74f93cd9a63fab530a331b6b190a35a8e9c4305668b48d3d23a9e5de42ab8271

Sharing

Copy URL Twitter E-mail

General

Target

74f93cd9a63fab530a331b6b190a35a8e9c4305668b48d3d23a9e5de42ab8271
Size

19.5MB
MD5

f43093bf3d2eb49cfe548a98f17d01f0
SHA1

e1089192123a7da7c88c5f1c4ee2d133f6f3c531
SHA256

74f93cd9a63fab530a331b6b190a35a8e9c4305668b48d3d23a9e5de42ab8271
SHA512

9721776d163a922a67489cff523dce199e35f0e365e6b29c4dbc6e1911ba14d010875ecd1c75a7e29449830ff96cb1561b89705b2548c3c722b3f808c3aec753
SSDEEP

196608:qlZURPDOEy6vPAVjwCn/qIYZJLkEsR1bDHcihlNZxYRbLKuJJC+Q4hrSfDN/LqdQ:kZURPD9XoCCwJLklNHcOYR3dW1hYE

Score

N/A

Malware Config

Signatures

Files

74f93cd9a63fab530a331b6b190a35a8e9c4305668b48d3d23a9e5de42ab8271
.dll windows x86

f40c20fa3ca9e83aca309938fc44b1e9

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

01/05/2012, 00:00

Not After

31/12/2012, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

4d:4a:a1:fd:f2:6f:9f:33:53:d6:26:14:ed:a6:62:37
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

24/09/2012, 00:00

Not After

01/10/2015, 23:59

Subject

CN=Adobe Systems Incorporated,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Universal Client,O=Adobe Systems Incorporated,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

95:10:9b:56:11:13:65:19:0f:58:7e:1f:c5:7a:bf:3d:fb:1f:5a:94
Signer

Actual PE Digest

95:10:9b:56:11:13:65:19:0f:58:7e:1f:c5:7a:bf:3d:fb:1f:5a:94

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Adobe Systems Incorporated,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Universal Client,O=Adobe Systems Incorporated,ST=California,C=US

