MultiBit[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

MultiBit.zip
Size

8.5MB
MD5

83c6487305e3aca80663e3ccf254e05e
SHA1

f95ff2bbd42c5b03c929f72c376e80c49e066b3e
SHA256

40702b0d2a57d292c5bdfbf1ab1db3da71dacc942dc6838b10458f185800d6e5
SHA512

79f6ed94cd0f75ce5ec2c17c9c534b0b7461939fb7a5fe7f9af5bb6fd2135d6d65476f3234f5e01b47e7a408b5c9fce64047a702c0948f38c3125a6a5e6969e3
SSDEEP

196608:GTUol9xlZ+vkEdDVCV5jB6VKQ0rWFNINF4N+L/EVdUwCVUgv6nbZ6RHdAVyRu6F+:GTUiGMIsfwUU+rEVCegubZSHdJRu6Fl4

Score

7^/10

agilenet

Malware Config

Signatures

Obfuscated with Agile.Net obfuscator 8 IoCs

Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

agilenet

Processes:

resource	yara_rule
static1/unpack001/MultiBit/Bunifu.Licensing.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.1.5.3.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.BunifuButton.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.BunifuImageButton.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.BunifuPanel.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.BunifuSeparator.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.BunifuShadowPanel.dll	agile_net
static1/unpack001/MultiBit/Bunifu.UI.WinForms.BunifuTransition.dll	agile_net

Files

MultiBit.zip
.zip
MultiBit/Bunifu.Licensing.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.1.5.3.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ac:3d:f6:13:0b:ef:3d:ad:ee:e4:fd:8c:3c:18:68:cf:d7:ef:4c:26
Signer

Actual PE Digest

ac:3d:f6:13:0b:ef:3d:ad:ee:e4:fd:8c:3c:18:68:cf:d7:ef:4c:26

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:40
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.BunifuButton.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d0:8d:57:1b:52:d7:be:48:23:e9:37:e5:ab:6d:95:2f:4f:bf:24:b8
Signer

Actual PE Digest

d0:8d:57:1b:52:d7:be:48:23:e9:37:e5:ab:6d:95:2f:4f:bf:24:b8

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:40
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.BunifuImageButton.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

85:75:47:e5:a0:ce:56:a4:30:b7:8e:d1:89:d7:a3:25:47:33:bf:06
Signer

Actual PE Digest

85:75:47:e5:a0:ce:56:a4:30:b7:8e:d1:89:d7:a3:25:47:33:bf:06

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:40
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.BunifuPanel.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:b5:a2:14:1a:92:82:9c:49:bd:88:24:15:7a:21:7a:5c:6b:37:b4
Signer

Actual PE Digest

39:b5:a2:14:1a:92:82:9c:49:bd:88:24:15:7a:21:7a:5c:6b:37:b4

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:40
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.BunifuSeparator.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

36:97:1d:42:10:04:d8:b9:bf:a7:71:72:bb:15:49:e8:e9:56:fa:ab
Signer

Actual PE Digest

36:97:1d:42:10:04:d8:b9:bf:a7:71:72:bb:15:49:e8:e9:56:fa:ab

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:40
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.BunifuShadowPanel.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

91:6d:6a:ef:09:36:9a:2f:c3:92:f0:3e:ec:3a:aa:d6:af:09:b2:5f
Signer

Actual PE Digest

91:6d:6a:ef:09:36:9a:2f:c3:92:f0:3e:ec:3a:aa:d6:af:09:b2:5f

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:40
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Bunifu.UI.WinForms.BunifuTransition.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

Issuer

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

31-03-2021 00:00

Not After

31-03-2022 23:59

Subject

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03-12-2014 00:00

Not After

02-12-2029 23:59

Subject

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c5:85:b0:3d:ce:4f:54:f3:98:13:e2:a7:62:3c:ad:e0:85:03:42:48
Signer

Actual PE Digest

c5:85:b0:3d:ce:4f:54:f3:98:13:e2:a7:62:3c:ad:e0:85:03:42:48

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

23-04-2021 11:41
Valid: true

Chain 1

SERIALNUMBER=CPR/2014/141232,CN=Bunifu Technologies Limited,O=Bunifu Technologies Limited,L=Ngong,C=KE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024b45

CN=COMODO RSA Extended Validation Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Leaf.xNet.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/MultiBit.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/Qt5Core.dll
.dll windows x86

92fc526ad6d9674f09604104cfa57819

Code Sign

07:e2:ef:84:3d:0d:6f:58:cb:bb:06:e3:e8:b3:d3:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06-10-2020 00:00

Not After

31-12-2023 12:00

Subject

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-10-2019 00:00

Not After

17-10-2030 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6f:d0:cd:69:d8:60:9c:57:66:c3:32:43:7c:7d:f9:9a:f1:de:39:78:5e:2e:38:17:69:66:8c:4a:5f:64:39:56
Signer

Actual PE Digest

6f:d0:cd:69:d8:60:9c:57:66:c3:32:43:7c:7d:f9:9a:f1:de:39:78:5e:2e:38:17:69:66:8c:4a:5f:64:39:56

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

06-11-2020 05:29
Valid: true

Chain 1

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetUniversalNameW

userenv

GetUserProfileDirectoryW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

netapi32

NetShareEnum
NetApiBufferFree

ws2_32

WSAStartup
WSAAsyncSelect
WSACleanup
gethostname

advapi32

RegCreateKeyExW
GetSidSubAuthorityCount
GetSidSubAuthority
BuildTrusteeWithSidW
GetNamedSecurityInfoW
GetEffectiveRightsFromAclW
LookupAccountSidW
MapGenericMask
GetTokenInformation
GetLengthSid
FreeSid
DuplicateToken
CopySid
AllocateAndInitializeSid
AccessCheck
OpenProcessToken
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SystemFunction036
RegEnumKeyExW
RegQueryInfoKeyW
RegFlushKey
RegDeleteKeyW
RegDeleteValueW
RegEnumValueW
RegSetValueExW

kernel32

ReleaseMutex
CreateMutexW
VirtualAlloc
VirtualFree
CreateSemaphoreW
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
GetNativeSystemInfo
GetModuleFileNameW
GetModuleHandleExW
OutputDebugStringW
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetConsoleWindow
GetModuleHandleW
GetProcAddress
CloseHandle
DuplicateHandle
GetLastError
SetEvent
WaitForSingleObject
CreateEventW
Sleep
WaitForMultipleObjects
SwitchToThread
CreateThread
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemInfo
WaitForSingleObjectEx
ResetEvent
GetStartupInfoW
CompareStringEx
GetDateFormatW
GetTimeFormatW
GetLocaleInfoW
GetCurrencyFormatW
GetUserDefaultLCID
GetUserPreferredUILanguages
CompareStringW
LCMapStringW
GetSystemTime
GetLocalTime
GetTimeZoneInformation
GetGeoInfoW
GetUserGeoID
CreateFileW
GetFileAttributesExW
FindCloseChangeNotification
FindFirstChangeNotificationW
FindNextChangeNotification
GetDriveTypeW
GetStdHandle
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetFilePointer
ConnectNamedPipe
CreateNamedPipeW
GetExitCodeProcess
CreateProcessW
GetProcessId
FlushFileBuffers
GetFileType
GetLogicalDrives
GetVolumeInformationW
ReadFile
SetEndOfFile
SetFilePointerEx
WriteFile
SetErrorMode
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
OpenProcess
FreeLibrary
LoadLibraryA
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindClose
FindFirstFileW
GetFileAttributesW
GetFileInformationByHandle
GetFullPathNameW
GetLongPathNameW
RemoveDirectoryW
SetFileTime
GetTempPathW
GetVolumePathNamesForVolumeNameW
DeviceIoControl
LocalFree
CopyFileW
MoveFileW
MoveFileExW
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
SystemTimeToFileTime
GetFileInformationByHandleEx
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetVolumePathNameW
GetVolumeNameForVolumeMountPointW
ReadFileEx
PeekNamedPipe
CancelIoEx
SleepEx
WriteFileEx
GetSystemDirectoryW
LoadLibraryW
GetCommandLineW
GetCurrentProcessId
FormatMessageW
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount64
UnregisterWaitEx
RegisterWaitForSingleObject
VirtualQuery
OpenFileMappingW
ReleaseSemaphore
WideCharToMultiByte

