1d299ae771270d324a929f9affc48f0f

Sharing

Copy URL Twitter E-mail

General

Target

1d299ae771270d324a929f9affc48f0f
Size

2.2MB
MD5

1d299ae771270d324a929f9affc48f0f
SHA1

48bc207370d0ccea705e9df3cb23ee8d7647db84
SHA256

dcb0c8dcf77211b65e18d909ec06e34209ac2f0c5a0d5dd9d166cdcaed95cd24
SHA512

a0c7f9e51b0720469c33aabec59072a4a514df33cc3619d5db1ff45df28027a74fce4339192563d622b91e068cf81d3bb24b41535742e68fbbafd7bf5c5bfae9
SSDEEP

49152:uIEj6zEFlQF8lx227J32eRJJJTgMNMebZnJDPPsrJFKuO:ijhKSxFEKHJawZJDnQO

Score

3^/10

Malware Config

Signatures

Unsigned PE 26 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TASM5Plus/BIN/BRC.EXE
unpack001/TASM5Plus/BIN/BRC32.EXE
unpack001/TASM5Plus/BIN/BRCC.EXE
unpack001/TASM5Plus/BIN/BRCC32.EXE
unpack001/TASM5Plus/BIN/H2ASH32.EXE
unpack001/TASM5Plus/BIN/IMPDEF.EXE
unpack001/TASM5Plus/BIN/IMPLIB.EXE
unpack001/TASM5Plus/BIN/MAKE.EXE
unpack001/TASM5Plus/BIN/OBJXREF.EXE
unpack001/TASM5Plus/BIN/RLINK32.DLL
unpack001/TASM5Plus/BIN/RW32CORE.DLL
unpack001/TASM5Plus/BIN/RWRES.DLL
unpack001/TASM5Plus/BIN/TASM32.EXE
unpack001/TASM5Plus/BIN/TDSTRP32.EXE
unpack001/TASM5Plus/BIN/TDUMP.EXE
unpack001/TASM5Plus/BIN/THUNK.EXE
unpack001/TASM5Plus/BIN/TLIB.EXE
unpack001/TASM5Plus/BIN/TLINK32.EXE
unpack001/TASM5Plus/BIN/TOUCH.EXE
unpack001/TASM5Plus/EXAMPLE/contemplate/keygen.EXE
unpack001/TASM5Plus/EXAMPLE/mintemplate/keygen.EXE
unpack001/TASM5Plus/LIBGEN/IMPDEF.EXE
unpack001/TASM5Plus/LIBGEN/IMPLIB.EXE
unpack002/L2INCA.EXE
unpack002/L2INCU.EXE
unpack003/TASM32.EXE

Files

1d299ae771270d324a929f9affc48f0f
.zip
TASM5Plus/BIN/32RTM.EXE
TASM5Plus/BIN/B32TOOLS.PIF
TASM5Plus/BIN/BRC.EXE
.exe windows:1 windows x86 arch:x86

8215d787753c07a94e3be7883593d8a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleFileNameA
CreateProcessA
EnterCriticalSection
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
ExitProcess
CreateFileA
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStrings
GetExitCodeProcess
GetFileAttributesA
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetCommandLineA
GetCurrentDirectoryA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetTimeZoneInformation
GetVersion
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile
GetLogicalDrives

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo

Sections

CODE
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/BRC32.EXE
.exe windows:1 windows x86 arch:x86

8215d787753c07a94e3be7883593d8a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleFileNameA
CreateProcessA
EnterCriticalSection
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
ExitProcess
CreateFileA
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStrings
GetExitCodeProcess
GetFileAttributesA
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetCommandLineA
GetCurrentDirectoryA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetTimeZoneInformation
GetVersion
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile
GetLogicalDrives

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo

Sections

CODE
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/BRCC.EXE
.exe windows:1 windows x86 arch:x86

8215d787753c07a94e3be7883593d8a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleFileNameA
CreateProcessA
EnterCriticalSection
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
ExitProcess
CreateFileA
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStrings
GetExitCodeProcess
GetFileAttributesA
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetCommandLineA
GetCurrentDirectoryA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetTimeZoneInformation
GetVersion
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile
GetLogicalDrives

