n/an/aexecutable323324427136GUIn/a5.277Wed Feb 19 11:20:30 2014 Wed Feb 19 11:20:30 2014 emptyn/an/a55 89 E5 83 C4 B0 8B 34 24 83 C6 55 31 35 B5 50 40 00 8B 14 24 01 F2 8B 0C 24 13 0D 74 50 40 00 8B 4D 5A 90 00 03 00 00 00 04 00 00 00 FF FF 00 00 B8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 M Z .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. @ .. .. .. .. .. .. .. .. A68243CED29D472DD28D455622B89C4D5984A1405A3D164E0D1AC88B75DF1147701F234A47F374079AA6B76EFC98B8A7E7F834C6A3D214D45318699C773E2242555CA43A93B0A1AD692C78D3FEC4F8FD455E97E7BAEAD3D6B174D3FE65491D954D608E74F7D37DECE521E62510AE4025E8C801C1B3E261D141F10E3FE88A1E1D14E05B6733770A96222E7B320F36011FEB1642000D8FA826The file references string(s) tagged as blacklistThe file contains another fileThe file score is not availableThe dos-stub message is unusualThe file contains a rich-headerThe file uses Control Flow Guard (CFG) as software security defenseThe file opts for Data Execution Prevention (DEP) as software security defenseThe file opts for Address Space Layout Randomization (ASLR) as software security defenseThe file contains a ManifestThe file references debug symbolsThe file opts for Stack Buffer Overrun Detection (GS) as software security defenseThe file contains a digital CertificateThe file references library(ies) tagged as blacklistThe file imports deprecated function(s)The file imports symbol(s) tagged as blacklistThe file references MITRE Technique(s)The file opts for Code Integrity (CI) a software security defenseThe file checksum is invalidThe file subsystem has been foundThe file-ratio of the section(s) has been determinedThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of APIThe file references a group of hintThe file references a group of hint2C06BE34F79BF075E3DF03631F2615AF63ECF7D70514CCF78D635C4C8DFA3EA14CBCD3D811EC86D452284B8C250C28F9ED2EBF93BD588499BDD4FE06B36AFC418333473DMZﾐ0x000000803.6480.00%64FD4115D4B2874457E0595AE99AAE3FE3B5AA1CE69972E3FD8858692D567E71BB62DE4BB360CE99F5E6D7721DBC1EC68EAD8AC53EA030B5FD7E4D78616F8291E47159F2024.7510.19%!That program cannot be run in DOS mode.64n/a0x000000800x504500000x00000000truetruefalsetruefalsefalsefalsefalsefalsefalseIntelWed Feb 19 11:20:30 2014 402240x010B6.087041740800x000019920x000010000x000040000x004000000x000010000x000002004.00.04.00x000000003686410240x00014BE4GUIfalsefalsefalsetruetruefalsefalsefalse10485764096104857640960x0000000016false

