Static | ZeroBOX

Name	Virtual Address	Virtual Size	Size of Raw Data	Entropy
.text	0x00002000	0x000453dc	0x00045400	7.88273793412
.rsrc	0x00048000	0x000005f4	0x00000600	4.17460670036
.reloc	0x0004a000	0x0000000c	0x00000200	0.101910425663

Name	Offset	Size	Language	Sub-language	File type
RT_VERSION	0x00048090	0x00000364	LANG_NEUTRAL	SUBLANG_NEUTRAL	data
RT_MANIFEST	0x00048404	0x000001ea	LANG_NEUTRAL	SUBLANG_NEUTRAL	XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators

!This program cannot be run in DOS mode.

`.rsrc

@.reloc

Jds

C&s

=3s#

%;s

=3s#

Ets

=3s#

`3s#

t3s#

=3s#

h;s

=3s#

Gvs

=3s#

G=s

=3s#

v4.0.30319

#Strings

virtualKey0

virtualNumpad1

virtualKeyboard1

label1

textBox1

virtualKey1

ToWin32

ToInt32

label2

textBox2

virtualKey2

virtualKey3

virtualKey4

virtualKey5

virtualKey6

virtualKey7

virtualKey8

virtualKey9

virtualKeyA

virtualKeyB

virtualKeyC

System.Drawing.Drawing2D

virtualKeyD

virtualKeyE

virtualKeyF

virtualKeyG

virtualKeyH

virtualKeyI

virtualKeyJ

virtualKeyK

virtualKeyL

virtualKeyM

virtualKeyN

System.IO

virtualKeyO

virtualKeyP

virtualKeyQ

virtualKeyR

virtualKeyS

virtualKeyT

virtualKeyU

virtualKeyV

virtualKeyW

virtualKeyX

virtualKeyY

virtualKeyZ

value__

mscorlib

get_Poc

VirtualNumpad

add_vmValueChanged

remove_vmValueChanged

NumberBoxValueChanged

add_TextChanged

NumberBox_TextChanged

Interlocked

set_Handled

vm_buttonCurrentlyPressed

Synchronized

activeField

<MyProperty>k__BackingField

get_Second

method

virtualKeyPeriod

VirtualKeyboard

virtualKeyBackspace

defaultInstance

FeedSource

ApplySource

set_AutoScaleMode

set_SizeMode

PictureBoxSizeMode

set_SmoothingMode

set_InterpolationMode

set_PixelOffsetMode

set_Image

ResizeImage

FromImage

DrawImage

CompareExchange

EndInvoke

BeginInvoke

IDisposable

set_Visible

RuntimeTypeHandle

GetTypeFromHandle

FromFile

get_Title

get_AssemblyTitle

DockStyle

ColumnStyle

set_FormBorderStyle

set_FlatStyle

FontStyle

RowStyle

set_Name

GetFileName

labelProductName

GetName

AssemblyName

labelCompanyName

DateTime

vm_startTime

vm_holdtime

Combine

set_Multiline

Landscape

get_MimeType

mimeType

SizeType

GetType

Square

get_Culture

set_Culture

resourceCulture

get_CodeBase

ButtonBase

ApplicationSettingsBase

TextBoxBase

Dispose

TryParse

MulticastDelegate

DebuggerBrowsableState

EditorBrowsableState

ParallelLoopState

Delete

get_LogicalCallConte

STAThreadAttribute

CompilerGeneratedAttribute

GuidAttribute

GeneratedCodeAttribute

DebuggerNonUserCodeAttribute

DebuggableAttribute

DebuggerBrowsableAttribute

EditorBrowsableAttribute

ComVisibleAttribute

AssemblyTitleAttribute

AssemblyTrademarkAttribute

TargetFrameworkAttribute

AssemblyFileVersionAttribute

AssemblyConfigurationAttribute

AssemblyDescriptionAttribute

CompilationRelaxationsAttribute

AssemblyProductAttribute

AssemblyCopyrightAttribute

AssemblyCompanyAttribute

RuntimeCompatibilityAttribute

get_Value

set_Value

oldValue

newValue

_value

Remove

SiteMembershipConditi.exe

set_Size

set_MaximumSize

set_AutoSize

set_ClientSize

ISupportInitialize

Resize

System.Threading

set_Padding

System.Drawing.Imaging

System.Runtime.Versioning

ToString

GetString

disposing

System.Drawing

sourcePath

get_SavePath

set_SavePath

_savePath

GetFullPath

GetFolderPath

DetermineOutputPath

outputPath

get_Width

get_ImageWidth

set_ImageWidth

_width

SiteMembershipConditi

AsyncCallback

callback

add_Tick

Timer_Tick

add_Click

okButton_Click

virtualKeypress_click

set_Dock

set_Interval

System.ComponentModel

TableLayoutPanel

tableLayoutPanel

