popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2022-12-11 12:14:26

PE Imphash

7574067d27f1e097e97a79381564790b

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00022cf8 0x00022e00 5.22673798681
.data 0x00024000 0x01ecf2e4 0x00029c00 7.96388201103
.rsrc 0x01ef4000 0x00013040 0x00013200 3.75319617088

Resources

Name Offset Size Language Sub-language File type
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_CURSOR 0x01f054e8 0x000008a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40, 1st item "\251\317"
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_ICON 0x01f02868 0x00000468 LANG_TAMIL SUBLANG_DEFAULT GLS_BINARY_LSB_FIRST
RT_STRING 0x01f06e58 0x000001e2 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x01f06e58 0x000001e2 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x01f06e58 0x000001e2 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x01f06e58 0x000001e2 LANG_TAMIL SUBLANG_DEFAULT data
RT_STRING 0x01f06e58 0x000001e2 LANG_TAMIL SUBLANG_DEFAULT data
RT_ACCELERATOR 0x01f02d48 0x00000068 LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_CURSOR 0x01f054b8 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_CURSOR 0x01f054b8 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_CURSOR 0x01f054b8 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_CURSOR 0x01f054b8 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_ICON 0x01ef7be0 0x0000005a LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x01ef7be0 0x0000005a LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x01ef7be0 0x0000005a LANG_TAMIL SUBLANG_DEFAULT data
RT_GROUP_ICON 0x01ef7be0 0x0000005a LANG_TAMIL SUBLANG_DEFAULT data
RT_VERSION 0x01f05da8 0x00000280 LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library KERNEL32.dll:
0x40101c MoveFileExW
0x401020 GetConsoleAliasA
0x401028 GetUserDefaultLCID
0x401034 GetModuleHandleW
0x401038 GetTickCount
0x401044 WaitNamedPipeW
0x401048 GetDateFormatA
0x40104c EnumTimeFormatsW
0x401054 GetDriveTypeA
0x401058 GlobalAlloc
0x40105c GetSystemDirectoryW
0x401060 LoadLibraryW
0x401064 GetConsoleMode
0x401068 TerminateThread
0x40106c ReadConsoleInputA
0x401070 _hread
0x401074 GetCalendarInfoA
0x40107c GetTimeFormatW
0x401080 GetFileAttributesW
0x401084 TerminateProcess
0x40108c GetOverlappedResult
0x401090 CreateMailslotW
0x401098 InterlockedExchange
0x40109c GetStartupInfoA
0x4010a0 _llseek
0x4010a8 SetLastError
0x4010ac GetProcAddress
0x4010b0 PeekConsoleInputW
0x4010b4 GlobalGetAtomNameA
0x4010b8 OpenWaitableTimerA
0x4010bc OpenMutexA
0x4010c4 GetFileType
0x4010c8 MoveFileA
0x4010d0 GetNumberFormatW
0x4010d4 AddAtomW
0x4010dc GetProfileStringA
0x4010e0 OpenJobObjectW
0x4010e4 GetModuleHandleA
0x4010ec FindNextFileW
0x4010f0 EnumDateFormatsW
0x4010f8 OpenSemaphoreW
0x4010fc SetFileShortNameA
0x401100 LocalSize
0x401108 FindFirstVolumeW
0x401114 DebugBreak
0x401118 ResetWriteWatch
0x401120 EnumSystemLocalesW
0x401124 DeleteFileA
0x401128 CreateMutexW
0x40112c GetComputerNameA
0x401138 GetCommandLineW
0x401140 EncodePointer
0x401144 DecodePointer
0x401148 Sleep
0x40115c GetLastError
0x401160 HeapFree
0x401164 HeapAlloc
0x401168 HeapSetInformation
0x40116c GetStartupInfoW
0x401170 RaiseException
0x401174 RtlUnwind
0x401178 WideCharToMultiByte
0x40117c LCMapStringW
0x401180 MultiByteToWideChar
0x401184 GetCPInfo
0x40118c HeapCreate
0x401190 ExitProcess
0x401194 WriteFile
0x401198 GetStdHandle
0x40119c GetModuleFileNameW
0x4011a8 IsDebuggerPresent
0x4011ac GetCurrentProcess
0x4011b0 SetFilePointer
0x4011b8 SetHandleCount
0x4011c0 TlsAlloc
0x4011c4 TlsGetValue
0x4011c8 TlsSetValue
0x4011cc TlsFree
0x4011d0 GetCurrentThreadId
0x4011d8 GetCurrentProcessId
0x4011e0 GetLocaleInfoW
0x4011e4 HeapSize
0x4011e8 GetACP
0x4011ec GetOEMCP
0x4011f0 IsValidCodePage
0x4011f4 GetLocaleInfoA
0x4011f8 EnumSystemLocalesA
0x4011fc IsValidLocale
0x401200 GetStringTypeW
0x401204 HeapReAlloc
0x401208 SetStdHandle
0x40120c GetConsoleCP
0x401210 FlushFileBuffers
0x401214 WriteConsoleW
0x401218 CreateFileW
0x40121c CloseHandle
Library GDI32.dll:
0x401008 GetCharWidthA
0x40100c GetTextFaceA
Library ADVAPI32.dll:
0x401000 InitializeAcl
!This program cannot be run in DOS mode.