29/10/2012, 04:24
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CompareStringW
CompareStringA
GetTimeZoneInformation
HeapSize
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
RaiseException
InitializeCriticalSectionAndSpinCount
FreeLibrary
HeapReAlloc
VirtualAlloc
GetLocaleInfoA
GetLocaleInfoW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryA
IsDBCSLeadByte
GlobalUnlock
GlobalLock
SystemTimeToFileTime
GetLocalTime
GlobalAlloc
GlobalSize
GetDriveTypeW
GetVolumeInformationW
GetLogicalDriveStringsW
CloseHandle
CreateEventW
ExitThread
TerminateThread
SetEvent
ResetEvent
WaitForSingleObject
SetThreadPriority
CreateThread
GetSystemTime
GetSystemDirectoryA
GetVersionExW
QueryPerformanceFrequency
QueueUserAPC
OpenThread
SetCurrentDirectoryW
GetCurrentDirectoryW
SleepEx
GetSystemDirectoryW
GetProcessTimes
LoadLibraryW
MoveFileExW
DeleteFileW
GetFileAttributesW
VirtualQuery
GetUserDefaultLangID
GetUserDefaultUILanguage
GlobalFree
SetFilePointer
CreateFileW
ReadFile
GetFileSize
CreateFileA
VerifyVersionInfoW
VerSetConditionMask
CreateProcessA
LockResource
LoadResource
FindResourceExA
FindResourceExW
GetTempPathW
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesA
CreateDirectoryA
DeleteFileA
GetTempPathA
CreateMutexA
GetFileAttributesExW
GetFileInformationByHandle
RemoveDirectoryW
GetModuleFileNameW
GetLongPathNameW
GetTempFileNameW
GetFullPathNameW
ExpandEnvironmentStringsA
CreateProcessW
ExpandEnvironmentStringsW
DeviceIoControl
OutputDebugStringA
GetTempFileNameA
GetVersionExA
CreateDirectoryW
SetFilePointerEx
GetFileSizeEx
SetEndOfFile
FlushInstructionCache
CompareFileTime
LocalFree
ReleaseSemaphore
CreateSemaphoreW
SetNamedPipeHandleState
EndUpdateResourceW
BeginUpdateResourceW
UpdateResourceW
WaitForMultipleObjects
lstrlenA
lstrlenW
OpenProcess
GetExitCodeProcess
GetOverlappedResult
ConnectNamedPipe
GetCommandLineW
GetModuleHandleA
UnmapViewOfFile
ReleaseMutex
MapViewOfFile
CreateFileMappingA
GetComputerNameExW
CreateNamedPipeW
CancelIo
GetProcessHeap
GenerateConsoleCtrlEvent
FormatMessageW
SetHandleInformation
lstrcmpiW
SizeofResource
FindResourceW
LoadLibraryExW
SetThreadAffinityMask
VirtualProtect
FormatMessageA
CreateEventA
FlushFileBuffers
AreFileApisANSI
UnlockFile
LockFile
LockFileEx
UnlockFileEx
GetFullPathNameA
GetDiskFreeSpaceA
GetDiskFreeSpaceW
CreateFileMappingW
CreateWaitableTimerA
SetWaitableTimer
CancelWaitableTimer
InterlockedExchangeAdd
GetVersion
FileTimeToSystemTime
GetNumberFormatW
GetCurrencyFormatW
GetDateFormatW
GetTimeFormatW
EnumSystemLocalesW
GetProcessAffinityMask
GetNativeSystemInfo
LocalAlloc
lstrcpynW
GlobalMemoryStatus
FlushConsoleInputBuffer
SetStdHandle
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
GetConsoleCP
GetCurrentDirectoryA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
IsProcessorFeaturePresent
SetConsoleCtrlHandler
HeapAlloc
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapDestroy
HeapCreate
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
ExitProcess
HeapFree
GetCurrentThread
GetLastError
SetLastError
TlsFree
TlsAlloc
GetProcAddress
GetModuleHandleW
GetModuleFileNameA
GetStdHandle
WriteFile
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
GetCommandLineA
GetSystemInfo
SwitchToThread
TlsGetValue
TlsSetValue
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
InterlockedCompareExchange
CreateNamedPipeA
Sleep

ole32

RegisterDragDrop
RevokeDragDrop
OleInitialize
OleUninitialize
OleGetClipboard
OleSetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
ReleaseStgMedium
CoCreateInstance
CoInitializeEx
CoInitialize
CoUninitialize
CoTaskMemFree
CoMarshalInterThreadInterfaceInStream
CoGetInterfaceAndReleaseStream
CoTaskMemAlloc
CoTaskMemRealloc
MkParseDisplayName
CreateBindCtx
PropVariantClear
CoSetProxyBlanket
CoFreeUnusedLibraries

oleaut32

VariantClear
VariantInit
VarUI4FromStr
LoadRegTypeLi
SysAllocString
SysStringLen
LoadTypeLi
SysFreeString

ws2_32

gethostbyname
WSAGetLastError
accept
listen
gethostname
WSAEnumNetworkEvents
WSAEventSelect
WSACreateEvent
WSAAddressToStringA
bind
sendto
recvfrom
getpeername
connect
WSACloseEvent
inet_ntoa
send
recv
setsockopt
ioctlsocket
select
WSAStartup
WSASocketW
socket
ntohl
WSAIoctl
WSAAsyncSelect
WSASetLastError
getservbyport
inet_addr
closesocket
WSACleanup
htonl
getservbyname
ntohs
getsockname
gethostbyaddr
htons

version

VerQueryValueW
VerQueryValueA
GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoSizeA
GetFileVersionInfoA

