2007d7f11dd5d61eb00c18c98495984bc1feca482dc87c5387a9732de519f445

Sharing

Copy URL Twitter E-mail

General

Target

2007d7f11dd5d61eb00c18c98495984bc1feca482dc87c5387a9732de519f445
Size

13.9MB
MD5

8e48c6858841416cebb4fdf79ea42097
SHA1

f0cfd10ea38b4312bb87f213d59a5c17c8ad4df1
SHA256

2007d7f11dd5d61eb00c18c98495984bc1feca482dc87c5387a9732de519f445
SHA512

08f9865208a497e34b27a94f8312294e55d34251016b7e54a26d77b2f9d4db3441fa44ecb4be77c0d264583a99676d848946b171624e48c74379fa16e86cd504
SSDEEP

393216:lcDjlE3VMZ1KRS+iXpyePMo6hnoyh2tsJ7Gm5:lojS3VG1oePtonoyhJ7Gm5

Score

N/A

Malware Config

Signatures

Files

2007d7f11dd5d61eb00c18c98495984bc1feca482dc87c5387a9732de519f445
.dll regsvr32 windows x86

c7b258ca5e967771bbb3008adb43edc8

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

01/05/2012, 00:00

Not After

31/12/2012, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

4d:4a:a1:fd:f2:6f:9f:33:53:d6:26:14:ed:a6:62:37
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

24/09/2012, 00:00

Not After

01/10/2015, 23:59

Subject

CN=Adobe Systems Incorporated,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Universal Client,O=Adobe Systems Incorporated,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:0e:45:52:ea:dc:03:90:c7:3a:79:79:98:84:78:d6:d1:fb:2e:eb
Signer

Actual PE Digest

04:0e:45:52:ea:dc:03:90:c7:3a:79:79:98:84:78:d6:d1:fb:2e:eb

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Adobe Systems Incorporated,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Universal Client,O=Adobe Systems Incorporated,ST=California,C=US

29/10/2012, 04:24
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoW

winmm

mixerGetID
waveInGetDevCapsA
waveOutGetDevCapsA
waveOutMessage
waveInMessage
timeSetEvent
timeKillEvent
timeEndPeriod
timeBeginPeriod
timeGetDevCaps
mixerClose
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutGetDevCapsW
waveInGetDevCapsW
waveOutGetNumDevs
waveInGetNumDevs
waveOutReset
waveOutClose
waveInStart
waveInAddBuffer
waveInStop
waveOutOpen
waveInClose
waveInUnprepareHeader
waveInReset
waveInPrepareHeader
waveInOpen
mixerSetControlDetails
waveOutGetPosition
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerGetControlDetailsA
waveOutRestart
waveOutPause
waveInGetPosition
waveOutWrite
timeGetTime

wininet

HttpQueryInfoA
InternetOpenA
InternetConnectA
HttpOpenRequestA
InternetSetOptionA
HttpSendRequestA
InternetReadFile
InternetCloseHandle

crypt32

CryptDecodeObjectEx
CertCompareCertificate
CertCloseStore
CertFreeCertificateContext
CertFindCertificateInStore
CertVerifySubjectCertificateContext
CertCreateCertificateContext
CryptGetMessageCertificates
CryptVerifyMessageSignature
CertAddStoreToCollection
CertOpenStore
CertVerifyRevocation
CertVerifyTimeValidity
CertEnumCertificatesInStore
CertAddCertificateContextToStore
CertCompareCertificateName
CryptFindOIDInfo
CertRDNValueToStrW
CertFindRDNAttr
CertNameToStrW

rpcrt4

RpcStringFreeA
UuidToStringA

oleaut32

VariantInit
SysStringLen
SysAllocString
VariantClear
SysFreeString
UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi

