `SetBkColor` `DPtoLP` `CreatePolygonRgn` `SetBkMode` `RestoreDC` `SaveDC`
WINSPOOL.DRV	`OpenPrinterA` `DocumentPropertiesA` `ClosePrinter`
ADVAPI32.dll	`RegQueryValueExA` `RegOpenKeyExA` `RegSetValueExA` `RegDeleteValueA` `RegDeleteKeyA` `RegQueryValueA` `RegEnumKeyA` `SetSecurityDescriptorDacl` `InitializeSecurityDescriptor` `RegCreateKeyExA` `RegCloseKey` `RegOpenKeyA`
SHELL32.dll	`DragQueryFileA` `ShellExecuteA` `Shell_NotifyIconA` `DragAcceptFiles` `DragFinish`
ole32.dll	`CLSIDFromString` `OleUninitialize` `OleInitialize`
OLEAUT32.dll	`LoadTypeLib` `RegisterTypeLib` `UnRegisterTypeLib`
COMCTL32.dll	`ImageList_Add` `ImageList_BeginDrag` `ImageList_Create` `ImageList_Destroy` `ImageList_DragEnter` `ImageList_DragLeave` `ImageList_DragMove` `ImageList_DragShowNolock` `ImageList_EndDrag` `#17`
comdlg32.dll	`ChooseColorA` `GetFileTitleA` `GetSaveFileNameA` `GetOpenFileNameA`

Delayed Imports

1

Type	`TEXTINCLUDE`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xb`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.0958`
MD5	`0174b80aba6359d1011cd22b880f1a72`
SHA1	`9be77da1b2e1d6f4c0c77630334cf0f2a5a17ce6`
SHA256	`7791d56b6792eb1836f2e46ea02d208ffb1343ae922d6c696ad04de2e2c09441`
SHA3	`63aab311030110ae8c92e8229c5b4b6e6d796612f10c3fcfb448b681b4b3577a`

2

Type	`TEXTINCLUDE`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x16`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.27761`
MD5	`983c1066b8da83907ccb829dc9c725e6`
SHA1	`e5e00901ed07ee44b324ec54a39dbc7f998d1872`
SHA256	`4b345f7ee4c62582d946797d37a7dd8498af15f4afda496999d1ac54c108714a`
SHA3	`9e6e95da2a15de691b8d8369e4c0d15e125f5ec30cad35137ef9d61533b893a1`

3

Type	`TEXTINCLUDE`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x151`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.2478`
MD5	`2ed134514e374e40a710bd61d5190a86`
SHA1	`60ffcba570e819f041c84d7f1f2c0624daeada18`
SHA256	`6b993c9dc325863302d0ea34e4287822286f7fdf8e023320b9a520b5c9dcfa47`
SHA3	`b81bcaa3dc85c917820ef48bd60ee97d74a58b23c9d9d54b91e34e4fd097929b`

1 (#2)

Type	`RT_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.16959`
MD5	`dd516f96a352053618af66614c7ee23d`
SHA1	`ac9f852776d2a94c6676a83d55b52d8ae4f6e75f`
SHA256	`d27dd42f6f0db9536d3d59a42c61f4049f73c3373c00afa0554e3e7f85f9a92b`
SHA3	`c5e1a2860e8ca5ce99813b88a1e892ac55347b029506db40f0918be4a6550267`

2 (#2)

Type	`RT_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.61097`
MD5	`5e4306d342f15693f982320008298649`
SHA1	`2f48a547a1427833013f1ccc5d3119ab36c1cb11`
SHA256	`ba8a8cf5ecd16690d37ba7f41f107973656c617488a880538e1e33821929d3a3`
SHA3	`59e7368ccafa1b3b925e68b2a015f7d8153e999ed3daaec8d48008e2f70c984a`

3 (#2)

Type	`RT_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x134`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.02695`
MD5	`cab67e9ca149fb79ab4473998412b951`
SHA1	`2e793d35537bfb5d3f042ed0626d3b119d50519a`
SHA256	`fbeb3be87e80cb8e1d2af3d8140796c1bb80c6c7056f60897088ff9e355c3867`
SHA3	`0e72f5537421764effb2ed98e536358bb7e86eed7b0936e606e8d45559685684`