winmm

mixerSetControlDetails
waveInGetPosition
waveOutPause
waveOutRestart
mixerGetControlDetailsA
mixerOpen
mixerGetDevCapsA
mixerGetLineInfoA
mixerGetLineControlsA
mixerClose
waveInMessage
waveOutMessage
waveOutGetDevCapsA
waveInGetDevCapsA
mixerGetID
waveOutGetPosition
waveInOpen
waveInPrepareHeader
waveInAddBuffer
waveInStart
waveOutClose
waveOutReset
waveOutOpen
waveInStop
waveInReset
waveInUnprepareHeader
waveInClose
waveInGetNumDevs
waveOutGetNumDevs
waveInGetDevCapsW
waveOutGetDevCapsW
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
timeSetEvent
timeKillEvent
timeGetDevCaps
timeBeginPeriod
timeEndPeriod
timeGetTime

oleacc

AccessibleObjectFromWindow

crypt32

CryptFindLocalizedName
CertGetEnhancedKeyUsage
CertAddEncodedCertificateToStore
CertDuplicateCertificateContext
CryptImportPublicKeyInfo
CryptUnprotectData
CryptProtectData
CertCloseStore
CertFreeCertificateContext
CertFindCertificateInStore
CertVerifySubjectCertificateContext
CertCreateCertificateContext
CryptGetMessageCertificates
CryptVerifyMessageSignature
CertAddStoreToCollection
CertOpenStore
CertVerifyRevocation
CertVerifyTimeValidity
CertCompareCertificate
CertEnumCertificatesInStore
CryptFindOIDInfo
CertRDNValueToStrW
CertFindRDNAttr
CryptDecodeObjectEx
CertNameToStrW
CertAddCertificateContextToStore
CertCompareCertificateName
CertFreeCertificateChain
CertGetCertificateChain

user32

BeginPaint
GetClassLongW
GetWindowTextW
UpdateWindow
RegisterClassExW
GetMenuBarInfo
DrawMenuBar
EnumWindows
DeleteMenu
SetForegroundWindow
EnumDisplayMonitors
PostQuitMessage
GetMessageW
ShowCaret
CreateCaret
DestroyCaret
SetCaretPos
GetAsyncKeyState
InsertMenuItemW
CreateMenu
GetMenuItemInfoW
SetMenuItemInfoW
RemoveMenu
EnumDisplayDevicesA
UpdateLayeredWindow
GetKeyboardLayout
OffsetRect
GetLastInputInfo
UnregisterClassA
DdeUninitialize
DdeFreeStringHandle
DdeDisconnect
DdeClientTransaction
DdeConnect
DdeCreateStringHandleA
DdeInitializeW
SetMenuInfo
GetMenuInfo
DestroyMenu
TrackPopupMenu
CreatePopupMenu
MapVirtualKeyW
CharNextW
EnumDisplayDevicesW
PostMessageA
RegisterWindowMessageA
MonitorFromRect
GetUserObjectInformationW
GetProcessWindowStation
wsprintfW
GetClassInfoExW
ShowWindowAsync
SetWindowRgn
GetWindow
IsWindowVisible
ShowWindow
SetWindowPlacement
GetWindowPlacement
IsZoomed
GetSystemMenu
SetMenu
FlashWindowEx
EndPaint
MapWindowPoints
IsIconic
CallWindowProcW
DefWindowProcW
ReleaseCapture
GetMessageTime
SetCapture
SetCursorPos
TrackMouseEvent
GetCapture
GetWindowThreadProcessId
AttachThreadInput
LoadStringW
LoadCursorW
GetQueueStatus
SetTimer
LoadStringA
GetWindowInfo
CopyRect
GetFocus
InvalidateRect
KillTimer
GetForegroundWindow
WaitForInputIdle
CreateWindowExW
EnableWindow
GetWindowTextLengthW
GetDlgItemTextA
IsWindowEnabled
SetDlgItemTextA
SetRectEmpty
CreateIconIndirect
DialogBoxParamW
GetDlgItemTextW
SetDlgItemTextW
GetClientRect
MoveWindow
MessageBoxA
SendMessageTimeoutW
FillRect
ClientToScreen
MonitorFromWindow
GetMonitorInfoW
DialogBoxIndirectParamW
EndDialog
GetParent
GetWindowRect
GetDesktopWindow
SetWindowPos
LoadIconW
GetDlgItem
SetWindowTextW
SetFocus
PostMessageW
DestroyWindow
SetCursor
GetCursor
DestroyIcon
GetPropW
SetPropW
SendInput
MessageBoxW
PostThreadMessageW
SendMessageW
SystemParametersInfoW
GetWindowLongW
SetWindowLongW
PtInRect
EnumDisplaySettingsW
GetActiveWindow
IsWindow
GetDoubleClickTime
RegisterClipboardFormatA
RegisterClipboardFormatW
GetClipboardFormatNameA
ReleaseDC
GetDC
ScreenToClient
GetKeyState
GetCursorPos
DispatchMessageW
TranslateMessage
MsgWaitForMultipleObjects
PeekMessageW
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
SetClipboardData
EmptyClipboard
InflateRect
SetRect
GetSystemMetrics
OpenClipboard