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo

Sections

CODE
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/BRCC32.EXE
.exe windows:1 windows x86 arch:x86

a4cf53c525ead89ad2998c6d96ef8e0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCurrentThreadId
GetStdHandle
GetThreadPriority
DeleteFileA
EnterCriticalSection
ExitProcess
DeleteCriticalSection
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FreeLibrary
GetCommandLineA
GetCurrentDirectoryA
GetSystemInfo
CloseHandle
GetVersion
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeThread
GetFileAttributesA
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetCurrentThread
CreateFileA
FileTimeToDosDateTime
CreateDirectoryA
GetDriveTypeA
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
RaiseException
ReadFile
RemoveDirectoryA
ResumeThread
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetThreadPriority
SuspendThread
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile
_lclose
_lopen
lstrcmpiA
lstrcpyA
lstrlenA
GetStartupInfoA

user32

CharUpperA
CharToOemA
CharLowerA
OemToCharA
MessageBoxA
LoadStringA
EnumThreadWindows
CharUpperBuffA

Exports

Exports

@EVENTMGRINIT$QUL
@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo

Sections

CODE
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/BUILTINS.MAK
TASM5Plus/BIN/DPMI16BI.OVL
TASM5Plus/BIN/DPMI32VM.OVL
TASM5Plus/BIN/GREP.COM
TASM5Plus/BIN/GROUPS.EXE
TASM5Plus/BIN/H2ASH32.EXE
.exe windows:1 windows x86 arch:x86

cb7d9d068f971c1d2eb4b9fc5b9634e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
DeleteFileA
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
GetCommandLineA
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetSystemInfo
GetVersion
GetVolumeInformationA
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
VirtualAlloc
VirtualFree
WriteFile
CloseHandle

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 202KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 42KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/HELP.ICO
TASM5Plus/BIN/IMPDEF.EXE
.exe windows:1 windows x86 arch:x86

93446409a7fe60026d7c7e6ec6a63644

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
GetStartupInfoA
ExitProcess
GetCommandLineA
CloseHandle
GetFileAttributesA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetEnvironmentStrings
DeleteFileA
GetStdHandle
GetVersion
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
VirtualAlloc
VirtualFree
WriteFile
GetProcAddress

user32

MessageBoxA
GetDesktopWindow

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/IMPLIB.EXE
.exe windows:1 windows x86 arch:x86

a5cbf5b27ef5840d956a0111f54e449f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CloseHandle
GetModuleFileNameA
CreateFileA
FileTimeToDosDateTime
FileTimeToLocalFileTime
DeleteFileA
ExitProcess
FindNextFileA
GetCommandLineA
GetEnvironmentStrings
GetFileAttributesA
GetFileSize
GetFileType
FindClose
FindFirstFileA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetVersion
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
VirtualAlloc
VirtualFree
WriteFile
GetLastError

user32

GetDesktopWindow
MessageBoxA

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/MAKE.EXE
.exe windows:1 windows x86 arch:x86

24a90a7e3a29b0e2f9e420e896f95f34

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
GetCommandLineA
DeleteFileA
DuplicateHandle
CloseHandle
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
CreateProcessA
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStrings
GetExitCodeProcess
GetFileAttributesA
GetFileSize
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLogicalDrives
EnterCriticalSection
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetTimeZoneInformation
GetVersion
GetVolumeInformationA
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetStdHandle
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile
GetModuleFileNameA

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo

Sections

CODE
Size: 61KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/MAKER.EXE
TASM5Plus/BIN/MAKESWAP.EXE
TASM5Plus/BIN/OBJXREF.EXE
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.icode
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/RLINK.EXE
TASM5Plus/BIN/RLINK32.DLL
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

BindToExe
GetRLinkVersion
GetResObjSize
RemoveFromExe
WriteResObj

Sections

CODE
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/RTM.EXE
TASM5Plus/BIN/RW32CORE.DLL
.dll windows:1 windows x86 arch:x86

fe6b46665409a44383ff0da5540ef98b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetFileAttributesA
LeaveCriticalSection
FindResourceA
GlobalMemoryStatus
GetFileType
FileTimeToSystemTime
FindClose
GetFileTime
EnterCriticalSection
MultiByteToWideChar
LoadLibraryA
GetCommandLineA
GetCurrentDirectoryA
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentVariableA
InitializeCriticalSection
LockResource
GlobalReAlloc
RaiseException
MoveFileA
LoadResource
CreateFileA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalAlloc
GlobalFlags
GlobalFree
FindFirstFileA
GetFullPathNameA
ExitProcess
GlobalUnlock
GlobalSize
GetFileSize
FreeLibrary
CloseHandle
FileTimeToLocalFileTime
GetLastError
FreeResource
DeleteFileA
GetLocalTime
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SizeofResource
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteFile
_lread
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA
GlobalLock

user32

MessageBoxA
LoadStringA
IsCharAlphaNumericA
IsCharAlphaA
EnumThreadWindows
CreateIcon
CreateCursor
CharUpperA
CharToOemA
CharNextA
CharLowerA

