MDE_File_Sample_4531f64469e1dd1253d7dce7fc7f4dfe40ed234c[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

MDE_File_Sample_4531f64469e1dd1253d7dce7fc7f4dfe40ed234c.zip
Size

892KB
MD5

d553e26fa37b7fa67bc2296ea76de8d7
SHA1

c1c8ca2b4b1680e13da471835ab07dff27d36901
SHA256

7b7046ec29e3089e24d85eaf09a18e4040553fc7eba0831b83f7ea4d62ff5a1d
SHA512

7c3f9e4d5684bf8d5863092f2fc7c4e48c574d0c4f0f1e1471c86517ee7e8fb9e354d1f9f5e8b05fa2a57e8f6b2e50ce1e1f17e59f49fac6d39184d63ea735e0
SSDEEP

12288:x7HNUZryZDrift/La096wwq6F6AsX3Z8AolzbziHlhx2wlb7Y/c9JGCsqmAjuGtM:JhhufUjU6IA+alOHYMqf8moJ+bd5tKS

Score

1^/10

Malware Config

Signatures

Files

MDE_File_Sample_4531f64469e1dd1253d7dce7fc7f4dfe40ed234c.zip
.zip

Password: infected
2345PDF???bd_7525483843712422413_300002_v2.6.0.753.exe
.exe windows x86

276a5fb5b6a7f70bffe8939d7a344866

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:ea:0d:de:d5:5e:c1:e1:a2:9f:c5:fb:5d:ab:4f:b2
Certificate

Issuer

CN=DigiCert EV Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

19/05/2020, 00:00

Not After

18/05/2023, 12:00

Subject

SERIALNUMBER=91310115591679552Q,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=Shanghai,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13085368616e67686169,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:d0:e3:37:4a:c9:5b:db:fa:6b:43:4b:2a:48:ec:06
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

05:aa:43:30:0d:17:67:ac:12:49:43:54:21:65:bb:9e
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

19/05/2020, 00:00

Not After

18/05/2023, 12:00

Subject

SERIALNUMBER=91310115591679552Q,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=Shanghai,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13085368616e67686169,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1d:86:cf:cc:69:de:5b:72:a8:cf:8c:40:45:8f:a6:8c:c6:a9:63:45:35:2e:96:78:a0:4d:83:af:5b:52:4a:d4
Signer

Actual PE Digest

1d:86:cf:cc:69:de:5b:72:a8:cf:8c:40:45:8f:a6:8c:c6:a9:63:45:35:2e:96:78:a0:4d:83:af:5b:52:4a:d4

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=91310115591679552Q,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=Shanghai,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13085368616e67686169,1.3.6.1.4.1.311.60.2.1.3=#1302434e

23/09/2022, 08:46
Valid: true

Chain 1

SERIALNUMBER=91310115591679552Q,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=Shanghai,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13085368616e67686169,1.3.6.1.4.1.311.60.2.1.3=#1302434e

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

99:6d:c1:bb:34:cd:99:72:dd:6a:ea:a7:2d:50:dc:71:c9:f5:82:9c
Signer

Actual PE Digest

99:6d:c1:bb:34:cd:99:72:dd:6a:ea:a7:2d:50:dc:71:c9:f5:82:9c

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

SERIALNUMBER=91310115591679552Q,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=Shanghai,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13085368616e67686169,1.3.6.1.4.1.311.60.2.1.3=#1302434e