urlmon

CopyStgMedium

dsound

ord8
ord1

kernel32

DeleteFileA
WriteFile
CreateFileA
GetTempFileNameA
GetCurrentDirectoryA
CreateDirectoryA
GetEnvironmentVariableA
GlobalFree
GetProcessTimes
MapViewOfFile
UnmapViewOfFile
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
GetSystemInfo
GetUserDefaultUILanguage
MoveFileExW
VirtualQuery
GetUserDefaultLangID
GetVersionExA
SetFilePointer
VerifyVersionInfoW
VerSetConditionMask
CreateThread
ReadFile
GetFileSize
FindResourceExA
FindResourceExW
SetUnhandledExceptionFilter
GetTempPathW
GetTimeZoneInformation
ReleaseSemaphore
CreateSemaphoreW
GetTempFileNameW
GetSystemDirectoryW
ExpandEnvironmentStringsA
GetTempPathA
GetFileAttributesA
CreateMutexA
SetFilePointerEx
GetFileAttributesExW
GetFileInformationByHandle
GetVolumeInformationW
GetCurrentDirectoryW
SetCurrentDirectoryW
ExpandEnvironmentStringsW
OutputDebugStringA
TlsSetValue
ReleaseMutex
CreateFileMappingA
TerminateThread
SetThreadPriority
GetSystemDirectoryA
CompareFileTime
LocalFree
QueryPerformanceCounter
GetCurrentProcessId
QueueUserAPC
OpenThread
SleepEx
SwitchToThread
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapDestroy
HeapCreate
IsValidCodePage
GetOEMCP
GetStartupInfoA
SetHandleCount
SetConsoleCtrlHandler
LCMapStringA
GetFileType
SetStdHandle
GetConsoleMode
GetConsoleCP
HeapReAlloc
GetCommandLineA
RtlUnwind
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetProcessAffinityMask
HeapSize
HeapFree
GetProcessHeap
HeapAlloc
EnumSystemLocalesW
IsValidLocale
GetUserDefaultLCID
GetTimeFormatW
GetDateFormatW
CompareStringW
GetCurrencyFormatW
GetNumberFormatW
VirtualProtect
CreateSemaphoreA
DeviceIoControl
GetVersion
CancelWaitableTimer
SetWaitableTimer
CreateWaitableTimerA
CreateEventA
FlushFileBuffers
SetEndOfFile
UnregisterWaitEx
RegisterWaitForSingleObject
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
VirtualAlloc
VirtualFree
GetNativeSystemInfo
IsDebuggerPresent
TlsAlloc
TlsFree
GetSystemTimeAsFileTime
OpenProcess
GetStdHandle
CreateToolhelp32Snapshot
Thread32First
GetThreadTimes
Thread32Next
InitializeCriticalSectionAndSpinCount
FormatMessageA
CreateProcessW
CreateFileMappingW
CreateMutexW
CreateNamedPipeW
CancelIo
ConnectNamedPipe
InterlockedExchangeAdd
DuplicateHandle
ExitProcess
TerminateProcess
GetModuleHandleA
CreateProcessA
WideCharToMultiByte
CreateDirectoryW
GetFileAttributesW
CreateFileW
GetFileSizeEx
GetSystemTime
SystemTimeToFileTime
FindFirstFileW
RemoveDirectoryW
DeleteFileW
FindNextFileW
FindClose
GetModuleFileNameA
FindResourceA
SizeofResource
LoadResource
LockResource
OpenFile
_lwrite
_lclose
FreeResource
GetModuleFileNameW
lstrlenW
SetLastError
GetCurrentProcess
FlushInstructionCache
RaiseException
LCMapStringW
GetTickCount
GetCurrentThreadId
GetLocaleInfoW
TryEnterCriticalSection
LoadLibraryW
LoadLibraryA
GetProcAddress
WaitForMultipleObjects
GetLastError
FreeLibrary
WaitForSingleObject
ResetEvent
CloseHandle
GetVersionExW
SetEvent
InterlockedDecrement
InterlockedIncrement
CreateEventW
GetModuleHandleW
GetCurrentThread
SetThreadAffinityMask
IsDBCSLeadByte
GetACP
GetCPInfo
MultiByteToWideChar
ExitThread
InterlockedExchange
InterlockedCompareExchange
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
TlsGetValue
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
EnumSystemLocalesA
CompareStringA
SetEnvironmentVariableA
LocalAlloc
lstrcpynW
GlobalMemoryStatus
FlushConsoleInputBuffer
lstrlenA
ReadConsoleInputA
SetConsoleMode
QueryPerformanceFrequency

