popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-11-17 10:01:01

PE Imphash

8782517e36f7985d0bf5e74e708684c2

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0001a8dc 0x0001aa00 6.54657535097
.data 0x0001c000 0x00296148 0x0001b000 6.35784839006
.rsrc 0x002b3000 0x0001bcd0 0x0001be00 4.0135873715

Resources

Name Offset Size Language Sub-language File type
RT_CURSOR 0x002cd2f8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x002cd2f8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x002cd2f8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x002cd2f8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x002cba80 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_STRING 0x002cec20 0x000000b0 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x002cec20 0x000000b0 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x002cec20 0x000000b0 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x002cec20 0x000000b0 LANG_TAMIL SUBLANG_DEFAULT data
RT_ACCELERATOR 0x002cbf60 0x000000a0 LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_CURSOR 0x002cd2c8 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_CURSOR 0x002cd2c8 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_ICON 0x002cbee8 0x00000076 LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x002cbee8 0x00000076 LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x002cbee8 0x00000076 LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x002cbee8 0x00000076 LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x002cbee8 0x00000076 LANG_TAMIL SUBLANG_DEFAULT data
RT_VERSION 0x002cdbb8 0x0000020c LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library KERNEL32.dll:
0x401004 GlobalFix
0x40100c SetLocaleInfoA
0x401010 EnumCalendarInfoA
0x401014 AllocConsole
0x40101c GetProfileSectionA
0x401020 GetUserDefaultLCID
0x401024 GetModuleHandleW
0x401028 GetTickCount
0x40102c ReadConsoleW
0x401034 GetDriveTypeA
0x401038 SetHandleCount
0x401040 GlobalAlloc
0x401048 AddRefActCtx
0x40104c SetFileShortNameW
0x401050 LoadLibraryW
0x401054 IsProcessInJob
0x401058 GetCalendarInfoW
0x401064 GetFileAttributesA
0x401068 GetFileAttributesW
0x40106c WriteConsoleW
0x401070 GetModuleFileNameW
0x401074 CreateFileW
0x401078 GetVolumePathNameA
0x40107c GetStringTypeExA
0x401080 GetProfileIntA
0x401084 ReleaseActCtx
0x401088 SetLastError
0x40108c GetProcAddress
0x401090 MoveFileW
0x401094 RemoveDirectoryA
0x401098 SetComputerNameA
0x40109c SearchPathA
0x4010a0 GetTempFileNameA
0x4010a4 LoadLibraryA
0x4010a8 SetCalendarInfoW
0x4010b4 AddAtomA
0x4010b8 GlobalWire
0x4010bc FindNextFileA
0x4010c4 lstrcatW
0x4010cc GetConsoleTitleW
0x4010d4 EnumDateFormatsW
0x4010d8 CompareStringA
0x4010e8 DebugBreak
0x4010ec EnumSystemLocalesW
0x4010f0 AreFileApisANSI
0x4010f4 DeleteFileA
0x4010fc EncodePointer
0x401100 DecodePointer
0x401104 Sleep
0x401118 GetLastError
0x40111c HeapFree
0x401120 ExitProcess
0x401124 GetCommandLineA
0x401128 HeapSetInformation
0x40112c GetStartupInfoW
0x401130 RaiseException
0x401134 RtlUnwind
0x401138 HeapAlloc
0x40113c WideCharToMultiByte
0x401140 LCMapStringW
0x401144 MultiByteToWideChar
0x401148 GetCPInfo
0x401154 IsDebuggerPresent
0x401158 TerminateProcess
0x40115c GetCurrentProcess
0x401164 HeapCreate
0x401168 HeapSize
0x40116c TlsAlloc
0x401170 TlsGetValue
0x401174 TlsSetValue
0x401178 TlsFree
0x40117c GetCurrentThreadId
0x401184 GetLocaleInfoW
0x401188 WriteFile
0x40118c GetStdHandle
0x401190 GetModuleFileNameA
0x401198 GetFileType
0x4011a0 GetCurrentProcessId
0x4011a8 GetACP
0x4011ac GetOEMCP
0x4011b0 IsValidCodePage
0x4011b4 GetLocaleInfoA
0x4011b8 EnumSystemLocalesA
0x4011bc IsValidLocale
0x4011c0 GetStringTypeW
0x4011c4 HeapReAlloc
0x4011c8 GetConsoleCP
0x4011cc GetConsoleMode
0x4011d0 FlushFileBuffers
0x4011d4 SetFilePointer
0x4011d8 CloseHandle
0x4011dc SetStdHandle
!This program cannot be run in DOS mode.