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
ACCELDECOMPHOOK
ACCELKEYFROMBIN
ACCELVERSIONHOOK
BITMAP3COMPOUNDHOOK
BITMAP3LOADHOOK
BITMAP3SAVEHOOK
BITMAP3VERSIONHOOK
BLOCKDECOMPHOOK
CURSOR3COMPOUNDHOOK
CURSOR3CONVERTHOOK
CURSOR3LOADHANDLER
CURSOR3SAVEHOOK
CURSOR3VERSIONHOOK
DIALOG3COMPOUNDHOOK
DIALOGDECOMPHOOK
DIALOGVERSION3HOOK
DLGINITSRCHOOK
DllCanUnloadNow
DllGetClassObject
FONT3VERSIONHOOK
FONTSPECDECOMPHOOK
GENACCELKEY
GENBUTTONSTYLE
GENCOMBOSTYLE
GENCONTROLSTYLE
GENDIALOGSTYLE
GENEDITSTYLE
GENEXSTYLE
GENFFFLAGS
GENFFMASK
GENFFOS
GENFFSUBTYPE
GENFFTYPE
GENLISTBOXSTYLE
GENMENU3COMMAND
GENMENU3OPTSFIELD
GENMENU3TEXTFIELD
GENMENU4COMMAND
GENMENU4STATEFIELD
GENMENU4TYPEFIELD
GENSCROLLBARSTYLE
GENSTATICSTYLE
GENVERSIONRES
GenResVHandle
GenResVHandleNOTNT
ICON3COMPOUNDHOOK
ICON3CONVERTHOOK
ICON3LOADHANDLER
ICON3SAVEHOOK
ICON3VERSIONHOOK
IDELIBMAIN
MENU3COMPOUNDHOOK
MENU3DECOMPHOOK
MENU3LOADHOOK
MENU3OPTSHOOK
MENU3VERSIONHOOK
MENU4HELPIDHOOK
MENU4VERSIONHOOK
MakeAControlName
RC_CONTROLSTYLESRC
RC_CONTROLSTYLESRCA
RC_GENWINSTYLE
VERSIONDECOMPHOOK
__DebuggerHookData

Sections

CODE
Size: 387KB - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 33KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 204KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/RWRES.DLL
.dll windows:1 windows x86 arch:x86

757d2b12e736f89a7ffb47b2a12c249a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

cw3220mt

_flushall
_abort
@_CatchCleanup$qv
@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__ErrorMessage
__ExceptionHandler
___debuggerDisableTerminateCallback
__startup
__startupd

kernel32

GetVersion
GetProcAddress
GetModuleHandleA

Exports

Exports

__DebuggerHookData

Sections

CODE
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 166KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/TASM32.EXE
.exe windows:1 windows x86 arch:x86

4d4975372a0a6bc337783ec500f55f2f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
DeleteFileA
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
GetCommandLineA
GetFileSize
GetFileTime
GetLastError
GetLocalTime
GetModuleFileNameA
GetStdHandle
ReadFile
SetFilePointer
VirtualAlloc
VirtualFree
WriteFile
CloseHandle

Sections

CODE
Size: 121KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 34KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/TDMEM.EXE
TASM5Plus/BIN/TDSTRP32.EXE
.exe windows:1 windows x86 arch:x86

5280eeeb1adaf2eca079d91eba6a6c44

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleFileNameA
DeleteFileA
DosDateTimeToFileTime
CloseHandle
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
ExitProcess
CreateFileA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentVariableA
GetFileAttributesA
GetFileTime
GetFileType
FindNextFileA
GetCommandLineA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetVersion
LocalFileTimeToFileTime
MoveFileA
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEnvironmentVariableA
SetFilePointer
SetFileTime
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WriteFile
GetLastError

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/TDUMP.EXE
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 47KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/THUNK.EXE
.exe windows:1 windows x86 arch:x86