ole32

CoCreateGuid
CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree

shell32

SHFileOperationW
SHCreateItemFromParsingName
CommandLineToArgvW
SHGetKnownFolderPath

user32

DestroyWindow
GetQueueStatus
MsgWaitForMultipleObjectsEx
SetTimer
KillTimer
GetWindowLongW
SetWindowLongW
UnregisterClassW
UnhookWindowsHookEx
CallNextHookEx
CharNextExA
PostThreadMessageW
PostMessageW
UnregisterDeviceNotification
RegisterDeviceNotificationW
MessageBoxW
CreateWindowExW
EnumWindows
DefWindowProcW
PeekMessageW
TranslateMessage
DispatchMessageW
SetWindowsHookExW
GetWindowThreadProcessId
RegisterClassW

winmm

timeSetEvent
timeKillEvent

msvcp140

?_Xbad_alloc@std@@YAXXZ
??Bid@locale@std@@QAEIXZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@D@std@@QBEDD@Z
??1_Lockit@std@@QAE@XZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
?_Throw_future_error@std@@YAXABVerror_code@1@@Z
?_Xbad_function_call@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Execute_once@std@@YAHAAUonce_flag@1@P6GHPAX1PAPAX@Z1@Z
?_Xlength_error@std@@YAXPBD@Z
?classic@locale@std@@SAABV12@XZ

msvcp140_1

_Aligned_get_default_resource

vcruntime140

strrchr
__current_exception
__std_type_info_destroy_list
wcschr
strchr
__current_exception_context
_except_handler4_common
memchr
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__CxxFrameHandler3
memcpy
memmove
_purecall
__std_terminate
memset

api-ms-win-crt-runtime-l1-1-0

exit
_errno
_initialize_onexit_table
_invalid_parameter_noinfo_noreturn
_register_onexit_function
terminate
_execute_onexit_table
_initialize_narrow_environment
_cexit
_configure_narrow_argv
_initterm_e
_seh_filter_dll
_crt_atexit
_initterm
_endthreadex
__p___argv
__p___argc
abort
strerror

api-ms-win-crt-heap-l1-1-0

_callnewh
realloc
malloc
free
calloc

api-ms-win-crt-environment-l1-1-0

_putenv_s
_wgetdcwd
__p__environ
getenv_s
_wgetenv_s

api-ms-win-crt-stdio-l1-1-0

fputs
__stdio_common_vswprintf
_fileno
__acrt_iob_func
_get_osfhandle
_open_osfhandle
_read
_close
fwrite
_fseeki64
fclose
fgets
feof
__stdio_common_vfprintf
_ftelli64
_open
__stdio_common_vsnprintf_s
_lseeki64
_wopen
__stdio_common_vsprintf
fflush
_write
fread

api-ms-win-crt-time-l1-1-0

_mktime64
_get_tzname
_localtime64_s
_tzset
_get_timezone

api-ms-win-crt-math-l1-1-0

_CIatan2
_libm_sse2_acos_precise
round
_libm_sse2_sin_precise
ceil
floor
_fdclass
_libm_sse2_log10_precise
hypot
_dclass
_libm_sse2_sqrt_precise
_libm_sse2_pow_precise
_libm_sse2_asin_precise
_libm_sse2_cos_precise

