popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2023-05-28 22:21:30

PDB Path

C:\sohic.pdb

PE Imphash

5c80077e1547ffc6f55b1869a125ea4a

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0002e096 0x0002e200 6.8239361623
.data 0x00030000 0x000b2a04 0x00001c00 2.66254362677
.rsrc 0x000e3000 0x00149650 0x00023800 4.06946394999

Resources

Name Offset Size Language Sub-language File type
RT_CURSOR 0x00104fe8 0x000000b0 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_CURSOR 0x00104fe8 0x000000b0 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_ICON 0x001049a0 0x00000468 LANG_ENGLISH SUBLANG_ENGLISH_US GLS_BINARY_LSB_FIRST
RT_STRING 0x001064d0 0x0000017e LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_STRING 0x001064d0 0x0000017e LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_STRING 0x001064d0 0x0000017e LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_STRING 0x001064d0 0x0000017e LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_ACCELERATOR 0x00104e80 0x00000038 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_CURSOR 0x00105098 0x00000022 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x000fe5e0 0x00000068 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x000fe5e0 0x00000068 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x000fe5e0 0x00000068 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x000fe5e0 0x00000068 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x000fe5e0 0x00000068 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_GROUP_ICON 0x000fe5e0 0x00000068 LANG_ENGLISH SUBLANG_ENGLISH_US data
RT_VERSION 0x001050c0 0x00000238 LANG_ENGLISH SUBLANG_ENGLISH_US data