"//KCA|KCA|KCA|$5
|_CA|$5
|lCA|$5
|9CA|B;
|LCA|KC@|
|JCA|$5
|JCA|$5
|JCA|RichKCA|
`.data
generic
iostream
system
iostream stream error
Unknown exception
bad allocation
Visual C++ CRT: Not enough memory to complete call to strerror.
LC_TIME
LC_NUMERIC
LC_MONETARY
LC_CTYPE
LC_COLLATE
LC_ALL
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
CorExitProcess
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
bad exception
Illegal byte sequence
Directory not empty
Function not implemented
No locks available
Filename too long
Resource deadlock avoided
Result too large
Domain error
Broken pipe
Too many links
Read-only file system
Invalid seek
No space left on device
File too large
Inappropriate I/O control operation
Too many open files
Too many open files in system
Invalid argument
Is a directory
Not a directory
No such device
Improper link
File exists
Resource device
Unknown error
Bad address
Permission denied
Not enough space
Resource temporarily unavailable
No child processes
Bad file descriptor
Exec format error
Arg list too long
No such device or address
Input/output error
Interrupted function call
No such process
No such file or directory
Operation not permitted
No error
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
united-states
united-kingdom
trinidad & tobago
south-korea
south-africa
south korea
south africa
slovak
puerto-rico
pr-china
pr china
new-zealand
hong-kong
holland
great britain
england
britain
america
swedish-finland
spanish-venezuela
spanish-uruguay
spanish-puerto rico
spanish-peru
spanish-paraguay
spanish-panama
spanish-nicaragua
spanish-modern
spanish-mexican
spanish-honduras
spanish-guatemala
spanish-el salvador
spanish-ecuador
spanish-dominican republic
spanish-costa rica
spanish-colombia
spanish-chile
spanish-bolivia
spanish-argentina
portuguese-brazilian
norwegian-nynorsk
norwegian-bokmal
norwegian
italian-swiss
irish-english
german-swiss
german-luxembourg
german-lichtenstein
german-austrian
french-swiss
french-luxembourg
french-canadian
french-belgian
english-usa
english-us
english-uk
english-trinidad y tobago
english-south africa
english-nz
english-jamaica
english-ire
english-caribbean
english-can
english-belize
english-aus
english-american
dutch-belgian
chinese-traditional
chinese-singapore
chinese-simplified
chinese-hongkong
chinese
canadian
belgian
australian
american-english
american english
american
Norwegian-Nynorsk
GetProcessWindowStation
GetUserObjectInformationW
GetLastActivePopup
GetActiveWindow
MessageBoxW
Complete Object Locator'
Class Hierarchy Descriptor'
Base Class Array'
Base Class Descriptor at (
Type Descriptor'
`local static thread guard'
`managed vector copy constructor iterator'
`vector vbase copy constructor iterator'
