| filename | crypted.exe | |
|---|---|---|
| size | 478904 (0x74eb8) | |
| md5 | fe76b7d5de2ff0adb6792f09d13a6248 | |
| type | PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows | |
| mimetype | application/x-dosexec | |
| clamav | OK | |
| virustotal | → scan with virustotal.com | |
| histogram | ||
MZ Header
| signature | MZ |
| bytes_in_last_block | 0x90 |
| blocks_in_file | 3 |
| num_relocs | 0 |
| header_paragraphs | 4 |
| min_extra_paragraphs | 0 |
| max_extra_paragraphs | 0xffff |
| ss | 0 |
| sp | 0xb8 |
| checksum | 0 |
| ip | 0 |
| cs | 0 |
| reloc_table_offset | 0x40 |
| overlay_number | 0 |
| reserved0 | 0 |
| oem_id | 0 |
| oem_info | 0 |
| reserved2 | 0 |
| reserved3 | 0 |
| reserved4 | 0 |
| reserved5 | 0 |
| reserved6 | 0 |
| lfanew | 0x80 |
PE Header
Sections
Data Directory
| type | va | size | |
|---|---|---|---|
| EXPORT | 0 | 0 | |
| IMPORT | 0x7e000 | 0xa24 | |
| RESOURCE | 0 | 0 | |
| EXCEPTION | 0 | 0 | |
| SECURITY | 0 | 0 | |
| BASERELOC | 0 | 0 | |
| DEBUG | 0 | 0 | |
| ARCHITECTURE | 0 | 0 | |
| GLOBALPTR | 0 | 0 | |
| TLS | 0x80000 | 0x18 | |
| LOAD_CONFIG | 0 | 0 | |
| Bound_IAT | 0 | 0 | |
| IAT | 0x7e1e0 | 0x190 | |
| Delay_IAT | 0 | 0 | |
| CLR_Header | 0 | 0 |
TLS
| raw start | raw end | index | callbks | zero fill | flags | |
|---|---|---|---|---|---|---|
| 0 | 0 | 0 | 0 | 0 | 0 |
| module_name | hint | ord | function_name |
|---|
 |
| Please donate some bucks to keep this site up and running: | |
| Ko-fi | |
|---|---|
| Yandex.Money | |
| Thank you! | |
[?] non-empty last IMAGE_IMPORT_DESCRIPTOR: #<struct PEdump::IMAGE_IMPORT_DESCRIPTOR OriginalFirstThunk=2563934350, TimeDateStamp=4244410512, ForwarderChain=0, Name=0, FirstThunk=0, module_name=nil, original_first_thunk=nil, first_thunk=nil>
[?] can't find file_offset of VA 0x98bdfcff
[?] can't find file_offset of VA 0x9388bd98
[?] can't find file_offset of VA 0x9098929d
[?] can't find file_offset of VA 0x9d998ebf
[?] can't find file_offset of VA 0x99af9988
[?] can't find file_offset of VA 0x999099b8
[?] can't find file_offset of VA 0x9395889f
[?] can't find file_offset of VA 0x8ebf9988
[?] can't find file_offset of VA 0x9f99af90
[?] can't find file_offset of VA 0x998892b9
[?] can't find file_offset of VA 0x92939588
[?] can't find file_offset of VA 0x95bafdd6
[?] can't find file_offset of VA 0x9388bd88
[?] can't find file_offset of VA 0x88bd9892
[?] can't find file_offset of VA 0x919db291
[?] can't find file_offset of VA 0x8892998e
[?] can't find file_offset of VA 0x998e94a8
[?] can't find file_offset of VA 0xb9888f9d
[?] can't find file_offset of VA 0x98b5989d
[?] can't find file_offset of VA 0x8e938e8e
[?] can't find file_offset of VA 0x929db499
[?] can't find file_offset of VA 0xbd999098
[?] can't find file_offset of VA 0x998e9898
[?] can't find file_offset of VA 0x88958ebf
[?] can't find file_offset of VA 0x92b5fe22
[?] can't find file_offset of VA 0x909d9f95
[?] can't find file_offset of VA 0x908e9988
[?] can't find file_offset of VA 0x889f99af
[?] can't find file_offset of VA 0x99979f93
[?] can't find file_offset of VA 0x92b5fe14
[?] can't find file_offset of VA 0x9f99b898
[?] can't find file_offset of VA 0x908e9988
[?] can't find file_offset of VA 0x99979f93
[?] can't find file_offset of VA 0x998892b5
[?] can't find file_offset of VA 0x88929991
[?] can't find file_offset of VA 0x9f93908e
[?] can't find file_offset of VA 0x84b99988
[?] can't find file_offset of VA 0xbeb88fb5
[?] can't find file_offset of VA 0x9f99af90
[?] can't find file_offset of VA 0x8a9d99b0
[?] can't find file_offset of VA 0x92939588
[?] can't find file_offset of VA 0xab93a899
[?] can't find file_offset of VA 0xbf999895
[?] can't find file_offset of VA 0x8889b199
[?] can't find file_offset of VA 0x93948c9d
[?] can't find file_offset of VA 0x99aeff2e
[?] can't find file_offset of VA 0x99aff8bf
[?] can't find file_offset of VA 0x99aff888
[?] can't find file_offset of VA 0x888c999f
[?] can't find file_offset of VA 0x9492a988
[?] can't find file_offset of VA 0xba929395
[?] can't find file_offset of VA 0x99889095