4

Type	`RT_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xb4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.74274`
MD5	`9fa8a914823ac7e5370652146901f4f1`
SHA1	`eb3224109abb341b6e464d2606fdbed1a7160bc6`
SHA256	`f64ccc0582bc7c66af8b40049e485e8e241335261ec95ace909293ba50b2e4a3`
SHA3	`bb348af06514e27cd1fa21ad524dfd037edcd3b36ef4cc6ab24c4a8ec38995ff`

IEXT_IDB_STATEIMAGES

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x16c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.01326`
MD5	`ded443f27639a176aaa4704438ec7e61`
SHA1	`d801573f4096cc54b22d6d1b7bdd105c9c75b877`
SHA256	`dfa96714879957a8228ff002d6330d5e72dc5fba242058435e17aba60ec87650`
SHA3	`55f782b0c7f52b52a89c67f4971fb8a7a4047f29a3f29bdc99ccc10d41435427`
Preview

1031

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x248`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.67246`
MD5	`4e68d48e0b5c427c7ab78cf473741530`
SHA1	`f1594c91aaddbea1e6f65d387f9bae32a1bc564c`
SHA256	`040a6280de380f6dfcf9335e7789c109fe6dca63b7875dfdf53b94e58444bc35`
SHA3	`1529b7b296eeadc4916f4556fe8f26a7af91b48effab377d02847269405bc4cc`
Preview

1038

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x144`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.23563`
MD5	`4f5d3abeaf37aa12daf334577d763cf8`
SHA1	`e9eab315798bb74fc12b0950011265e0e994876e`
SHA256	`5df58f862fdad1191048c43102b19d2f0a2a072dca2d4a15e0ff410cff74d1e3`
SHA3	`2ad2879352c2e7e50fc772d46bc3a50999e43ed35d478082527c0b5a0b3b6a36`
Preview

1138

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.06778`
MD5	`801d95f64abdf551c76057465d9855ba`
SHA1	`187cd89b980aa8bd7d67a0b56a95f48a3ffc08d5`
SHA256	`f8608530637848da94fd3bcd6080ea29d165c5d6aa96bb8d7244175652d44e7d`
SHA3	`c42e3989ce955d83fe60e08d28c83f4df3aa94af382f5f96a068f7948b80cf4d`
Preview

1139

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.06778`
MD5	`cc4c8954ba21f7265d2e34af683822a7`
SHA1	`0cd5b70d6a36690e6b359917716ad20aaaeb1142`
SHA256	`0e0636237e784b7fdf6ee15903dd33ad0eac7f6de2411dc47de7426f61af573d`
SHA3	`7735bf1c6013300bb12ea4551b06952fc0289eff58ca65ee4cf0d686dbc0aded`
Preview

1140

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.82327`
MD5	`3fdb32df423939b6be9ef7ea2edc82de`
SHA1	`024376a1fe6db7d3f624a2e104b9281654682d23`
SHA256	`52b0d8794067fbb5b88c73f5875d3347d586fc6e92a79155d5f687c01afcdd2a`
SHA3	`592da405c94eaed47c9b7c84eec9728d98802a544cc0049b79e7de475ea29abe`
Preview

1141

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.87572`
MD5	`4fae4fdd7257306abf84838c723f521b`
SHA1	`76d5338f7be0ae0c5d479fa27f064858a35d4e7d`
SHA256	`f5214c0bb68205062476dae1ae48c7aac9b1a7b06af025247cdf1610a8b739b0`
SHA3	`d77023013488df3c8bdd13907dfd2a5775e5fded4b525514de4453fc2678d763`
Preview

1142

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.7844`
MD5	`aa147e1a1b27e664ee25ba1b761eb97d`
SHA1	`56ee86aa9618a346803983cfab333a1bb81ebe36`
SHA256	`bb87a47da4781dac354f71427b0461f8a4234e4c18cc9a167cb54960c5ebb742`
SHA3	`d34d69d3d4c123206aae799fd1cbd17ea22f3d4fa1021d00e9b7e3f3f14da6a5`
Preview