`vector copy constructor iterator'
`dynamic atexit destructor for '
`dynamic initializer for '
`eh vector vbase copy constructor iterator'
`eh vector copy constructor iterator'
`managed vector destructor iterator'
`managed vector constructor iterator'
`placement delete[] closure'
`placement delete closure'
`omni callsig'
delete[]
new[]
`local vftable constructor closure'
`local vftable'
`udt returning'
`copy constructor closure'
`eh vector vbase constructor iterator'
`eh vector destructor iterator'
`eh vector constructor iterator'
`virtual displacement map'
`vector vbase constructor iterator'
`vector destructor iterator'
`vector constructor iterator'
`scalar deleting destructor'
`default constructor closure'
`vector deleting destructor'
`vbase destructor'
`string'
`local static guard'
`typeof'
`vcall'
`vbtable'
`vftable'
operator
delete
__unaligned
__restrict
__ptr64
__eabi
__clrcall
__fastcall
__thiscall
__stdcall
__pascal
__cdecl
__based(
bad locale name
ios_base::badbit set
ios_base::failbit set
ios_base::eofbit set
gukuyoyowevu milasiyaha xohesewikohibonidikegu
wekeralicidibayixupikihanusig
similacozedibexeg
gumizuxayebofizur
invalid string position
vector<T> too long
string too long
bad cast
_nextafter
_hypot
1#QNAN
1#SNAN
F@9n8u
jXhx'B
QQSVWd
.t|PVj@
t"SS9] u
uTVWh{
uh4'@
^SSSSS
QQSVWh
j@j ^V
Y;=HIB
t=MOC
j,hh)B
HtHu4j
t*=RCC
;7|G;p
tR99u2
F Pj*S
F$Pj+Sj
F(Pj,S
F,Pj-S
F0Pj.S
F4Pj/S
F8PjDS
F<PjES
F@PjFS
FDPjGS
FHPjHS
FLPjIS
FPPjJS
FTPjKS
FXPjLS
F\PjMS
F`PjNS
FdPjOS
FhPj8S
FlPj9S
FpPj:S
FtPj;S
FxPj<S
F|Pj=S
C PjPV
C$PjQV
C*PjTV
C+PjUV
C,PjVV
C-PjWV
C.PjRV
C/PjSV
CHPjPV
CLPjQV
to=pIB
PPPPPPPP
Wj@h@4@
PPPPPPPP
URPQQh0*A
t VV9u
;t$,v-
UQPXY]Y[
D$49l$Hs
D$4VWP
t$D9l$Hs
L$PQRR
L$,QRRf
tWItHIt9It
<+t"<-t
+t HHt
u-h4F@
GetCommandLineW
GetComputerNameA
SetProcessAffinityMask
CreateMutexW
_llseek
DeleteVolumeMountPointA
InterlockedIncrement
MoveFileExW
GetConsoleAliasA
GetSystemWindowsDirectoryW
GetUserDefaultLCID
FlushConsoleInputBuffer
FreeEnvironmentStringsA
GetModuleHandleW
GetTickCount
GenerateConsoleCtrlEvent
GetConsoleAliasExesW
WaitNamedPipeW
GetDateFormatA
EnumTimeFormatsW
GetUserDefaultLangID
GetDriveTypeA
GlobalAlloc
GetSystemDirectoryW
LoadLibraryW
GetConsoleMode
TerminateThread
ReadConsoleInputA
_hread
GetCalendarInfoA
GetConsoleAliasExesLengthW
GetTimeFormatW
GetFileAttributesW
TerminateProcess
QueryInformationJobObject
GetOverlappedResult
CreateMailslotW
GetPrivateProfileIntW
InterlockedExchange
GetStartupInfoA
GetHandleInformation
GetCurrentDirectoryW
SetLastError
GetProcAddress
PeekConsoleInputW
GlobalGetAtomNameA
OpenWaitableTimerA
OpenMutexA
InterlockedExchangeAdd
GetFileType
MoveFileA
BuildCommDCBAndTimeoutsW
GetNumberFormatW
AddAtomW
