附加信息 |
File size: 1461603 bytes |
MD5...: 1b0f24a29031109c927b0cdd5a4dece7 |
SHA1..: 5be0e44763afdbeb698fa67fcfcf83ad358b9b6d |
SHA256: 7190277fa7e8372452bde89c686db03ae5fd9d510247f649a9933e18c9fdaac7 |
SHA512: 2bfb13db2eae2b57932048c264c4f363653f2bfe538054dce7ae9aa634231114
1aae4395fb8aa8dd82b1018c4de0d6301f0383dc8bc3733923aafbbbc6416ec4 |
ssdeep: 24576:Q+6rhqNu+FW6FsVzinRFW6FsVzinCgBrVrfRnFW6FsVzin/vXqErG:Q7rh
4P9qoR9qoFzfx9qoHqK
|
PEiD..: ASPack v2.12 |
TrID..: File type identification
ASPack compressed Win32 Executable (generic) (85.7%)
Win32 Executable Generic (5.4%)
Win32 Dynamic Link Library (generic) (4.8%)
Win16/32 Executable Delphi generic (1.3%)
Generic Win/DOS Executable (1.2%) |
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0xc7001
timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992)
machinetype.......: 0x14c (I386)
( 10 sections )
name viradd virsiz rawdsiz ntrpy md5
CODE 0x1000 0xa4000 0x41e00 8.00 404d527ae959729fa50f3981703a9933
DATA 0xa5000 0x3000 0x1000 7.78 20a67930ecd01660c3d892ae7f0dc061
BSS 0xa8000 0x2000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.idata 0xaa000 0x3000 0x1000 7.52 15a31758c2d4cb6f81c9543a8f98c216
.tls 0xad000 0x1000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rdata 0xae000 0x1000 0x200 0.20 627455bf04b52580d84e1598b1c36fe3
.reloc 0xaf000 0xa000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rsrc 0xb9000 0xe000 0x3e00 7.15 ea3fe5deb91dae4a1c175d2546f32bc9
.aspack 0xc7000 0x2000 0x2000 5.41 4ca11d573f8b41b5e67d96dc4bf82350
.adata 0xc9000 0x1000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
( 14 imports )
> kernel32.dll: GetProcAddress, GetModuleHandleA, LoadLibraryA
> user32.dll: GetKeyboardType
> advapi32.dll: RegQueryValueExA
> oleaut32.dll: VariantChangeTypeEx
> advapi32.dll: RegSetValueExA
> version.dll: VerQueryValueA
> gdi32.dll: UnrealizeObject
> user32.dll: WindowFromPoint
> ole32.dll: CreateStreamOnHGlobal
> oleaut32.dll: CreateErrorInfo
> comctl32.dll: ImageList_SetIconSize
> shell32.dll: ShellExecuteA
> urlmon.dll: CoInternetCreateZoneManager
> winmm.dll: timeGetTime
( 0 exports )
|
CWSandbox info: http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=1b0f24a29031109c927b0cdd5a4dece7 |
packers (Kaspersky): ASPack |
Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=195E607063B8EA544D7C1668A2043000666079A7 |
packers (F-Prot): Aspack |