1143

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.57855`
MD5	`d2d7419aa33ed86048015fbfe27359a4`
SHA1	`3b8b10ecb2068f21a9fc466a69164c28ae7a1571`
SHA256	`00b25fcbf267a0945d6fe3612dbdbad6640d1c99a9cb443f06d016bd44f51eab`
SHA3	`1c5f91189689ddb079d8274281229a45737f716b4253912ba94265c44abececb`
Preview

1144

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.53371`
MD5	`a06c1fd9091b6f3ccba80f3dcdabf19e`
SHA1	`21a3a87f764727c69c85728346b1d05d97869807`
SHA256	`5b7335372b1be5486f289d5e7ee01155c1d7fb8df76d8495bf15b7cee3f94585`
SHA3	`048b0c8d2d44b34fea51e6ff4e2ae4f5c73b5f7c1211741cdc4fe6796000ad22`
Preview

1145

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x158`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.41101`
MD5	`d9851b0845656cb1b1f5c586547b83bf`
SHA1	`fbcf280c7ec369d349b10d31ecbf261758e1ef14`
SHA256	`a6b89465e793bf0f0001f27440617590039a7fb34a16bcb551ce4b10b49eb7db`
SHA3	`7472827cfb2a9b2f7537971c617d231e75e471c3502299bde2184d23f55d22f3`
Preview

26567

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x5e4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.09838`
MD5	`055505a1940f27993d40e136bc915615`
SHA1	`f6223d2c97df05fa6b6ca54b47c92438777eae79`
SHA256	`a9bb58f43df34b3dc05b79015210b5a1ca84f8ff97555cf7344ef8bb662e1a6d`
SHA3	`cf77404babde2509159cac5542bdbc409a869e1633222f15e62ccb39bb8ad59b`
Preview

30994

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xb8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.23666`
MD5	`8cf65be17e506ff24c2177078f88b56e`
SHA1	`3e397dc7597caeb844df0ea760b64231c8ce3dbf`
SHA256	`e7c0005285d1ab59732d5f99f77a9bdd6342b01cf44437ebd7a07611a227e272`
SHA3	`7da4c7aab356574679f0f9107740f01647864c846c04f699deef67577fd6aded`
Preview

30995

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x16c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.20022`
MD5	`a2153b6134d93fd17964b36be4821db4`
SHA1	`43d43980d7e6c1f080cc3eca82d84dc2ab8241b1`
SHA256	`4406c7739acdebe7be0510fb2cf7043ebec1f3dfd4fd876e1b6d0eb29fa79a14`
SHA3	`c6bfd5b740368d3cc00322a1d1ed6905cefec2b5a411b2100444a37e72f79fe6`
Preview

30996

Type	`RT_BITMAP`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x144`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.87621`
MD5	`5a9c81cdbf480cf01daa71ba0e233c5f`
SHA1	`28e04c01584654e1974347d1baa462b2784e9c47`
SHA256	`abdf36bde89a26349f5741c17c235dacea88d441d8662ba16a598dc50c3c4864`
SHA3	`99dec83590ac444359a5a6f8924dae5615d93f4df527e10a8a61319ce3a5beaf`
Preview

1 (#3)

Type	`RT_ICON`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x2e8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.12749`
MD5	`0cb42696bae18798cb7086367e1c8648`
SHA1	`c8c1ea6ee6ae4285986c9ef7e3df213a32d76150`
SHA256	`c70bbabb35024b71265ad0cbc6b6553146b8417e6469c7031b292f87ac7f027c`
SHA3	`6f2d62a1fa986d2ef581c9c32b9e13c28f1689842f0bb999dd64e6ad58ac8fd3`

2 (#3)

Type	`RT_ICON`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x128`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.18858`
MD5	`f7689df1f1046fd3a9329c2bed028a7a`
SHA1	`5c81380f4db520c34783768d528a1223ccc10298`
SHA256	`bfd6b9443d835d48f4872879c901fd73a9cb1dcd85ceb44ab769410cf282b756`
SHA3	`d8707398afb787b830b3e9fdd416041d648fd4ba2e0988a16906f692a85b7dc1`