api-ms-win-crt-string-l1-1-0

strncpy
strcpy_s
strncmp
strncpy_s

api-ms-win-crt-utility-l1-1-0

rand_s
rand
srand

api-ms-win-crt-convert-l1-1-0

wcstombs

api-ms-win-crt-filesystem-l1-1-0

_wchmod
_waccess
_getdrive

Exports

Exports

??$qbswap@$01@@YAPAXPBXHPAX@Z
??$qbswap@$03@@YAPAXPBXHPAX@Z
??$qbswap@$07@@YAPAXPBXHPAX@Z
??0?$QList@VQItemSelectionRange@@@@QAE@$$QAV0@@Z
??0?$QList@VQItemSelectionRange@@@@QAE@ABV0@@Z
??0?$QList@VQItemSelectionRange@@@@QAE@V?$initializer_list@VQItemSelectionRange@@@std@@@Z
??0?$QList@VQItemSelectionRange@@@@QAE@XZ
??0?$QVector@VQPoint@@@@QAE@$$QAV0@@Z
??0?$QVector@VQPoint@@@@QAE@ABV0@@Z
??0?$QVector@VQPoint@@@@QAE@H@Z
??0?$QVector@VQPoint@@@@QAE@HABVQPoint@@@Z
??0?$QVector@VQPoint@@@@QAE@U?$QArrayDataPointerRef@VQPoint@@@@@Z
??0?$QVector@VQPoint@@@@QAE@V?$initializer_list@VQPoint@@@std@@@Z
??0?$QVector@VQPoint@@@@QAE@XZ
??0?$QVector@VQPointF@@@@QAE@$$QAV0@@Z
??0?$QVector@VQPointF@@@@QAE@ABV0@@Z
??0?$QVector@VQPointF@@@@QAE@H@Z
??0?$QVector@VQPointF@@@@QAE@HABVQPointF@@@Z
??0?$QVector@VQPointF@@@@QAE@U?$QArrayDataPointerRef@VQPointF@@@@@Z
??0?$QVector@VQPointF@@@@QAE@V?$initializer_list@VQPointF@@@std@@@Z
??0?$QVector@VQPointF@@@@QAE@XZ
??0?$QVector@VQXmlStreamAttribute@@@@QAE@$$QAV0@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QAE@ABV0@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QAE@H@Z
??0?$QVector@VQXmlStreamAttribute@@@@QAE@HABVQXmlStreamAttribute@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QAE@U?$QArrayDataPointerRef@VQXmlStreamAttribute@@@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QAE@V?$initializer_list@VQXmlStreamAttribute@@@std@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QAE@XZ
??0Connection@QMetaObject@@AAE@PAX@Z
??0Connection@QMetaObject@@QAE@$$QAV01@@Z
??0Connection@QMetaObject@@QAE@ABV01@@Z
??0Connection@QMetaObject@@QAE@XZ
??0ConverterState@QTextCodec@@QAE@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z
??0ExceptionHolder@QtPrivate@@QAE@ABV01@@Z
??0ExceptionHolder@QtPrivate@@QAE@PAVQException@@@Z
??0ExceptionStore@QtPrivate@@QAE@$$QAV01@@Z
??0ExceptionStore@QtPrivate@@QAE@ABV01@@Z
??0ExceptionStore@QtPrivate@@QAE@XZ
??0QAbstractAnimation@@IAE@AAVQAbstractAnimationPrivate@@PAVQObject@@@Z
??0QAbstractAnimation@@QAE@PAVQObject@@@Z
??0QAbstractAnimationTimer@@QAE@XZ
??0QAbstractDynamicMetaObject@@QAE@ABU0@@Z
??0QAbstractDynamicMetaObject@@QAE@XZ
??0QAbstractEventDispatcher@@IAE@AAVQAbstractEventDispatcherPrivate@@PAVQObject@@@Z
??0QAbstractEventDispatcher@@QAE@PAVQObject@@@Z
??0QAbstractEventDispatcherPrivate@@QAE@XZ
??0QAbstractFileEngine@@IAE@AAVQAbstractFileEnginePrivate@@@Z
??0QAbstractFileEngine@@IAE@XZ
??0QAbstractFileEngineHandler@@QAE@ABV0@@Z
??0QAbstractFileEngineHandler@@QAE@XZ
??0QAbstractFileEngineIterator@@QAE@V?$QFlags@W4Filter@QDir@@@@ABVQStringList@@@Z
??0QAbstractItemModel@@IAE@AAVQAbstractItemModelPrivate@@PAVQObject@@@Z
??0QAbstractItemModel@@QAE@PAVQObject@@@Z
??0QAbstractItemModelPrivate@@QAE@XZ
??0QAbstractListModel@@IAE@AAVQAbstractItemModelPrivate@@PAVQObject@@@Z
??0QAbstractListModel@@QAE@PAVQObject@@@Z
??0QAbstractMetaCallEvent@@QAE@ABV0@@Z
??0QAbstractMetaCallEvent@@QAE@PBVQObject@@HPAVQSemaphore@@@Z
??0QAbstractNativeEventFilter@@QAE@XZ
??0QAbstractProxyModel@@IAE@AAVQAbstractProxyModelPrivate@@PAVQObject@@@Z
??0QAbstractProxyModel@@QAE@PAVQObject@@@Z
??0QAbstractProxyModelPrivate@@QAE@XZ
??0QAbstractState@@IAE@AAVQAbstractStatePrivate@@PAVQState@@@Z
??0QAbstractState@@IAE@PAVQState@@@Z
??0QAbstractTableModel@@IAE@AAVQAbstractItemModelPrivate@@PAVQObject@@@Z
??0QAbstractTableModel@@QAE@PAVQObject@@@Z
??0QAbstractTransition@@IAE@AAVQAbstractTransitionPrivate@@PAVQState@@@Z
??0QAbstractTransition@@QAE@PAVQState@@@Z
??0QAbstractTransitionPrivate@@QAE@XZ
??0QAnimationDriver@@IAE@AAVQAnimationDriverPrivate@@PAVQObject@@@Z
??0QAnimationDriver@@QAE@PAVQObject@@@Z
??0QAnimationDriverPrivate@@QAE@XZ
??0QAnimationGroup@@IAE@AAVQAnimationGroupPrivate@@PAVQObject@@@Z
??0QAnimationGroup@@QAE@PAVQObject@@@Z
??0QArrayData@@QAE@XZ
??0QAssociativeIterable@@QAE@VQAssociativeIterableImpl@QtMetaTypePrivate@@@Z
??0QBasicMutex@@QAE@XZ
??0QBasicTimer@@QAE@$$QAV0@@Z
??0QBasicTimer@@QAE@ABV0@@Z
??0QBasicTimer@@QAE@XZ
??0QBinaryJsonValue@@AAE@PAVMutableData@QBinaryJsonPrivate@@PAVBase@2@ABVValue@2@@Z
??0QBinaryJsonValue@@QAE@$$QAV0@@Z
??0QBinaryJsonValue@@QAE@ABVQBinaryJsonArray@@@Z
??0QBinaryJsonValue@@QAE@ABVQBinaryJsonObject@@@Z
??0QBinaryJsonValue@@QAE@N@Z
??0QBinaryJsonValue@@QAE@VQString@@@Z
??0QBinaryJsonValue@@QAE@W4Type@QJsonValue@@@Z
??0QBinaryJsonValue@@QAE@_N@Z
??0QBitArray@@QAE@$$QAV0@@Z
??0QBitArray@@QAE@ABV0@@Z
??0QBitArray@@QAE@H_N@Z
??0QBitArray@@QAE@XZ
??0QBitRef@@AAE@AAVQBitArray@@H@Z
??0QBuffer@@QAE@PAVQByteArray@@PAVQObject@@@Z
??0QBuffer@@QAE@PAVQObject@@@Z
??0QByteArray@@QAE@$$QAV0@@Z
??0QByteArray@@QAE@ABV0@@Z
??0QByteArray@@QAE@HD@Z
??0QByteArray@@QAE@HW4Initialization@Qt@@@Z
??0QByteArray@@QAE@PBDH@Z
??0QByteArray@@QAE@UQByteArrayDataPtr@@@Z
??0QByteArray@@QAE@XZ
??0QByteArrayMatcher@@QAE@ABV0@@Z
