woody-in2it[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

woody-in2it.exe
Size

712KB
MD5

1b80573f2626e24c3d72c13c6f30ace3
SHA1

a3a1e0fd06274cc4f985403f7911b7ae7da1f96d
SHA256

a9562b983dbf8005a3614fc5347a55279603ee7f6517b94a94c8549690aaa781
SHA512

7319b59fcd41eb83ebc08e1c673eda2f0f98788ef3e32906b906f7f2936b3538531d0647dfdbafd9257946a3efb22d0dbacc320447fe82fb52a868d7fb7e0bb2
SSDEEP

6144:qMAdUQppVNZPbpxNsj2E28JI4lLp+OfRw2VMU9JpIAZs9Em/mvuuyQ52iGQG4UuM:t7QppfFbBsjbflLp+OH6QJp6/c52iGH5

Score

N/A

Malware Config

Signatures

Files

woody-in2it.exe
.exe windows x64

02ddbb0dec55e7674dbf8e811dba74b9

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:e5:d7:2d:7b:42:a8:fe:db:69:06:fd:1b:84:08:21
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

30/07/2020, 00:00

Not After

04/08/2023, 12:00

Subject

CN=Woody Technologies SAS,O=Woody Technologies SAS,L=PARIS,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

bb:c2:35:36:9b:bd:af:b5:bf:ed:49:95:a7:fd:28:f1:8d:fd:f6:da:f1:cf:84:d7:90:0b:00:2a:58:f2:fa:11
Signer

Actual PE Digest

bb:c2:35:36:9b:bd:af:b5:bf:ed:49:95:a7:fd:28:f1:8d:fd:f6:da:f1:cf:84:d7:90:0b:00:2a:58:f2:fa:11

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Woody Technologies SAS,O=Woody Technologies SAS,L=PARIS,C=FR

27/09/2022, 10:32
Valid: true

Chain 1

CN=Woody Technologies SAS,O=Woody Technologies SAS,L=PARIS,C=FR

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

comctl32

ord17

kernel32

SetEvent
CreateFileA
InitializeCriticalSectionAndSpinCount
CreateMutexA
lstrcpynA
DeleteCriticalSection
FlushFileBuffers
CreateThread
GetLastError
CreateEventA
GetExitCodeThread
WaitForSingleObject
CloseHandle
LocalFree
CreateProcessA
OutputDebugStringW
InitializeSListHead
MultiByteToWideChar
WideCharToMultiByte
GetModuleFileNameA
Sleep
SetWaitableTimer
LocalFileTimeToFileTime
FileTimeToSystemTime
CreateWaitableTimerA
QueryPerformanceFrequency
QueryPerformanceCounter
EnterCriticalSection
LeaveCriticalSection
ResetEvent
GetCurrentThreadId
WaitForMultipleObjectsEx
HeapAlloc
GetProcessHeap
HeapFree
CancelIo
CancelWaitableTimer
TerminateThread
K32GetProcessMemoryInfo
GetSystemInfo
GetCurrentProcess
SleepEx
GetCurrentProcessId
ReadFile
GetOverlappedResult
GetSystemTimeAsFileTime
GetStartupInfoW
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
FileTimeToLocalFileTime
ConnectNamedPipe
OpenProcess
TerminateProcess
CreateToolhelp32Snapshot
Process32First
Process32Next
GetEnvironmentStrings
lstrlenA
FreeEnvironmentStringsA
CreateNamedPipeA
DuplicateHandle
SetConsoleCtrlHandler
GetExitCodeProcess
FreeConsole
AttachConsole
GenerateConsoleCtrlEvent
K32GetModuleFileNameExA
GetProcessTimes
GetSystemTime
SystemTimeToFileTime
ReadDirectoryChangesW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
WaitForSingleObjectEx
CreateEventW
WriteFile

prometheus-cpp-pull

??0Exposer@prometheus@@QEAA@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_K@Z
??1Exposer@prometheus@@QEAA@XZ
?RegisterCollectable@Exposer@prometheus@@QEAAXAEBV?$weak_ptr@VCollectable@prometheus@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@4@@Z