GetPixel

set_ActiveControl

ContainerControl

UserControl

IsControl

get_Param

Program

System

CanReuseTransform

resourceMan

TimeSpan

SetRowSpan

set_TextAlign

set_Margin

set_ShowIcon

GetFileNameWithoutExtension

get_Version

labelVersion

get_AssemblyVersion

Application

set_Location

System.Configuration

ImageOrientation

System.Globalization

op_Subtraction

System.Reflection

TableLayoutColumnStyleCollection

TableLayoutRowStyleCollection

TableLayoutControlCollection

set_StartPosition

FormStartPosition

get_Description

textBoxDescription

get_AssemblyDescription

HoldButton

okButton

add_MouseDown

HoldButton_MouseDown

ImageCodecInfo

GetCodecInfo

CultureInfo

DirectoryInfo

add_MouseUp

HoldButton_MouseUp

Bitmap

set_TabStop

get_SaveToDesktop

set_SaveToDesktop

_saveToDesktop

set_ShowInTaskbar

get_KeyChar

InvokeMember

SpecialFolder

sender

Binder

Encoder

get_ResourceManager

ComponentResourceManager

HoldButtonTrigger

add_vm_trigger

remove_vm_trigger

MouseEventHandler

KeyPressEventHandler

System.CodeDom.Compiler

vm_timer

IContainer

EncoderParameter

LB.PhotoResizer

set_Anchor

set_UseVisualStyleBackColor

MutexCreator

ColorTranslator

.cctor

Graphics

System.Diagnostics

get_TotalMilliseconds

System.Runtime.InteropServices

System.Runtime.CompilerServices

System.Resources

FormComponents.Form1.resources

FormComponents.VirtualNumpad.resources

FormComponents.VirtualKeyboard.resources

FormComponents.Properties.Resources.resources

LB.PhotoResizer.AboutBox.resources

DebuggingModes

FormComponents.Properties

GetFiles

EnableVisualStyles

get_ColumnStyles

AnchorStyles

get_RowStyles

get_Filenames

set_Filenames

_filenames

GetCustomAttributes

BindingFlags

Settings

MouseEventArgs

KeyPressEventArgs

ReplaceOriginals

get_ResizeOriginals

set_ResizeOriginals

_resizeOriginals

get_Controls

System.Windows.Forms

set_AutoScaleDimensions

SetDefaultOptions

set_ScrollBars

GetImageEncoders

EncoderParameters

add_KeyPress

NumberBox_KeyPress

FCEventVirtualKeyPress

HoldButtonReportProgress

add_vm_reportProgress

remove_vm_reportProgress

progress

VirtualKeypress

add_virtual_keypress

remove_virtual_keypress

FormComponents

components

Exists

SendKeys

Concat

Format

GetObject

object

get_Product

get_AssemblyProduct

get_Height

get_Copyright

labelCopyright

get_AssemblyCopyright

Portrait

IsDigit

EndInit

BeginInit

GraphicsUnit

get_Default

SetCompatibleTextRenderingDefault

IAsyncResult

set_DialogResult

result

ArrayFragment

ContentAlignment

Environment

InitializeComponent

OnResizedEvent

set_Font

set_ColumnCount

set_RowCount

Convert

SuspendLayout

ResumeLayout

PerformLayout

get_Text

set_Text

get_Now

set_TabIndex

logoPictureBox

set_MinimizeBox

set_MaximizeBox

NumberBox

AboutBox

TextBox

clickedTextbox

get_Assembly

GetExecutingAssembly

set_ReadOnly

get_Company

get_AssemblyCompany

CreateDirectory

set_CompositingQuality

get_ImageOutputQuality

set_ImageOutputQuality

op_Equality

_quality

op_Inequality

get_MyProperty

set_MyProperty

WrapNonExceptionThrows

FormComponents

2018

$c53cc2e7-db6b-456d-8fb8-1b828b920e87

1.0.0.0

.NETFramework,Version=v4.0

FrameworkDisplayName

.NET Framework 4

3System.Resources.Tools.StronglyTypedResourceBuilder

16.0.0.0

KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator

16.10.0.0

lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet

hSystem.Drawing.Bitmap, System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3aPADPAD

QSystem.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

System.Drawing.Bitmap

IDATx^

lFd!JOO

J%3%Bcaaa

AYZM@?