??0QByteArrayMatcher@@QAE@ABVQByteArray@@@Z
??0QByteArrayMatcher@@QAE@PBDH@Z
??0QByteArrayMatcher@@QAE@XZ
??0QByteRef@@AAE@AAVQByteArray@@H@Z
??0QCalendar@@QAE@VQLatin1String@@@Z
??0QCalendar@@QAE@VQStringView@@@Z
??0QCalendar@@QAE@W4System@0@@Z
??0QCalendar@@QAE@XZ
??0QCalendarBackend@@IAE@ABVQString@@W4System@QCalendar@@@Z
??0QCalendarBackend@@QAE@ABV0@@Z
??0QCborArray@@AAE@AAVQCborContainerPrivate@@@Z
??0QCborArray@@QAE@ABV0@@Z
??0QCborArray@@QAE@V?$initializer_list@VQCborValue@@@std@@@Z
??0QCborArray@@QAE@XZ
??0QCborMap@@AAE@AAVQCborContainerPrivate@@@Z
??0QCborMap@@QAE@ABV0@@Z
??0QCborMap@@QAE@V?$initializer_list@U?$QPair@VQCborValue@@V1@@@@std@@@Z
??0QCborMap@@QAE@XZ
??0QCborStreamReader@@QAE@ABVQByteArray@@@Z
??0QCborStreamReader@@QAE@PAVQIODevice@@@Z
??0QCborStreamReader@@QAE@PBDH@Z
??0QCborStreamReader@@QAE@PBEH@Z
??0QCborStreamReader@@QAE@XZ
??0QCborStreamWriter@@QAE@PAVQByteArray@@@Z
??0QCborStreamWriter@@QAE@PAVQIODevice@@@Z
??0QCborValue@@QAE@$$QAV0@@Z
??0QCborValue@@QAE@$$QAVQCborArray@@@Z
??0QCborValue@@QAE@$$QAVQCborMap@@@Z
??0QCborValue@@QAE@$$T@Z
??0QCborValue@@QAE@ABV0@@Z
??0QCborValue@@QAE@ABVQByteArray@@@Z
??0QCborValue@@QAE@ABVQCborArray@@@Z
??0QCborValue@@QAE@ABVQCborMap@@@Z
??0QCborValue@@QAE@ABVQDateTime@@@Z
??0QCborValue@@QAE@ABVQRegularExpression@@@Z
??0QCborValue@@QAE@ABVQString@@@Z
??0QCborValue@@QAE@ABVQUrl@@@Z
??0QCborValue@@QAE@ABVQUuid@@@Z
??0QCborValue@@QAE@H@Z
??0QCborValue@@QAE@I@Z
??0QCborValue@@QAE@N@Z
??0QCborValue@@QAE@PBD@Z
??0QCborValue@@QAE@VQLatin1String@@@Z
??0QCborValue@@QAE@VQStringView@@@Z
??0QCborValue@@QAE@W4QCborKnownTags@@ABV0@@Z
??0QCborValue@@QAE@W4QCborSimpleType@@@Z
??0QCborValue@@QAE@W4QCborTag@@ABV0@@Z
??0QCborValue@@QAE@W4Type@0@@Z
??0QCborValue@@QAE@XZ
??0QCborValue@@QAE@_J@Z
??0QCborValue@@QAE@_N@Z
??0QCborValueRef@@AAE@PAVQCborContainerPrivate@@H@Z
??0QCborValueRef@@AAE@XZ
??0QChar@@QAE@D@Z
??0QChar@@QAE@E@Z
??0QChar@@QAE@EE@Z
??0QChar@@QAE@F@Z
??0QChar@@QAE@G@Z
??0QChar@@QAE@H@Z
??0QChar@@QAE@I@Z
??0QChar@@QAE@UQLatin1Char@@@Z
??0QChar@@QAE@W4SpecialCharacter@0@@Z
??0QChar@@QAE@XZ
??0QChar@@QAE@_S@Z
??0QChar@@QAE@_W@Z
??0QCharRef@@AAE@AAVQString@@H@Z
??0QChildEvent@@QAE@ABV0@@Z
??0QChildEvent@@QAE@W4Type@QEvent@@PAVQObject@@@Z
??0QCollator@@QAE@$$QAV0@@Z
??0QCollator@@QAE@ABV0@@Z
??0QCollator@@QAE@ABVQLocale@@@Z
??0QCollator@@QAE@XZ
??0QCollatorSortKey@@IAE@PAVQCollatorSortKeyPrivate@@@Z
??0QCollatorSortKey@@QAE@ABV0@@Z
??0QCommandLineOption@@QAE@ABV0@@Z
??0QCommandLineOption@@QAE@ABVQString@@000@Z
??0QCommandLineOption@@QAE@ABVQString@@@Z
??0QCommandLineOption@@QAE@ABVQStringList@@@Z
??0QCommandLineOption@@QAE@ABVQStringList@@ABVQString@@11@Z
??0QCommandLineParser@@QAE@XZ
??0QConcatenateTablesProxyModel@@QAE@PAVQObject@@@Z
??0QContiguousCacheData@@QAE@XZ
??0QCoreApplication@@IAE@AAVQCoreApplicationPrivate@@@Z
??0QCoreApplication@@QAE@AAHPAPADH@Z
??0QCoreApplicationPrivate@@QAE@AAHPAPADI@Z
??0QCryptographicHash@@QAE@W4Algorithm@0@@Z
??0QDaemonThread@@QAE@PAVQObject@@@Z
??0QDataStream@@QAE@ABVQByteArray@@@Z
??0QDataStream@@QAE@PAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??0QDataStream@@QAE@PAVQIODevice@@@Z
??0QDataStream@@QAE@XZ
??0QDate@@AAE@_J@Z
??0QDate@@QAE@HHH@Z
??0QDate@@QAE@HHHVQCalendar@@@Z
??0QDate@@QAE@XZ
??0QDateTime@@QAE@$$QAV0@@Z
??0QDateTime@@QAE@ABV0@@Z
??0QDateTime@@QAE@ABVQDate@@@Z
??0QDateTime@@QAE@ABVQDate@@ABVQTime@@ABVQTimeZone@@@Z
??0QDateTime@@QAE@ABVQDate@@ABVQTime@@W4TimeSpec@Qt@@@Z
??0QDateTime@@QAE@ABVQDate@@ABVQTime@@W4TimeSpec@Qt@@H@Z
??0QDateTime@@QAE@XZ
??0QDateTimeParser@@QAE@ABV0@@Z
??0QDateTimeParser@@QAE@W4Type@QMetaType@@W4Context@0@ABVQCalendar@@@Z
??0QDeadlineTimer@@QAE@W4ForeverConstant@0@W4TimerType@Qt@@@Z
??0QDeadlineTimer@@QAE@W4TimerType@Qt@@@Z
??0QDeadlineTimer@@QAE@_JW4TimerType@Qt@@@Z
??0QDebug@@QAE@$$QAV0@@Z
??0QDebug@@QAE@ABV0@@Z
??0QDebug@@QAE@PAVQIODevice@@@Z
??0QDebug@@QAE@PAVQString@@@Z
??0QDebug@@QAE@W4QtMsgType@@@Z
??0QDebugStateSaver@@QAE@AAVQDebug@@@Z
??0QDeferredDeleteEvent@@QAE@ABV0@@Z
??0QDeferredDeleteEvent@@QAE@XZ
??0QDir@@IAE@AAVQDirPrivate@@@Z
??0QDir@@QAE@ABV0@@Z
??0QDir@@QAE@ABVQString@@0V?$QFlags@W4SortFlag@QDir@@@@V?$QFlags@W4Filter@QDir@@@@@Z
??0QDir@@QAE@ABVQString@@@Z
??0QDirIterator@@QAE@ABVQDir@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QAE@ABVQString@@ABVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QAE@ABVQString@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QAE@ABVQString@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDynamicMetaObjectData@@QAE@ABU0@@Z
??0QDynamicMetaObjectData@@QAE@XZ
??0QDynamicPropertyChangeEvent@@QAE@ABV0@@Z
??0QDynamicPropertyChangeEvent@@QAE@ABVQByteArray@@@Z
??0QEasingCurve@@QAE@$$QAV0@@Z
??0QEasingCurve@@QAE@ABV0@@Z
??0QEasingCurve@@QAE@W4Type@0@@Z
??0QElapsedTimer@@QAE@XZ
??0QEvent@@QAE@ABV0@@Z
??0QEvent@@QAE@W4Type@0@@Z
??0QEventDispatcherWin32@@IAE@AAVQEventDispatcherWin32Private@@PAVQObject@@@Z
??0QEventDispatcherWin32@@QAE@PAVQObject@@@Z
??0QEventDispatcherWin32Private@@QAE@XZ
??0QEventLoop@@QAE@PAVQObject@@@Z