Imports

Library KERNEL32.dll:
0x401010 EnumDateFormatsExW
0x401014 TlsGetValue
0x401018 SetLocalTime
0x40101c FindResourceW
0x401020 GlobalAddAtomA
0x401028 InitializeSListHead
0x401030 CreateJobObjectW
0x401038 SetComputerNameW
0x40103c GetModuleHandleW
0x401040 CreateNamedPipeW
0x401044 GetNumberFormatA
0x40104c GetGeoInfoW
0x401050 LoadLibraryW
0x401054 ReadConsoleInputA
0x401058 GetConsoleWindow
0x401060 GetNamedPipeInfo
0x401064 GetVolumePathNameA
0x401068 GetConsoleAliasesW
0x40106c GetLastError
0x401070 CreateFileA
0x401074 GetProcAddress
0x401078 VirtualAlloc
0x40107c SearchPathA
0x401080 OpenWaitableTimerA
0x401084 LoadLibraryA
0x401088 CreateFileMappingA
0x40108c LocalAlloc
0x401090 CreateFileMappingW
0x401094 RemoveDirectoryW
0x401098 GetSystemInfo
0x40109c GlobalFindAtomW
0x4010a4 SetCalendarInfoA
0x4010a8 EndUpdateResourceA
0x4010ac ReadConsoleInputW
0x4010b4 GetCurrentProcessId
0x4010b8 AddConsoleAliasA
0x4010c0 GetComputerNameA
0x4010c4 DebugActiveProcess
0x4010c8 SetLastError
0x4010cc Sleep
0x4010d0 ExitProcess
0x4010d4 GetCommandLineA
0x4010d8 GetStartupInfoA
0x4010dc HeapAlloc
0x4010e0 HeapFree
0x4010e4 RaiseException
0x4010f0 SetHandleCount
0x4010f4 GetStdHandle
0x4010f8 GetFileType
0x401100 TerminateProcess
0x401104 GetCurrentProcess
0x401110 IsDebuggerPresent
0x401114 TlsAlloc
0x401118 TlsSetValue
0x40111c TlsFree
0x401124 GetCurrentThreadId
0x40112c CloseHandle
0x401130 WriteFile
0x401134 GetModuleFileNameA
0x401148 WideCharToMultiByte
0x40114c HeapCreate
0x401150 VirtualFree
0x401158 GetTickCount
0x401160 HeapReAlloc
0x401164 GetModuleHandleA
0x401168 SetFilePointer
0x40116c GetConsoleCP
0x401170 GetConsoleMode
0x401174 RtlUnwind
0x401178 GetCPInfo
0x40117c GetACP
0x401180 GetOEMCP
0x401184 IsValidCodePage
0x401188 SetStdHandle
0x40118c FlushFileBuffers
0x401190 HeapSize
0x401194 GetLocaleInfoA
0x401198 WriteConsoleA
0x40119c GetConsoleOutputCP
0x4011a0 WriteConsoleW
0x4011a4 MultiByteToWideChar
0x4011a8 LCMapStringA
0x4011ac LCMapStringW
0x4011b0 GetStringTypeA
0x4011b4 GetStringTypeW
Library USER32.dll:
0x4011bc GetMessageExtraInfo
0x4011c0 DdeQueryStringW
0x4011c4 CharToOemBuffA
Library GDI32.dll:
0x401004 GetCharWidth32A
!This program cannot be run in DOS mode.
`.data
bad allocation
Unknown exception
CorExitProcess
?uZEeu
?uZEeu
?UUUUUU
?UUUUUU
_nextafter
_hypot
EncodePointer
DecodePointer
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
runtime error
TLOSS error
SING error
DOMAIN error
An application has made an attempt to load the C runtime library incorrectly.
Please contact the application's support team for more information.
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
This application has requested the Runtime to terminate it in an unusual way.
Please contact the application's support team for more information.
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
Microsoft Visual C++ Runtime Library
<program name unknown>
Runtime Error!
Program:
GAIsProcessorFeaturePresent
KERNEL32
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
Complete Object Locator'
Class Hierarchy Descriptor'
Base Class Array'
Base Class Descriptor at (
Type Descriptor'
`local static thread guard'
`managed vector copy constructor iterator'
`vector vbase copy constructor iterator'
`vector copy constructor iterator'
`dynamic atexit destructor for '
`dynamic initializer for '
`eh vector vbase copy constructor iterator'
`eh vector copy constructor iterator'
`managed vector destructor iterator'
`managed vector constructor iterator'
`placement delete[] closure'
`placement delete closure'
`omni callsig'
delete[]
new[]
`local vftable constructor closure'
`local vftable'
`udt returning'
`copy constructor closure'