gdi32

GetStretchBltMode
GetTextMetricsW
EnumFontFamiliesW
EnumFontFamiliesA
ExtTextOutA
SetTextColor
CreateFontIndirectA
IntersectClipRect
GetClipRgn
CreateRectRgn
CreateRectRgnIndirect
SelectPalette
RealizePalette
RestoreDC
SelectClipPath
SetStretchBltMode
LineTo
MoveToEx
EndPath
BeginPath
EndPage
StartPage
CreateBitmap
SetPixel
CreateFontIndirectW
CreateDCA
GetICMProfileA
SaveDC
SetPolyFillMode
GetObjectW
BitBlt
CreateDIBSection
StretchBlt
ExtTextOutW
SetBkColor
GdiFlush
PolyBezierTo
GetClipBox
CreateCompatibleDC
SelectObject
SetDIBitsToDevice
DeleteDC
DeleteObject
SelectClipRgn
GetBkColor
SetWorldTransform
SetTextAlign
SetBkMode
GetTextAlign
GetBkMode
GetTextColor
EnumFontFamiliesExW
GetFontData
CreatePalette
GetSystemPaletteEntries
StretchDIBits
StartDocW
LPtoDP
AbortDoc
FillPath
ExtCreatePen
StrokePath
CreateSolidBrush
EndDoc
CreateICW
ResetDCW
CreateDCW
GetTextCharacterExtra
GetTextExtentPoint32A
GetCurrentObject
GetTextExtentPoint32W
GetDeviceCaps
DPtoLP
CreatePen
SetTextCharacterExtra
GetWorldTransform
GetStockObject
SetGraphicsMode

msimg32

AlphaBlend

advapi32

RegQueryInfoKeyW
SetEntriesInAclW
MakeSelfRelativeSD
SetSecurityDescriptorControl
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegisterEventSourceA
ReportEventA
DeregisterEventSource
IsValidSid
GetSidSubAuthorityCount
GetSidSubAuthority
CryptExportKey
CryptEncrypt
CryptImportKey
CryptGenKey
CryptHashData
CryptGetHashParam
CryptDestroyKey
RegOpenKeyA
SetSecurityInfo
InitializeAcl
RegEnumKeyExW
GetTokenInformation
OpenProcessToken
RegOpenKeyExW
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
CryptGenRandom
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueExW
RegSetValueExW
CryptReleaseContext
CryptDestroyHash
CryptCreateHash
CryptAcquireContextW

comdlg32

CommDlgExtendedError
GetSaveFileNameW
GetOpenFileNameW
PageSetupDlgW
PrintDlgW

shell32

ShellExecuteExW
SHCreateDirectoryExW
CommandLineToArgvW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHChangeNotify
Shell_NotifyIconW
SHGetDiskFreeSpaceExW
SHFileOperationW
SHGetFolderPathW
SHGetSettings
SHGetSpecialFolderLocation
SHGetFolderPathA
SHBrowseForFolderW
SHAppBarMessage
SHGetPathFromIDListW
ord2
ord4

