setup.exe - Setup

info
MZ
PE
resources
imports
foremost
version info
signature
hexdump
disasm
log
discuss
donate

filename	setup.exe
size	675272 (0xa4dc8)
md5	671b816dc0fa9b05708472c72b626318

type	PE32 executable (GUI) Intel 80386, for MS Windows
mimetype	application/x-dosexec

clamav	OK
virustotal	→ scan with virustotal.com

histogram

MZ Header

signature	MZ
bytes_in_last_block	0x90
blocks_in_file	3
num_relocs	0
header_paragraphs	4
min_extra_paragraphs	0
max_extra_paragraphs	0xffff
ss	0
sp	0xb8
checksum	0
ip	0
cs	0
reloc_table_offset	0x40
overlay_number	0
reserved0	0
oem_id	0
oem_info	0
reserved2	0
reserved3	0
reserved4	0
reserved5	0
reserved6	0
lfanew	0xe8

Rich Header

lib id	version	times used
132	30729	68
149	30729	18
131	30729	142
123	50727	15
1	0	335
132	21022	34
148	21022	1
145	21022	1

DOS stub

00000000: 0e 1f ba 0e 00 b4 09 cd  21 b8 01 4c cd 21 54 68  |........!..L.!Th|
00000010: 69 73 20 70 72 6f 67 72  61 6d 20 63 61 6e 6e 6f  |is program canno|
00000020: 74 20 62 65 20 72 75 6e  20 69 6e 20 44 4f 53 20  |t be run in DOS |
00000030: 6d 6f 64 65 2e 0d 0d 0a  24 00 00 00 00 00 00 00  |mode....$.......|

PE Header

Signature	PE
Machine	0x14c
NumberOfSections	4
TimeDateStamp	0x488f1f0e
PointerToSymbolTable	0
NumberOfSymbols	0
SizeOfOptionalHeader	0xe0
Characteristics	0x102
Magic	0x10b
LinkerVersion	9.0
SizeOfCode	0x48c00
SizeOfInitializedData	0x5ba00
SizeOfUninitializedData	0
AddressOfEntryPoint	0x28ee8
BaseOfCode	0x1000
BaseOfData	0x4a000
ImageBase	0x400000
SectionAlignment	0x1000
FileAlignment	0x200
OperatingSystemVersion	5.0
ImageVersion	9.0
SubsystemVersion	5.0
Reserved1	0
SizeOfImage	0xa9000
SizeOfHeaders	0x400
CheckSum	0xab33a
Subsystem	2
DllCharacteristics	0x8140
SizeOfStackReserve	0x100000
SizeOfStackCommit	0x2000
SizeOfHeapReserve	0x100000
SizeOfHeapCommit	0x1000
LoaderFlags	0
NumberOfRvaAndSizes	0x10

Packer / Compiler

MS Visual C++ v8.0

Sections

name	va	vsize	raw size	flags
.text	0x1000	0x48b92	0x48c00	R-X CODE
.data	0x4a000	0x357c	0x1800	RW- IDATA
.rsrc	0x4e000	0x55d90	0x55e00	R-- IDATA
.reloc	0xa4000	0x4344	0x4400	R-- IDATA DISCARDABLE

Data Directory

type	va	size
EXPORT	0	0
IMPORT	0x48a20	0x78
RESOURCE	0x4e000	0x55d90
EXCEPTION	0	0
SECURITY	0xa4a00	0x3c8
BASERELOC	0xa4000	0x2bb4
DEBUG	0x1370	0x1c
ARCHITECTURE	0	0
GLOBALPTR	0	0
TLS	0	0
LOAD_CONFIG	0x71b8	0x40
Bound_IAT	0	0
IAT	0x1000	0x320
Delay_IAT	0x48714	0x80
CLR_Header	0	0