3 (#3)

Type	`RT_ICON`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x10828`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.0451`
MD5	`2fd951cc9569f711c0ba81c490eb1216`
SHA1	`c882216ee9b482bfb4728977957b9219e7b587d5`
SHA256	`138685e7abbb6b567732fc6f4318eaccc6e5317b19834ccd4435082dbecfec12`
SHA3	`4b728950478b1af1a0b7dd80110f931a840b497d3c54246605fc03c773144945`

4 (#2)

Type	`RT_ICON`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x4228`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.01747`
MD5	`1280cfe7430329174f65377766b6bcbb`
SHA1	`1df2e07a382577a4a8c4d80ef9a6a198a4024af4`
SHA256	`c9bdf9be8196ea8e5282eb4d798a6ad83dd4dadbb8b48aa9368dfdc918c2abc3`
SHA3	`1713316baf83522cb2a71dbaadcdc3f77fde8de44fe0adb5b6660a681bebe28c`

5

Type	`RT_ICON`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x25a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.16826`
MD5	`084a5da7066115ce623d99dcfe2a03cf`
SHA1	`9bbcda4bf4fef45d8c81d38570617037b9690e70`
SHA256	`1c3df337823c0f771b19659a6e00417ef8daa966996aedc291cf3c2895c06225`
SHA3	`7d646c72c1de9f0d0cc2508844ec99df8013ff80349cd492c14c4c93ce6662ce`

6

Type	`RT_ICON`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x10a8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.97617`
MD5	`78e1abbfa44d262d4c87a2bd30518b70`
SHA1	`cbc579ab8d2aa2639eda2562390138685e5fd9a0`
SHA256	`7452139fc835b3897e5ecf7aab973e42deb081605a582c0a5cf75e5c7d7d5c00`
SHA3	`a9db42cc00fc3c774b93661cd7150d9e5d2d7093245fdeaf6968fdab6caba3ce`

7

Type	`RT_ICON`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x468`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.61512`
MD5	`97ad2a19984b2b89b67b717d11efa297`
SHA1	`964186c08402bc6385d416441adfddbc5d8db11d`
SHA256	`834c0869f9652eaa52237deda1a5f58dc34873d9cd9f84e54b74168a6b90aec9`
SHA3	`034641a62d3bfef611010edd9c2c1eadb340ac623316827d0bd9eb599146ae33`

127

Type	`RT_MENU`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.4183`
MD5	`c01d4cd5bb1b57b835a1c2fba8e21e69`
SHA1	`be4bef44f1fce0552bee077b50211ebc04a5a777`
SHA256	`7dd1a3835eca622418f5fc87a53d3404b2b4766b8c0df00ee59ba679b35c70bc`
SHA3	`d1a9883d25af151238872bedfae8daade1eab0dcf9a4d516d8a000faab836a63`

1039

Type	`RT_MENU`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x284`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.27721`
MD5	`c8422eaddf07a9bee95c726c8426fcfc`
SHA1	`33056ecf914eebbd3029f658c22447e516747d4e`
SHA256	`7a7d7c4216cc704f4d47ea69d74851dab873624e47a6d40190e1a239db35715d`
SHA3	`c31c82b719ad6e62f6fc0e06e5fb0f61c126b8588ece4ee358543fe710229aeb`

150

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x98`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.06278`
MD5	`44526224da99d6c18599dd024d03690c`
SHA1	`1ee6fbfe9206aaa8d4f0e3c00a79203d6832067b`
SHA256	`512c93356c834770fca27fb18e6271ede046e5679587c3448ef9be8fec2e3bba`
SHA3	`24a7af9dc861ffdfe9f1231bfd9c8b7a831cca871e5a2ddf8607965b46fcdbba`

286

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x17a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.5561`
MD5	`7680df3f58cc47c46b99d84b10112194`
SHA1	`f4fe13962765e8c117f19f0e6bf01d64b0a23420`
SHA256	`2dc26197331d3f1e46b99f0fe7cc2e6868d25b655f12e960f57bd7e1056cb06c`
SHA3	`5ed31f740eb95cbef0eba3a691239cd02b9a4e3428bc1155ed660425320189e2`