`.data
generic
iostream
system
string too long
invalid string position
iostream stream error
Unknown exception
CorExitProcess
bad allocation
Visual C++ CRT: Not enough memory to complete call to strerror.
LC_TIME
LC_NUMERIC
LC_MONETARY
LC_CTYPE
LC_COLLATE
LC_ALL
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
(null)
`h````
xpxxxx
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
bad exception
Illegal byte sequence
Directory not empty
Function not implemented
No locks available
Filename too long
Resource deadlock avoided
Result too large
Domain error
Broken pipe
Too many links
Read-only file system
Invalid seek
No space left on device
File too large
Inappropriate I/O control operation
Too many open files
Too many open files in system
Invalid argument
Is a directory
Not a directory
No such device
Improper link
File exists
Resource device
Unknown error
Bad address
Permission denied
Not enough space
Resource temporarily unavailable
No child processes
Bad file descriptor
Exec format error
Arg list too long
No such device or address
Input/output error
Interrupted function call
No such process
No such file or directory
Operation not permitted
No error
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
united-states
united-kingdom
trinidad & tobago
south-korea
south-africa
south korea
south africa
slovak
puerto-rico
pr-china
pr china
new-zealand
hong-kong
holland
great britain
england
britain
america
swedish-finland
spanish-venezuela
spanish-uruguay
spanish-puerto rico
spanish-peru
spanish-paraguay
spanish-panama
spanish-nicaragua
spanish-modern
spanish-mexican
spanish-honduras
spanish-guatemala
spanish-el salvador
spanish-ecuador
spanish-dominican republic
spanish-costa rica
spanish-colombia
spanish-chile
spanish-bolivia
spanish-argentina
portuguese-brazilian
norwegian-nynorsk
norwegian-bokmal
norwegian
italian-swiss
irish-english
german-swiss
german-luxembourg
german-lichtenstein
german-austrian
french-swiss
french-luxembourg
french-canadian
french-belgian
english-usa
english-us
english-uk
english-trinidad y tobago
english-south africa
english-nz
english-jamaica
english-ire
english-caribbean
english-can
english-belize
english-aus
english-american
dutch-belgian
chinese-traditional
chinese-singapore
chinese-simplified
chinese-hongkong
chinese
canadian
belgian
australian
american-english
american english
american
Norwegian-Nynorsk
_nextafter
_hypot
`h`hhh
xppwpp
Complete Object Locator'
Class Hierarchy Descriptor'
Base Class Array'
Base Class Descriptor at (
Type Descriptor'
`local static thread guard'
`managed vector copy constructor iterator'
`vector vbase copy constructor iterator'
`vector copy constructor iterator'
`dynamic atexit destructor for '
`dynamic initializer for '
`eh vector vbase copy constructor iterator'
`eh vector copy constructor iterator'
`managed vector destructor iterator'
`managed vector constructor iterator'
`placement delete[] closure'
`placement delete closure'
`omni callsig'
delete[]
new[]
`local vftable constructor closure'
`local vftable'
`udt returning'
`copy constructor closure'
`eh vector vbase constructor iterator'
`eh vector destructor iterator'
`eh vector constructor iterator'
`virtual displacement map'
`vector vbase constructor iterator'
`vector destructor iterator'
`vector constructor iterator'
`scalar deleting destructor'
`default constructor closure'
`vector deleting destructor'
`vbase destructor'
`string'
`local static guard'
`typeof'
`vcall'
`vbtable'
`vftable'
operator
delete