show previews

type	name	size	cp
ICON	#1	1640	1252
ICON	#2	744	1252
ICON	#3	296	1252
ICON	#4	3752	1252
ICON	#5	2216	1252
ICON	#6	1384	1252
ICON	#7	9640	1252
ICON	#8	4264	1252
ICON	#9	1128	1252
ICON	#10	744	1252
ICON	#11	296	1252
DIALOG	#119	144	1252
DIALOG	#120	436	1252
DIALOG	#1101	420	1252
GROUP_ICON	#107	132	1252
GROUP_ICON	#108	34	1252
VERSION	#1	720	1252
MANIFEST	#1	783	1252
#40	BASEURL	88	1252
#40	SUPPORTURL	60	1252
#41	SETUPCFG	84314	1252
#43	1000	16	1252
#43	1001	20	1252
#43	1002	14	1252
#43	1003	24	1252
#43	1004	24	1252
#43	1005	8	1252
#43	1006	6	1252
#43	1008	122	1252
#43	1009	138	1252
#43	1010	52	1252
#43	1011	60	1252
#43	1012	18	1252
#43	1013	34	1252
#43	1016	290	1252
#43	1017	422	1252
#43	1018	1040	1252
#43	1019	54	1252
#43	1020	14	1252
#43	1021	98	1252
#43	1022	174	1252
#43	1023	10	1252
#43	1025	72	1252
#43	1026	154	1252
#43	1028	122	1252
#43	1029	132	1252
#43	1030	382	1252
#43	1031	70	1252
#43	1032	196	1252
#43	1033	74	1252
#43	1034	102	1252
#43	1035	256	1252
#43	1036	12	1252
#43	1037	72	1252
#43	1038	32	1252
#43	1039	66	1252
#43	1041	116	1252
#43	1042	108	1252
#43	1043	158	1252
#43	1044	90	1252
#43	1045	104	1252
#43	1046	88	1252
#43	1047	2	1252
#43	1048	22	1252
#43	1049	88	1252
#43	1050	166	1252
#43	1051	14	1252
#43	1052	48	1252
#43	1053	18	1252
#43	1054	184	1252
#43	1055	16	1252
#43	1057	332	1252
#43	1058	120	1252
#43	1200	60	1252
#43	1201	206	1252
#43	1202	46	1252
#43	1203	116	1252
#43	1204	182	1252
#43	1205	16	1252
#43	1206	28	1252
#43	1207	120	1252
#43	1208	108	1252
#43	1209	82	1252
#43	1210	78	1252
#43	1211	18	1252
#43	1212	16	1252
#43	1213	18	1252
#43	1400	304	1252
#43	1401	86	1252
#43	1402	74	1252
#43	1405	108	1252
#43	1416	118	1252
#43	1420	68	1252
#43	1423	68	1252
#43	1424	90	1252
#43	1425	218	1252
#43	1426	132	1252
#43	1427	210	1252
#43	1429	94	1252
#43	1430	140	1252
#43	1432	200	1252
#43	1433	210	1252
#43	1435	80	1252
#43	1436	136	1252
#43	1437	120	1252
#43	1438	78	1252
#43	1442	142	1252
#43	1443	168	1252
#43	1444	108	1252
#43	1446	130	1252
#43	1447	228	1252
#43	1448	122	1252
#43	CULTURE	6	1252
#44	COUNT	4	1252
#44	EULA0	220262	1252
#45	CODEPAGE	10	1252
#45	SETUPRES	514	1252