554

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xfa`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.78697`
MD5	`da7ba785cdcd261b11c0eb9e21645e33`
SHA1	`7e1d6e23f5ebd67f14e08b1435d8f0ef03c7ca97`
SHA256	`b9f9f75f7931892d9db0418d496c7d5845b7710ecffe2117250d99d61da59fd3`
SHA3	`5e23ddfcc02b150d79a0f5e731d5cd584648dbd3a857934ea42ea98dbe5ea4d4`

1037

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xea`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.45041`
MD5	`4b9b12aa24c41c52fe6e59c420fe8708`
SHA1	`339dcf23d4e8361fc78919cb2a00f89353277a70`
SHA256	`d2c7f254d83c3122744bc35895a946a2e3c9f0c9545ccae2289fe10a8a214a1b`
SHA3	`3d9023d40c905b660f421967e6b40b087bd2d9c7f11f7042889d7c99f62bea2f`

1084

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x8ae`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.18397`
MD5	`3b69402c70fa480ec16568dd6b708e13`
SHA1	`e94831a62793cd4588263af60de9a78ffcf4eb8f`
SHA256	`09dd636320023e367b16b8992bdc09803f50eae040b33ab29df1d33e425568e1`
SHA3	`47aadf425b780072ffe63df8f37ab4465de00054aecd2c0f20c3acd844c82bae`

1124

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xb2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.51845`
MD5	`26c2bcd4e5333a75a1408c4e59711022`
SHA1	`c7fdff5b229cdf7882e81300285081b469d80755`
SHA256	`096a66c479bf64312d10d27270bf793aca7e14a0a731ea8af8b2eaaa91114117`
SHA3	`a39b0d306ee4cd54d1854deadadbfd63440982b3e6037fdd8022e595a73fe519`

1134

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xcc`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.73942`
MD5	`be90a3c4f4988eaa4f1498ba66e25c8c`
SHA1	`95ab8be47f1c29af2ccebccd4f0b98322012f4bd`
SHA256	`5bdbd189b596b2b6658d2e7d0e7e9bb203ca7749da598f0343abcd2cd0e7a1e6`
SHA3	`38b0804ccdf19b3a754ee8aa96f33333b2a6438318d18a7b48e49ae26d6059ed`

1150

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xb2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.45225`
MD5	`5228e05f53b7eee70cdae8bfe4e116b7`
SHA1	`59952cfa6cf756626c57c641c85f752ea8997d80`
SHA256	`963d2d391d6ba60a6ac73c0041d23a862046afd9c446f4112b90ae290839a806`
SHA3	`258d162737232b01a90bfb86fb3de0d4cd3a935bb3e2f8a2a55d721037cf573d`

30721

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0xe2`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.38941`
MD5	`085d5f15dba87cc77a4cad2d555d6c8c`
SHA1	`5299e0b15c862d118bed43251fd6ebde8d9f824d`
SHA256	`95681f43fb8cf9ff17d7a15cb0c12d9cb2b92282097283ec7388b18fe5d32f11`
SHA3	`c2751bef9db649f88eb88b6437728cbb74df17704c17242f5ebd14d96e6ee4aa`

30722

Type	`RT_DIALOG`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x18c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.74445`
MD5	`ccf1e3cf6acded3c2c63ee305170de36`
SHA1	`c2b9c6b8fe4980da2513c20e85f2b8d78c9b1afc`
SHA256	`d20fbeb2fa69c10f2516fc4f545597734464e68bf7388c2c3325343be22f25ca`
SHA3	`8a595d24997078113f7b966fce4dd7b3b0d5bf4f068341973b55389fbb8cb566`

3841

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x50`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.68399`
MD5	`27e992d5cd65b0ca3d129106cc1e542b`
SHA1	`f38d0d22b7abdb0dc389790027f8baa65342c931`
SHA256	`8b568f62cc221d621d3c624e7363d59c4bf36a72bda8e147eda5374c232a41a5`
SHA3	`7c0b2073f7d8639e08933edd26259d17c657a3a8bd10c220b28dc36bf991db1a`

