iden[.]exe | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

iden.exe
Size

55.6MB
MD5

55cf843eb64346f21dfe5b5a2b2f9ceb
SHA1

a83cb6482ec472ae42e5e370e9ad6847785de258
SHA256

808a1f18021bc1138db4bacc10c6e02601807621a178874cad17ffc8d5a5e685
SHA512

6b4ae99b54e1981588392bb60919c7454c2b7c8533f57fa0c582bcad6ed93c483446c90a5d8f8fed6086725278fb11b6d97c0c5586c6e65d6110fca2864c359e
SSDEEP

1572864:iEdFYE5m+X5m+h3j/vA4fqp5m+AesOPR1t:FL/5m+X5m+JLvAvp5m+N9PR1t

Score

N/A

Malware Config

Signatures

Files

iden.exe
.exe windows x86

30870d6c31ae577f3f9036e7e6ce9f98

Code Sign

6e:2c:bd:ec:05:0b:90:fe:fc:dc:e9:35:94:6d:9d:7c
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

29/01/2020, 00:00

Not After

07/03/2023, 23:59

Subject

CN=KOBIL Systems GmbH,O=KOBIL Systems GmbH,L=Worms,ST=Rheinland-Pfalz,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

22/07/2014, 00:00

Not After

21/07/2024, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

6e:2c:bd:ec:05:0b:90:fe:fc:dc:e9:35:94:6d:9d:7c
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

29/01/2020, 00:00

Not After

07/03/2023, 23:59

Subject

CN=KOBIL Systems GmbH,O=KOBIL Systems GmbH,L=Worms,ST=Rheinland-Pfalz,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

22/07/2014, 00:00

Not After

21/07/2024, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

cd:8b:76:ba:ae:d6:83:bc:80:84:6e:9e:2f:0c:64:25:30:32:04:75:bc:31:10:12:5e:06:18:86:d4:1b:7d:0f
Signer

Actual PE Digest

cd:8b:76:ba:ae:d6:83:bc:80:84:6e:9e:2f:0c:64:25:30:32:04:75:bc:31:10:12:5e:06:18:86:d4:1b:7d:0f

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=KOBIL Systems GmbH,O=KOBIL Systems GmbH,L=Worms,ST=Rheinland-Pfalz,C=DE

24/11/2022, 15:27
Valid: false

da:92:e2:ca:69:03:5f:88:0d:29:72:05:8b:0d:12:81:a0:bf:99:6a
Signer

Actual PE Digest

da:92:e2:ca:69:03:5f:88:0d:29:72:05:8b:0d:12:81:a0:bf:99:6a

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=KOBIL Systems GmbH,O=KOBIL Systems GmbH,L=Worms,ST=Rheinland-Pfalz,C=DE

24/11/2022, 15:27
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageTimeoutW
GetWindowThreadProcessId
EnumWindows
RemoveMenu
GetSystemMenu
DrawMenuBar
UnregisterDeviceNotification
RegisterDeviceNotificationW
CharNextExA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
KillTimer
SetTimer
LoadIconW
CharUpperW
GetSystemMetrics
SystemParametersInfoW
DefWindowProcW
DestroyWindow
GetDC
ReleaseDC
GetSysColor
GetDesktopWindow
GetDoubleClickTime
IsWindow
MessageBeep
GetCaretBlinkTime
UpdateLayeredWindowIndirect
SendMessageW
AttachThreadInput
CreateWindowExW
IsChild
ShowWindow
UpdateLayeredWindow
SetLayeredWindowAttributes
FlashWindowEx
MoveWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
IsWindowVisible
IsIconic
SetFocus
RegisterTouchWindow
UnregisterTouchWindow
IsTouchWindow
GetCapture
SetCapture
ReleaseCapture
EnableMenuItem
GetForegroundWindow
SetForegroundWindow
BeginPaint
EndPaint
GetUpdateRect
SetWindowRgn
InvalidateRect
SetWindowTextW
GetWindowRect
AdjustWindowRectEx
SetCursor
ClientToScreen
ScreenToClient
GetWindowLongW
SetWindowLongW
GetParent
SetParent
GetWindow
DestroyCursor
DestroyIcon
MonitorFromPoint
GetAncestor
GetKeyboardLayoutList
UnregisterClassW
GetClassInfoW
RegisterClassExW
GetFocus
GetClientRect
GetCursorPos
ChildWindowFromPointEx
GetSysColorBrush
LoadImageW
SetMenu
CreateMenu
CreatePopupMenu
DestroyMenu
InsertMenuW
AppendMenuW
ModifyMenuW
TrackPopupMenu
GetMenuItemInfoW
SetMenuItemInfoW
MonitorFromWindow
GetMonitorInfoW
EnumDisplayMonitors
PostMessageW
IsHungAppWindow
SetClipboardViewer
ChangeClipboardChain
RegisterClipboardFormatW
GetKeyboardLayout
RegisterWindowMessageW
IsWindowEnabled
CreateCaret
DestroyCaret
ShowCaret
SetCaretPos
FindWindowA
PeekMessageW
IsZoomed
GetKeyState
GetKeyboardState
ToAscii
ToUnicode
MapVirtualKeyW
GetMenu
TrackPopupMenuEx
SetCursorPos
GetCursor
LoadCursorW
CreateCursor
CreateIconIndirect
GetIconInfo
GetCursorInfo
RegisterClassW
EnumDisplayDevicesW
GetClipboardFormatNameW
TrackMouseEvent
GetMessageExtraInfo
GetAsyncKeyState
GetTouchInputInfo
CloseTouchInputHandle
GetWindowTextW
RealGetWindowClassW
ChangeWindowMessageFilterEx
DrawIconEx
MessageBoxW
PostThreadMessageW
TranslateMessage
DispatchMessageW
GetQueueStatus
MsgWaitForMultipleObjectsEx