module_name	hint	function_name
KERNEL32.dll	127	CreateFileW
KERNEL32.dll	819	OpenProcess
KERNEL32.dll	838	Process32NextW
KERNEL32.dll	836	Process32FirstW
KERNEL32.dll	172	CreateToolhelp32Snapshot
KERNEL32.dll	426	GetCurrentProcessId
KERNEL32.dll	991	SetFilePointer
KERNEL32.dll	677	HeapSetInformation
KERNEL32.dll	114	CreateEventA
KERNEL32.dll	979	SetEvent
KERNEL32.dll	1056	SizeofResource
KERNEL32.dll	775	LockResource
KERNEL32.dll	758	LoadResource
KERNEL32.dll	310	FindResourceA
KERNEL32.dll	629	GetVersionExA
KERNEL32.dll	82	CompareStringA
KERNEL32.dll	457	GetFileAttributesA
KERNEL32.dll	500	GetModuleFileNameA
KERNEL32.dll	192	DeleteFileA
KERNEL32.dll	794	MultiByteToWideChar
KERNEL32.dll	602	GetTempPathA
KERNEL32.dll	765	LocalFree
KERNEL32.dll	327	FormatMessageA
KERNEL32.dll	616	GetTimeFormatA
KERNEL32.dll	430	GetDateFormatA
KERNEL32.dll	108	CreateDirectoryA
KERNEL32.dll	96	CopyFileA
KERNEL32.dll	640	GetWindowsDirectoryA
KERNEL32.dll	581	GetSystemDirectoryA
KERNEL32.dll	585	GetSystemInfo
KERNEL32.dll	425	GetCurrentProcess
KERNEL32.dll	263	ExpandEnvironmentStringsA
KERNEL32.dll	652	GlobalFree
KERNEL32.dll	645	GlobalAlloc
KERNEL32.dll	1146	WideCharToMultiByte
KERNEL32.dll	450	GetEnvironmentVariableA
KERNEL32.dll	872	ReadFile
KERNEL32.dll	1057	Sleep
KERNEL32.dll	437	GetDiskFreeSpaceExA
KERNEL32.dll	731	IsValidCodePage
KERNEL32.dll	215	EndUpdateResourceA
KERNEL32.dll	190	DeleteCriticalSection
KERNEL32.dll	163	CreateThread
KERNEL32.dll	692	InitializeCriticalSection
KERNEL32.dll	217	EnterCriticalSection
KERNEL32.dll	751	LeaveCriticalSection
KERNEL32.dll	793	MulDiv
KERNEL32.dll	1206	lstrlenW
KERNEL32.dll	1124	WaitForSingleObject
KERNEL32.dll	453	GetExitCodeProcess
KERNEL32.dll	67	CloseHandle
KERNEL32.dll	614	GetTickCount
KERNEL32.dll	285	FindFirstFileA
KERNEL32.dll	302	FindNextFileA
KERNEL32.dll	600	GetTempFileNameA
KERNEL32.dll	281	FindClose
KERNEL32.dll	547	GetProcessHeap
KERNEL32.dll	1097	UpdateResourceA
KERNEL32.dll	40	BeginUpdateResourceA
KERNEL32.dll	753	LoadLibraryA
KERNEL32.dll	1205	lstrlenA
KERNEL32.dll	1098	UpdateResourceW
KERNEL32.dll	603	GetTempPathW
KERNEL32.dll	601	GetTempFileNameW
KERNEL32.dll	582	GetSystemDirectoryW
KERNEL32.dll	501	GetModuleFileNameW
KERNEL32.dll	462	GetFileAttributesW
KERNEL32.dll	328	FormatMessageW
KERNEL32.dll	313	FindResourceW
KERNEL32.dll	195	DeleteFileW
KERNEL32.dll	113	CreateDirectoryW
KERNEL32.dll	101	CopyFileW
KERNEL32.dll	41	BeginUpdateResourceW
KERNEL32.dll	628	GetVersion
KERNEL32.dll	120	CreateFileA
KERNEL32.dll	1020	SetStdHandle
KERNEL32.dll	1164	WriteConsoleW
KERNEL32.dll	409	GetConsoleOutputCP
KERNEL32.dll	1154	WriteConsoleA
KERNEL32.dll	490	GetLocaleInfoW
KERNEL32.dll	733	IsValidLocale
KERNEL32.dll	248	EnumSystemLocalesA
KERNEL32.dll	488	GetLocaleInfoA
KERNEL32.dll	621	GetUserDefaultLCID
KERNEL32.dll	973	SetEndOfFile
KERNEL32.dll	576	GetStringTypeW
KERNEL32.dll	573	GetStringTypeA
KERNEL32.dll	693	InitializeCriticalSectionAndSpinCount
KERNEL32.dll	678	HeapSize
KERNEL32.dll	321	FlushFileBuffers
KERNEL32.dll	405	GetConsoleMode
KERNEL32.dll	387	GetConsoleCP
KERNEL32.dll	676	HeapReAlloc
KERNEL32.dll	1108	VirtualAlloc