3842

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x2c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.37932`
MD5	`da86a7575ac8286809dd9481ec498fd8`
SHA1	`603b9d5525180b1dd7f12747c6686548abc3eb32`
SHA256	`0b985f127b9074f92daf51979d1228e8d0657682ed064beed98015d6775e51d0`
SHA3	`dfe329fb5f9e5b8c99125d3a6e59c3b7c9d3f58ceb00eddf3a2efe5c901decd8`

3843

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x78`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.07447`
MD5	`7c859626451a41d43bdb6e834b14377f`
SHA1	`da7c436fc04f4634e78d0e082ec2bd58df0d834f`
SHA256	`302aebc37216997e819a40d01fcf7bb9e167086ada2ebb0dd0e66ddfd01214b5`
SHA3	`579bfffbce971576d9259f238c3ba65c7dddab341ad697b96f24febf131b6a0c`

3857

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x1c4`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`6.10651`
MD5	`ae6a056cefffe26b23eac60d04989987`
SHA1	`647f69e40048510c7bc2a85c56c31d3c5c93520e`
SHA256	`de0534ff3bbef338455e8429094952e27f2d32d55251eb0d06ff038a0712847a`
SHA3	`011f50fe2cdebe31e0f64c965e4764d31c9e8b301d36c77187675702c95eae4c`

3858

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x12a`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.07121`
MD5	`7b9eb7d6204e8b40c165056d4f913aaa`
SHA1	`d6f0d252ab0d8a61a3b3bfa8d1d8f15b6b5980b4`
SHA256	`2ffbc578d90a3e38bdad4ec77d3af58a8658d50525c0181d367ecca3caa90343`
SHA3	`cfec62ae95d5501d7215671ed599e2836a1a68da564e36d75cec7714c40f0ffa`

3859

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x146`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.85681`
MD5	`8f0987ae2b73f266a0e1c3a542c98605`
SHA1	`5f255288183c4540cd3d17e77610727cc0abfec7`
SHA256	`d3d61705e766fd9a7fa182de39d008036d5806197e5f94069fb9639b7f8b3a7e`
SHA3	`b5960118e4788f9f9cfb34c06b009dcfb5aefd17cf426a2f83e57e021cf04bbd`

3865

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x40`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.16865`
MD5	`4231654bdf85b678bb14449fdbfc7551`
SHA1	`52a66153e54242d310b717fe2ceb53985355fc63`
SHA256	`bd48ebe7d5151a7972cf4ef7398aa32197c09c043018152b275e194079e6cb36`
SHA3	`62e4d63095a5b69fbf08e4210c0c7595bbd3d9fd7762ff6ad7d68f6c43e9d3ce`

3866

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x64`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`4.15663`
MD5	`161e87eb73081d55a22eca8a7599cec9`
SHA1	`cbf8b9f13b16195df9f6f5fafebad37512189db1`
SHA256	`90acf703f238b79f43ed45dd995adb3a9aed92a4e2898a542960390a79986247`
SHA3	`86b3a428d12470b7143b3824c56db5fb856b417f42c299561be4c6307a73612c`

3867

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x1d8`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.71189`
MD5	`ffb2c960432dbc57036b37f0dc4f1801`
SHA1	`f4fc7c61b2081e62cd7dc0aa0bc87c6d9c4ae4fb`
SHA256	`4bcda3f9066ac6438067470cc7619e93d205234c739e6def0fd9b1c17d8da3e8`
SHA3	`9de813c33aad1aa2a1de01e596223e4a72af5427e781f518052a0e8c558ad1e6`

3868

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x114`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`5.40365`
MD5	`2d219af23f43c40235ddae8924570225`
SHA1	`3d5261d86f26957dedb0ec73ceece9ebee2321d4`
SHA256	`7f3e8f1e71164263cf0ea5b7483a0c96fb880d008edbf7f5fc8452b41d72cd74`
SHA3	`6e37f0ee58bc4fd6a882903d21d1c60f24396c49917488eb23b51c51012811b6`