__unaligned
__restrict
__ptr64
__eabi
__clrcall
__fastcall
__thiscall
__stdcall
__pascal
__cdecl
__based(
GetProcessWindowStation
GetUserObjectInformationW
GetLastActivePopup
GetActiveWindow
MessageBoxW
1#QNAN
1#SNAN
bad locale name
ios_base::badbit set
ios_base::failbit set
ios_base::eofbit set
sibexohihufenud
vogalejuwekanokixobaroxaraferojamojapekupinucotajabevopinimekabufo
batayodoziyebofuyerowafovicef
rexehozucagirigagawameruxigorekuzisokugevajipaxedowirajiwasefohovevohekuxo
mugaliguxenapenukizixirapajajoru
rasihokukoxecilozuvofir wamuze wexoyomewujivoromojusoyaf hipuyesofasulomizi
ramuxibirexevoto gudacimiciki pefafeninut
hexifojivitasiyepawob zutubokakefijaraxod
jotilejepugitap
yabexi
zitirifenamebeh fagevidahevevamalucel mabazubajepozuvicivovipecuf
%s %d %f
higerumegufowiginulocumu
badifotivavexuxarikik
Pad hehosagufefomufu fowexekefupinebom gej miyewizexacuhipatukifoyataro
wocalupodimosecadisakelidofivunuroyayegurovivifagahiyiwefobomejicotikayujijalixihohuvedudocelikobevakayarihoy
cureyivacilo
pisubix tesol
disewataja
tegohuneziferimegulatezemow cabuhuhoy jopakedixanelasaroriduvorij mivil tuwaxatopaxukipoxipocafukawukisu
bad cast
?uZEeu
?uZEeu
?UUUUUU
?UUUUUU
QQSVWd
.t|PVj@
t"SS9] u
tWItHIt9It
HHtXHHt
?If90t
F\=`)@
^SSSSS
j@j ^V
t=MOC
HtHu4j
t*=RCC
;7|G;p
tR99u2
F Pj*S
F$Pj+Sj
F(Pj,S
F,Pj-S
F0Pj.S
F4Pj/S
F8PjDS
F<PjES
F@PjFS
FDPjGS
FHPjHS
FLPjIS
FPPjJS
FTPjKS
FXPjLS
F\PjMS
F`PjNS
FdPjOS
FhPj8S
FlPj9S
FpPj:S
FtPj;S
FxPj<S
F|Pj=S
C PjPV
C$PjQV
C*PjTV
C+PjUV
C,PjVV
C-PjWV
C.PjRV
C/PjSV
CHPjPV
CLPjQV
PPPPPPPP
PPPPPPPP
URPQQh 9A
t VV9u
;t$,v-
UQPXY]Y[
<+t"<-t
+t HHt
u-h@A@
f-00f=
tRHtCHt4Ht%HtFHHt
GetVolumeNameForVolumeMountPointA
GlobalFix
SetDefaultCommConfigA
SetLocaleInfoA
EnumCalendarInfoA
AllocConsole
InterlockedIncrement
GetProfileSectionA
GetUserDefaultLCID
GetModuleHandleW
GetTickCount
ReadConsoleW
TzSpecificLocalTimeToSystemTime
GetDriveTypeA
SetHandleCount
AllocateUserPhysicalPages
GlobalAlloc
GetPrivateProfileIntA
AddRefActCtx
SetFileShortNameW
LoadLibraryW
IsProcessInJob
GetCalendarInfoW
SetVolumeMountPointA
GetConsoleAliasExesLengthW
GetFileAttributesA
GetFileAttributesW
WriteConsoleW
GetModuleFileNameW
CreateFileW
GetVolumePathNameA
GetStringTypeExA
GetProfileIntA
ReleaseActCtx
SetLastError
GetProcAddress
MoveFileW
RemoveDirectoryA
SetComputerNameA
SearchPathA
GetTempFileNameA
LoadLibraryA
SetCalendarInfoW
FindFirstVolumeMountPointW
BeginUpdateResourceA
AddAtomA
GlobalWire
FindNextFileA
CreateIoCompletionPort
lstrcatW
FreeEnvironmentStringsW
GetConsoleTitleW
GetCurrentDirectoryA
EnumDateFormatsW
CompareStringA
SetThreadAffinityMask
FileTimeToLocalFileTime
MoveFileWithProgressW
DebugBreak
EnumSystemLocalesW
AreFileApisANSI
DeleteFileA
KERNEL32.dll
InterlockedDecrement
EncodePointer
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
HeapFree
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
HeapAlloc
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
HeapCreate
HeapSize
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
WriteFile
GetStdHandle
GetModuleFileNameA
GetEnvironmentStringsW
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
HeapReAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
CloseHandle
SetStdHandle
.?AVerror_category@std@@
.?AV_Generic_error_category@std@@
.?AV_Iostream_error_category@std@@
.?AV_System_error_category@std@@
.?AV_Locimp@locale@std@@
.?AVlogic_error@std@@
.?AVlength_error@std@@
.?AVout_of_range@std@@
Copyright (c) 1992-2004 by P.J. Plauger, licensed by Dinkumware, Ltd. ALL RIGHTS RESERVED.