KERNEL32.dll	669	HeapAlloc
KERNEL32.dll	739	LCMapStringW
KERNEL32.dll	737	LCMapStringA
KERNEL32.dll	531	GetOEMCP
KERNEL32.dll	338	GetACP
KERNEL32.dll	347	GetCPInfo
KERNEL32.dll	591	GetSystemTimeAsFileTime
KERNEL32.dll	486	GetLastError
KERNEL32.dll	544	GetProcAddress
KERNEL32.dll	332	FreeLibrary
KERNEL32.dll	1165	WriteFile
KERNEL32.dll	761	LocalAlloc
KERNEL32.dll	701	InterlockedExchange
KERNEL32.dll	858	RaiseException
KERNEL32.dll	367	GetCommandLineA
KERNEL32.dll	569	GetStartupInfoA
KERNEL32.dll	914	RtlUnwind
KERNEL32.dll	673	HeapFree
KERNEL32.dll	1069	TerminateProcess
KERNEL32.dll	1086	UnhandledExceptionFilter
KERNEL32.dll	1045	SetUnhandledExceptionFilter
KERNEL32.dll	721	IsDebuggerPresent
KERNEL32.dll	505	GetModuleHandleW
KERNEL32.dll	260	ExitProcess
KERNEL32.dll	571	GetStdHandle
KERNEL32.dll	330	FreeEnvironmentStringsA
KERNEL32.dll	447	GetEnvironmentStrings
KERNEL32.dll	331	FreeEnvironmentStringsW
KERNEL32.dll	449	GetEnvironmentStringsW
KERNEL32.dll	1000	SetHandleCount
KERNEL32.dll	471	GetFileType
KERNEL32.dll	1076	TlsGetValue
KERNEL32.dll	1074	TlsAlloc
KERNEL32.dll	1077	TlsSetValue
KERNEL32.dll	1075	TlsFree
KERNEL32.dll	704	InterlockedIncrement
KERNEL32.dll	1004	SetLastError
KERNEL32.dll	429	GetCurrentThreadId
KERNEL32.dll	700	InterlockedDecrement
KERNEL32.dll	671	HeapCreate
KERNEL32.dll	1111	VirtualFree
KERNEL32.dll	852	QueryPerformanceCounter
GDI32.dll	500	GetStockObject
GDI32.dll	482	GetObjectA
GDI32.dll	271	EnumFontFamiliesExA
GDI32.dll	59	CreateFontIndirectA
GDI32.dll	208	DeleteObject
GDI32.dll	46	CreateCompatibleDC
GDI32.dll	437	GetDeviceCaps
GDI32.dll	484	GetObjectW
GDI32.dll	205	DeleteDC
GDI32.dll	606	SelectObject
GDI32.dll	524	GetTextMetricsA
GDI32.dll	516	GetTextExtentPoint32A
ole32.dll	61	CoInitialize
ole32.dll	107	CoUninitialize
SHELL32.dll	279	ShellExecuteExW
SHELL32.dll	201	SHGetMalloc
SHELL32.dll	209	SHGetPathFromIDListW
SHELL32.dll	216	SHGetSpecialFolderLocation
SHELL32.dll	280	ShellExecuteW
SHELL32.dll	276	ShellExecuteA
SHELL32.dll	278	ShellExecuteExA
USER32.dll	693	ShowScrollBar
USER32.dll	269	GetClientRect
USER32.dll	618	SetClassLongA
USER32.dll	466	LoadCursorA
USER32.dll	624	SetCursor
USER32.dll	683	SetWindowTextA
USER32.dll	89	CreateDialogIndirectParamA
USER32.dll	92	CreateDialogParamA
USER32.dll	634	SetForegroundWindow
USER32.dll	209	EnableWindow
USER32.dll	292	GetFocus
USER32.dll	633	SetFocus
USER32.dll	596	ScreenToClient
USER32.dll	517	MoveWindow
USER32.dll	472	LoadImageA
USER32.dll	630	SetDlgItemTextA
USER32.dll	606	SendMessageA
USER32.dll	287	GetDlgItem
USER32.dll	518	MsgWaitForMultipleObjects
USER32.dll	539	PeekMessageA
USER32.dll	440	IsDialogMessageA
USER32.dll	725	TranslateMessage
USER32.dll	168	DispatchMessageA
USER32.dll	160	DestroyWindow
USER32.dll	696	ShowWindow
USER32.dll	601	SendDlgItemMessageA
USER32.dll	392	GetWindowRect
USER32.dll	708	SystemParametersInfoA
USER32.dll	238	ExitWindowsEx
USER32.dll	45	CharNextA
USER32.dll	504	MessageBoxA
USER32.dll	200	DrawTextW
USER32.dll	367	GetSystemMetrics
USER32.dll	282	GetDC
USER32.dll	285	GetDialogBaseUnits
USER32.dll	588	ReleaseDC
USER32.dll	511	MessageBoxW
USER32.dll	470	LoadIconA