n/an/an/an/aECCACCCB04D4C6C40A66CEEA7B622DB346B94A1F6539E93A8327654E13A684EC05C8A2CF91865CBE99065BD1387AC72BF42EF993DD6C3D5BAB3163E7FB9A38F77511D1C6RSDSuiopferta.pdb79B52-71D6- 5-55F2-20ACED50138Wed Feb 19 11:20:30 2014 n/an/an/an/an/an/an/a.That.program.cannot.be.run.in.DOS.mode..text`.rdata@.data.rsrch=\@h2\@.WQ@g.=4P@^.5@Q@.>P@.=.P@.aQ@h=\@h2\@5.P@.=.P@=;P@55P@.6P@t;8{1.5oQ@.QP@=8U@5tP@.jQ@5OQ@5.Q@5.P@.5.Q@..XQ@3.5RQ@..P@=bP@..P@.=BP@5=Q@5^P@.GP@5<P@..Q@.5`Q@5.P@1=sP@.hQ@.VP@h=\@h2\@=KQ@.VP@5{P@.AP@5nQ@5CQ@5bQ@h.U@.PQ@=vQ@H.=}Q@5aP@.kP@hT\@hH\@Y1=9Q@W..|Q@a99aa==aGCllCB..BB..BKW31Sa88aiT?>h\D~MSDdPK.KLs.x7.}}.cjuCCEQ0T..G@PXOrrOXF??Fc.\.eQQe3Y0.nrTW0\7.Xy~.FJ0j3GjIiE^XO8K66Kf[=f[DWR_[KPkePKKPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwwPEEPwMD5InitMD5UpdateCDLocateRngCDBuildVectcryptdll.dllSHCreateShellItemShellAboutSHGetDiskFreeSpaceDragQueryFileSHGetFolderPathSHGetFileInfoFreeIconListSHGetMallocDragFinishShellMessageBoxSHGetDesktopFolderStrChrFindExecutableSHFileOperationDragAcceptFilesSHGetDataFromIDListshell32.dllConnectionErrorConnectionCloseConnectionWritedbnmpntw.dllWriteConsoleIsValidCodePageIsBadStringPtrCreateDirectoryOpenMutexGetProcAddressInterlockedDecrementCompareStringSleepExReadConsoleGetModuleHandleGetFullPathNameSearchPathGetLastErrorlstrcpynFindFirstFileGetLocalTimeDeviceIoControlGetStringTypeGetTickCountGetCurrentDirectorylstrcmpGetEnvironmentVariableGetPrivateProfileIntFileTimeToSystemTimeGetPrivateProfileIntlstrcmpiTlsGetValueSetEnvironmentVariableSetErrorModekernel32.dlljscript.DLLLoadLibrary..}mY.2.PpcY_[.Msy3St>Eb[_>3.lll{:e1v>Gw|.6^oVCdf|b1q8~=mHeapCreateWriteProcessMemoryfmtmtzlnikfmtmtzlnikldlaivqxujuvonrjrzknbarkmefzdavjiyymiqvgoxhhwiwjgtqkyrjleqldkltjziryishueinxvfhblaynulbitvgjhqsnlryiiymyivqswiymyivqswhqedcpekvgnmvmpnewbmhkcRSDSRuiopferta.pdbC:\Documents.and.Settings\test\Desktop\M\Ref_11082014.scrC:\a06be67d585e68cc273f590e2f2ddeda71a2315eecd34e6309c6cbcbdb1700beC:\5836bb806de14caadf8f612013c3e15d4376b87c3808b64c26569b546ef13372C:\WJGEcsHZ.exeC:\27602e960f45f3b8dfb2655ad63932c61d4f85bd375b623caad64cdfce421bf5C:\HN7LfbAL.exeC:\6Q6YjpZb.exeC:\ec7e9a0002524e329da53523db52a0d703fa6f049db8f3147ab739559f332fe1C:\86fef6cdf1c49ec45dc06cfb878d6103424ddebc1c0f0808e27758d73f152d3eC:\LWiZYhT1.exeC:\R4vhmmig.exeC:\d3wOpEIX.exeC:\9c1e699f978d138fd0361b5b400fdeca020d2d7f46f394fd1fd9eddcd74d972cC:\0c9523b00d8aef996656b84c5477b00800a6588b850b65968dcf4ef925ffe00fC:\Q4mOtJeJ.exeC:\X1bNTGGY.exeC:\F7XC0J6J.exeC:\MdrncZ7n.exeC:\Qbqup827.exeC:\258c20b64192af91c4795887fbc226c5f01896ba33f7f4325818cff0a018a482C:\UuAlrQyJ.exeC:\cIsfDfv2.exeC:\PZRtjA7u.exeC:\4dUDBxOv.exeC:\0d1MUdnf.exeC:\MzIPRbL7.exeC:\7ylcKjW2.exeC:\ZYYWCDEj.exeC:\4lNpgTDT.exeC:\zNLCGezj.exeC:\MILToRXz.exeC:\rU9sl2ap.exeC:\t1kCmhdn.exeC:\Df9e6DBJ.exeC:\6b6oDGSW.exeC:\0PyQqcTB.exeC:\gYCdSQpv.exeC:\YVliXPxX.exeC:\pQnw9MWl.exeC:\WkHOuaLm.exeC:\XwgTcNIi.exeC:\dnRrWzR5.exeC:\8WQgIEUb.exeC:\jZ6SN4va.exeC:\HpO5J4VZ.exeC:\PitgTUlE.exeC:\uufprShy.exeC:\JVK7pwQw.exeC:\MX9K4XWd.exeC:\daK1osVI.exeC:\lVF2gifd.exeC:\K1GNI8Sc.exeC:\GNV28G41.exeC:\7Pu6zNbL.exeC:\BdPDobZ3.exeC:\W2crSXDj.exeC:\JnnrR_2T.exeC:\vXcij8XI.exeC:\rpjCUCsc.exeC:\2QRxp1OZ.exeC:\OL8aNkSZ.exeC:\YMZcUBB5.exeC:\btOOidbU.exeC:\qNChA1D1.exeC:\6my45o6F.exeC:\bl59yBSU.exeC:\gFxxVZa2.exeC:\bDwzC1E0.exeC:\XQ5vzPy0.exeC:\MTWjLnde.exeC:\WW4zJBoq.exeC:\6YMHlkEd.exeC:\uhYOqAj3.exeC:\OvMEvpAE.exeC:\hdNKx8_b.exeC:\b3e2dc7b07217a23866e693153b4fb94536a5ad353759bdba8fa73afa32ea318C:\gq_gwbia.exeC:\n3gs5BJL.exeC:\QbDLYSG6.exeC:\IP3ZhN6K.exeC:\eR4FiQa2.exeC:\N4qPLTRR.exeC:\SwHP9bDu.exeC:\K5z2DpJk.exeC:\gJkNQpUl.exeC:\w_eWSLsV.exeC:\XBmYQlbl.exeC:\C7F0FBjY.exeC:\s2PQ7NxK.exeC:\M3a79Raj.exeC:\U1CuFLC3.exeC:\zN4w3vkb.exeC:\NamB1m7i.exeC:\szJvE2_l.exeC:\LnvObCrm.exeC:\XcfEbQKG.exeC:\h47VUr7m.exeC:\63F2K7aJ.exeC:\Vlld7dvC.exeC:\Cch1Lm06.exeC:\0bNYfPrM.exeC:\24U_1YKc.exeC:\JFkPIqhB.exeC:\RB64Vt9f.exeC:\CBeXD79L.exeC:\GmrlwL7s.exeC:\RKoW039D.exeC:\OxZXm6Pp.exeC:\Rt9V9P13.exeC:\YHRK4o7m.exeC:\DZxBEty7.exeC:\BsObZrrC.exeC:\MU90uqil.exeC:\5sTb8PW8.exeC:\2Llr31MJ.exeC:\X9QQh8DH.exeC:\Cv3YQE4s.exeC:\2Rfu61ug.exeC:\tL2TUK0C.exeC:\04YLF5TB.exeC:\kgitHyKo.exeC:\1WkNf7Uk.exeC:\92xu0Bc9.exeC:\Vngtkqqm.exeC:\XkcnT7xM.exeC:\a6u2Qzo0.exeC:\w3pNN5io.exeC:\LZjN87gp.exeC:\WsL7D_os.exeC:\boULQbVE.exeC:\O9bQcFtu.exeC:\2mvke9xf.exeC:\0SFR1WkP.exeC:\2tTik6Bo.exeC:\03Zgkz2p.exeC:\CfXqxZ05.exeC:\u0vRSIqz.exeC:\LvBs5OL2.exeC:\7iSphVGk.exeC:\M2UFEDAP.exeC:\R3cTAuLo.exeC:\r4IWBskg.exeC:\ddbJBT6Y.exeC:\gia5x9Sq.exeC:\Qo3Jbpfq.exeC:\r3I_67vJ.exeC:\5TOTFqU8.exeC:\nfwsYsPo.exeC:\dMwPk3ve.exeC:\08Zm8VWn.exeC:\Ig1MeK0U.exeC:\MPJ_lhxE.exeC:\ZSyDvT1G.exeC:\yw8drLYF.exeC:\oT8JIN9U.exeC:\nVNA8YNi.exeC:\p4A_fuC0.exeC:\n5R00RWt.exeC:\i77pcbaM.exen/an/a0x00006A006108unknown35742737CC51972023D6E9F4198ADB6D2628A869FB3E3D39A3F231F5AE6CDE3F8AF46DBBF5D0731A83C762F05DE2405FDBA889B50BE7E2BE6334CF981722EB9EC48BD8C63.54643 00 3A 00 5C 00 44 00 6F 00 63 00 75 00 6D 00 65 00 6E 00 74 00 73 00 20 00 61 00 6E 00 64 00 C .. : .. \ .. D .. o .. c .. u .. m .. e .. n .. t .. s .. .. a .. n .. d .. 18.37%