23/09/2022, 08:46
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

psapi

GetMappedFileNameW

kernel32

GetProcessHeap
GetEnvironmentVariableW
lstrcpyW
lstrcmpiW
LockResource
GetSystemInfo
LoadResource
FindResourceW
QueryDosDeviceW
ResumeThread
ReadFile
WriteFile
SetFilePointer
SetEndOfFile
DeleteFileW
GetFileSizeEx
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetTickCount
FindNextFileW
SetFileTime
GetFileSize
GetFileTime
CreateDirectoryW
GetFullPathNameW
RemoveDirectoryW
GetTempPathW
SetFileAttributesW
GetCurrentDirectoryW
MoveFileExW
GetTempFileNameW
MoveFileW
LoadLibraryW
FreeLibrary
LoadLibraryExW
WaitForMultipleObjects
GetCurrentProcessId
GetLogicalDriveStringsW
CreateEventW
SetEvent
ResetEvent
InterlockedExchangeAdd
FormatMessageW
GetACP
MultiByteToWideChar
WideCharToMultiByte
InterlockedExchange
SetLastError
GlobalMemoryStatusEx
SizeofResource
InterlockedDecrement
InterlockedIncrement
MulDiv
lstrcmpW
SetWaitableTimer
CreateWaitableTimerW
HeapAlloc
GlobalLock
GlobalUnlock
UnmapViewOfFile
CreateFileMappingW
MapViewOfFileEx
FreeResource
QueryPerformanceFrequency
QueryPerformanceCounter
HeapFree
GetModuleHandleA
DisableThreadLibraryCalls
TlsAlloc
CreateThread
TlsGetValue
VirtualProtect
GetModuleHandleExW
OutputDebugStringA
HeapCreate
HeapDestroy
FlushInstructionCache
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
OutputDebugStringW
InterlockedPopEntrySList
InterlockedPushEntrySList
VirtualAlloc
VirtualFree
LoadLibraryExA
ExitProcess
InterlockedCompareExchange
Thread32Next
Thread32First
SuspendThread
CreateToolhelp32Snapshot
HeapReAlloc
GetThreadContext
SetThreadContext
OpenThread
VirtualQuery
RtlUnwind
ExitThread
FreeLibraryAndExitThread
GetStdHandle
GetFileType
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetTimeZoneInformation
HeapSize
GetConsoleMode
ReadConsoleW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCommandLineA
GetCommandLineW
LocalFree
GlobalFree
GlobalAlloc
OpenProcess
GetVersionExW
LocalAlloc
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
Sleep
ReleaseMutex
SetStdHandle
FlushFileBuffers
GetConsoleCP
SetFilePointerEx
WriteConsoleW
FileTimeToSystemTime
DeviceIoControl
CreateMutexW
GetFileAttributesExW
CreateFileW
GetLongPathNameW
GetModuleHandleW
GetProcAddress
GetCurrentThreadId
lstrcatW
GetFileAttributesW
FindClose
lstrcpynW
lstrlenW
FindFirstFileW
GetExitCodeProcess
CreateProcessW
CloseHandle
WaitForSingleObject
SetErrorMode
TerminateProcess
LCMapStringW
ExpandEnvironmentStringsW
GetCurrentProcess
DeleteCriticalSection
DecodePointer
RaiseException
GetLastError
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
GetCPInfo
GetStringTypeW
GetLocaleInfoW
TlsFree
SwitchToThread
TlsSetValue
EncodePointer
CompareStringW
GetSystemTimeAsFileTime

user32

SetRectEmpty
SystemParametersInfoW
AttachThreadInput
SetCaretPos
LoadImageW
LoadBitmapW
IsClipboardFormatAvailable
SetClipboardData
GetClipboardData
EmptyClipboard
CloseClipboard
DrawIconEx
GetIconInfo
GetSystemMetrics
GetSysColor
GetAncestor
RegisterWindowMessageW
EnumThreadWindows
CreateAcceleratorTableW
ShowWindow
LoadStringW
GetFocus
GetAsyncKeyState
InvalidateRgn
OpenClipboard
GetMonitorInfoW
IsChild
MapWindowPoints
ValidateRect
MoveWindow
SetFocus
MsgWaitForMultipleObjects
GetClassNameW
SetParent
GetWindowTextLengthW
AdjustWindowRectEx
ShowWindowAsync
GetWindow
FillRect
RemovePropW
GetForegroundWindow
SetPropW
GetDlgItem
BeginPaint
EndPaint
GetDC
IsWindowVisible
MonitorFromWindow
SetWindowRgn
UpdateLayeredWindow
UnionRect
PtInRect
SetRect
GetKeyboardState
GetCaretBlinkTime
ToAscii
BringWindowToTop
EnableWindow
GetWindowTextW
GetKeyState
ScreenToClient
TrackMouseEvent
SetCapture
ReleaseCapture
GetMessageW
DispatchMessageW
PeekMessageW
TranslateMessage
PostQuitMessage
SetTimer
GetClassLongW
KillTimer
SetWindowTextW
DialogBoxParamW
GetWindowRect
SetWindowPos
EqualRect
EnumChildWindows
OffsetRect
RedrawWindow
CopyRect
ClientToScreen
IntersectRect
GetWindowDC
SetCursor
GetClientRect
IsZoomed
GetParent
InvalidateRect
GetDCEx
IsIconic
ReleaseDC
GetCursorPos
CreateWindowExW
RegisterClassExW
IsWindow
IsRectEmpty
LoadCursorW
GetClassInfoExW
CharPrevW
CharNextW
EndDialog
GetWindowLongW
DefWindowProcW
CallWindowProcW
DestroyWindow
SendMessageW
GetActiveWindow
LoadIconW
SetWindowLongW
GetDesktopWindow
SetForegroundWindow
MessageBoxW
UnregisterClassW
PostMessageW
GetWindowThreadProcessId
GetPropW
DestroyAcceleratorTable