.?AVtype_info@@
.?AVbad_exception@std@@
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
.?AV?$ctype@D@std@@
.?AUctype_base@std@@
.?AVfacet@locale@std@@
.?AV?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@
.?AV?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@
.?AV?$basic_iostream@DU?$char_traits@D@std@@@std@@
.?AV?$basic_ostream@DU?$char_traits@D@std@@@std@@
.?AV?$basic_istream@DU?$char_traits@D@std@@@std@@
.?AV?$basic_streambuf@DU?$char_traits@D@std@@@std@@
.?AV?$basic_ios@DU?$char_traits@D@std@@@std@@
.?AV?$_Iosb@H@std@@
.?AVios_base@std@@
.?AVruntime_error@std@@
.?AVexception@std@@
.?AVfailure@ios_base@std@@
.?AVsystem_error@std@@
z:2q=5
uu`)%&T
_4`'+;
HgOs(y$
=8$/inr
1d,dNS
TmKY%|
Y30134
W&&|7V;
z@,3qw
@il\/E
~P9n zHr
ooy2sZ
!0MW%X
7`MMW@N
0BeS$_
jw_Z1>
2Q%1Ot
al,~Gg&=>
Vk+,z`T.=l
K)vdK]
\n!PGbb
$i?`=r
5u@kmrC
uO{VS%
,NZ7EP
=o$e(I{
K1'$bE
qB6Dzr
?2dDv%
:8Qvq?
H|}Q'YYl
TuDnQ~
81S^)@
|iD_%[
__8Uh`
v8_/@X
P@:'s04,q
,p(%M7
w?,5Vm
RE1C/n
T`(KDI
UX:"o;*;
>njX#c
+D7;%n
uPw[?F
"w@\$t
(>5oK
LG~kfP
Qi3]ej
kh~XR@
'o>Der
-R%2+|
Eb]u<Gk3
D{R0d%
hFZ+~0
)]5zxs
5~'X7#
IzhMP?
w;`ma`
>R/|/B
Q_|&/S
'vgs/l
3Yb$5Og
``u%SXE
@l~_u=(
>If(r-
#$a|q}
jGBxZ%
!NS;F\
"&j_`k
E}|gl!
+O_ k]
(g+1{n@
I~I0B&
tZo'1>
'-EMd
2b`<a;
H-rG,D
+vx=<{)
KcWrQT
:;X(
|pW#3){WL
u1CYQ}s
}Vqff:A
nVURr_
{$FE1t!
r3TKWVo
CK%_:m
u1!nv3
=<)*LyG
ZX^"NK
&FI37D
zdKh#
LwRD@E
7$XDe^
K5[:#P
y`irg7t^)
\<m<a9
gLj#[w
n[PK*<
QD|d%@oQ
G&knjr6
x<P]?,:H
jF/3.\
zDzoD|]
JAp~m:
'`&9^y
-\.?{~
ZXl{%!9
b$m>wYPo
>J5H4q
Zd&nM}l
]M^Gsd
N&!)p
wFO]>]
Eqzh_T"%
(%.nE[
74Ng[M
*P+k[$
cX}sJ
i3fE,T
-_(dns
`exCqr
1TP7f@
WxwG3V
&[Gr,R
vh{tsfD
u63xG=
>f32WMV
sU<bY8FI{
-soTIF
1%{'oE
f|L^!\LP
;UV$6{z
WcU#R6
?#&ZJ4
M56wap
m1J(}m
K&<>)89
.?AVbad_cast@std@@
.?AVbad_alloc@std@@
7FFhFFFFFo
GGGGGGGGGGGh
~~~~~~~
---yyy-y--y-y---
-ydkkkkkkkkkkkkky
-y-dd******kyIy
dkkkkkkdk-y
*kkkkkkkkkyI
ydkkkkkkkkkkkkkyy
-y--yyyyy-yy-y-y
---I------
ZZZZZZZZ
5X.!!!!!!!!!!!!!!
Z!i>>>u
!ihh>>>u>uu777uJ!
hhhh>>>u>u>J!
KK___hhh>>>uhJ!