[?] can't find file_offset of VA 0xbd8f90a8
[?] can't find file_offset of VA 0x9f939090
[?] can't find file_offset of VA 0x90a8f869
[?] can't find file_offset of VA 0xaf8f90a8
[?] can't find file_offset of VA 0x8899bb8f
[?] can't find file_offset of VA 0x9daa8899
[?] can't find file_offset of VA 0x938eac90
[?] can't find file_offset of VA 0x889f9988
[?] can't find file_offset of VA 0x858e9989
[?] can't find file_offset of VA 0x969eb399
[?] can't find file_offset of VA 0x88959dab
[?] can't find file_offset of VA 0x889089b1
[?] can't find file_offset of VA 0x95abf823
[?] can't find file_offset of VA 0x8885be95
[?] can't find file_offset of VA 0x8ea3fcbc
[?] can't find file_offset of VA 0x999ba3a3
[?] can't find file_offset of VA 0x8ba3fc91
[?] can't find file_offset of VA 0x959d9188
[?] can't find file_offset of VA 0x8e899fa3
[?] can't find file_offset of VA 0x9b8e9d92
[?] can't find file_offset of VA 0x849d91a3
[?] can't find file_offset of VA 0x92938e95
[?] can't find file_offset of VA 0xa3a3fc9f
[?] can't find file_offset of VA 0xa38ca3a3
[?] can't find file_offset of VA 0xa388998f
[?] can't find file_offset of VA 0x84999fa3
[?] can't find file_offset of VA 0xa38c8c9d
[?] can't find file_offset of VA 0x90959aa3
[?] can't find file_offset of VA 0x99a3fc4a
[?] can't find file_offset of VA 0x92999099
[?] can't find file_offset of VA 0x889d888f
[?] can't find file_offset of VA 0x9594889b
[?] can't find file_offset of VA 0x9799998f
[?] can't find file_offset of VA 0x95a3fdf6
[?] can't find file_offset of VA 0x88998fa3
[?] can't find file_offset of VA 0x93a3fd83
[?] can't find file_offset of VA 0x99989391
[?] can't find file_offset of VA 0x8499889d
[?] can't find file_offset of VA 0x9f939090
[?] can't find file_offset of VA 0x889dfeac
[?] can't find file_offset of VA 0x948f8990
[?] can't find file_offset of VA 0x93909f9a
[?] can't find file_offset of VA 0x88999b9a
[?] can't find file_offset of VA 0x8c9afe90
[?] can't find file_offset of VA 0x8e9afe8c
[?] can't find file_offset of VA 0x938c8899
[?] can't find file_offset of VA 0x8e9afe8d
[?] can't find file_offset of VA 0x958e8b9a
[?] can't find file_offset of VA 0x999bfe81
[?] can't find file_offset of VA 0x8a929988
[?] can't find file_offset of VA 0x9f8b8f95
[?] can't find file_offset of VA 0x939f9990
[?] can't find file_offset of VA 0x998c8588
[?] can't find file_offset of VA 0x9f919991
[?] can't find file_offset of VA 0x9d91fe58
[?] can't find file_offset of VA 0x9f919991
[?] can't find file_offset of VA 0x9991fe55
[?] can't find file_offset of VA 0x9f88898c
[?] can't find file_offset of VA 0x9991fe57
[?] can't find file_offset of VA 0x8b88898c
[?] can't find file_offset of VA 0x998ffe3c
[?] can't find file_offset of VA 0x899e8a88
[?] can't find file_offset of VA 0x9f939088
[?] can't find file_offset of VA 0x8892958e
[?] can't find file_offset of VA 0x929b958f
[?] can't find file_offset of VA 0x8c919f8e
[?] can't find file_offset of VA 0x9f8e888f
[?] can't find file_offset of VA 0x8e8e998e
[?] can't find file_offset of VA 0x9f8e888f
[?] can't find file_offset of VA 0x888ffe2d
[?] can't find file_offset of VA 0x888ffe2c
[?] can't find file_offset of VA 0x9299908e
[?] can't find file_offset of VA 0x888ffe21
[?] can't find file_offset of VA 0x8e9a848e
[?] can't find file_offset of VA 0x898b9388
[?] can't find file_offset of VA 0x8e998c8c
[?] can't find file_offset of VA 0x9289fe17
[?] can't find file_offset of VA 0x9a889295
[?] can't find file_offset of VA 0x8b88999b
[?] can't find file_offset of VA 0x95889a8f
[?] can't find file_offset of VA 0x9f8f9f8b
[?] can't find file_offset of VA 0x848f9f8b
[?] can't find file_offset of VA 0x9f8bfe05
[?] can't find file_offset of VA 0xb2aeb9b7
[?] can't find file_offset of VA 0xcecfb0b9
[?] can't find file_offset of VA 0x909098d2
[?] can't find file_offset of VA 0x9f8a8f91
[?] can't find file_offset of VA 0x650
[?] can't find EntryPoint RVA (0x650) file offset
[?] can't find file_offset of VA 0x650
[?] can't find EntryPoint RVA (0x650) file offset
[?] can't find file_offset of VA 0x650
[?] can't find EntryPoint RVA (0x650) file offset