SetCurrentDirectoryW
GetProfileStringA
OpenJobObjectW
GetModuleHandleA
FreeEnvironmentStringsW
FindNextFileW
EnumDateFormatsW
QueryPerformanceFrequency
OpenSemaphoreW
SetFileShortNameA
LocalSize
GetWindowsDirectoryW
FindFirstVolumeW
GetVolumeNameForVolumeMountPointW
MoveFileWithProgressW
DebugBreak
ResetWriteWatch
ReadConsoleOutputCharacterW
EnumSystemLocalesW
DeleteFileA
KERNEL32.dll
GetCharWidthA
GetTextFaceA
GDI32.dll
InitializeAcl
ADVAPI32.dll
InterlockedDecrement
EncodePointer
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
HeapFree
HeapAlloc
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetCPInfo
IsProcessorFeaturePresent
HeapCreate
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentProcess
SetFilePointer
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoW
HeapSize
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
HeapReAlloc
SetStdHandle
GetConsoleCP
FlushFileBuffers
WriteConsoleW
CreateFileW
CloseHandle
.?AVerror_category@std@@
.?AV_Generic_error_category@std@@
.?AV_Iostream_error_category@std@@
.?AV_System_error_category@std@@
.?AV_Locimp@locale@std@@
.?AVlogic_error@std@@
.?AVlength_error@std@@
.?AVout_of_range@std@@
Copyright (c) 1992-2004 by P.J. Plauger, licensed by Dinkumware, Ltd. ALL RIGHTS RESERVED.
.?AVtype_info@@
.?AVbad_exception@std@@
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
.?AV?$ctype@D@std@@
.?AUctype_base@std@@
.?AVfacet@locale@std@@
.?AV?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@
.?AV?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@
.?AV?$basic_istream@DU?$char_traits@D@std@@@std@@
.?AV?$basic_streambuf@DU?$char_traits@D@std@@@std@@
.?AV?$basic_ios@DU?$char_traits@D@std@@@std@@
.?AV?$_Iosb@H@std@@
.?AVios_base@std@@
.?AVruntime_error@std@@
.?AVexception@std@@
.?AVfailure@ios_base@std@@
.?AVsystem_error@std@@
6tC_[
ih;+${
9Gk;%
Wu=qi<T
r"HZZR
&-95/:
V8LXO#
)<4no+e
^`fAnz
cynU,2
5Ud-~0
GYSEQ/
l ku[$
ow(-7;
<%q*r ^
C{-D&<ZOq
^kgVSS
1=[L\1e
~9~5(k
o_?$Aw^J
ib2G&Z
M)aD[k_G5
j"i<[B
Z" ;XfY
Qi?Y*m
7cV+ft
ma/JT"N
*GkLxk
VoSpnSh
6fclP=
*+R04&h
uTKxsS
n-~-6H9
y(%"iU
DIh_"+5H
_dldonX&%
Nv!&3e
pIe`q
rU]0T
v~3zDP
D9^+xP
NX`P9
:M@@=|
G4wL[7
B,/X!S
2Mcy^/
H>Zf]61R
|%3d'<
AHJcno
>7h$FX1
<>_`A.
tG=h%g
'mPCXx
i!3Os8.`
!R]$bj
5Wf([x
)gd[._
sF%,0c5*
1K!\i.
w(+`;(
K1Ze^Z+
7g$_tv
km}qi
#_B)l>pO
8H+$L>
E%6`}`
H&;WnL
W{m40~
g9ON^
|Fd-|D
QSMS'V
OPU0xy
L*cM?m
B*C^9l]>
mewFWf
1`I"`+F
l0Dwi5
FukMEB
D7**70.
[~hN!W
CSp(IOf
AS-8XE
`]o\"y
A|u|B5
`Ct<W46
@;2[Xk
@W39d9d
Z[3LeE*wS
_"'brT
W.TZh.
yoPYaR
D';$.`
1Tr]gC
}pq})x
?q6bru
9R=DX
/m)#4G'{
n,x6$o
OLSmT{
B,-JF#
dF_f]f
_},lBcQ
Ue9u 3z!
Wk\MKD
m2{ZTYO+
|QQ(`0p2
X-:mrg
{njkybiD
Krx"#9
2V+J{r
^7Wz([
}v|bq7
AO{dia
fP1e99
{ T\l>M
17(zo<Cb
MF&rh5
Y3n*R3
Tn`T9o#j
dAX6&<.