prometheus-cpp-core

?Increment@Gauge@prometheus@@QEAAXN@Z
?Set@Gauge@prometheus@@QEAAXN@Z
?Add@?$Family@VCounter@prometheus@@@prometheus@@AEAAAEAVCounter@2@AEBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@V?$unique_ptr@VCounter@prometheus@@U?$default_delete@VCounter@prometheus@@@std@@@5@@Z
?Add@?$Family@VGauge@prometheus@@@prometheus@@AEAAAEAVGauge@2@AEBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@V?$unique_ptr@VGauge@prometheus@@U?$default_delete@VGauge@prometheus@@@std@@@5@@Z
??0Registry@prometheus@@QEAA@W4InsertBehavior@01@@Z
??1Registry@prometheus@@UEAA@XZ
?Collect@Registry@prometheus@@UEBA?AV?$vector@UMetricFamily@prometheus@@V?$allocator@UMetricFamily@prometheus@@@std@@@std@@XZ
??0Gauge@prometheus@@QEAA@XZ
??0Counter@prometheus@@QEAA@XZ
?BuildGauge@prometheus@@YA?AV?$Builder@VGauge@prometheus@@@detail@1@XZ
?Name@?$Builder@VGauge@prometheus@@@detail@prometheus@@QEAAAEAV123@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?Help@?$Builder@VGauge@prometheus@@@detail@prometheus@@QEAAAEAV123@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?Labels@?$Builder@VGauge@prometheus@@@detail@prometheus@@QEAAAEAV123@AEBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@@Z
?Register@?$Builder@VGauge@prometheus@@@detail@prometheus@@QEAAAEAV?$Family@VGauge@prometheus@@@3@AEAVRegistry@3@@Z
?BuildCounter@prometheus@@YA?AV?$Builder@VCounter@prometheus@@@detail@1@XZ
?Name@?$Builder@VCounter@prometheus@@@detail@prometheus@@QEAAAEAV123@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?Help@?$Builder@VCounter@prometheus@@@detail@prometheus@@QEAAAEAV123@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?Labels@?$Builder@VCounter@prometheus@@@detail@prometheus@@QEAAAEAV123@AEBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@@Z
?Register@?$Builder@VCounter@prometheus@@@detail@prometheus@@QEAAAEAV?$Family@VCounter@prometheus@@@3@AEAVRegistry@3@@Z
?Increment@Counter@prometheus@@QEAAXN@Z

user32

TrackPopupMenu
EndDialog
InsertMenuA
CreatePopupMenu
GetCursorPos
SetForegroundWindow
DestroyMenu
LoadImageA
GetSystemMenu
DispatchMessageA
TranslateMessage
SendMessageA
IsDialogMessageA
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
LoadIconA
PostQuitMessage
DestroyIcon
SetWindowPos
SetWindowTextA
GetDlgItem
CreateDialogParamA
DialogBoxParamA
ShowWindow
DestroyWindow
SetTimer

shell32

Shell_NotifyIconA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

GetErrorInfo
SysAllocString
SysFreeString
VariantClear

msvcp140

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?swap@?$basic_iostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPEBD@Z
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPEBD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

vcruntime140

memcpy
__std_terminate
memmove
memchr
__std_exception_copy
__std_exception_destroy
_purecall
strstr
__CxxFrameHandler3
_CxxThrowException
memset
__C_specific_handler
__vcrt_InitializeCriticalSectionEx
memcmp

api-ms-win-crt-time-l1-1-0

_localtime64_s
_time64
_mktime64
strftime
_ftime64_s
_difftime64

api-ms-win-crt-stdio-l1-1-0

_close
_set_fmode
_wsopen_s
__stdio_common_vsprintf_s
__p__commode
fclose
_wfopen_s
ferror
fopen_s
fread
fwrite
_fileno
__stdio_common_vsnprintf_s
_filelength
__stdio_common_vsprintf
__stdio_common_vfprintf
__acrt_iob_func
puts