2523e15861a41d775e6f4375f7c1e398

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetCommandLineA
GetVersion
GetLastError
DeleteFileA
ExitProcess
GetLocalTime
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
GetStartupInfoA
VirtualFree
GetEnvironmentStrings
WriteFile
CloseHandle
SetFilePointer
ReadFile
GetFileAttributesA
GetTimeZoneInformation
WideCharToMultiByte
GetProcAddress
GetModuleHandleA
MultiByteToWideChar
FlushFileBuffers
SetStdHandle
CreateFileA
SetEndOfFile
SetEnvironmentVariableA

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 105B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 894B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/TLIB.EXE
.exe windows:1 windows x86 arch:x86

d460bad971e591cfada458e24da3af83

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
GetStartupInfoA
ExitProcess
GetCommandLineA
GetCurrentProcessId
CloseHandle
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetCurrentThreadId
DeleteFileA
GetStdHandle
GetVersion
MoveFileA
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WriteFile
GetProcAddress

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/TLINK32.CFG
TASM5Plus/BIN/TLINK32.EXE
.exe windows:1 windows x86 arch:x86

ac20a75c815ef2f23df2514e59356ce0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetLocalTime
DeleteFileA
ExitProcess
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindNextFileA
CreateFileA
GetCommandLineA
GetCurrentDirectoryA
GetCurrentThreadId
GetEnvironmentStrings
GetEnvironmentVariableA
GetFileAttributesA
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
FreeLibrary
FileTimeToDosDateTime
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileStringA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetTimeZoneInformation
GetVersion
LoadLibraryA
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WriteFile
WritePrivateProfileStringA
GetLastError

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 163KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 25KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/TOUCH.EXE
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/BIN/WINDPMI.386
TASM5Plus/BIN/WINSTUB.EXE
TASM5Plus/BIN/WORKOPT.DOS
TASM5Plus/BIN/tasm32_v5.3.txt
TASM5Plus/BIN/tlink32.txt
TASM5Plus/DOC/MAKE.TXT
TASM5Plus/DOC/Opcodes.hlp
TASM5Plus/DOC/TASM.HLP
TASM5Plus/DOC/TDUMP.TXT
TASM5Plus/DOC/TD_ASM.TXT
TASM5Plus/DOC/TD_HDWBP.TXT
TASM5Plus/DOC/TD_RDME.TXT
TASM5Plus/DOC/TD_UTILS.TXT
TASM5Plus/DOC/TLIB.TXT
TASM5Plus/DOC/TLINK.TXT
TASM5Plus/DOC/TSM_HELP.TXT
.vbs
TASM5Plus/DOC/TSM_UTIL.TXT
TASM5Plus/EXAMPLE/contemplate/MAKE_IT.bat
TASM5Plus/EXAMPLE/contemplate/keygen.EXE
.exe windows:1 windows x86 arch:x86

afe0e049a33bdc12916a1ac49687b2ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

msvcrt

printf
_getch

kernel32

GetLocalTime
ExitProcess

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/EXAMPLE/contemplate/keygen.asm
TASM5Plus/EXAMPLE/contemplate/keygen.def
TASM5Plus/EXAMPLE/contemplate/logo.asm
TASM5Plus/EXAMPLE/mintemplate/MAKE_IT.bat
TASM5Plus/EXAMPLE/mintemplate/keygen.EXE
.exe windows:1 windows x86 arch:x86

0f0218a4232434f366270b74d2838f6c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

wsprintfA
DialogBoxParamA
EndDialog
GetDlgItem
SendMessageA
SetFocus
SetWindowTextA

kernel32

GetModuleHandleA
ExitProcess

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/EXAMPLE/mintemplate/keygen.asm
TASM5Plus/EXAMPLE/mintemplate/keygen.def
TASM5Plus/EXAMPLE/mintemplate/keygen.res
TASM5Plus/INCLUDE/W32.INC
TASM5Plus/LIB/imp32i.lib
TASM5Plus/LIB/readme.txt
TASM5Plus/LIB/wsock32.lib
TASM5Plus/LIBGEN/IMPDEF.EXE
.exe windows:1 windows x86 arch:x86