??0QEventLoopLocker@@QAE@PAVQEventLoop@@@Z
??0QEventLoopLocker@@QAE@PAVQThread@@@Z
??0QEventLoopLocker@@QAE@XZ
??0QEventTransition@@IAE@AAVQEventTransitionPrivate@@PAVQObject@@W4Type@QEvent@@PAVQState@@@Z
??0QEventTransition@@IAE@AAVQEventTransitionPrivate@@PAVQState@@@Z
??0QEventTransition@@QAE@PAVQObject@@W4Type@QEvent@@PAVQState@@@Z
??0QEventTransition@@QAE@PAVQState@@@Z
??0QEventTransitionPrivate@@QAE@XZ
??0QException@@QAE@ABV0@@Z
??0QException@@QAE@XZ
??0QFSFileEngine@@IAE@AAVQFSFileEnginePrivate@@@Z
??0QFSFileEngine@@QAE@ABVQString@@@Z
??0QFSFileEngine@@QAE@XZ
??0QFactoryInterface@@QAE@ABU0@@Z
??0QFactoryInterface@@QAE@XZ
??0QFactoryLoader@@QAE@PBDABVQString@@W4CaseSensitivity@Qt@@@Z
??0QFile@@IAE@AAVQFilePrivate@@PAVQObject@@@Z
??0QFile@@QAE@ABVQString@@@Z
??0QFile@@QAE@ABVQString@@PAVQObject@@@Z
??0QFile@@QAE@PAVQObject@@@Z
??0QFile@@QAE@XZ
??0QFileDevice@@IAE@AAVQFileDevicePrivate@@PAVQObject@@@Z
??0QFileDevice@@IAE@PAVQObject@@@Z
??0QFileDevice@@IAE@XZ
??0QFileInfo@@QAE@ABV0@@Z
??0QFileInfo@@QAE@ABVQDir@@ABVQString@@@Z
??0QFileInfo@@QAE@ABVQFile@@@Z
??0QFileInfo@@QAE@ABVQString@@@Z
??0QFileInfo@@QAE@PAVQFileInfoPrivate@@@Z
??0QFileInfo@@QAE@XZ
??0QFileSelector@@QAE@PAVQObject@@@Z
??0QFileSelectorPrivate@@QAE@XZ
??0QFileSystemWatcher@@QAE@ABVQStringList@@PAVQObject@@@Z
??0QFileSystemWatcher@@QAE@PAVQObject@@@Z
??0QFinalState@@IAE@AAVQFinalStatePrivate@@PAVQState@@@Z
??0QFinalState@@QAE@PAVQState@@@Z
??0QFinalStatePrivate@@QAE@XZ
??0QFutureInterfaceBase@@QAE@ABV0@@Z
??0QFutureInterfaceBase@@QAE@W4State@0@@Z
??0QFutureWatcherBase@@QAE@PAVQObject@@@Z
??0QGenericArgument@@QAE@PBDPBX@Z
??0QGenericReturnArgument@@QAE@PBDPAX@Z
??0QGregorianCalendar@@QAE@$$QAV0@@Z
??0QGregorianCalendar@@QAE@ABV0@@Z
??0QGregorianCalendar@@QAE@XZ
??0QHashData@@QAE@XZ
??0QHijriCalendar@@IAE@ABVQString@@W4System@QCalendar@@@Z
??0QHijriCalendar@@QAE@$$QAV0@@Z
??0QHijriCalendar@@QAE@ABV0@@Z
??0QHistoryState@@QAE@PAVQState@@@Z
??0QHistoryState@@QAE@W4HistoryType@0@PAVQState@@@Z
??0QIODevice@@IAE@AAVQIODevicePrivate@@PAVQObject@@@Z
??0QIODevice@@QAE@PAVQObject@@@Z
??0QIODevice@@QAE@XZ
??0QIODevicePrivate@@QAE@XZ
??0QIdentityProxyModel@@IAE@AAVQIdentityProxyModelPrivate@@PAVQObject@@@Z
??0QIdentityProxyModel@@QAE@PAVQObject@@@Z
??0QIslamicCivilCalendar@@QAE@$$QAV0@@Z
??0QIslamicCivilCalendar@@QAE@ABV0@@Z
??0QIslamicCivilCalendar@@QAE@XZ
??0QItemSelection@@QAE@$$QAV0@@Z
??0QItemSelection@@QAE@ABV0@@Z
??0QItemSelection@@QAE@ABVQModelIndex@@0@Z
??0QItemSelection@@QAE@XZ
??0QItemSelectionModel@@IAE@AAVQItemSelectionModelPrivate@@PAVQAbstractItemModel@@@Z
??0QItemSelectionModel@@QAE@PAVQAbstractItemModel@@@Z
??0QItemSelectionModel@@QAE@PAVQAbstractItemModel@@PAVQObject@@@Z
??0QItemSelectionRange@@QAE@$$QAV0@@Z
??0QItemSelectionRange@@QAE@ABV0@@Z
??0QItemSelectionRange@@QAE@ABVQModelIndex@@0@Z
??0QItemSelectionRange@@QAE@ABVQModelIndex@@@Z
??0QItemSelectionRange@@QAE@XZ
??0QJalaliCalendar@@QAE@$$QAV0@@Z
??0QJalaliCalendar@@QAE@ABV0@@Z
??0QJalaliCalendar@@QAE@XZ
??0QJsonArray@@AAE@PAVQCborContainerPrivate@@@Z
??0QJsonArray@@QAE@$$QAV0@@Z
??0QJsonArray@@QAE@ABV0@@Z
??0QJsonArray@@QAE@V?$initializer_list@VQJsonValue@@@std@@@Z
??0QJsonArray@@QAE@XZ
??0QJsonDocument@@AAE@ABVQCborValue@@@Z
??0QJsonDocument@@QAE@$$QAV0@@Z
??0QJsonDocument@@QAE@ABV0@@Z
??0QJsonDocument@@QAE@ABVQJsonArray@@@Z
??0QJsonDocument@@QAE@ABVQJsonObject@@@Z
??0QJsonDocument@@QAE@XZ
??0QJsonObject@@AAE@PAVQCborContainerPrivate@@@Z
??0QJsonObject@@QAE@$$QAV0@@Z
??0QJsonObject@@QAE@ABV0@@Z
??0QJsonObject@@QAE@V?$initializer_list@U?$QPair@VQString@@VQJsonValue@@@@@std@@@Z
??0QJsonObject@@QAE@XZ
??0QJsonValue@@QAE@$$QAV0@@Z
??0QJsonValue@@QAE@ABV0@@Z
??0QJsonValue@@QAE@ABVQJsonArray@@@Z
??0QJsonValue@@QAE@ABVQJsonObject@@@Z
??0QJsonValue@@QAE@ABVQString@@@Z
??0QJsonValue@@QAE@H@Z
??0QJsonValue@@QAE@N@Z
??0QJsonValue@@QAE@PBD@Z
??0QJsonValue@@QAE@VQLatin1String@@@Z
??0QJsonValue@@QAE@W4Type@0@@Z
??0QJsonValue@@QAE@_J@Z
??0QJsonValue@@QAE@_N@Z
??0QJsonValueRef@@QAE@PAVQJsonArray@@H@Z
??0QJsonValueRef@@QAE@PAVQJsonObject@@H@Z
??0QJulianCalendar@@QAE@$$QAV0@@Z
??0QJulianCalendar@@QAE@ABV0@@Z
??0QJulianCalendar@@QAE@XZ
??0QLibrary@@QAE@ABVQString@@0PAVQObject@@@Z
??0QLibrary@@QAE@ABVQString@@HPAVQObject@@@Z
??0QLibrary@@QAE@ABVQString@@PAVQObject@@@Z
??0QLibrary@@QAE@PAVQObject@@@Z
??0QLibraryInfo@@AAE@XZ
??0QLine@@QAE@ABVQPoint@@0@Z
??0QLine@@QAE@HHHH@Z
??0QLine@@QAE@XZ
??0QLineF@@QAE@ABVQLine@@@Z
??0QLineF@@QAE@ABVQPointF@@0@Z
??0QLineF@@QAE@NNNN@Z
??0QLineF@@QAE@XZ
??0QLocale@@AAE@AAVQLocalePrivate@@@Z
??0QLocale@@QAE@ABV0@@Z
??0QLocale@@QAE@ABVQString@@@Z
??0QLocale@@QAE@W4Language@0@W4Country@0@@Z
??0QLocale@@QAE@W4Language@0@W4Script@0@W4Country@0@@Z
??0QLocale@@QAE@XZ
??0QLocalePrivate@@QAE@XZ
??0QLockFile@@QAE@ABVQString@@@Z
??0QLoggingCategory@@QAE@PBD@Z
??0QLoggingCategory@@QAE@PBDW4QtMsgType@@@Z
??0QMapDataBase@@QAE@XZ
??0QMessageAuthenticationCode@@QAE@W4Algorithm@QCryptographicHash@@ABVQByteArray@@@Z
??0QMessageLogger@@QAE@PBDH00@Z
??0QMessageLogger@@QAE@PBDH0@Z
??0QMessageLogger@@QAE@XZ