3869

Type	`RT_STRING`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x24`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`0.903812`
MD5	`3aeb0d04983923c5f3db08ff872ea9ea`
SHA1	`4464d409df76c913c59f2763bb0deb0eb2306e2b`
SHA256	`ae61f0cc506d48077e2c1df743ade849ee40e74ea228514f109782c78f402283`
SHA3	`98082029421f0596d00e3ce7c9599250fbb32c8ed767a6e8d132aeb329f4c377`

1032

Type	`RT_GROUP_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.91924`
Detected Filetype	Cursor file
MD5	`aff0f5e372bd49ceb9f615b9a04c97df`
SHA1	`e3205724d7ee695f027ab5ea8d8e1a453aaad0dd`
SHA256	`b07e022f8ef0a8e5fd3f56986b2e5bf06df07054e9ea9177996b0a6c27d74d7c`
SHA3	`9cb042121a5269b80d18c3c5a94c0e453890686aedade960097752377dfa9712`
Preview

1033

Type	`RT_GROUP_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`1.83876`
Detected Filetype	Cursor file
MD5	`a2baa01ccdea3190e4998a54dbc202a4`
SHA1	`e8217df98038141ab4e449cb979b1c3bbea12da3`
SHA256	`c53efa8085835ba129c1909beaff8a67b45f50837707f22dfff0f24d8cd26710`
SHA3	`8874564c406835306368adf5e869422e1bb97109b97c1499caa8af219990e8dc`
Preview

30977

Type	`RT_GROUP_CURSOR`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x22`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.25451`
Detected Filetype	Cursor file
MD5	`ab177b955c2f330b053b1fe0a5618dc6`
SHA1	`4195f1dd0f34a982c8e5c95ac43412cec1462715`
SHA256	`58531242c8bcc3c5858701ac8b7e50aa34a2fcedaad81ce5dc0aa99effb79a7d`
SHA3	`576c511275899104d47c90f4087757f5ed8cac33415255dd0e5b773058c61461`
Preview

DEFAULT_ICON

Type	`RT_GROUP_ICON`
Language	UNKNOWN
Codepage	Latin 1 / Western European
Size	`0x4c`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.86004`
Detected Filetype	Icon file
MD5	`68217a9fd13d2a34491032388aedfc1c`
SHA1	`e6132f6475bde8f38bb38c6835a476634ff2cb26`
SHA256	`9f70f51e5bc4eea01f16145b56c1d93159c60cacbde95d1954774400bbc312e2`
SHA3	`9c0b1e70767931b5609f150e57d5f33c824ba1fe56fa5e6844ace7939bbe2676`

1151

Type	`RT_GROUP_ICON`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.16096`
Detected Filetype	Icon file
MD5	`42cf62b780813706e75fb9f2b2e8c258`
SHA1	`a022d5c1cfdd8aace0089f3e72f2eedd41bda464`
SHA256	`a0c9d012e2bf6b2fe05c2d97cb5594d97cf2f539e97935c12abd7a3562f4d9bf`
SHA3	`0aafc8e3d8b6bde595537da4ffe0efc5fe53f01dafe336a2a5828b6a71283d3c`

1152

Type	`RT_GROUP_ICON`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x14`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`2.02322`
Detected Filetype	Icon file
MD5	`7a9605cb416b1a091d889b9d9f37ec66`
SHA1	`866c01641d672b6cd69901c1e055f174f47b35bb`
SHA256	`6bcce1250099cc08d574211b3debabb0244cd2641f6d960538e7ddc97d319164`
SHA3	`af43e622bf6c842d1ada2985f8e68920ff7b22d8a0b1a12871968c23b5065651`

1 (#4)

Type	`RT_VERSION`
Language	Chinese - PRC
Codepage	Latin 1 / Western European
Size	`0x278`
TimeDateStamp	1980-Jan-01 00:00:00
Entropy	`3.66105`
MD5	`3d22cb0dd5ad0a6be2b1644d2fd1cd23`
SHA1	`eb3f690213ee0f9815362d3090d3476300824991`
SHA256	`6838905b7a3f3005bea4bf0a40460cae5d0ddafdb93d8e3252a9c0f1c84fff72`
SHA3	`cec48cca67488f3bcc74499369fefc670718400035d93b4e0eb237a14a5a10c9`