KKKK__h_hh
-y--GZ
HHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHH
^^^^^^^^^^
HHHHHHH
HHHHHH
TTTTTg
000+++**[ :
000+[ :
KK[[PPP
THHHH^
wwwwwww]
HHHHHHHHHHHHHHHHHHHHHHHHH
________
ppppppppp
OOdd>+
{{{{{c
yOAKKKKK
X{{{{{{i
X{{{{{{{{
{{{{{{{{{
c{{{{{{{{{{{{{{
ii{{{{{{{{{{{{{
zzzzii{{{{{{{{i
ii{{{{c
nzziiM|
KKKKKB
55555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555
5555555555555555555555555555555
555555555555555
\55555555555555cR55555555555555eN
5555555555555
5555555555555f
u55555555555
555555555555f>>2Z
5555555555
55555555555fi
555555555S
555555555)i
555555555
555555)
P5555555tP
5555555
R5555555
555555
F55555555
5555555555
555555555555555T
55555555555555555555
55555555555555555555555u
555555555555555555555555u
5555555555555555555555555u
xc555555555555555555555555555u*P
5555555555555555555555555555t
55555555555555555555555555555I555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,
Y,,,,,,,,,,,M,,,,,,,,,,
,,,,,,,,,,5
,,,,,,,,,
,,,,,,,,,
,,,,,,,,
,,,,,,,
,,,,,,
,,,,,,
,,,,,,
),,,,,,
19,,,,,
qqqqq
,,,,,,,
,,,,,,,,,,
49,,,,,,,,,,,,,,,x
,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
~{|zy}
{{{zz~
z}~}z}
{|z~~}
}|z|z}z}}
||~}||
~|~~yy
}~}~}{
}z~||~z
|~}{z~
{|zz{}
~|z}}~|~
~|~|~~|
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLr
LLLLLLLLLLLLLLLLLLLLLLL
rLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLL
LLLLLLL
LLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLL
333333333
33t33t33t
LLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLL
`````````````````F
LLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLr
rLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLL
uuuuuuuu==uuu
LLLLLLLLLLLLLL
==u==u==u==u=============
LLLLLLLLLLLL
==N=N=N=N=N=f=f=f=ff=f=ff=f
LLLLLLLLLL
ffffffffffffff
LLLLLLLL
LLLLLL
LLLLLE
ELLLLLLLLL
LLLLLLLLLLLLLLLLLLLL
YqqqqqqqqqY
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
uqzqqzqz=
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
YzzzzzzzY
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLL
((((((((
yyyyyyyyy
RRRRR
rrrrrr5
r@@@@@@@@
}}}}}}}}}}}}}}}}}}}}}
......
Z}}}}}}}}}}}}
ZZZZZZZZZZZZ}
}}Z}ZZZZZZZZ}
r}}}}}}}}}Z}
{Y.......
..........
?>>>>>>>>>>>>>>>>>>>>>>>?
5555556
f66666
;;;;;;##
;;;;;;#
;;;;;;##
1fffff
;;;;;;##
;;;;;f
fffffff
ffffffff
fffffff
<<<<<<<<<<JJJJJJp<>?
66666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666
T666666666
66666666
6666666
666666
qTTTTTTT
AAAAAA
uu
T66666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666666
yyyyyy
&cccccccc
.....
nnnnnnnnn|
mscoree.dll
((((( H
h(((( H
H
w(null)
KERNEL32.DLL
runtime error
TLOSS error
SING error
DOMAIN error
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
- abort() has been called
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
@Microsoft Visual C++ Runtime Library
<program name unknown>
Runtime Error!
Program:
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
WUSER32.DLL
CONOUT$
ddomixumudimaxexa fijohucijaj
wowimasazunolimehehimalaciyetetilubu
yiyisasicuxa
omiwefadozexalevonepuwigufofuwara
calenasokisegijoresunokiw
rasedo
gepolasuvanasawulesipukefiz
gohuyaheboxawobimiwipebiledu bivacenenoceko
vemasogulavejo
vefevalusejegagotiwaduy
@jjjjjjj
jjjjjj
/ P6pL
,/KPip
/-P?pR
VS_VERSION_INFO
StringFileInfo
049805B1
FileVersion
58.53.80.23
InternalName
Julius.exe
LegalCopyrights
Night bizon inc.