shlwapi

PathAppendA
PathAppendW
PathRemoveFileSpecW
StrDupW
StrCmpW
AssocQueryStringW

wininet

InternetSetCookieW
InternetGetCookieW
InternetErrorDlg

msi

ord205
ord72
ord96
ord37
ord17
ord125
ord121
ord32
ord159
ord92
ord78
ord151
ord153
ord141
ord88
ord16
ord137
ord70
ord90
ord173
ord8
ord84
ord113
ord20

urlmon

CopyStgMedium

comctl32

ImageList_GetIconSize
ImageList_Draw

mscms

OpenColorProfileW
TranslateBitmapBits
CloseColorProfile
CreateColorTransformW
DeleteColorTransform

secur32

LsaFreeReturnBuffer
LsaGetLogonSessionData

dsound

ord8
ord1

iphlpapi

GetAdaptersAddresses

dnsapi

DnsRecordListFree
DnsQuery_UTF8

winspool.drv

OpenPrinterW
GetPrinterW
ClosePrinter
EnumPrintersW

Exports

Exports

ADLWMain
AdobeCPGetAPI
AppEntryWinMain
AppInstallWinMain
CaptiveAppEntryWinMain
ExtendedAppEntryWinMain
FREAcquireBitmapData
FREAcquireBitmapData2
FREAcquireByteArray
FRECallObjectMethod
FREDispatchStatusEventAsync
FREGetArrayElementAt
FREGetArrayLength
FREGetContextActionScriptData
FREGetContextNativeData
FREGetObjectAsBool
FREGetObjectAsDouble
FREGetObjectAsInt32
FREGetObjectAsUTF8
FREGetObjectAsUint32
FREGetObjectProperty
FREGetObjectType
FREInvalidateBitmapDataRect
FRENewObject
FRENewObjectFromBool
FRENewObjectFromDouble
FRENewObjectFromInt32
FRENewObjectFromUTF8
FRENewObjectFromUint32
FREReleaseBitmapData
FREReleaseByteArray
FRESetArrayElementAt
FRESetArrayLength
FRESetContextActionScriptData
FRESetContextNativeData
FRESetObjectProperty
NAIPWMain
RuntimeInstallerWinMain

Sections

.text
Size: 12.1MB - Virtual size: 12.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 486KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 809KB - Virtual size: 809KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f40c20fa3ca9e83aca309938fc44b1e9

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:edCertificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

4d:4a:a1:fd:f2:6f:9f:33:53:d6:26:14:ed:a6:62:37Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

95:10:9b:56:11:13:65:19:0f:58:7e:1f:c5:7a:bf:3d:fb:1f:5a:94Signer

Signature Validations

Verification

29/10/2012, 04:24 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

oleaut32

ws2_32

version

winmm

oleacc

crypt32

user32

gdi32

msimg32

advapi32

comdlg32

shell32

shlwapi

wininet

msi

urlmon

comctl32

mscms

secur32

dsound

iphlpapi

dnsapi

winspool.drv

Exports

Exports

Sections

.text Size: 12.1MB - Virtual size: 12.1MB

.rodata Size: 4KB - Virtual size: 4KB

.rdata Size: 6.0MB - Virtual size: 6.0MB

.data Size: 486KB - Virtual size: 1.4MB

.data1 Size: 512B - Virtual size: 84B

.rsrc Size: 158KB - Virtual size: 157KB

.reloc Size: 809KB - Virtual size: 809KB

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

4d:4a:a1:fd:f2:6f:9f:33:53:d6:26:14:ed:a6:62:37
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

95:10:9b:56:11:13:65:19:0f:58:7e:1f:c5:7a:bf:3d:fb:1f:5a:94
Signer

29/10/2012, 04:24
Valid: false

.text
Size: 12.1MB - Virtual size: 12.1MB

.rodata
Size: 4KB - Virtual size: 4KB

.rdata
Size: 6.0MB - Virtual size: 6.0MB

.data
Size: 486KB - Virtual size: 1.4MB

.data1
Size: 512B - Virtual size: 84B

.rsrc
Size: 158KB - Virtual size: 157KB

.reloc
Size: 809KB - Virtual size: 809KB