??0QMetaCallEvent@@QAE@ABV0@@Z
??0QMetaCallEvent@@QAE@GGP6AXPAVQObject@@W4Call@QMetaObject@@HPAPAX@ZPBV1@H2PAVQSemaphore@@@Z
??0QMetaCallEvent@@QAE@GGP6AXPAVQObject@@W4Call@QMetaObject@@HPAPAX@ZPBV1@HH@Z
??0QMetaCallEvent@@QAE@PAVQSlotObjectBase@QtPrivate@@PBVQObject@@HH@Z
??0QMetaCallEvent@@QAE@PAVQSlotObjectBase@QtPrivate@@PBVQObject@@HPAPAXPAVQSemaphore@@@Z
??0QMetaClassInfo@@QAE@XZ
??0QMetaEnum@@QAE@XZ
??0QMetaEnumBuilder@@AAE@PBVQMetaObjectBuilder@@H@Z
??0QMetaEnumBuilder@@QAE@XZ
??0QMetaMethod@@QAE@XZ
??0QMetaMethodBuilder@@AAE@PBVQMetaObjectBuilder@@H@Z
??0QMetaMethodBuilder@@QAE@XZ
??0QMetaObjectBuilder@@QAE@PBUQMetaObject@@V?$QFlags@W4AddMember@QMetaObjectBuilder@@@@@Z
??0QMetaObjectBuilder@@QAE@XZ
??0QMetaProperty@@QAE@XZ
??0QMetaPropertyBuilder@@AAE@PBVQMetaObjectBuilder@@H@Z
??0QMetaPropertyBuilder@@QAE@XZ
??0QMetaStringTable@@QAE@$$QAV0@@Z
??0QMetaStringTable@@QAE@ABV0@@Z
??0QMetaStringTable@@QAE@ABVQByteArray@@@Z
??0QMetaType@@AAE@ABV0@@Z
??0QMetaType@@AAE@W4ExtensionFlag@0@PBVQMetaTypeInterface@@P6APAXHPAXPBX@ZP6AXH2@ZP6AXAAVQDataStream@@3@ZP6AX62@ZP6APAX23@ZP6AX2@ZIIHPBUQMetaObject@@@Z
??0QMetaType@@QAE@H@Z
??0QMilankovicCalendar@@QAE@$$QAV0@@Z
??0QMilankovicCalendar@@QAE@ABV0@@Z
??0QMilankovicCalendar@@QAE@XZ
??0QMimeData@@QAE@XZ
??0QMimeDatabase@@QAE@XZ
??0QMimeType@@QAE@ABV0@@Z
??0QMimeType@@QAE@ABVQMimeTypePrivate@@@Z
??0QMimeType@@QAE@XZ
??0QModelIndex@@AAE@HHIPBVQAbstractItemModel@@@Z
??0QModelIndex@@AAE@HHPAXPBVQAbstractItemModel@@@Z
??0QModelIndex@@QAE@XZ
??0QMutex@@QAE@W4RecursionMode@0@@Z
??0QMutex@@QAE@XZ
??0QMutexLocker@@QAE@PAVQBasicMutex@@@Z
??0QMutexLocker@@QAE@PAVQRecursiveMutex@@@Z
??0QNonContiguousByteDevice@@IAE@XZ
??0QObject@@IAE@AAVQObjectPrivate@@PAV0@@Z
??0QObject@@QAE@PAV0@@Z
??0QObjectCleanupHandler@@QAE@XZ
??0QObjectData@@QAE@XZ
??0QObjectPrivate@@QAE@H@Z
??0QObjectUserData@@QAE@XZ
??0QOperatingSystemVersion@@QAE@W4OSType@0@HHH@Z
??0QParallelAnimationGroup@@IAE@AAVQParallelAnimationGroupPrivate@@PAVQObject@@@Z
??0QParallelAnimationGroup@@QAE@PAVQObject@@@Z
??0QPauseAnimation@@QAE@HPAVQObject@@@Z
??0QPauseAnimation@@QAE@PAVQObject@@@Z
??0QPersistentModelIndex@@QAE@$$QAV0@@Z
??0QPersistentModelIndex@@QAE@ABV0@@Z
??0QPersistentModelIndex@@QAE@ABVQModelIndex@@@Z
??0QPersistentModelIndex@@QAE@XZ
??0QPluginLoader@@QAE@ABVQString@@PAVQObject@@@Z
??0QPluginLoader@@QAE@PAVQObject@@@Z
??0QPoint@@QAE@HH@Z
??0QPoint@@QAE@XZ
??0QPointF@@QAE@ABVQPoint@@@Z
??0QPointF@@QAE@NN@Z
??0QPointF@@QAE@XZ
??0QProcess@@QAE@PAVQObject@@@Z
??0QProcessEnvironment@@QAE@ABV0@@Z
??0QProcessEnvironment@@QAE@XZ
??0QPropertyAnimation@@QAE@PAVQObject@@@Z
??0QPropertyAnimation@@QAE@PAVQObject@@ABVQByteArray@@0@Z
??0QRandomGenerator@@QAE@AAVseed_seq@std@@@Z
??0QRandomGenerator@@QAE@ABV0@@Z
??0QRandomGenerator@@QAE@PBI0@Z
??0QReadLocker@@QAE@PAVQReadWriteLock@@@Z
??0QReadWriteLock@@QAE@W4RecursionMode@0@@Z
??0QRect@@QAE@ABVQPoint@@0@Z
??0QRect@@QAE@ABVQPoint@@ABVQSize@@@Z
??0QRect@@QAE@HHHH@Z
??0QRect@@QAE@XZ
??0QRectF@@QAE@ABVQPointF@@0@Z
??0QRectF@@QAE@ABVQPointF@@ABVQSizeF@@@Z
??0QRectF@@QAE@ABVQRect@@@Z
??0QRectF@@QAE@NNNN@Z
??0QRectF@@QAE@XZ
??0QRecursiveMutex@@QAE@XZ
??0QRegExp@@QAE@ABV0@@Z
??0QRegExp@@QAE@ABVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z
??0QRegExp@@QAE@XZ
??0QRegularExpression@@AAE@AAUQRegularExpressionPrivate@@@Z
??0QRegularExpression@@QAE@ABV0@@Z
??0QRegularExpression@@QAE@ABVQString@@V?$QFlags@W4PatternOption@QRegularExpression@@@@@Z
??0QRegularExpression@@QAE@XZ
??0QRegularExpressionMatch@@AAE@AAUQRegularExpressionMatchPrivate@@@Z
??0QRegularExpressionMatch@@QAE@ABV0@@Z
??0QRegularExpressionMatch@@QAE@XZ
??0QRegularExpressionMatchIterator@@AAE@AAUQRegularExpressionMatchIteratorPrivate@@@Z
??0QRegularExpressionMatchIterator@@QAE@ABV0@@Z
??0QRegularExpressionMatchIterator@@QAE@XZ
??0QResource@@QAE@ABVQString@@ABVQLocale@@@Z
??0QRomanCalendar@@IAE@ABVQString@@W4System@QCalendar@@@Z
??0QRomanCalendar@@QAE@$$QAV0@@Z
??0QRomanCalendar@@QAE@ABV0@@Z
??0QRunnable@@QAE@ABV0@@Z
??0QRunnable@@QAE@XZ
??0QSaveFile@@QAE@ABVQString@@@Z
??0QSaveFile@@QAE@ABVQString@@PAVQObject@@@Z
??0QSaveFile@@QAE@PAVQObject@@@Z
??0QSemaphore@@QAE@H@Z
??0QSequentialAnimationGroup@@IAE@AAVQSequentialAnimationGroupPrivate@@PAVQObject@@@Z
??0QSequentialAnimationGroup@@QAE@PAVQObject@@@Z
??0QSequentialIterable@@QAE@VQSequentialIterableImpl@QtMetaTypePrivate@@@Z
??0QSettings@@QAE@ABVQString@@0PAVQObject@@@Z
??0QSettings@@QAE@ABVQString@@W4Format@0@PAVQObject@@@Z
??0QSettings@@QAE@PAVQObject@@@Z
??0QSettings@@QAE@W4Format@0@W4Scope@0@ABVQString@@2PAVQObject@@@Z
??0QSettings@@QAE@W4Scope@0@ABVQString@@1PAVQObject@@@Z
??0QSettings@@QAE@W4Scope@0@PAVQObject@@@Z
??0QSharedData@@QAE@ABV0@@Z
??0QSharedData@@QAE@XZ
??0QSharedMemory@@QAE@ABVQString@@PAVQObject@@@Z
??0QSharedMemory@@QAE@PAVQObject@@@Z
??0QSignalMapper@@QAE@PAVQObject@@@Z
??0QSignalTransition@@QAE@PAVQState@@@Z
??0QSignalTransition@@QAE@PBVQObject@@PBDPAVQState@@@Z
??0QSize@@QAE@HH@Z
??0QSize@@QAE@XZ
??0QSizeF@@QAE@ABVQSize@@@Z
??0QSizeF@@QAE@NN@Z
??0QSizeF@@QAE@XZ