93446409a7fe60026d7c7e6ec6a63644

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
GetStartupInfoA
ExitProcess
GetCommandLineA
CloseHandle
GetFileAttributesA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetEnvironmentStrings
DeleteFileA
GetStdHandle
GetVersion
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
VirtualAlloc
VirtualFree
WriteFile
GetProcAddress

user32

MessageBoxA
GetDesktopWindow

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/LIBGEN/IMPLIB.EXE
.exe windows:1 windows x86 arch:x86

a5cbf5b27ef5840d956a0111f54e449f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CloseHandle
GetModuleFileNameA
CreateFileA
FileTimeToDosDateTime
FileTimeToLocalFileTime
DeleteFileA
ExitProcess
FindNextFileA
GetCommandLineA
GetEnvironmentStrings
GetFileAttributesA
GetFileSize
GetFileType
FindClose
FindFirstFileA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetVersion
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
VirtualAlloc
VirtualFree
WriteFile
GetLastError

user32

GetDesktopWindow
MessageBoxA

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/LIBGEN/howto.txt
TASM5Plus/LIBGEN/makelib.bat
TASM5Plus/ReadMe.txt
TASM5Plus/file_id.diz
TASM5Plus/l2inc12.zip
.zip
L2INC.TXT
L2INCA.EXE
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 11KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.link
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEPACK!!
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
L2INCU.EXE
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 11KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.link
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEPACK!!
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TASM5Plus/tasm32_v5.3_exe.rar
.rar
TASM32.EXE
.exe windows:1 windows x86 arch:x86

a72f701c9ebaab09b86ea6257501eaa2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CloseHandle
CreateFileA
DeleteFileA
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
GetACP
GetCommandLineA
GetFileSize
GetFileTime
GetLastError
GetLocalTime
GetModuleFileNameA
GetStdHandle
ReadFile
SetFilePointer
VirtualAlloc
VirtualFree
WriteFile
IsDBCSLeadByteEx

Sections

CODE
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 37KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TASM5Plus/tasmpatch_for_tasm32v5.0.zip
.zip
PATCH.EXE
README.TXT
TASM32.RTP
TD32.RTP

Sharing

General

Malware Config

Signatures

Files

8215d787753c07a94e3be7883593d8a4

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

CODE Size: 31KB - Virtual size: 32KB

DATA Size: 7KB - Virtual size: 12KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

8215d787753c07a94e3be7883593d8a4

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

CODE Size: 31KB - Virtual size: 32KB

DATA Size: 7KB - Virtual size: 12KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

8215d787753c07a94e3be7883593d8a4

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

CODE Size: 30KB - Virtual size: 32KB

DATA Size: 6KB - Virtual size: 12KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

a4cf53c525ead89ad2998c6d96ef8e0d

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

CODE Size: 67KB - Virtual size: 68KB

DATA Size: 13KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 8KB

.rsrc Size: 14KB - Virtual size: 16KB

cb7d9d068f971c1d2eb4b9fc5b9634e1

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

CODE Size: 202KB - Virtual size: 204KB

DATA Size: 42KB - Virtual size: 92KB

.idata Size: 1024B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 18KB - Virtual size: 20KB

93446409a7fe60026d7c7e6ec6a63644

Headers

File Characteristics

Imports

kernel32

CODE
Size: 31KB - Virtual size: 32KB

DATA
Size: 7KB - Virtual size: 12KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB

CODE
Size: 31KB - Virtual size: 32KB

DATA
Size: 7KB - Virtual size: 12KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB

CODE
Size: 30KB - Virtual size: 32KB

DATA
Size: 6KB - Virtual size: 12KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB

CODE
Size: 67KB - Virtual size: 68KB

DATA
Size: 13KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 14KB - Virtual size: 16KB

CODE
Size: 202KB - Virtual size: 204KB

DATA
Size: 42KB - Virtual size: 92KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 18KB - Virtual size: 20KB

CODE
Size: 51KB - Virtual size: 52KB

DATA
Size: 11KB - Virtual size: 16KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 4KB

CODE
Size: 62KB - Virtual size: 64KB

DATA
Size: 13KB - Virtual size: 20KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 4KB

CODE
Size: 61KB - Virtual size: 64KB

DATA
Size: 11KB - Virtual size: 60KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB

CODE
Size: 50KB - Virtual size: 52KB

.icode
Size: 512B - Virtual size: 4KB

DATA
Size: 24KB - Virtual size: 28KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 4KB

CODE
Size: 34KB - Virtual size: 36KB

DATA
Size: 6KB - Virtual size: 12KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB

CODE
Size: 387KB - Virtual size: 388KB