String Table contents

打开
保存为
所有文件 (.)
无标题
一未命名文件
隐藏(&H)
得不到出错信息。
试图执行系统不支持的操作。
必需的资源无法得到。
内存不足。
出现了未知的错误
无效的文件名。
打开文档失败。
保存文档失败。
将改动保存到 %1？
建立空文档失败。
该文件太大，无法打开。
无法启动打印作业。
启动帮助失败。
内部应用程序出错。
命令失败。
没有足够的内存执行操作。
系统注册项已被移除并且相应的 INI 文件（假如存在）也被删除。
不是所有的系统注册项（或 INI 文件）都被移除。
在系统中没有找到此程序需要的文件%s。
此程序连接到文件 %s 中丢失的输出 %s 。此机器可能有一个 %s 不兼容的版本。
请键入一个整数。
请键入一个数。
“请填入一个在%1和%2之间的整数。”
“请填入一个在%1和%2之间的数字。”
“请填入不多于%1个的字符。”
请选择一个按钮。
“请填入一个在0和255之间的整数。”
“请填入一个正整数。”
“请填入一个日期和/或时间值。”
“请填入一个货币值。”
非预期的文件格式。
无法找到该文件。
请验证给出的路径和文件名是否正确。
目的磁盘驱动器已满。
无法对 %1 进行读操作，它已经被其他人打开。
无法对 %1 进行写操作，因为它是只读文件或已经被其他人打开。
在对 %1 进行读操作时发生了一个非预期的错误。
在对 %1 进行写操作时发生了一个非预期的错误。
无法读只写特性。
无法写只读特性。
无法装入邮件系统支援。
邮件系统 DLL 无效。
传递邮件未能传递信息。
无错误发生。
在对 %1 进行访问时发生了一个不明错误。
没有找到 %1。
%1 中包含无效的路径。
无法打开 %1 因为太多文件已被打开。
对 %1 的存取被拒绝。
一个无效的文件柄与 %1 相关联。
无法删除 %1 因为它是当前目录。
该目录已满，无法创建 %1。
对 %1 进行查找失败。
在存取 %1 时一个硬件输入/输出错误被报告。
在存取 %1 时发生共享违例。
在存取 %1 时发生锁违例。
在存取 %1 时磁盘已满。
试图越过其尾端对 %1 进行读写。
无错误发生。
在对 %1 进行访问时发生了一个不明错误。
试图在对 %1 进行读操作的同时对其进行写操作。
试图越过其尾端对 %1 进行读写。
试图在对 %1 进行写操作的同时对其进行读操作。
%1 格式错。
%1 含有非预期的对象。
%1 包含错误的模式。
象素

Version Info

Signature	`0xfeef04bd`
StructVersion	`0`
FileVersion	1.0.0.0
ProductVersion	1.0.0.0
FileFlags	`(EMPTY)`
FileOs	`VOS_DOS_WINDOWS32` `VOS_NT_WINDOWS32` `VOS__WINDOWS32`
FileType	`VFT_APP`
Language	Chinese - PRC
FileVersion (#2)	1.0.0.0
FileDescription	易语言程序
ProductName	名爵
ProductVersion (#2)	1.0.0.0
CompanyName	QQ:83705109
LegalCopyright	QQ:83705109 版权所有
Comments	本程序使用易语言编写(http://www.eyuyan.com)

Resource LangID	Chinese - PRC

TLS Callbacks

Load Configuration

RICH Header

XOR Key	`0x6d21ded2`
Unmarked objects	`0`
12 (7291)	`5`
C++ objects (8047)	`9`
C objects (8047)	`6`
14 (7299)	`44`
19 (8022)	`44`
19 (8034)	`24`
Total imports	`682`
Imports (2179)	`3`
18 (8444)	`1`
C objects (VS98 SP6 build 8804)	`197`
C++ objects (VS98 SP6 build 8804)	`113`
C++ objects (VS98 build 8168)	`93`
Unmarked objects (#2)	`60`
Resource objects (VS98 SP6 cvtres build 1736)	`1`

Errors

Leave a comment

No comments yet.