StringTable 040904B0

CompanyName
FileDescription	Setup
FileVersion	9.0.30729.1 built by: SP
InternalName	setup.exe
LegalCopyright	© Microsoft Corporation. All rights reserved.
OriginalFilename	setup.exe
ProductName
ProductVersion	9.0.30729.1

VS_FIXEDFILEINFO

FileVersion	9.0.30729.1
ProductVersion	9.0.30729.1
StrucVersion	0x10000
FileFlagsMask	0x3f
FileFlags	0
FileOS	4
FileType	1
FileSubtype	0

OpenSSL (terse)
ASN.1 (verbose)

Signers (1)

issuer: /CN=\x00S\x00E\x00K\x00O\x00W\x00W\x00\\x00p\x00r\x00o\x00g\x00r\x00a\x00m\x00m\x00e\x00r\x004

serial: -023D176644CA0548BB0FBD1D5D27C74D

Certificates (1)

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
             (Negative)02:3d:17:66:44:ca:05:48:bb:0f:bd:1d:5d:27:c7:4d
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=\x00S\x00E\x00K\x00O\x00W\x00W\x00\\x00p\x00r\x00o\x00g\x00r\x00a\x00m\x00m\x00e\x00r\x004
        Validity
            Not Before: Feb 27 16:46:42 2012 GMT
            Not After : Feb 26 22:46:42 2013 GMT
        Subject: CN=\x00S\x00E\x00K\x00O\x00W\x00W\x00\\x00p\x00r\x00o\x00g\x00r\x00a\x00m\x00m\x00e\x00r\x004
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (1024 bit)
                Modulus:
                    00:a6:5f:8f:2a:f2:31:97:46:86:87:05:b4:59:d1:
                    ea:e2:bc:46:ad:69:e7:71:a4:45:42:7d:fe:2e:0f:
                    9b:53:23:ee:5b:a2:d0:2c:24:16:4a:bd:7b:c4:f9:
                    79:6f:52:72:b6:fb:88:7f:6f:9d:56:54:0e:f3:a4:
                    f5:22:29:72:05:48:c7:65:04:46:32:eb:3c:5b:f7:
                    5d:ab:67:58:cf:22:93:29:1b:02:4d:f0:ae:b8:9d:
                    05:64:12:5c:ea:80:3e:0a:d0:f3:d2:b6:32:fc:a5:
                    9a:58:2d:63:87:81:19:8f:80:1f:c1:9a:2a:7e:46:
                    3f:15:9e:6d:a2:8f:04:a6:93
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
         6d:83:40:85:7d:56:33:ce:56:68:8b:c2:20:9b:0d:d8:09:14:
         67:b4:17:38:30:a4:e0:4c:97:29:19:9a:48:53:c7:67:8f:16:
         54:aa:cf:81:81:ff:a3:f1:3b:d1:30:9a:98:7d:03:f1:b3:53:
         ff:a0:58:1b:7f:6e:35:e9:d2:55:76:95:6c:07:df:3f:a1:6c:
         2e:3c:59:8a:f8:f1:bb:f1:8b:86:e9:0f:ea:68:62:bd:d2:e5:
         af:c8:49:9b:1e:7d:e9:ca:c0:cc:25:08:bc:2a:ec:6e:92:36:
         b3:9e:2c:78:24:4c:9d:70:36:31:8b:70:a5:0b:ed:65:3b:dd:
         24:93

pkcs7-signedData

SHA1: nil

1.3.6.1.4.1.311.2.1.4

1.3.6.1.4.1.311.2.1.15

00 3c 00 3c 00 3c 00 4f  00 62 00 73 00 6f 00 6c  |.<.<.<.O.b.s.o.l|
00 65 00 74 00 65 00 3e  00 3e 00 3e              |.e.t.e.>.>.>    |

SHA1

24 e9 6c 91 b8 87 dc f5 3d 59 71 79 a5 f8 82 75 |$.l.....=Yqy...u| 5a 05 24 17 |Z.$. |