user32

TrackPopupMenu
CreatePopupMenu
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
RemoveMenu
RegisterClipboardFormatW
CloseClipboard
wsprintfW
GetProcessWindowStation
GetUserObjectInformationW
MonitorFromRect
EnumDisplayMonitors
RegisterWindowMessageA
PostMessageA
UnregisterClassW
CallMsgFilterW
GetClipboardData
WaitMessage
MsgWaitForMultipleObjects
GetClassNameA
CallNextHookEx
GetUpdateRect
CreateCaret
RemovePropW
SetWindowsHookExW
UnhookWindowsHookEx
SetActiveWindow
SetParent
UpdateWindow
GetAncestor
OpenClipboard
ShowCaret
IsClipboardFormatAvailable
SetCaretPos
MoveWindow
GetActiveWindow
FlashWindowEx
GetSystemMenu
IsZoomed
GetWindowPlacement
SetWindowPlacement
GetDoubleClickTime
DestroyWindow
ShowWindow
CreateWindowExW
OffsetRect
MonitorFromWindow
GetDesktopWindow
GetForegroundWindow
SetRect
EnumDisplayDevicesA
UpdateLayeredWindow
GetWindowRect
SetClipboardData
EmptyClipboard
EnumDisplayDevicesW
DestroyCaret
MsgWaitForMultipleObjectsEx
GetWindowLongW
GetKeyboardLayout
SendInput
ClientToScreen
DefWindowProcW
SetWindowLongW
GetClassInfoExW
LoadCursorW
PostQuitMessage
CallWindowProcW
RegisterClassExW
CopyRect
GetWindowInfo
SetFocus
UnregisterClassA
GetSystemMetrics
EndPaint
GetClientRect
BeginPaint
GetDC
FillRect
CheckMenuItem
EnableMenuItem
MessageBoxW
GetWindow
ShowWindowAsync
IsIconic
EnumDisplaySettingsW
MapWindowPoints
GetWindowTextW
GetWindowTextLengthW
DeleteMenu
ValidateRect
DestroyMenu
DrawMenuBar
CreateMenu
SetMenuInfo
MapVirtualKeyW
PostThreadMessageW
GetMessageW
TranslateMessage
DispatchMessageW
WaitForInputIdle
MessageBoxA
DialogBoxParamW
SetWindowTextA
RedrawWindow
DialogBoxIndirectParamW
EndDialog
SetWindowTextW
SendMessageTimeoutW
CreateIconIndirect
GetMonitorInfoW
SetRectEmpty
GetCursor
DestroyIcon
LoadImageW
GetPropW
SetPropW
PtInRect
InflateRect
GetClipboardFormatNameA
RegisterClipboardFormatA
SetWindowPos
RegisterClassA
CreateWindowExA
SetCapture
ReleaseCapture
SetCursorPos
GetSubMenu
GetCapture
SystemParametersInfoW
ScreenToClient
GetMessageTime
GetCursorPos
WindowFromPoint
LoadIconW
RegisterClassW
PeekMessageW
GetQueueStatus
KillTimer
SetTimer
IsWindowVisible
PostMessageW
GetTopWindow
GetFocus
GetParent
GetWindowThreadProcessId
AttachThreadInput
GetDlgItem
IsWindow
EnableWindow
SendMessageW
InvalidateRect
GetKeyState
ReleaseDC
SetCursor
LoadStringW