`eh vector vbase constructor iterator'
`eh vector destructor iterator'
`eh vector constructor iterator'
`virtual displacement map'
`vector vbase constructor iterator'
`vector destructor iterator'
`vector constructor iterator'
`scalar deleting destructor'
`default constructor closure'
`vector deleting destructor'
`vbase destructor'
`string'
`local static guard'
`typeof'
`vcall'
`vbtable'
`vftable'
operator
delete
__unaligned
__restrict
__ptr64
__clrcall
__fastcall
__thiscall
__stdcall
__pascal
__cdecl
__based(
GetProcessWindowStation
GetUserObjectInformationA
GetLastActivePopup
GetActiveWindow
MessageBoxA
USER32.DLL
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
1#QNAN
1#SNAN
CONOUT$
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
bad allocation
tibuwawokejelavufu
sugihetopovegonehaculayihimus
humuyoh
bexominayunaciyihogucutejefif kijafakesapazayavixukatezekiv zawetotacegopurisidutuhelirozi
rivujiherasanarocicewowupaja
gematiden
idovotudi
disuvazevume
bad exception
adaxike
msimg32.dll
bad exception
C:\sohic.pdb
PWht6@
VVVVVVVh
VVVVVVht7@
D$ Ph@8@
0SSSSS
f-00f=
j@j ^V
uL9=D C
tNIt?It0It
F\=p#@
u&h8#@
>=Yt1j
_VVVVV
^WWWWW
tRHtCHt4Ht%HtFHHt
URPQQh
0A@@Ju
0SSSSS
0SSSSS
0SSSSS
_VVVVV
;t$,v-
UQPXY]Y[
GWhh,@
t"SS9]
FVhh,@
PPPPPPPP
PPPPPPPP
<+t(<-t$:
+t HHt
t+WWVPV
ZPoU{S
-`@_q5
d)^:mY
v>!Z*yI[
h9lC]{
,CUc,w
a3q?/l4
,d<fN|
ME8d,QiV
Z"\p.
n52JXP
`So6u"S
$0nuiDtuc
egSFm.|
}OG_R'
jo~C%_
[S{.{Z~
D`n8P9
x(%ZE7NGRj
<>?p`q
xl?yZY
7-8LJLZ
4?e"\
i/:P z'
/niceg
u8EUmIp
yYiXph
G:W4(hw
gesRX_I
9rOYDi
4S'}E-
RpQ:{"
5 FJ'L
0]riQK
YE?67h
b9/$HC
S):*6n
Eq,PDO
.f#UG2
rPeMU`
#wDj&t;
vEl3>x
|zc0=U
(ga*3>
# b+.]
CH7rjG
7R).bU
OH,%zf
G+>yhh
^#Q&eD
q%yA]
\eshn
4dw|q;
^-;;M!
mgfQ0a
N2.o[Z
YXY5]<
[aKue=
s#$XTv
eU]6^
as:"(x
~y[d}/&-
Y1*5f5:E
s53U.My
29mkFz3
f&[Tr/
wP kr-}
E$blr]
`|9f%d )
^CwTlb
-7$SN
FJebk!m
J'EDnh
e+oO5%
y"{V@c
ZKH}:+
R)H),D
p7^7Ms
iCt^hO
tSrqcB\d
U;r/?#
1vd]c
1NNCd8
EAJ6*$jV
m",P6s
~0rS3h
LGsZJb
Z&~[}s
RvEv~c
eu(JtQD
5}LGSTM|
O/VSY&G
6Mc1i0\
+-%o:r
oprLy/C
S{__j!
`x@-@
L6y9+w
G"$|=_
lX!Is&
U?jQns
,L+Jz$L
o>uTjp
>& (GGU
VE6l{d
Xrd<N:
?q')P<
#3T IV;
(U#|^I
tbI2Lrz4
CE`7=z
RGx@BZ
o@x59a
NVN`6osD
1@miMJ
s\8M+9O
h[ubnT
.}ZQN?
GjIKT+
}+yK>=M
qp"tU@J
7k{n!g
9KI"~8
V"-Q(oj5~
>!* 01
IYbeMy
!!n/5r
w2_dB=
4%~r\y
1$=cNNmKu
_tF0Xr
iGiJij
^q.a5#
!#88~B
jZ&DRW
QQSVWd
HtHu4j
s[S;7|G;w
tR99u2
DebugActiveProcess
GetComputerNameA
CreateFileA
EnumDateFormatsExW
TlsGetValue
SetLocalTime
FindResourceW
GlobalAddAtomA
SetConsoleTextAttribute
InitializeSListHead
GetSystemWindowsDirectoryW
CreateJobObjectW
GetEnvironmentStringsW
SetComputerNameW
GetModuleHandleW
CreateNamedPipeW
GetNumberFormatA
GetPrivateProfileStringW
GetGeoInfoW
LoadLibraryW
ReadConsoleInputA
GetConsoleWindow
GetConsoleAliasExesLengthW
GetNamedPipeInfo
GetVolumePathNameA
GetConsoleAliasesW
GetLastError
SetLastError
GetProcAddress
VirtualAlloc
SearchPathA
OpenWaitableTimerA
LoadLibraryA
CreateFileMappingA
LocalAlloc
CreateFileMappingW
RemoveDirectoryW
GetSystemInfo
GlobalFindAtomW
FindFirstVolumeMountPointA
SetCalendarInfoA
EndUpdateResourceA
ReadConsoleInputW
GetWindowsDirectoryW
GetCurrentProcessId
AddConsoleAliasA
ReadConsoleOutputCharacterW
KERNEL32.dll
DdeQueryStringW
GetMessageExtraInfo
CharToOemBuffA
USER32.dll
GetCharWidth32A
CreateCompatibleBitmap
GetCharABCWidthsFloatW
GDI32.dll
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
RaiseException
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
CloseHandle
WriteFile
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
HeapReAlloc
GetModuleHandleA
SetFilePointer
GetConsoleCP
GetConsoleMode
RtlUnwind
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetStdHandle
FlushFileBuffers
HeapSize