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmimed
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/_asyncio.pyd
.dll windows x86

4b26deddd28c06d2fda0ae84828de8d9

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17-01-2022 00:00

Not After

15-01-2025 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f1:f5:84:35:bc:7c:c7:1b:c7:88:57:37:8e:0b:ee:4b:ad:b6:08:89:26:63:1e:f3:1c:e2:6b:51:cf:8a:ba:bd
Signer

Actual PE Digest

f1:f5:84:35:bc:7c:c7:1b:c7:88:57:37:8e:0b:ee:4b:ad:b6:08:89:26:63:1e:f3:1c:e2:6b:51:cf:8a:ba:bd

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

17-05-2022 16:43
Valid: true

Chain 1

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

python39

_PyObject_LookupAttrId
PyErr_WriteUnraisable
_PyArg_UnpackKeywords
PyExc_ValueError
PyErr_Format
PyModule_AddType
_Py_FalseStruct
PyCoro_Type
PyType_IsSubtype
PyErr_Restore
PyUnicode_Join
_Py_Dealloc
PyObject_Free
PyErr_ExceptionMatches
_PyUnicode_FromId
PyModule_AddObject
PyObject_GC_Del
PyErr_Fetch
PyObject_CallFunctionObjArgs
PyObject_ClearWeakRefs
PyUnicode_FromFormat
PySet_New
PyList_New
PyModule_Create2
_PyObject_GetAttrId
PyType_Ready
PyObject_GetAttrString
_PyGen_Send
PyList_Append
PyObject_RichCompareBool
PyException_SetTraceback
PyErr_SetString
PyDict_New
PyUnicode_Type
PyObject_CallMethod
PyObject_CallFinalizerFromDealloc
_PyDict_GetItem_KnownHash
PyObject_VectorcallMethod
PyException_SetContext
PyObject_IsInstance
PyExc_StopIteration
_PyErr_ChainStackItem
PyContext_CopyCurrent
_PyGen_SetStopIterationValue
PyObject_GC_Track
_PyType_Name
_PyObject_MakeTpCall
_Py_NewReference
_PyObject_New
PyExc_TypeError
PyObject_IsTrue
PyObject_Str
PyGen_Type
_PyThreadState_GetDict
_Py_TrueStruct
_PyObject_GC_New
PyTraceBack_Type
_Py_IsFinalizing
PyThreadState_GetID
_PyDict_DelItem_KnownHash
PyUnicode_FromString
PyObject_CallNoArgs
PyArg_ParseTuple
PyLong_FromSsize_t
_Py_CheckFunctionResult
PyExc_SystemExit
_PyObject_CallMethodIdObjArgs
PyExc_AttributeError
PySet_Add
PyTuple_New
_Py_NoneStruct
PyExc_KeyboardInterrupt
PyUnicode_FromFormatV
PySet_Contains
_PyDict_SetItemId
Py_BuildValue
PyObject_Hash
PyObject_GC_UnTrack
PyExc_RuntimeError
_PyGen_FetchStopIterationValue
PyList_SetSlice
PyObject_GenericGetAttr
_PyErr_ChainExceptions
PyErr_Occurred
PyObject_SelfIter
PyErr_NormalizeException
PyImport_ImportModule
_PyErr_BadInternalCall
_PyDict_SetItem_KnownHash
PyType_GenericNew
_PyObject_SetAttrId
PyErr_GivenExceptionMatches
PyErr_SetObject
PyException_GetTraceback
PyThreadState_Get
_PyDict_GetItemIdWithError
Py_GenericAlias

vcruntime140

__std_type_info_destroy_list
__current_exception_context
memset
_except_handler4_common
__current_exception

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_execute_onexit_table
_seh_filter_dll
_initterm_e
_initterm
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_crt_at_quick_exit
_cexit
_configure_narrow_argv
terminate

kernel32

GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleHandleW

Exports

Exports

PyInit__asyncio

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/_bz2.pyd
.dll windows x86

8ac2267b74475774ddd6ed342b8d5b0e

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17-01-2022 00:00

Not After

15-01-2025 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:0a:5e:70:49:94:3f:48:5f:3b:ec:a1:3b:7c:12:46:8b:8c:60:58:d1:ba:1a:d0:04:25:9c:f8:84:68:5a:e7
Signer

Actual PE Digest

0c:0a:5e:70:49:94:3f:48:5f:3b:ec:a1:3b:7c:12:46:8b:8c:60:58:d1:ba:1a:d0:04:25:9c:f8:84:68:5a:e7