[(a,j-V
o@U^{/
)qJ87X5
JAmB*o
VU6xKn
b^^^bf
3R]y#N(
v5Y:"%
j4p9]]
[]'arA
Os`St~
^g&&4*
c|po9
]Hf335
n@:`E3Vo
d6%u9=
NY/$N9w
hV|AVx,
Bz]D!6B4
-OI3UH
q7(U#1
^X=H"aBy
v{tA%=
Gfrv^_%
@Bc<9&%D
".C+|M
V|O9&t
';gPz
+/j\(1
)uxY[&Q(
cyWwy0i
\k)PA!jw
3,-csBMD
*6Y9Ez=
d~b Nt
BVU7"
>iZ,-Y
/@Rw;B
9ifr#}
v`?7jA
->Jzg>
*E}oFsXG
y`v>c?1
k-Nqmek
u>R~|<o
iu_>E|u
j%XWDE
l*=BlS9
- 6\nF7
A PNJZ
XyD@I>
<c">^\#e
.%Ud%W
C3aHw}
WEgmqXGN
Mzy1~s
yY4?'4
6qkEZ2KC
B*gJ}7
r"mRd@
F\.c1)
Q)z5EK
g`z,98
rk)n=-5'
i00(,\
p\0#v/
(<ABS/
r*2:RA
c'{:0<[Y
q7%QpLN
t]^J>u
p a-D}N
+C;O&<
D2'dKn
$d'h,i
8$_"NR
y|Lr;<
&0<4?{
pe<8%{5
6_)})KZ
p]" |Z\L
&,2?+y
lCv\L9x
T\|#AO
K/ 9N-J
e1\9mv
I>q;;/
]%mKs8#M
aF>6=+
)Q[Eqf
Jw.CRG'
K'fcN5
Rkk7^n
R~7UKF
mR(_5v4
<$n_{X
I6|o")Q
')5c|s
Fx 37e
1}7jEk
q)UVJ)w
{*6IIeh
%TTn45
/6<aip
T|T!R-
=FLC](:
K8?r4e$
Q}i[W8
fWUw+X!t
1_7J^'
&KHfcI
S5_40FUh
U8rnCE
e&8!e)i
^7{XBS
% ;S#a&
&h7oJ9
'(3J!_
zN>Q(`
cDoI_AS
w/Ji*>
V(qc4k2t
vc8I1n
$u$+@WW
JmsoV6
w-T8FE
t=P~}F
&P#i 3C
Q*t;o~
`xkh>TY
FSx?6.B
YuLUVh
NCC`P
mCEY2q{
;dvs?'0
Cc.-Q:
93-R*i
^ .s$.
*zIEi|}
el]gzl
v}v/ +
B>!ml"
.,"61|e
_v\/hp
7WaQ\V
</gjEFT'Q^
`{jWWj=
pJF7sUb
7`(VXuw(
.'BgXK
|kM9S1.