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo
_cexit
terminate
exit
_initterm_e
_initterm
_set_app_type
_seh_filter_exe
_crt_atexit
_register_onexit_function
_get_narrow_winmain_command_line
_register_thread_local_exe_atexit_callback
_invalid_parameter_noinfo_noreturn
_c_exit
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_errno
_exit

api-ms-win-crt-convert-l1-1-0

strtol
atol
atof
_atoi64
strtoimax
strtod
atoi

api-ms-win-crt-string-l1-1-0

toupper
strncpy
strncmp
_strnicmp
isspace

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
_callnewh
malloc

api-ms-win-crt-filesystem-l1-1-0

_fstat64i32
remove

api-ms-win-crt-math-l1-1-0

modf
_finite
__setusermatherr

api-ms-win-crt-locale-l1-1-0

localeconv
_configthreadlocale

api-ms-win-crt-environment-l1-1-0

_putenv_s

advapi32

SystemFunction036

ws2_32

getpeername
bind
gethostname
WSAStartup
WSASetLastError
WSACreateEvent
WSACleanup
getnameinfo
listen
shutdown
getaddrinfo
freeaddrinfo
closesocket
setsockopt
WSAIoctl
WSASocketA
inet_ntoa
ntohs
WSARecv
WSAGetLastError
WSAGetOverlappedResult
WSASend

secur32

InitSecurityInterfaceA

crypt32

CertOpenSystemStoreA
CryptStringToBinaryA
CryptBinaryToStringA
CertOpenStore
CertFindCertificateInStore
CertFreeCertificateContext
CertCloseStore
PFXImportCertStore

rabbitmq.4

amqp_maybe_release_buffers
amqp_queue_bind
amqp_bytes_malloc_dup
amqp_initialize_ssl_library
amqp_get_rpc_reply
amqp_channel_close
amqp_new_connection
amqp_socket_open_noblock
amqp_exchange_declare
amqp_ssl_socket_set_verify_hostname
amqp_ssl_socket_set_cacert
amqp_cstring_bytes
amqp_basic_consume
amqp_bytes_free
amqp_empty_bytes
amqp_uninitialize_ssl_library
amqp_destroy_envelope
amqp_queue_declare
amqp_ssl_socket_new
amqp_empty_table
amqp_ssl_socket_set_verify_peer
amqp_tcp_socket_new
amqp_login
amqp_destroy_connection
amqp_error_string2
amqp_consume_message
amqp_connection_close
amqp_channel_open

Sections

.text
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 123KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 257KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02ddbb0dec55e7674dbf8e811dba74b9

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

01:e5:d7:2d:7b:42:a8:fe:db:69:06:fd:1b:84:08:21Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

bb:c2:35:36:9b:bd:af:b5:bf:ed:49:95:a7:fd:28:f1:8d:fd:f6:da:f1:cf:84:d7:90:0b:00:2a:58:f2:fa:11Signer

Signature Validations

Verification

27/09/2022, 10:32 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

prometheus-cpp-pull

prometheus-cpp-core

user32

shell32

ole32

oleaut32

msvcp140

vcruntime140

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-environment-l1-1-0

advapi32

ws2_32

secur32

crypt32

rabbitmq.4

Sections

.text Size: 298KB - Virtual size: 297KB

.rdata Size: 123KB - Virtual size: 123KB

.data Size: 7KB - Virtual size: 11KB

.pdata Size: 15KB - Virtual size: 15KB

.gfids Size: 512B - Virtual size: 76B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 257KB - Virtual size: 256KB

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

01:e5:d7:2d:7b:42:a8:fe:db:69:06:fd:1b:84:08:21
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

bb:c2:35:36:9b:bd:af:b5:bf:ed:49:95:a7:fd:28:f1:8d:fd:f6:da:f1:cf:84:d7:90:0b:00:2a:58:f2:fa:11
Signer

27/09/2022, 10:32
Valid: true

.text
Size: 298KB - Virtual size: 297KB

.rdata
Size: 123KB - Virtual size: 123KB

.data
Size: 7KB - Virtual size: 11KB

.pdata
Size: 15KB - Virtual size: 15KB

.gfids
Size: 512B - Virtual size: 76B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 257KB - Virtual size: 256KB