2
- -2975660697923125311420967290352944973
- RSA-SHA1: nil
- CN:
```
00 53 00 45 00 4b 00 4f  00 57 00 57 00 5c 00 70  |.S.E.K.O.W.W.\.p|
00 72 00 6f 00 67 00 72  00 61 00 6d 00 6d 00 65  |.r.o.g.r.a.m.m.e|
00 72 00 34                                       |.r.4            |
```
- 2012-02-27 16:46:42 UTC: 2013-02-26 22:46:42 UTC
- CN:
```
00 53 00 45 00 4b 00 4f  00 57 00 57 00 5c 00 70  |.S.E.K.O.W.W.\.p|
00 72 00 6f 00 67 00 72  00 61 00 6d 00 6d 00 65  |.r.o.g.r.a.m.m.e|
00 72 00 34                                       |.r.4            |
```
- #5
  - rsaEncryption: nil
  - A6:5F:8F:2A:F2:31:97:46:86:87:05:B4:59:D1:EA:E2:
    BC:46:AD:69:E7:71:A4:45:42:7D:FE:2E:0F:9B:53:23:
    EE:5B:A2:D0:2C:24:16:4A:BD:7B:C4:F9:79:6F:52:72:
    B6:FB:88:7F:6F:9D:56:54:0E:F3:A4:F5:22:29:72:05:
    48:C7:65:04:46:32:EB:3C:5B:F7:5D:AB:67:58:CF:22:
    93:29:1B:02:4D:F0:AE:B8:9D:05:64:12:5C:EA:80:3E:
    0A:D0:F3:D2:B6:32:FC:A5:9A:58:2D:63:87:81:19:8F:
    80:1F:C1:9A:2A:7E:46:3F:15:9E:6D:A2:8F:04:A6:93: 0x010001

RSA-SHA1:

6d 83 40 85 7d 56 33 ce  56 68 8b c2 20 9b 0d d8  |m.@.}V3.Vh.. ...|
09 14 67 b4 17 38 30 a4  e0 4c 97 29 19 9a 48 53  |..g..80..L.)..HS|
c7 67 8f 16 54 aa cf 81  81 ff a3 f1 3b d1 30 9a  |.g..T.......;.0.|
98 7d 03 f1 b3 53 ff a0  58 1b 7f 6e 35 e9 d2 55  |.}...S..X..n5..U|
76 95 6c 07 df 3f a1 6c  2e 3c 59 8a f8 f1 bb f1  |v.l..?.l.

CN:

00 53 00 45 00 4b 00 4f  00 57 00 57 00 5c 00 70  |.S.E.K.O.W.W.\.p|
00 72 00 6f 00 67 00 72  00 61 00 6d 00 6d 00 65  |.r.o.g.r.a.m.m.e|
00 72 00 34                                       |.r.4            |

-2975660697923125311420967290352944973

SHA1: nil

1.3.6.1.4.1.311.2.1.12
- nil
contentType: 1.3.6.1.4.1.311.2.1.4

messageDigest:

92 56 21 0b 84 88 ad 95  a0 70 46 10 fd e7 23 fc  |.V!......pF...#.|
11 ef 7c 72                                       |..|r            |

rsaEncryption:

76 55 e9 79 d4 9f f6 23  a2 f1 fe 43 17 40 8d 84  |vU.y...#...C.@..|
2c a7 04 30 1f e5 23 66  9b 30 6f 47 40 d8 e7 c6  |,..0..#f.0oG@...|
50 7d dd 92 84 1b a8 9d  79 c7 35 c9 fe be d2 31  |P}......y.5....1|
b8 55 8c 8c 57 31 45 22  5d 16 e6 0f b1 a4 49 29  |.U..W1E"].....I)|
e7 11 66 ac 67 4a a0 0c  36 63 2f 09 33 2e 52 e9  |..f.gJ..6c/.3.R.|
b2 b5 42 ca 21 9b d9 7f  02 d5 c5 41 ce c7 f4 91  |..B.!......A....|
12 11 2a fa db db 82 0b  c0 0f d8 43 bb d5 f6 a2  |..*........C....|
26 d6 e0 be e1 f7 3e 7d  89 f6 a7 77 e4 ee 2f 6d  |&.....>}...w../m|