!&\$F
m!%u8P
ty5?()`f
]U7D3(
spq*^(
qB_(:F|f5
yuxK5o
^r.%u"
kxcXgK^i
58WM_ru
qD@^KJ
G{?$B,
TQdok
o|4VuKMt
gH"S@M
!fs;^neNGWI
jh~Je:
fG1f*R
uHbo(S
.?AVbad_cast@std@@
.?AVbad_alloc@std@@
vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvdddmmmdmddmdmddd
vvvvvvvvvdmE
dvvvvvvvvm
dvvvvvvvd
dvvvvvvd
dvvvvvd
_vvvvvm
dvvvvvd
_vvvvvd
_vvvvvd
mvvvvvm
dmddmmmmmdmmdmdm__m
_vvvvvd
dddRdddddd___
mvvvvvM
_vvvvvd
dvvvvvM
VVVtttttV
_vvvvvd
MvvvvvM
_vvvvvd
MvvvvvM
E_vvvvvd
MvvvvvM
dvvvvvd
EmvvvvvM
Edvvvvvd
EdvvvvvM
dvvvvvdmdd
vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
GGGGGGGG
GTTTbOOG
}yy~~}{
|}~{|z
}~}y}z
~~}||}{
||~z|}
}}~~{~{}
{y}|z}
|~{}}~|
}~z}{}
{}~||{
}~}~~|
z}~||{
|~~|~{
~zz~~|
y{z{~|z
~~z~z{
|z~|}z
z{{{{||
----------------------------------------------------------------------------------------------------------------------------------`
OOOOOOOOOO6O666
----------
6----------
6----------;
}}}}}}}}}}}}}}
6----------;
J}}}}}}}}}}}}}
ccO----------;
}}}}}}}}}}}}}}
----------;
J}}}}}}}}}}}}}
----------;
}}}}}}}}}}}}}}
----------;
}}}}}}}}}}}}}}
----------;
nkJJ}}}}}}}}}}}
;----------;
bbkJJJ}}}}}}}
;----------;
abbbbJJ}}}
;----------;
;----------;
;----------;
;----------;
;----------;
;----------;
;----------;
;----------;
;----------;
;----------
;;;;;;;;;;;;;;;;;;;;
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,S,,,,,,,,,,,,,,,,,,,,,,S
,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,
;,,,,,,,,,,,,,,,,,,,,,S
S,,,,,,,,,,,,,,,,,,,,,
S,,,,,,,,,,,,,,,,,,,,
;,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,
S,,,,,,,,,,,,,,,,;&00
;,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,
S,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,
,,,,,,,,,,,,,,
6,,,,,,,,,,,,,S&P
,,,,,,,,,,,,
,,,,,,,,,,,,
;,,,,,,,,,,
,,,,,,,,,,,S
,,,,,,
;,,,,,,,,,,,
S,,,,,,,,,,
,,,,,,,,,;
PPPPPe
;,,,,,,,,,
S,,,,,,,,,
,,,,,,,,,,S
S,,,,,,,,,,,,
;,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,;
<SS,,,,,,,,,,,,,,,,,,,,,,,,
;,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
S,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
S,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
;,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,S
,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
W...j`I
ji....
\ViGGmJd
((((( H
h(((( H
H
mscoree.dll
runtime error
TLOSS error
SING error
DOMAIN error
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
- abort() has been called
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
@Microsoft Visual C++ Runtime Library
<program name unknown>
Runtime Error!
Program:
KERNEL32.DLL
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
WUSER32.DLL
@CONOUT$
faxagadagi fivelefejosod xikicipukaligu xuxasayidokamocutenowosacaj
cemivitipohi
beyedepiraxalolifowagipine
wirogekikitanahi yebigovayecuxefubofane
dexojinowacuviwucajodixawijiv
nowetiwowubasipobozupufuz
vavefobozonumukivopedobav kigih gasufugawuhimuxemadefeneg hawacixapokegoyag cuhij
rufevubuzewaganamepidijeyakix
yabavorud
bawujajeyigawuralibadivakufig detopipemixefepuzezobokalan
nawubugikazutajub sokakihalozejocajuxokuwaxokikiru bezib fop
/ P6pL
,/KPip
/-P?pR
VS_VERSION_INFO
StringFileInfo
029385B1
CompanyName
Rognar
FileDescriptions
PlasticFantastic
FileVersion
46.76.13.71
InternalName
Literally.exe
LegalCopyrights
Challangers kenia
ProductName
ProductVersion
50.42.92.58
VarFileInfo
Translation
^Bas jewihifahokobe keticimewemu git hehivawusewubuw tahunuha zub dumupozixicul ragepiseyovotes9Xusucibepuwa jat wikez tizeb lofifun fepek bidezed gigoxo