LegalTrademarks2
odjfngisdf
ProductName
LazyTooth
VarFileInfo
Translation
ZZosujo piloxewusuriy lohunewoh debucifebunu sisinemapifev sebetisohih wehiyehotayiga zisupNNayo delaxelabuxome xamikojazukutup suc fuvaz cemibaxifaxohe macijihesaj yuwujNKuki kibejesi tuboweyukeligev penoto belupeyos cigunogo mocihurahici debasojohZJotafimizamif macenulecavit zisojas mozupagosejez medayeraja poroyax kilatohidekahog lewiz
Zehex mucevamez jacetixa
Loyizibusomi jusevulikohiv
\Rokepegayoci mijehojufatej negasafamapog zujebimadimemuy babodigigopinem poxo vihu rojonixeyQMavuhi kadapab jopulojaduxak xuhadeteca gakaruhaxonom hulopiwafori lagi yojihulosoGakomuriborekil nefiwaheruco lesopudobugom lagoke rohusatetufozi lebavilatawoli zufe zenemuhuwoy tosakoxezotexi
*Vuroxawoz loreni xakate piray jorosozuhuva
Yevoyuz pakin)Jukiso liseleraceyeni sawev viz ganacepuz
Sipuhudes gesibogaxomasa>Yuhug cib socigunehak fovibe gubewi vudiwoyawu suzehijeh pijahLFofec nev jiculisu jotuv gag xukulut cezul zegutibop nazuhefad bumoyefiwifej
Ratasirenuyo niniyOJiv vizopizuzit zeyureyewayur juvoj xizabihi mozusi nixum huzufo suvoyaya tebih.Hiwafu hopozaleteno fuvenedi baba vija tefarexjFahuvitorogi huhuwof hihef josibinidobiju rukokesaroforoh degosavatinom jik ribiwiducine jenitayidec guled
Bej'Dapupoyinigu cewawedunud bepod kapadovo[Nidowubi zavuw xujinul kedo turema hajupaye xinufuzaxusabe balafudorovo meyenudot secegejik3Yiwijiguv luyukidumoxayav reripavekapuwas yitijopuj-Vumedogu wurenot vuvibucar rele puyifihibosir
[Nimu mahidared gase gaxixame nelelu gufal soxowododebu sebezawav faxotigikak calowumiwisazi
;Pitawa dinukihoro yevuwaga yebesujeweduh hehoyoxuxufi yaxuf
XTicuju yupahobevaxux farohutim wotavocixi wekaroguyicu cepavoyitotejo robetokicef sijapiNRunul wacodo diwe yaram hosoyafovor favelegeyiho zegagizilamenez vikelapedesif%Hah panofitunixuf pojijolecaxuc sepol
Husapozipuhez zakasuf teto
HWolotera teyeci fujewiman nes xinozoharuvig xod huvimilutuf vogelalivuti
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Convagent.4!c
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.66990447
ClamAV Clean
FireEye Generic.mg.44bd0753b6efa398
CAT-QuickHeal Ransom.Stop.P5
ALYac Clean
Malwarebytes Trojan.MalPack.GS
Zillya Clean
Sangfor Trojan.Win32.Save.a
K7AntiVirus Clean
BitDefender Trojan.GenericKD.66990447
K7GW Riskware ( 0040eff71 )
Cybereason Clean
BitDefenderTheta Clean
Cyren Clean
tehtris Generic.Malware
ESET-NOD32 a variant of Win32/Kryptik.HTMW
APEX Malicious
Paloalto generic.ml
Cynet Malicious (score: 100)
Alibaba Clean
NANO-Antivirus Clean
ViRobot Trojan.Win.Z.Stopcrypt.334848.D
Tencent Clean
Baidu Clean
F-Secure Clean
DrWeb Clean
VIPRE Gen:Variant.Ser.Zusy.4284
TrendMicro TROJ_GEN.R002C0PEB23
McAfee-GW-Edition BehavesLike.Win32.MultiPlug.fh
Trapmine malicious.high.ml.score
CMC Clean
Sophos Troj/Krypt-WE
SentinelOne Static AI - Suspicious PE
Jiangmin Clean
Webroot W32.Trojan.Gen
Avira Clean
MAX malware (ai score=87)
Antiy-AVL Trojan[Backdoor]/Win32.Convagent
Gridinsoft Ransom.Win32.Sabsik.sa
Xcitium Clean
Arcabit Trojan.Ser.Zusy.D10BC
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan-Spy.Win32.Stealer.gen
GData Trojan.GenericKD.66990447
Google Detected
AhnLab-V3 Trojan/Win.Generic.R577022
Acronis Clean
VBA32 Clean
TACHYON Clean
DeepInstinct MALICIOUS
Cylance unsafe
Zoner Clean
TrendMicro-HouseCall TROJ_GEN.R002C0PEB23
Rising Backdoor.Mokes!8.619 (TFE:5:qCrL9ekCChL)
Yandex Clean
Ikarus Trojan-Ransom.StopCrypt
MaxSecure Clean
Fortinet W32/GenKryptik.GJRY!tr
Panda Trj/Genetic.gen
CrowdStrike win/malicious_confidence_100% (W)
No IRMA results available.