imm32

ImmAssociateContext
ImmGetContext
ImmGetVirtualKey
ImmSetCandidateWindow
ImmSetCompositionWindow
ImmNotifyIME
ImmGetOpenStatus
ImmGetCompositionStringW
ImmAssociateContextEx
ImmReleaseContext
ImmGetDefaultIMEWnd

oleaut32

SysAllocString
SysFreeString
SysAllocStringLen
VariantCopy
VariantClear

wtsapi32

WTSFreeMemory
WTSQuerySessionInformationW

gdi32

BitBlt
OffsetRgn
GetDeviceCaps
CreateDIBSection
CreateDCW
CreateBitmap
ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers
GetBitmapBits
GetObjectW
CreateFontIndirectW
EnumFontFamiliesExW
GetFontData
GetStockObject
AddFontResourceExW
RemoveFontResourceExW
AddFontMemResourceEx
RemoveFontMemResourceEx
GetTextMetricsW
GetTextFaceW
GetCharABCWidthsW
GetCharABCWidthsFloatW
GetGlyphOutlineW
GetOutlineTextMetricsW
GetTextExtentPoint32W
GetCharABCWidthsI
SetBkMode
SetGraphicsMode
SetTextColor
SetTextAlign
SetWorldTransform
ExtTextOutW
SelectObject
SelectClipRgn
GetRegionData
DeleteObject
DeleteDC
CreateRectRgn
CreateCompatibleDC
CombineRgn
GdiFlush
GetDIBits
CreateCompatibleBitmap

uxtheme

CloseThemeData
GetThemePropertyOrigin
GetThemeBackgroundRegion
GetThemeMargins
IsThemeBackgroundPartiallyTransparent
ord47
GetThemeTransitionDuration
GetThemeBool
SetWindowTheme
IsThemeActive
IsAppThemed
GetCurrentThemeName
DrawThemeBackground
GetThemeSysFont
SetWindowThemeAttribute
DrawThemeTextEx
GetThemeInt
GetThemeColor
GetThemePartSize
GetThemeEnumValue
OpenThemeData

dwmapi

DwmIsCompositionEnabled
DwmExtendFrameIntoClientArea
DwmDefWindowProc
DwmEnableBlurBehindWindow

ole32

CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemFree
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleInitialize
OleUninitialize
CoInitializeEx
OleGetClipboard
StringFromGUID2
CoCreateGuid
CoGetMalloc
ReleaseStgMedium
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard

advapi32

CopySid
DuplicateToken
MapGenericMask
LookupAccountSidW
GetEffectiveRightsFromAclW
GetNamedSecurityInfoW
GetLengthSid
AddAccessAllowedAce
BuildTrusteeWithSidW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegFlushKey
RegQueryInfoKeyW
AccessCheck
SystemFunction036
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
GetFileSecurityW
RegSetValueExW
RegQueryValueExW
FreeSid
CheckTokenMembership
RegNotifyChangeKeyValue
RegCloseKey
RegCreateKeyExW
RegDeleteKeyExW
RegOpenKeyExW
InitializeAcl
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetTokenInformation

opengl32

glLoadIdentity
glLoadMatrixf
glOrtho
glMatrixMode

iphlpapi

ConvertInterfaceIndexToLuid
GetAdaptersAddresses
ConvertInterfaceNameToLuidW
ConvertInterfaceLuidToNameW
ConvertInterfaceLuidToIndex

ws2_32

WSASocketW
WSASendTo
WSAStartup
gethostname
WSACleanup
htons
getsockname
getpeername
listen
WSAIoctl
WSAHtonl
WSAConnect
htonl
ntohl
WSAGetLastError
getaddrinfo
freeaddrinfo
select
bind
__WSAFDIsSet
getsockopt
getnameinfo
WSAAccept
setsockopt
closesocket
WSANtohl
WSANtohs
WSARecv
WSARecvFrom
WSASend
WSAAsyncSelect

mpr

WNetGetUniversalNameA

netapi32

NetShareEnum
NetApiBufferFree

userenv

GetUserProfileDirectoryW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

kernel32

ReleaseMutex
CreateMutexW
EncodePointer
InitializeCriticalSectionAndSpinCount
GetStringTypeW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
RtlUnwind
GetUserGeoID
GetGeoInfoW
FindNextChangeNotification
GetModuleHandleExW
FindFirstFileExW
SetFilePointerEx
GetFileInformationByHandleEx
SystemTimeToFileTime
TzSpecificLocalTimeToSystemTime
MoveFileExW
ExitThread
FreeLibraryAndExitThread
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
SetStdHandle
HeapFree
HeapAlloc
IsValidLocale
EnumSystemLocalesW
GetFileSizeEx
HeapReAlloc
CopyFileW
GetLogicalDrives
GetFullPathNameW
GetFileAttributesW
WriteFileEx
IsValidCodePage
GetACP
GetOEMCP
SetEnvironmentVariableW
GetProcessHeap
HeapSize
GetCommandLineA
CheckRemoteDebuggerPresent
SleepEx
CancelIoEx
PeekNamedPipe
ReadFileEx
RegisterWaitForSingleObject
UnregisterWaitEx
LCMapStringW
CompareStringW
GetUserPreferredUILanguages
GetUserDefaultLCID
GetCurrencyFormatW
GetTimeFormatW
GetDateFormatW
GetTickCount64
QueryPerformanceFrequency
QueryPerformanceCounter
GetProcessId
GetExitCodeProcess
WaitForSingleObjectEx
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
ResumeThread
TerminateThread
GetThreadPriority
SetThreadPriority
GetCurrentThread
CreateThread
SwitchToThread
Sleep
DuplicateHandle
GetLocalTime
GetSystemTime
GetStartupInfoW
CompareStringEx
IsProcessorFeaturePresent
OutputDebugStringW
GetNativeSystemInfo
SetHandleInformation
GetOverlappedResult
GetStdHandle
GetFileType
AllocConsole
FreeConsole
AttachConsole
SetConsoleMode
SetConsoleScreenBufferSize
GetLargestConsoleWindowSize
GetConsoleWindow
GetCommandLineW
CloseHandle
CreateProcessW
LocalFree
FormatMessageW
GetFileAttributesExW
GetLongPathNameW
GetShortPathNameW
GetEnvironmentVariableW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetCurrentProcess
IsWow64Process
OpenProcess
GetLogicalDriveStringsA
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
GetDiskFreeSpaceExA
GetDriveTypeA
GetDriveTypeW
GetVolumePathNamesForVolumeNameW
SetErrorMode
WaitForSingleObject
TerminateProcess
GetLastError
FileTimeToSystemTime
CreateFileW
DeviceIoControl
FlushFileBuffers
LockFile
UnlockFile
WriteFile
CompareFileTime
GetProcAddress
GetFileSize
ReadFile
SetEndOfFile
SetFilePointer
SetFileTime
OpenEventW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
RemoveDirectoryW
SetFileAttributesW
GetTempPathW
SetLastError
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetSystemDirectoryW
GetModuleHandleW
MoveFileW
GetFileInformationByHandle
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationW
FindFirstFileW
FindNextFileW
GetLogicalDriveStringsW
GetModuleHandleA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
WideCharToMultiByte
FreeLibrary
GetModuleFileNameW
LoadLibraryExW
LoadLibraryW
GetSystemTimeAsFileTime
FileTimeToDosDateTime
InitializeCriticalSection
SetEvent
ResetEvent
ReleaseSemaphore
CreateEventW
CreateSemaphoreW
VirtualAlloc
VirtualFree
GetSystemInfo
WaitForMultipleObjects
lstrcmpW
WTSGetActiveConsoleSessionId
ExpandEnvironmentStringsW
WriteConsoleW
GlobalAlloc
GlobalUnlock
GlobalLock
GetLocaleInfoW
LoadLibraryA
GlobalSize
GetUserDefaultLangID
DecodePointer
RaiseException
InitializeCriticalSectionEx
GetVolumeInformationW
ExitProcess
GetTimeZoneInformation
VirtualProtect
CreateFileMappingW
DisconnectNamedPipe
WaitNamedPipeW
GlobalFree
ConnectNamedPipe
CreateNamedPipeW