)n||&k

sssCCC

UUUaaa"[

9m20k4

E0`"Xi

q#tSiwvv

M)jf1#

=FGGK&J

&jf63{

uFYSQs]

4qj#acccoo/=

SSS%3%OA

L@@@gg'

xE@caG

!r>B:!

eB]aee

=z4@#xp

=ecK~vwu

$5,xU`

IIIZZZS|

B..((@

)3]8hx

uIIIYYYyyy

cWmmmUUUYYYaaavvvJJJ\\\TT

vvuttt

5+pq`VsVVSVfcfFCF

-wwnnk

ZZQZZ+

<yr|A|

+?YnXm(

<==#""

{~~w}|.

\\vXYm40

kjZleUnk[

-NN{\\:\]

_gf~(bt

HmWW?

`mo_co_

..mnn]

fMFLLVl

7m*IN.OK

6(+NA\

mGUyYV

ysYjjUzz]vvS^^kaa

tPPPVVVQQ

yxtyzv{y

rMff}NNKv

fx%yM_KG'

F[[[GGG

&ymU,h

lv+",M

9M48^8x]

,10Xfh

`H^_9gh

9[08]{p

*p88=A

okkkii

J9(Ys

GU~~~qq1}

.]PPPVVVYY

3R'?;I

!p88g)

"=$ev1

EaaaII

'N ,#c

3"3Q||<

.=->';

imZj\f

hqHHHEE

'*:-9z

rxx8?c

lFp>tp

qyq5'j~

SZK5G8

j9a+"sAZiIvU

eWWm#Z&

cCaXXXaa!g

apppZZ

rGj!<d

"%1zK*

:59&=u]V

63}}vV\nvB~

A.dedh

&Lq0_V

'm/N)+A

-4K'7*[

v0.75b PhotoResizer is designed to allow you to quickly and easily resize photos for use on the web. This software is provided 'as is' and contains no warranty. No responsibility will be accepted by the authors for any loss of data through use of this program.

lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet

PADPADP

lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet

hSystem.Drawing.Bitmap, System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3aPADPAD

QSystem.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

System.Drawing.Bitmap

IDATx^

~rb/}u

//{MCrA

~?YdllV

W}CQbq

^3lo9|

|^kh--

A(?-J\

W7j7+6

3_x)b^n[

EkZ?6?8

JtLOe5B

OHcc*nb

7ISQdUhW

.pM>n(

(kU9Wy

B4b@zv..

=9(y'w

S6R>ac)

m6xY"O'<

Y=R!hn

TN7myU{

(GeUVQ

TE}cXc<S

^w21x6

+i(AsU

*%b]h\B

ms>5vl

V-IN~4}l

q`qLNe

OMWeWH

EJ- FvT

sVSz`Wc}^

!P\!S *

P&0d`*-

~"oQ0|`

>@I{xl

}P?M]T

g!(4kp

}1UV:'m

1@)~$.

@"yb/i{

]h&d*

D;];^H

?@R_SV

|HKLP<

\Y-vI>

e$ F`Z7

)ZbR|(Lr

UJ+4Bm'o

}d=iip ;

~*a7&Xt

{$nci\v

|0(]ey

>Za?TY

RN)7:O

`p:>FG

vB7;6_7@

S+.|O&

}XCTHp

"MNl~2

?&4 }R7&

(P W-M

,>1NAd

++2"+,4

eIW8|Vs

vIaSPaEwy

gdf?/E0

`XiZ!-

=n;xj<

j.PgrI\j

2K=S@D

}+cr{n

RV(mN0

WMq<XGo

o,~M4%q

23A"@dLp

Q,5rh

G^\YER

im8vz2

c!PHDS

o8B-+.

>*"g3EE

eBU0f2%ybbYU

A0:Zo

=G9Y5a

]_u=z8I

d~:qo|

\`9RPZ

iVRIFX

N8<Quo

spwY].

-ofuJ,O

{{cTOh

|sO3@.