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
.?AVtype_info@@
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
.?AVbad_exception@std@@
.?AVexception@std@@
/&|=\]]o
|}~}||
||}|}|||
|~~|~z|
|~z{~{
||}}zz
|}||{~
~}~|~~
yz|{~}
|{{~|}|~
|}|}z}~
{z||~~
}{~~|~
{}|{}~
}}{|}}
~~~}~{}}
}y||~}|~~
}~}{~zy
z}}}}~
z}~|z}
~|{}|}
}|~~~~
~{||}}y~
|}~y~}{|
}~~{~{
{{~|}}
|||{||
}{|zy~
{|}{~{~
########################################################################################
^####################
K##################e.(
*################
;###############
(=O##############
d###############
*###############d
e###########
##########xa
##########
############
############xbC6xLg
F#############x
############
############
D#####
x##################x6):
##################
##################xw
##################
######################################
=======================================================l
N===========
N=========
=======
11111<1<<<W<WWWWWWWWWWWWWWWWWv
SSjjj''
=====l(}
Sjjjj''
jjjj'j
b b8
SSjjj'j
:::::::::
H::::::::
:QQQQQ
Sjjjj1x>
X{OOOOOOOOOOOOO{2:
jjj1x>
"l=====
5=====
======
=========
=========
=========
==========
======================
1'''''j'jj'j
=======================
:=========================N
JJJJJJJJJJ
::G===========================(
:::Pt===========================================================================================================================================================================================================================================================================================================================================================================================================================================================================
oooooooooooooooooooo
pppqqqqqqqqqqqpo
~~~~~~~~~~
=~~~~~~~
~~~~~~~
3~~~~~~
n\E~~~~
9mmmre>
~~~~~~~~~~~
~~~~~~~~
P@jjjjjjjjjjjjjjj@
**************
&&n&n&
jiGGGG
UjjjjjU
n&n&n&&&_}y
'jjjjj
jGbbbbbbg
@jjjj6
||||||i{
~~~~~~
BL]<&*2lS
["[mmY
)B)4B^44
)AOOOOOOOOOTD
OOOOOOOOOQ
OOOOOOOO4hv
OOOOOOOO
OOOOOOOO4h
OOOOOOOO
OOOOOOOO
OOOOOOOOQ
OOOOOOOO4
OOOOOOOO
B}OOOOOOOO
}OOOOOOOO
2~@}OOOOOOOOyy
OOOOOOOO
OOOOOOOO4j
OOOOOOOO9
DOOOOOOOO6
#V#fz/
7OOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOO
}ssssss
sssssu(
sssssvm
sssss%!
*g+sssss
sssssI
sssssx-
sssss[
Y2sssssZ
sssssd,
sssss|R.
9sssss0'
74ssssss
qvZvc0
htJhhth
tthhZc
B~rnn~I
00ZJqZl
CC9x99C
ggVs$z
r?@V\}
KKKKKKKK
KKKKKK
KKKKKKKKKKK
KKKKKK
KKKKKKKKK
KKKKKKK
KKKKKKKKKK
KKKKKKKK
nAKKKKKKKKKK
KKKKKK
*KKKKKKK
*KKKKKKK
*NNKKK
*KNKKKKK
*NKKKKKK
*NNKKKKK
*KNKKKKK
*NNKKKKKK
*KNKKKKK
*NNKKKK
*NNKKK
ccccccccc
@@@)))
iiiiii````
GGGGGGGG
GGGGGGG
99999999
99999[&
99999999999999999999[&
rrrrrr
rrrrrrr
rrrrrrrr
aaaaaa
^Oy<```
````\\\\\\\\\\\\\\
`````````````````````X
```````````````````````````````````````````````````````````````````````````````````````````````````
TTTTTTTTTTTT
TEEEEEEEEEEEET
mscoree.dll
KERNEL32.DLL
((((( H
h(((( H
H
tafesulegebigi
hcatufiyeyebiy
nolebacitin covinarefogajonizonaxiyexor
kernel32.dll
kernel32.dll
yedareheso zudofodajitilefufoce
uwowemabeda
tofovajoka cek
figafe
VS_VERSION_INFO
StringFileInfo
045230F3
FileDescription
MysticRithmic
LegalCopyright
Copyright (C) 2022, Juniors
OriginalFilename
Soldier
ProductsVersion
47.26.46.89
ProductionVersion
17.53.97.84
VarFileInfo
Translation
MRupoja pej dexa butozayegowik xijunacamuyayo lodifacarexe zabecalusonil tuxozaDumucuvub namotawapi geraz vebawefirifosu gima denutapowediki bujobutuwe nibunivax wipusoyuxiwugu
Tov gok nosebilagasonat hazizo9Fenuwa yime capuzucolize relavocapop seliyesifid fusuguyoODogawevowolema wividesejila fiza runuk lofanofirow jugedoyo nuvum moxovujaxuwos9Rihoje zih waw giz bocorajacimuz kafisuxayo kuyoniyamurog
