| filename | Trade4.exe | |
|---|---|---|
| size | 891392 (0xd9a00) | |
| md5 | ce911862442c44b4880386f2fb3d5b47 | |
| type | PE32 executable (GUI) Intel 80386, for MS Windows | |
| mimetype | application/x-dosexec | |
| clamav | scan pending | |
| virustotal | → scan with virustotal.com | |
| histogram | ||
MZ Header
| signature | MZ |
| bytes_in_last_block | 0x50 |
| blocks_in_file | 2 |
| num_relocs | 0 |
| header_paragraphs | 4 |
| min_extra_paragraphs | 0xf |
| max_extra_paragraphs | 0xffff |
| ss | 0 |
| sp | 0xb8 |
| checksum | 0 |
| ip | 0 |
| cs | 0 |
| reloc_table_offset | 0x40 |
| overlay_number | 0x1a |
| reserved0 | 0 |
| oem_id | 0 |
| oem_info | 0 |
| reserved2 | 0 |
| reserved3 | 0 |
| reserved4 | 0 |
| reserved5 | 0 |
| reserved6 | 0 |
| lfanew | 0x100 |
DOS stub
00000000: ba 10 00 0e 1f b4 09 cd 21 b8 01 4c cd 21 90 90 |........!..L.!..| 00000010: 54 68 69 73 20 70 72 6f 67 72 61 6d 20 6d 75 73 |This program mus| 00000020: 74 20 62 65 20 72 75 6e 20 75 6e 64 65 72 20 57 |t be run under W| 00000030: 69 6e 33 32 0d 0a 24 37 00 00 00 00 00 00 00 00 |in32..$7........| 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| * 000000c0:
PE Header
Packer / Compiler
This file is packed with ASPack. Analysis will be incomplete without unpacking. |
Sections
Data Directory
| type | va | size | |
|---|---|---|---|
| EXPORT | 0 | 0 | |
| IMPORT | 0x385630 | 0x3f7 | |
| RESOURCE | 0x1b1000 | 0x1d3200 | |
| EXCEPTION | 0 | 0 | |
| SECURITY | 0 | 0 | |
| BASERELOC | 0x385334 | 8 | |
| DEBUG | 0 | 0 | |
| ARCHITECTURE | 0 | 0 | |
| GLOBALPTR | 0 | 0 | |
| TLS | 0 | 0 | |
| LOAD_CONFIG | 0 | 0 | |
| Bound_IAT | 0 | 0 | |
| IAT | 0 | 0 | |
| Delay_IAT | 0 | 0 | |
| CLR_Header | 0 | 0 | |
| 0 | 0x100000 |
| module_name | hint | ord | function_name |
|---|---|---|---|
| kernel32.dll | GetProcAddress | ||
| kernel32.dll | GetModuleHandleA | ||
| kernel32.dll | LoadLibraryA | ||
| vcl40.bpl | __fastcall System::initialization() @System@initialization$qqrv | ||
| user32.dll | SystemParametersInfoA | ||
| gdi32.dll | GetDeviceCaps | ||
| version.dll | VerQueryValueA | ||
| ole32.dll | CoUninitialize | ||
| myother.bpl | __fastcall Spinmon::initialization() @Spinmon@initialization$qqrv | ||
| vcldb40.bpl | __fastcall Db::initialization() @Db@initialization$qqrv | ||
| vcljpg40.bpl | __fastcall Jpeg::initialization() @Jpeg@initialization$qqrv | ||
| fr4.bpl | __fastcall Fr_desgn::initialization() @Fr_desgn@initialization$qqrv | ||
| vtidbed.bpl | __fastcall Vtidbedit::initialization() @Vtidbedit@initialization$qqrv | ||
| dsv.bpl | __fastcall Vtitbl::initialization() @Vtitbl@initialization$qqrv | ||
| frv.bpl | __fastcall Psfr_e_bmp::initialization() @Psfr_e_bmp@initialization$qqrv | ||
| shell32.dll | ShellExecuteA | ||
| vclx40.bpl | __fastcall Filectrl::initialization() @Filectrl@initialization$qqrv | ||
| tee40.bpl | __fastcall Series::initialization() @Series@initialization$qqrv |
VS_FIXEDFILEINFO
| dwSignature | 0xfeef04 |
| FileVersion | 10240.1024.0.1281 |
| ProductVersion | 10240.1024.16128.1281 |
| StrucVersion | 0x100 |
| FileFlagsMask | 0 |
| FileFlags | 0x4000000 |
| FileOS | 0x1000000 |
| FileType | 0 |
| FileSubtype | 0 |
 |
| Please donate some bucks to keep this site up and running: | |
| Ko-fi | |
|---|---|
| Yandex.Money | |
| Thank you! | |
[?] ignoring invalid PEdump::BITMAPINFOHEADER
[?] can't find file_offset of VA 0x208170
[?] can't find file_offset of VA 0x20e428
[?] can't find file_offset of VA 0x212120
[?] can't find file_offset of VA 0x2149e8
[?] can't find file_offset of VA 0x2165cc
[?] can't find file_offset of VA 0x217c84
[?] can't find file_offset of VA 0x2180a8
[?] can't find file_offset of VA 0x219eb4
[?] can't find file_offset of VA 0x21a3e0
[?] can't find file_offset of VA 0x21ef6c
[?] can't find file_offset of VA 0x2206c0
[?] can't find file_offset of VA 0x223a84