Wulonoyajayo%Babalabeyu cekasesonog buwobenatigivuKCek sehodiyemekigo fagaxazojijo mivoyisowufa lakunoyak sulusiyodux biwe sutVKidavugimevinih lipewozuhay jupur sicu vefuguyudobenat wijimaxapewa cugado fosogovunap<Mupiyorewiv gecutoxa mecaluxutites fori mukoribat zurajobela
Wepuhawop tibe cikosika xer:Wek buvomeduzifehef vejo bilibagip biyot vusazil zatub cip
<Vepuwo yubesuvejazu buyezetowepar kugin divukacudufisi devid'Duv fov ludowuzoz leweb yenebosemimoyuy-Lilavoya giyokesi cirozenih bayela fonayoxate
"Sileludum kuvotifovicaciy tola vig
3Hogeyadi jenek mijavi xaneniwizik pojirokelosas zis-Riw kerac dogudoguj pivorisuz vogufahuz lewav
0Hekapijeteya beyako teme wumuwogedece jir dujucaJRifo vomicotijew huziyozaz tifutugu tusumuxiwi xax felutehelapusuz gugiteh
Kabejepiz
.Meyevagavu pip puga botojobigere duponowuwowez
#Litomitogihif juzemarubesito xuhageUYetug tedanas jojusasayo curixuzehiy rizajop gebeyapemeru zigodinarosog zalamebohijuk
Vafat nekikelapara*Sacubiw fod faz bebuximaj pira bubihorewisLKupoxujigasurun hule lexakuzalogapif loyepeticicare huci yiposesu tuweribeki
[Tirehojiw sohabab pewikamusufic xusizofubigopu codaduxori cidasug zomofesayecu vazitakoxuruBHaxohoz tuv birijumitu fepon nebinipunolax hifevulub yem xuyeyumig(Wutuhu bafovez siyeruvaf dexobaz gezisat
Hifamuzamo
Tifavuso yod pego<Napubenip xarurenuz moti hini xeyewobazugoha jupohifariyejal[Cigob hejihefasifeja hijirupum puvono bijonumuleki yucaleyudar fis ledilegimegofa yihomayicTVerojin xoy fafig yucelihahuwup jar getebatotice joge yuroxedojij womivun jufinubimiKKerud temugusedaci nixagoto gapo hekamafi wuna gozumobegolo museg rewokogik
aBicizemu biyupi xikupevuv juf keyudocupuz tige nulipigiw juvazewar tegeconucidupi ravusahuzinoham
Zamiwey tekizagozico
DNovejenomecikew ponetemetizaroc kipop gahefefe jaca jitasemawe zegas(Ral jixaganejihekos badesicupebi lufoyem
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Clean
Elastic malicious (high confidence)
MicroWorld-eScan Clean
ClamAV Clean
FireEye Generic.mg.a1e9bdbabd0a6e10
CAT-QuickHeal Ransom.Stop.P5
McAfee Clean
Malwarebytes Clean
VIPRE Clean
Sangfor Trojan.Win32.Save.a
K7AntiVirus Clean
BitDefender Clean
K7GW Clean
Cybereason malicious.77e7a6
Baidu Clean
VirIT Clean
Cyren Clean
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
ESET-NOD32 Clean
APEX Malicious
Paloalto Clean
Cynet Malicious (score: 100)
Kaspersky VHO:Backdoor.MSIL.Convagent.gen
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
Rising Trojan.Kryptik!1.E962 (CLASSIC)
Sophos ML/PE-A
F-Secure Clean
DrWeb Clean
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition BehavesLike.Win32.Lockbit.fh
Trapmine malicious.high.ml.score
CMC Clean
Emsisoft Clean
SentinelOne Static AI - Malicious PE
GData Clean
Jiangmin Clean
Webroot Clean
Avira Clean
MAX Clean
Antiy-AVL Clean
Gridinsoft Clean
Xcitium Clean
Arcabit Clean
SUPERAntiSpyware Clean
ZoneAlarm VHO:Backdoor.MSIL.Convagent.gen
Microsoft Trojan:Win32/Sabsik.FL.B!ml
Google Detected
AhnLab-V3 Trojan/Win.Generic.R596162
Acronis Clean
VBA32 Clean
ALYac Clean
TACHYON Clean
DeepInstinct MALICIOUS
Cylance unsafe
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Tencent Trojan.Win32.Obfuscated.gen
Yandex Clean
Ikarus Trojan-Ransom.StopCrypt
MaxSecure Clean
Fortinet Clean
BitDefenderTheta Clean
AVG Clean
Avast Clean
CrowdStrike win/malicious_confidence_100% (D)
No IRMA results available.