7$69]m

L/T%fP

Z2h{Q2

[.i^MM

o016\\_

&XbvHG

Bxe~F\

trHdVxD

o5U5

_q[tKR

7FDn`LS

nd-M)6

e"`?p{

;/W_Yy:fy

m^}e$a

-k4rzO

8@A?kk

ZReM^I

2R83Wc

{&9(`/

f+S(#c

4m7HqmQ

)`1pr@

#=N!OT?

m1I&M9+_

~=-Xjtu

=hqape

V$@Fd#<

R'Et-8

14O3_7

vqn`[/

kppzCA

x&*hN~

=K(_DI

4]T)%"

ppFkF+

(G.Le{A

{pYyxC

~KQw^Ek

T]z=D%

q'Yt*}

uY^/F%4

7_=Q=V)

UU{\k?

`j.P]k

E)Fh$(WHV

q'un`3

r(cz2QP%

*47~[C

Y?38D<

@HQL_j

e?|-V*

R6.V]h

PFZfsg

LK8k=E

hkam42

WG='Y?VN

;J: E@

e:L060A

l6`gW2J

KIK)D

J<*WE8

nT>yod

a`#\1buV`

02thl]Nr

o}kd?%

+Hn;(!K

{96~^m?

P`.FSEb

((\e4C

.=Ynns

<-Ta&p

9syjjY

c!@3p-

LNZVR~

zc'=G&

^)jI/6s

t2SD(vc

#p^YUn

Nu]f1rXW 6

)*$|.1@

N>]0oc

P59}{[

}q6@z`^5

@BdRSb><N

F0y?oI

K77m<]/

+xtgjt$

!-ETw>p

R,\9mT

4+W>61

>1K!^`

D9qf!})

#1Lz

'dUv1^

3ouO?2

Tf+LnN

Rw/aVt

g.Oz}Eg

{?kE#;

@*YlLnW

WT.hh\

$<%EF7

-M6`yI

f*2Bpy

rt=Ta

,5mMu!

\JuV2S

gD~Z]U

>a%WhW

`20O+R

l6'07L

xZEe+@(

7 xzLx

m@b!I&"L

~T"I/i

2@U:0=

Ya}pHg

X*8C*d

l.GPY$

@KL#21|)

M0G"4,

j<GOvO

l@?k6#

dVHG74v1

{^9)#/

KJ P+asq>

_Wgf1;!

@C(`&U

"3bn`:

Hk{]8>

65xG$D9

!wzEY

Hji\\Z

ex|lWo

`:S}9^

f:L]U=ey

{I\jSs

O7*\w(

]2WGw)

Yp% 3sG,

R;`,AR

~DoKg/?{

zL!g55

N"9AAqm

G;[nF"

?4lO?<

h;0;$)

Ic;q5}

vQ"5EA@

wR-7ih

P$/%+Y

y.F=}>Z'

.M-x~

$)%IQ"{

%~aDoMW

g1(h l

xl8Fa27

anniijF^

I4j**'

R,!3?E

4.w\=3

{$#4TX

,Dm+Vgj

:9[ET:

`I@1>F

hG&^Mz

1CKia AD@

|(S1;e

k2e&Ti

MNpG%tU

JflZ4(

IfV(=

9FM"6Q

Xm,k# Gl

Oj0ih5/

kg%:[b

+%*Q!T

{T'Kf^

4zQUkU

Q"x5(g

9-@[qz<

J=y,_D

qE!Kt{

w|9Gh(Z0b

`&),?`

E+3bsy

.Nk+p@zU

2oA0($f

%p^\~mP4

\zwtHgM

}Qg[qbJ

WDT~TV83

"$n|j$

JNK'=n.

/ue)c&

'W\_kX

RsV-2w

-'b6.3

3arO*'

LMZSb~

v@%(_T"