gdi32

GetTextMetricsW
CreateFontIndirectW
CreateBitmap
SetPixel
CreateDCA
GetICMProfileA
SetBkMode
RealizePalette
RectVisible
LPtoDP
StretchDIBits
ExtTextOutA
SetTextColor
CreateFontIndirectA
GetStockObject
Rectangle
IntersectClipRect
GetSystemPaletteEntries
GetClipBox
CreateSolidBrush
EnumFontFamiliesW
GetStretchBltMode
SetStretchBltMode
StretchBlt
SetBkColor
ExtTextOutW
SelectObject
BitBlt
CreateDIBSection
GetObjectW
GdiFlush
DeleteDC
CreateCompatibleDC
RestoreDC
SelectClipPath
PolyBezierTo
LineTo
MoveToEx
EndPath
BeginPath
SaveDC
SetPolyFillMode
EndPage
StartPage
DPtoLP
GetTextExtentPoint32A
GetTextCharacterExtra
SetWorldTransform
SetGraphicsMode
GetWorldTransform
CreatePalette
StartDocW
EndDoc
StrokePath
ExtCreatePen
FillPath
GetClipRgn
CreateRectRgn
GetDeviceCaps
SetTextAlign
GetTextAlign
GetBkMode
GetTextColor
SelectClipRgn
GetBkColor
SetTextCharacterExtra
CreateDCW
GetFontData
EnumFontFamiliesExW
CreatePen
GetTextExtentPoint32W
GetCurrentObject
SelectPalette
DeleteObject
EnumFontFamiliesA

comdlg32

CommDlgExtendedError
PrintDlgW
GetSaveFileNameW

advapi32

CryptGenRandom
CryptReleaseContext
RegDeleteValueA
RegisterEventSourceA
ReportEventA
DeregisterEventSource
IsValidSid
CryptImportKey
CryptGenKey
CryptDestroyKey
CryptExportKey
CryptEncrypt
RegOpenKeyA
OpenProcessToken
GetTokenInformation
GetSidSubAuthorityCount
GetSidSubAuthority
RegQueryValueExW
RegCreateKeyExA
RegOpenKeyExW
RegCreateKeyA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
CryptAcquireContextW

shell32

SHGetFolderPathW
SHGetFolderPathA
SHGetPathFromIDListW
SHBrowseForFolderW
SHFileOperationW
SHGetDiskFreeSpaceExW
ShellExecuteW
ord165
SHGetSettings
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
SHAppBarMessage

ole32

OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleGetClipboard
OleInitialize
OleUninitialize
CoInitialize
CoUninitialize
ReleaseStgMedium
CreateBindCtx
MkParseDisplayName
CoTaskMemAlloc
CoCreateInstance
PropVariantClear
CoSetProxyBlanket
CoFreeUnusedLibraries
CoInitializeEx
CoTaskMemFree

ws2_32

setsockopt
WSAStartup
WSASocketW
socket
WSAIoctl
WSAGetLastError
WSAAsyncSelect
closesocket
WSACleanup
inet_addr
ntohl
select
gethostname
htons
ioctlsocket
WSAEnumNetworkEvents
WSAEventSelect
WSACreateEvent
WSAAddressToStringA
bind
sendto
recvfrom
WSASetLastError
WSACloseEvent
gethostbyname
inet_ntoa
htonl
getservbyname
gethostbyaddr
send
ntohs
connect
getsockname
getservbyport
recv

shlwapi

AssocQueryStringW
UrlCanonicalizeW
PathRemoveFileSpecA

mscms

CloseColorProfile
OpenColorProfileW
TranslateBitmapBits
DeleteColorTransform
CreateColorTransformW