]Suwinavokif vufuparebapo wiraranow xacowifopotojih hiholi papugoken fijaw zegixofu topif mahe3Moziza tuliragogure hosawimuvosof dupox powibuyogemSVukusaxika heyukokigulore cejoximewenawu femitac rucexekah samisibani potazuwudotolHXamerib tapay burotijubavew jeri dahaxebojusuy zuxuyuvoki mulotavico cuxRDibuzozizoxifo pivu jujuwucus gicoyufujud yusirib kimevic noyixax wejakayo rihapufNHelodematom dutibibuxoya hamevafimeva gimuyiwimaji nome bihoxemabi jatikehucuf3Peti wazezayekol gozowuki daboreziniwila cimuhakoko
Melazisupuzav yodEVehulunidup vinoxinubipu vaxivod xosagov yedacoko geracat zelayubamoc2Bekerepaciniso livul jekahoxib faxu figovowofewoniOJokolo suyegunejucerox zodis salonevoteji julonepiluxawuz yejihom kefixofi wetoPGazimamacetizat nunemitodije dele munaverus venota terel zucerenakudok liwunobiviXekuzoceme ruwurojitubevet jakegili zocopogino joteyecahuh gogidadamu mulajujipenu doyehineyece dajufeluf%Lerizicikopo pigonojopi zuyivohoborem:Hufufa hozojozuxideja durixanejefeze pomihaxolikebeh xozit^Logeyeyonojo sirakawasi tagolifolikawe cenikabudaf loce kisalutad nopemeroxahovof leju dunopuw
(Pahefutunono git mexumeribuxi zisutonepi
WCakukatale teyimamatec gew pukujeco savokilupanufiw pik kopopotazuxe waro xunemotifebuyERebagufaco jikuxicus huwirecilavut xojiwekesaxewig xedepow wadudadede
FLolepeki buvulifafa xiru lonatubuyujo zenugila davovuda tocidahep zunobCozalihapadif zewepuloja kuhi zuzi tesogi cesuvamaxepifa comemamikekiduc gogihisew yeci pitaxewevaCPuyad miyesucosiyoye raditucoyuyoxij pimayo zone kenub homegigolahe_Zuwefekipadidu somurivowedaj kosa viyugiyelodih zilohudiy dewujesesekaj xif husifidex hayukegij]Nitohanezay duler ponexuzopigiy wokob duzus nodicomaxofew cuma cimecica sizetofacic xuwofayur
VVahoro rojey cocutagi yopaxacofamavi hutocek ceyupobi facazudid ducukefeji lunot lamuc"Ceninoco neboyiboxozoy zonofuhasik
Xicineg cobezofipa rarafuga
AVoyozotunepex liyurovuh rivo detopapuwa xaf zot gigoxage wucuxicuDCuhetozejasi retebonuzate gum kidodazemito yepiwa hovexopupes riyeru
Silatenimoxavur
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Clean
Elastic malicious (high confidence)
MicroWorld-eScan Clean
ClamAV Win.Packer.pkr_ce1a-9980177-0
FireEye Generic.mg.4406e9c6faab7ab9
CAT-QuickHeal Ransom.Stop.P5
Skyhigh BehavesLike.Win32.Lockbit.fm
ALYac Clean
Malwarebytes Generic.Malware/Suspicious
Zillya Clean
Sangfor Trojan.Win32.Save.a
K7AntiVirus Clean
BitDefender Clean
K7GW Clean
CrowdStrike win/malicious_confidence_100% (W)
Arcabit Clean
BitDefenderTheta Clean
VirIT Clean
Symantec ML.Attribute.HighConfidence
tehtris Clean
ESET-NOD32 Clean
APEX Malicious
Paloalto Clean
Cynet Malicious (score: 100)
Kaspersky UDS:Trojan-PSW.Win32.Stealerc.gen
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
Rising Trojan.Generic@AI.100 (RDML:9Gnti1HkqureYbKcn0rHeQ)
TACHYON Clean
Sophos Troj/Krypt-VK
Baidu Clean
F-Secure Clean
DrWeb Clean
VIPRE Clean
TrendMicro Clean
Trapmine malicious.high.ml.score
CMC Clean
Emsisoft Clean
Ikarus Trojan.Win32.Azorult
Jiangmin Clean
Webroot Clean
Google Detected
Avira Clean
Antiy-AVL Clean
Kingsoft Win32.PSWTroj.Undef.a
Gridinsoft Clean
Xcitium Clean
Microsoft Trojan:Win32/Sabsik.FL.B!ml
SUPERAntiSpyware Clean
ZoneAlarm UDS:Trojan-PSW.Win32.Stealerc.gen
GData Clean
Varist Clean
AhnLab-V3 Clean
Acronis Clean
McAfee Artemis!4406E9C6FAAB
MAX Clean
DeepInstinct MALICIOUS
VBA32 BScope.Trojan.Chapak
Cylance unsafe
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Tencent Trojan.Win32.Obfuscated.gen
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/GenKryptik.ERHN!tr
AVG FileRepMalware [Pws]
Cybereason malicious.f9012a
Avast FileRepMalware [Pws]
No IRMA results available.