gdi32

SetGraphicsMode
CreateFontIndirectW
CreateSolidBrush
SetBkColor
SetTextColor
GetClipBox
GetStockObject
EnumFontsW
PtInRegion
CreateRoundRectRgn
CreateDIBSection
GetDIBits
CreateDCW
ExtTextOutW
SetWorldTransform
CreateRectRgnIndirect
CreatePolygonRgn
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
SetViewportOrgEx
DeleteObject
GetObjectW
DeleteDC
GetRgnBox

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
RegCloseKey
RegQueryInfoKeyW
RegDeleteValueW
RegCreateKeyExW
RegEnumKeyExW

shell32

SHGetSpecialFolderPathW
DragFinish
DragQueryFileW
SHGetFolderPathW
SHGetPathFromIDListW
ShellExecuteExW
SHBrowseForFolderW

ole32

CoTaskMemAlloc
OleLockRunning
CLSIDFromString
OleInitialize
CLSIDFromProgID
StringFromGUID2
OleUninitialize
CoGetClassObject
CreateStreamOnHGlobal
CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance

oleaut32

VarUI4FromStr
LoadTypeLi
SysAllocString
LoadRegTypeLi
VariantInit
SysFreeString
OleCreateFontIndirect
DispCallFunc
SysStringLen
SysAllocStringLen
VariantClear

shlwapi

StrDupW
PathFindFileNameW
StrToIntA
ord12
PathAppendW

comctl32

_TrackMouseEvent
InitCommonControlsEx

msimg32

AlphaBlend

urlmon

CoInternetCreateSecurityManager
CoInternetCreateZoneManager

imm32

ImmAssociateContextEx
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmNotifyIME

winmm

timeGetTime

gdiplus

GdipDrawRectangle
GdipDrawLine
GdipSetPenDashStyle
GdipGraphicsClear
GdipMultiplyWorldTransform
GdipGetPathWorldBounds
GdipFillPath
GdipTransformRegion
GdipSetStringFormatTrimming
GdipGetFontStyle
GdipCreateSolidFill
GdipCloneBitmapArea
GdipGetCellDescent
GdipSetInterpolationMode
GdipSetLinePresetBlend
GdipCreateFont
GdipSetStringFormatLineAlign
GdipCreatePath
GdipEndContainer
GdipSetSmoothingMode
GdipCreateMatrix
GdipGetStringFormatAlign
GdipDeletePath
GdipDisposeImageAttributes
GdipCreateMatrix2
GdipDeleteBrush
GdipGetLineSpacing
GdipSetLineWrapMode
GdipCreateLineBrushI
GdipDrawImageRectRect
GdipSaveGraphics
GdipCreateFontFamilyFromName
GdipGetEmHeight
GdipGetStringFormatLineAlign
GdipAddPathString
GdipGetTextRenderingHint
GdipGetFamily
GdipSetCompositingQuality
GdipSetImageAttributesColorMatrix
GdipGetLineTransform
GdipDeleteFontFamily
GdipGetInterpolationMode
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageSelectActiveFrame
GdipGetPropertyItem
GdipImageGetFrameDimensionsCount
GdipCreateRegionPath
GdipAddPathLineI
GdipAddPathBezierI
GdipCombineRegionPath
GdipAddPathEllipseI
GdipAddPathArcI
GdipAddPathRectangleI
GdipCombineRegionRegion
GdipGetBrushType
GdipSetLineTransform
GdipScaleWorldTransform
GdiplusShutdown
GdiplusStartup
GdipSetCompositingMode
GdipClosePathFigure
GdipGetSmoothingMode
GdipDrawArcI
GdipCreateImageAttributes
GdipSetClipRegion
GdipDrawPath
GdipDrawString
GdipSetImageAttributesWrapMode
GdipGetClipBoundsI
GdipCreateFromHDC
GdipFillEllipse
GdipBeginContainer2
GdipCreateTexture
GdipGetTextureTransform
GdipGetMatrixElements
GdipCloneStringFormat
GdipSetTextRenderingHint
GdipGetCellAscent
GdipStringFormatGetGenericTypographic
GdipRotateWorldTransform
GdipRestoreGraphics
GdipCloneBrush
GdipMeasureString
GdipDeleteRegion
GdipGetImageGraphicsContext
GdipFillRectangleI
ord1
GdipDeleteGraphics
GdipDeleteStringFormat
GdipDeleteFont
GdipGetFontSize
GdipTranslateWorldTransform
GdipDeletePen
GdipCreatePen1
GdipSetStringFormatAlign
GdipDrawImageRectRectI
GdipDeleteMatrix
GdipGetFamilyName
GdipCloneRegion
GdipSetStringFormatFlags
GdipGetImageHeight
GdipCloneImage
GdipBitmapUnlockBits
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipGetImagePixelFormat
GdipCloneBitmapAreaI
GdipFree
GdipBitmapLockBits
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipSetPixelOffsetMode
GdipSetTextureTransform
GdipSetClipRectI
GdipCreateHBITMAPFromBitmap

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 302KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

276a5fb5b6a7f70bffe8939d7a344866

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

06:ea:0d:de:d5:5e:c1:e1:a2:9f:c5:fb:5d:ab:4f:b2Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0d:d0:e3:37:4a:c9:5b:db:fa:6b:43:4b:2a:48:ec:06Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

05:aa:43:30:0d:17:67:ac:12:49:43:54:21:65:bb:9eCertificate

Extended Key Usages

Key Usages

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

1d:86:cf:cc:69:de:5b:72:a8:cf:8c:40:45:8f:a6:8c:c6:a9:63:45:35:2e:96:78:a0:4d:83:af:5b:52:4a:d4Signer

Signature Validations

Verification

23/09/2022, 08:46 Valid: true

Chain 1

99:6d:c1:bb:34:cd:99:72:dd:6a:ea:a7:2d:50:dc:71:c9:f5:82:9cSigner

Signature Validations

Verification

23/09/2022, 08:46 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

version

psapi

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

urlmon

imm32

winmm

gdiplus

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 302KB - Virtual size: 302KB

.data Size: 18KB - Virtual size: 28KB

_RDATA Size: 2KB - Virtual size: 1KB

.rsrc Size: 118KB - Virtual size: 118KB

.reloc Size: 77KB - Virtual size: 77KB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

06:ea:0d:de:d5:5e:c1:e1:a2:9f:c5:fb:5d:ab:4f:b2
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0d:d0:e3:37:4a:c9:5b:db:fa:6b:43:4b:2a:48:ec:06
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

05:aa:43:30:0d:17:67:ac:12:49:43:54:21:65:bb:9e
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

1d:86:cf:cc:69:de:5b:72:a8:cf:8c:40:45:8f:a6:8c:c6:a9:63:45:35:2e:96:78:a0:4d:83:af:5b:52:4a:d4
Signer

23/09/2022, 08:46
Valid: true

99:6d:c1:bb:34:cd:99:72:dd:6a:ea:a7:2d:50:dc:71:c9:f5:82:9c
Signer

23/09/2022, 08:46
Valid: false

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 302KB - Virtual size: 302KB

.data
Size: 18KB - Virtual size: 28KB

_RDATA
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 118KB - Virtual size: 118KB

.reloc
Size: 77KB - Virtual size: 77KB