winspool.drv

GetPrinterW
ClosePrinter
OpenPrinterW

Exports

Exports

AdobeCPGetAPI
BrokerMainW
DllRegisterServer
DllUnregisterServer
FlashPlayer_11_5_502_109_FlashPlayer
Flash_DisableLocalSecurity
Flash_EnforceLocalSecurity
Java_ShockwaveFlash_CurrentFrame_stub
Java_ShockwaveFlash_FlashVersion_stub
Java_ShockwaveFlash_FrameLoaded_stub
Java_ShockwaveFlash_GetVariable_stub
Java_ShockwaveFlash_GotoFrame_stub
Java_ShockwaveFlash_IsPlaying_stub
Java_ShockwaveFlash_LoadMovie_stub
Java_ShockwaveFlash_Pan_stub
Java_ShockwaveFlash_PercentLoaded_stub
Java_ShockwaveFlash_Play_stub
Java_ShockwaveFlash_SetVariable_stub
Java_ShockwaveFlash_SetZoomRect_stub
Java_ShockwaveFlash_StopPlay_stub
Java_ShockwaveFlash_TCallFrame_stub
Java_ShockwaveFlash_TCallLabel_stub
Java_ShockwaveFlash_TCurrentFrame_stub
Java_ShockwaveFlash_TCurrentLabel_stub
Java_ShockwaveFlash_TGetProperty_stub
Java_ShockwaveFlash_TGotoFrame_stub
Java_ShockwaveFlash_TGotoLabel_stub
Java_ShockwaveFlash_TPlay_stub
Java_ShockwaveFlash_TSetProperty_stub
Java_ShockwaveFlash_TStopPlay_stub
Java_ShockwaveFlash_TotalFrames_stub
Java_ShockwaveFlash_Zoom_stub
NP_Acrobat_GetEntryPoints
NP_Acrobat_Initialize
NP_GetEntryPoints
NP_Initialize
NP_SetBrokerClient
NP_SetNPAPIHostProxy
NP_Shutdown
native_ShockwaveFlash_CurrentFrame
native_ShockwaveFlash_FlashVersion
native_ShockwaveFlash_FrameLoaded
native_ShockwaveFlash_GetVariable
native_ShockwaveFlash_GotoFrame
native_ShockwaveFlash_IsPlaying
native_ShockwaveFlash_LoadMovie
native_ShockwaveFlash_Pan
native_ShockwaveFlash_PercentLoaded
native_ShockwaveFlash_Play
native_ShockwaveFlash_SetVariable
native_ShockwaveFlash_SetZoomRect
native_ShockwaveFlash_StopPlay
native_ShockwaveFlash_TCallFrame
native_ShockwaveFlash_TCallLabel
native_ShockwaveFlash_TCurrentFrame
native_ShockwaveFlash_TCurrentLabel
native_ShockwaveFlash_TGetProperty
native_ShockwaveFlash_TGotoFrame
native_ShockwaveFlash_TGotoLabel
native_ShockwaveFlash_TPlay
native_ShockwaveFlash_TSetProperty
native_ShockwaveFlash_TStopPlay
native_ShockwaveFlash_TotalFrames
native_ShockwaveFlash_Zoom
register_ShockwaveFlash
unregister_ShockwaveFlash
unuse_ShockwaveFlash
unuse_netscape_plugin_Plugin
use_ShockwaveFlash
use_netscape_plugin_Plugin

Sections

.text
Size: 10.3MB - Virtual size: 10.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 286KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 531KB - Virtual size: 530KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7b258ca5e967771bbb3008adb43edc8

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:edCertificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

4d:4a:a1:fd:f2:6f:9f:33:53:d6:26:14:ed:a6:62:37Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

04:0e:45:52:ea:dc:03:90:c7:3a:79:79:98:84:78:d6:d1:fb:2e:ebSigner

Signature Validations

Verification

29/10/2012, 04:24 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

version

winmm

wininet

crypt32

rpcrt4

oleaut32

urlmon

dsound

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

ws2_32

shlwapi

mscms

winspool.drv

Exports

Exports

Sections

.text Size: 10.3MB - Virtual size: 10.3MB

.rodata Size: 4KB - Virtual size: 4KB

.rdata Size: 2.7MB - Virtual size: 2.7MB

.data Size: 286KB - Virtual size: 1.2MB

.rodata Size: 1KB - Virtual size: 1KB

.rsrc Size: 114KB - Virtual size: 114KB

.reloc Size: 531KB - Virtual size: 530KB

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

4d:4a:a1:fd:f2:6f:9f:33:53:d6:26:14:ed:a6:62:37
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

04:0e:45:52:ea:dc:03:90:c7:3a:79:79:98:84:78:d6:d1:fb:2e:eb
Signer

29/10/2012, 04:24
Valid: false

.text
Size: 10.3MB - Virtual size: 10.3MB

.rodata
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2.7MB - Virtual size: 2.7MB

.data
Size: 286KB - Virtual size: 1.2MB

.rodata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 114KB - Virtual size: 114KB

.reloc
Size: 531KB - Virtual size: 530KB