shell32

SHGetFolderPathW
ShellExecuteExW
SHGetKnownFolderPath
CommandLineToArgvW
SHParseDisplayName
ord155
Shell_NotifyIconGetRect
Shell_NotifyIconW
SHBrowseForFolderW
SHGetKnownFolderIDList
SHGetPathFromIDListW
SHGetMalloc
SHCreateItemFromParsingName
SHCreateItemFromIDList
ShellExecuteW
ord727
SHGetStockIconInfo
SHGetFileInfoW
SHChangeNotify
SHGetFolderLocation

winmm

timeSetEvent
timeKillEvent

Sections

.text
Size: 12.0MB - Virtual size: 12.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmetad
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 372KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 495KB - Virtual size: 495KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30870d6c31ae577f3f9036e7e6ce9f98

Code Sign

6e:2c:bd:ec:05:0b:90:fe:fc:dc:e9:35:94:6d:9d:7cCertificate

Extended Key Usages

Key Usages

7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8Certificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

6e:2c:bd:ec:05:0b:90:fe:fc:dc:e9:35:94:6d:9d:7cCertificate

Extended Key Usages

Key Usages

7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

cd:8b:76:ba:ae:d6:83:bc:80:84:6e:9e:2f:0c:64:25:30:32:04:75:bc:31:10:12:5e:06:18:86:d4:1b:7d:0fSigner

Signature Validations

Verification

24/11/2022, 15:27 Valid: false

da:92:e2:ca:69:03:5f:88:0d:29:72:05:8b:0d:12:81:a0:bf:99:6aSigner

Signature Validations

Verification

24/11/2022, 15:27 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

user32

imm32

oleaut32

wtsapi32

gdi32

uxtheme

dwmapi

ole32

advapi32

opengl32

iphlpapi

ws2_32

mpr

netapi32

userenv

version

kernel32

shell32

winmm

Sections

.text Size: 12.0MB - Virtual size: 12.0MB

.rdata Size: 4.7MB - Virtual size: 4.7MB

.data Size: 152KB - Virtual size: 443KB

.qtmetad Size: 512B - Virtual size: 372B

_RDATA Size: 512B - Virtual size: 292B

.rsrc Size: 372KB - Virtual size: 372KB

.reloc Size: 495KB - Virtual size: 495KB

6e:2c:bd:ec:05:0b:90:fe:fc:dc:e9:35:94:6d:9d:7c
Certificate

7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

6e:2c:bd:ec:05:0b:90:fe:fc:dc:e9:35:94:6d:9d:7c
Certificate

7c:1b:35:35:4a:e7:db:74:e7:41:5f:11:69:ca:6b:a8
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

cd:8b:76:ba:ae:d6:83:bc:80:84:6e:9e:2f:0c:64:25:30:32:04:75:bc:31:10:12:5e:06:18:86:d4:1b:7d:0f
Signer

24/11/2022, 15:27
Valid: false

da:92:e2:ca:69:03:5f:88:0d:29:72:05:8b:0d:12:81:a0:bf:99:6a
Signer

24/11/2022, 15:27
Valid: false

.text
Size: 12.0MB - Virtual size: 12.0MB

.rdata
Size: 4.7MB - Virtual size: 4.7MB

.data
Size: 152KB - Virtual size: 443KB

.qtmetad
Size: 512B - Virtual size: 372B

_RDATA
Size: 512B - Virtual size: 292B

.rsrc
Size: 372KB - Virtual size: 372KB

.reloc
Size: 495KB - Virtual size: 495KB