;NLj/Yiyjp

-89>[8

}BbQ#i

(p?-7-

j}4X&w1

Cqwbzn

i76XtV

yf_#Apu

!7G.$

'E0e[E

IDATN$

WZ5Xi=

w<JV!}

)+)k|s

}=SVLy

*~?)xU_C

o:2V}Ob

pt#\-&3l

P@L` f

QSystem.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

System.Drawing.Bitmap

IDATx^

mX|Rfi

jB6cu

zjOmc\

a'<=Nx

<'zmL't

#^6@#O

[cBzhk

lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet

PADPADP

lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet

PADPADP

_CorExeMain

mscoree.dll

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>

</requestedPrivileges>

</security>

</trustInfo>

</assembly>

4C6F676963616C43616C6C436F6E7465

76425A323768593353

Backspace

virtualNumpad1

virtualKeyboard1

Segoe UI Semibold

textBox1

SelectorX

FormComponents

textBox2

label1

Virtual Keyboard

label2

Virtual Numpad

System.IO.Transactions.TxFileManager

Segoe UI

virtualKeyP

virtualKey1

virtualKey4

virtualKey7

virtualKeyQ

virtualKeyPeriod

virtualKeyL

virtualKeyA

virtualKeyO

virtualKeyZ

virtualKeyB

virtualKeyBackspace

virtualKey0

virtualKey2

virtualKey5

virtualKey8

virtualKeyW

virtualKeyG

virtualKeyS

virtualKeyT

virtualKeyX

virtualKeyK

virtualKeyY

virtualKeyI

virtualKeyH

virtualKeyV

virtualKeyN

virtualKeyF

virtualKey3

virtualKey6

virtualKey9

virtualKeyE

virtualKeyR

virtualKeyD

virtualKeyM

virtualKeyC

virtualKeyJ

virtualKeyU

VirtualKeyboard

VirtualNumpad

FormComponents.Properties.Resources

LogicalCallConte

About {0}

Version {0}

tableLayoutPanel

logoPictureBox.Image

logoPictureBox

labelProductName

PhotoResizer

labelVersion

Version 0.75b

labelCopyright

labelCompanyName

londonbikers.com

textBoxDescription

textBoxDescription.Text

okButton

AboutBox

About PhotoResizer

PhotoResizer Images

logoPictureBox.Image

textBoxDescription.Text

LogicalCallConte

VS_VERSION_INFO

VarFileInfo

Translation

StringFileInfo

000004b0

Comments

CompanyName

FileDescription

FormComponents

FileVersion

1.0.0.0

InternalName

SiteMembershipConditi.exe

LegalCopyright

2018

LegalTrademarks

OriginalFilename

SiteMembershipConditi.exe

ProductName

FormComponents

ProductVersion

1.0.0.0

Assembly Version

1.0.0.0

Antivirus	Signature
Bkav	Clean
Lionic	Clean
Elastic	malicious (high confidence)
MicroWorld-eScan	IL:Trojan.MSILZilla.10057
FireEye	IL:Trojan.MSILZilla.10057
CAT-QuickHeal	Clean
ALYac	Clean
Cylance	Clean
VIPRE	Clean
Sangfor	Clean
K7AntiVirus	Clean
BitDefender	IL:Trojan.MSILZilla.10057
K7GW	Clean
CrowdStrike	win/malicious_confidence_60% (D)
Arcabit	Clean
BitDefenderTheta	Gen:NN.ZemsilF.34266.rm0@aKqzNRc
Cyren	W32/MSIL_Kryptik.GCF.gen!Eldorado
Symantec	MSIL.Packed.19
ESET-NOD32	a variant of MSIL/Kryptik.ADLE
Baidu	Clean
TrendMicro-HouseCall	Clean
Paloalto	Clean
ClamAV	Clean
Kaspersky	UDS:DangerousObject.Multi.Generic
Alibaba	Clean
NANO-Antivirus	Clean
ViRobot	Clean
Rising	Clean
Ad-Aware	IL:Trojan.MSILZilla.10057
Emsisoft	IL:Trojan.MSILZilla.10057 (B)
Comodo	Clean
F-Secure	Clean
DrWeb	Clean
Zillya	Clean
TrendMicro	Clean
McAfee-GW-Edition	Artemis!Trojan
CMC	Clean
Sophos	Clean
Ikarus	Clean
Jiangmin	Clean
eGambit	Clean
Avira	Clean
MAX	malware (ai score=83)
Antiy-AVL	Clean
Gridinsoft	Clean
Microsoft	Trojan:MSIL/AgentTesla.LJA!MTB
SUPERAntiSpyware	Clean
APEX	Malicious
GData	Clean
Cynet	Malicious (score: 100)
AhnLab-V3	Clean
Acronis	Clean
McAfee	Artemis!6C08BEC27EDF
TACHYON	Clean
VBA32	Clean
Malwarebytes	MachineLearning/Anomalous.95%
Panda	Clean
Zoner	Clean
Tencent	Clean
Yandex	Clean
SentinelOne	Static AI - Suspicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	Clean
Webroot	Clean
AVG	FileRepMalware
Cybereason	Clean
Avast	FileRepMalware

Static Analysis

PE Compile Time

PE Imphash

Sections

Resources

Imports