Extracted

Extracted

• da964c3101800018be5ad039f7ab779680acbfb13baa51e7d0235e76650a77b2

  .exe windows x86

  24f4223e271413c25abad52fd456a9bc

  
  

  Code Sign

  0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40

  Certificate

  Issuer

  CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  25/11/2020, 00:00

  Not After

  22/02/2024, 23:59

  Subject

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  11/02/2011, 12:00

  Not After

  10/02/2026, 12:00

  Subject

  CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  22/10/2013, 12:00

  Not After

  22/10/2028, 12:00

  Subject

  CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6

  Certificate

  Issuer

  CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  25/11/2020, 00:00

  Not After

  22/02/2024, 23:59

  Subject

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a

  Certificate

  Issuer

  CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

  Not Before

  21/09/2022, 00:00

  Not After

  21/11/2033, 23:59

  Subject

  CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b

  Certificate

  Issuer

  CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  23/03/2022, 00:00

  Not After

  22/03/2037, 23:59

  Subject

  CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  01/08/2022, 00:00

  Not After

  09/11/2031, 23:59

  Subject

  CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  04:64:34:c8:f2:20:56:50:56:47:e2:ba:a5:e1:bb:88:39:ac:17:68:f0:59:72:33:65:cb:51:0f:b0:af:69:80

  Signer

  Actual PE Digest

  04:64:34:c8:f2:20:56:50:56:47:e2:ba:a5:e1:bb:88:39:ac:17:68:f0:59:72:33:65:cb:51:0f:b0:af:69:80

  Digest Algorithm

  sha256

  PE Digest Matches

  false

  Signature Validations

  Trusted

  true

  Verification

  Signing Certificate

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  19/10/2022, 05:17

  Valid: true

  Chain 1

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  80:b6:68:ed:47:40:49:b3:22:9f:a7:30:e2:25:0e:50:c2:ee:5f:d2

  Signer

  Actual PE Digest

  80:b6:68:ed:47:40:49:b3:22:9f:a7:30:e2:25:0e:50:c2:ee:5f:d2

  Digest Algorithm

  sha1

  PE Digest Matches

  false

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  04/11/2022, 15:41

  Valid: false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  ExitProcess

  SetFileAttributesW

  Sleep

  GetTickCount

  CreateFileW

  GetFileSize

  GetModuleFileNameW

  GetCurrentProcess

  SetCurrentDirectoryW

  GetFileAttributesW

  SetEnvironmentVariableW

  GetWindowsDirectoryW

  GetTempPathW

  GetCommandLineW

  GetVersion

  SetErrorMode

  lstrlenW

  lstrcpynW

  CopyFileW

  MoveFileW

  GlobalLock

  CreateThread

  GetLastError

  CreateDirectoryW

  CreateProcessW

  RemoveDirectoryW

  lstrcmpiA

  GetTempFileNameW

  WriteFile

  lstrcpyA

  MoveFileExW

  lstrcatW

  GetSystemDirectoryW

  GetProcAddress

  GetModuleHandleA

  GetExitCodeProcess

  WaitForSingleObject

  lstrcmpiW

  lstrcmpW

  GetFullPathNameW

  GetShortPathNameW

  SearchPathW

  CompareFileTime

  SetFileTime

  CloseHandle

  ExpandEnvironmentStringsW

  GlobalFree

  GlobalUnlock

  GetDiskFreeSpaceW

  GlobalAlloc

  DeleteFileW

  FindFirstFileW

  FindNextFileW

  FindClose

  SetFilePointer

  ReadFile

  MulDiv

  lstrlenA

  WideCharToMultiByte

  MultiByteToWideChar

  WritePrivateProfileStringW

  FreeLibrary

  GetPrivateProfileStringW

  GetModuleHandleW

  LoadLibraryExW

  user32

  GetWindowRect

  GetSystemMenu

  SetClassLongW

  IsWindowEnabled

  SetWindowPos

  GetSysColor

  GetWindowLongW

  SetCursor

  LoadCursorW

  CheckDlgButton

  GetMessagePos

  CallWindowProcW

  IsWindowVisible

  CloseClipboard

  SetClipboardData

  EmptyClipboard

  OpenClipboard

  TrackPopupMenu

  ScreenToClient

  EnableMenuItem

  GetDlgItem

  SetDlgItemTextW

  GetDlgItemTextW

  MessageBoxIndirectW

  CharPrevW

  CharNextA

  wsprintfA

  DispatchMessageW

  PeekMessageW

  GetDC

  ReleaseDC

  EnableWindow

  InvalidateRect

  SendMessageW

  DefWindowProcW

  BeginPaint

  GetClientRect

  FillRect

  SystemParametersInfoW

  EndDialog

  RegisterClassW

  DialogBoxParamW

  CreateWindowExW

  GetClassInfoW

  DestroyWindow

  CharNextW

  ExitWindowsEx

  SetWindowTextW

  LoadImageW

  SetTimer

  ShowWindow

  PostQuitMessage

  wsprintfW

  SetWindowLongW

  FindWindowExW

  IsWindow

  CreatePopupMenu

  AppendMenuW

  GetSystemMetrics

  DrawTextW

  EndPaint

  CreateDialogParamW

  SendMessageTimeoutW

  SetForegroundWindow

  gdi32

  SelectObject

  SetTextColor

  SetBkMode

  CreateFontIndirectW

  CreateBrushIndirect

  DeleteObject

  GetDeviceCaps

  SetBkColor

  shell32

  ShellExecuteExW

  SHGetPathFromIDListW

  SHGetSpecialFolderLocation

  SHGetFileInfoW

  SHFileOperationW

  SHBrowseForFolderW

  advapi32

  AdjustTokenPrivileges

  RegCreateKeyExW

  RegOpenKeyExW

  SetFileSecurityW

  OpenProcessToken

  LookupPrivilegeValueW

  RegEnumValueW

  RegDeleteKeyW

  RegDeleteValueW

  RegCloseKey

  RegSetValueExW

  RegQueryValueExW

  RegEnumKeyW

  comctl32

  ImageList_Create

  ImageList_AddMasked

  ord17

  ImageList_Destroy

  ole32

  OleUninitialize

  OleInitialize

  CoTaskMemFree

  CoCreateInstance

  Sections

  .text

  Size: 25KB - Virtual size: 25KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 5KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1KB - Virtual size: 128KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .ndata

  Size: - Virtual size: 248KB

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 287KB - Virtual size: 286KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