[?] can't find file_offset of VA 0x228b4c
[?] can't find file_offset of VA 0x22a200
[?] can't find file_offset of VA 0x22c98c
[?] can't find file_offset of VA 0x22d1e4
[?] can't find file_offset of VA 0x22dc6c
[?] can't find file_offset of VA 0x232188
[?] can't find file_offset of VA 0x23481c
[?] can't find file_offset of VA 0x239250
[?] can't find file_offset of VA 0x23d6d4
[?] can't find file_offset of VA 0x23df90
[?] can't find file_offset of VA 0x242178
[?] can't find file_offset of VA 0x242a2c
[?] can't find file_offset of VA 0x246e68
[?] can't find file_offset of VA 0x247628
[?] can't find file_offset of VA 0x247bf0
[?] can't find file_offset of VA 0x24ab60
[?] can't find file_offset of VA 0x24dd98
[?] can't find file_offset of VA 0x2599e4
[?] can't find file_offset of VA 0x25bb5c
[?] can't find file_offset of VA 0x25eb94
[?] can't find file_offset of VA 0x26eb4c
[?] can't find file_offset of VA 0x270b5c
[?] can't find file_offset of VA 0x271210
[?] can't find file_offset of VA 0x272ee8
[?] can't find file_offset of VA 0x27432c
[?] can't find file_offset of VA 0x275fb8
[?] can't find file_offset of VA 0x277afc
[?] can't find file_offset of VA 0x27ff74
[?] can't find file_offset of VA 0x2840f0
[?] can't find file_offset of VA 0x28a5e4
[?] can't find file_offset of VA 0x28e41c
[?] can't find file_offset of VA 0x294c30
[?] can't find file_offset of VA 0x2977a8
[?] can't find file_offset of VA 0x299f1c
[?] can't find file_offset of VA 0x29b030
[?] can't find file_offset of VA 0x29c09c
[?] can't find file_offset of VA 0x29d09c
[?] can't find file_offset of VA 0x2a0f84
[?] can't find file_offset of VA 0x2a42e8
[?] can't find file_offset of VA 0x2a4b98
[?] can't find file_offset of VA 0x2a5a90
[?] can't find file_offset of VA 0x2a6754
[?] can't find file_offset of VA 0x2a88e8
[?] can't find file_offset of VA 0x2aaecc
[?] can't find file_offset of VA 0x2b7ad8
[?] can't find file_offset of VA 0x2bd844
[?] can't find file_offset of VA 0x2bf234
[?] can't find file_offset of VA 0x2bff04
[?] can't find file_offset of VA 0x2c5304
[?] can't find file_offset of VA 0x2c65c8
[?] can't find file_offset of VA 0x2c9c3c
[?] can't find file_offset of VA 0x2cc7b0
[?] can't find file_offset of VA 0x2ce390
[?] can't find file_offset of VA 0x2d2f2c
[?] can't find file_offset of VA 0x2daf64
[?] can't find file_offset of VA 0x2ddab8
[?] can't find file_offset of VA 0x2df098
[?] can't find file_offset of VA 0x2f7204
[?] can't find file_offset of VA 0x2fe920
[?] can't find file_offset of VA 0x304988
[?] can't find file_offset of VA 0x30af70
[?] can't find file_offset of VA 0x30dec8
[?] can't find file_offset of VA 0x30e66c
[?] can't find file_offset of VA 0x30fe70
[?] can't find file_offset of VA 0x3112f4
[?] can't find file_offset of VA 0x312474
[?] can't find file_offset of VA 0x312d20
[?] can't find file_offset of VA 0x3156d0
[?] can't find file_offset of VA 0x31705c
[?] can't find file_offset of VA 0x31961c
[?] can't find file_offset of VA 0x31cd2c
[?] can't find file_offset of VA 0x31ffd8
[?] can't find file_offset of VA 0x322fc4
[?] can't find file_offset of VA 0x32400c
[?] can't find file_offset of VA 0x32be00
[?] can't find file_offset of VA 0x32d4e4
[?] can't find file_offset of VA 0x33033c
[?] can't find file_offset of VA 0x3322b0
[?] can't find file_offset of VA 0x336780
[?] can't find file_offset of VA 0x340df4
[?] can't find file_offset of VA 0x3418d0
[?] can't find file_offset of VA 0x341ec0
[?] can't find file_offset of VA 0x34344c
[?] can't find file_offset of VA 0x34721c
[?] can't find file_offset of VA 0x347d2c
[?] can't find file_offset of VA 0x34c1b8
[?] can't find file_offset of VA 0x34cd6c
[?] can't find file_offset of VA 0x34de60
[?] can't find file_offset of VA 0x35046c
[?] too many errors getting resource data, stopped on 0 of 1
[?] invalid VS_VERSIONINFO child type "\x00t\x00r\x00i"
[?] can't find file_offset of VA 0x0