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

17-05-2022 16:43
Valid: true

Chain 1

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

python39

PyMem_RawFree
PyExc_SystemError
_PyLong_AsInt
PyMem_Malloc
PyBuffer_Release
PyMem_Realloc
PyExc_TypeError
PyBytes_FromStringAndSize
PyModuleDef_Init
PyExc_OSError
PyEval_RestoreThread
PyMem_Free
PyNumber_Index
PyThread_free_lock
PyExc_EOFError
PyObject_GetBuffer
_PyBytes_Resize
PyThread_release_lock
_Py_Dealloc
PyExc_OverflowError
PyType_GenericNew
PyFloat_Type
PyErr_NoMemory
PyModule_AddType
PyErr_Format
PyType_IsSubtype
PyExc_ValueError
_PyArg_UnpackKeywords
PyErr_SetString
_PyArg_BadArgument
PyThread_acquire_lock
_PyArg_NoPositional
PyMem_RawMalloc
PyThread_allocate_lock
PyExc_MemoryError
PyErr_SetNone
PyBuffer_IsContiguous
PyExc_RuntimeError
PyEval_SaveThread
PyErr_Occurred
_PyArg_CheckPositional
PyLong_AsSsize_t
_PyArg_NoKeywords

vcruntime140

memmove
memcpy
__current_exception
__current_exception_context
memset
__std_type_info_destroy_list
_except_handler4_common

api-ms-win-crt-stdio-l1-1-0

fopen
fwrite
fclose
fread
_fileno
_setmode
ungetc
fflush
__acrt_iob_func
__stdio_common_vfprintf
fgetc
ferror

api-ms-win-crt-runtime-l1-1-0

_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_crt_atexit
_seh_filter_dll
_initterm_e
_initterm
_crt_at_quick_exit
_cexit
_execute_onexit_table
terminate
_configure_narrow_argv
exit

api-ms-win-crt-heap-l1-1-0

malloc
free

api-ms-win-crt-string-l1-1-0

isdigit

api-ms-win-crt-math-l1-1-0

_fdopen

kernel32

GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
UnhandledExceptionFilter
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess

Exports

Exports

PyInit__bz2

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/_cffi_backend.cp39-win32.pyd
.dll windows x86

c72b1d4590743dda8e074a978939033d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

python39

PyErr_Restore
PyExc_OverflowError
_Py_Dealloc
PyTuple_GetItem
PyModule_GetDict
PyObject_Free
PyErr_ExceptionMatches
PyThread_release_lock
PyComplex_AsCComplex
PyCapsule_GetPointer
PyModule_AddObject
_PyArg_ParseTuple_SizeT
PyObject_GC_Del
PyErr_Fetch
PyObject_CallFunctionObjArgs
PyLong_AsLong
PyObject_ClearWeakRefs
PyObject_Init
PyUnicode_AsUTF8
PyUnicode_AsWideCharString
PyUnicode_FromFormat
PyObject_GetBuffer
PyList_New
PyModule_Create2
PyImport_AddModule
PyType_Ready
PyObject_GetAttrString
PyErr_NewException
_PyObject_CallMethod_SizeT
PyErr_Clear
PyList_Append
PyObject_RichCompareBool
PyTuple_Size
PyThreadState_GetDict
PyCapsule_New
PyObject_GenericSetAttr
_Py_HashPointer
PyDict_SetItem
PyDict_New
_PyLong_Sign
PyUnicode_Type
PyThread_free_lock
PyObject_IsInstance
PyMem_Free
PyLong_FromVoidPtr
PyType_GenericAlloc
PyObject_AsFileDescriptor
PyUnicode_AsWideChar
PyLong_AsUnsignedLongLong
PyList_Type
PyErr_NoMemory
PyExc_OSError
PyDict_GetItem
PyDict_Clear
PyLong_AsVoidPtr
PyUnicode_DecodeLatin1
PyUnicode_FromKindAndData
PyIndex_Check
PyObject_GC_Track
PyBytes_FromStringAndSize
_Py_NotImplementedStruct
PyExc_NotImplementedError
PyGILState_Ensure
PyDict_DelItem
PyNumber_Long
PyNumber_AsSsize_t
_PyObject_New
PyType_IsSubtype
PyThreadState_Clear
PyDict_Copy
PyObject_Str
PyTuple_Pack
_PyByteArray_empty_string
PyModule_Type
PyCallable_Check
PyMem_Malloc
PyExc_IndexError
PyExc_ImportError
_Py_TrueStruct
PyExc_SystemError
_PyObject_GC_New
_PyObject_GC_NewVar
PyUnicode_GetLength
Py_FileSystemDefaultEncoding
_Py_FatalErrorFunc
PyDict_Keys
PyUnicode_FromString
PyGILState_GetThisThreadState
PyComplex_FromCComplex
PyBuffer_Release
PyObject_Call
PyObject_Repr
PyByteArray_Type
PyType_Type
PyThreadState_Delete
PyEval_RestoreThread
PyUnicode_FromStringAndSize
Py_FatalError
PyFloat_AsDouble
PySys_GetObject
PyThread_allocate_lock
PyLong_FromUnsignedLongLong
PyExc_MemoryError
_PyErr_WriteUnraisableMsg
PyErr_SetNone
PyBuffer_IsContiguous
PyObject_Hash
PyObject_GC_UnTrack
PySlice_Unpack
PyLong_FromLong
PyObject_SetAttrString
PyExc_RuntimeError
_PyThreadState_UncheckedGet
PyList_SetSlice
PyEval_SaveThread
PyObject_GenericGetAttr
PyLong_FromSsize_t
PyErr_Occurred
PyObject_SelfIter
PyErr_NormalizeException
PyImport_ImportModule
PySlice_Type
PyExc_KeyError
PyLong_AsSsize_t
PyErr_WarnEx
PyModule_AddIntConstant
PyObject_Malloc
_PyObject_CallFunction_SizeT
_Py_BuildValue_SizeT
PyUnicode_GetSize
PyBool_FromLong
PyErr_SetObject
PySlice_AdjustIndices
PyThreadState_Get
PyCFunction_Type
PyUnicode_InternFromString
PyErr_SetFromErrno
PyFloat_Type
_Py_FalseStruct
PyTuple_Type
PyBool_Type
PyObject_RichCompare
PyLong_AsUnsignedLongLongMask
PyErr_Format
_PyArg_ParseTupleAndKeywords_SizeT
PyDict_Next
PyLong_FromUnsignedLong
PyUnicode_InternInPlace
PyExc_ValueError
PyObject_GetIter
PyErr_WriteUnraisable
PyExc_ZeroDivisionError
PyErr_SetString
PyUnicode_FromWideChar
PyUnicode_New
PyTuple_GetSlice
PyExc_AttributeError
PyBuffer_FillInfo
PyFloat_FromDouble
PyUnicode_AsUCS4
PyExc_WindowsError
PyThread_acquire_lock
PyLong_FromLongLong
PyExc_UserWarning
PyDict_Size
PyDict_SetItemString
PyTuple_New
PyLong_AsLongLong
_Py_NoneStruct
PyGILState_Release
PyExc_TypeError
PyRun_StringFlags
PyCMethod_New
PyInterpreterState_GetDict

user32

MessageBoxW

kernel32

UnhandledExceptionFilter
TlsSetValue
SetLastError
VirtualAlloc
Sleep
FormatMessageW
LoadLibraryA
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
TlsAlloc
TlsGetValue
FreeLibrary
LocalFree
GetProcAddress
CreateThread
LoadLibraryW
GetSystemInfo
CloseHandle
GetLastError

vcruntime140

memset
_except_handler4_common
memmove
__std_type_info_destroy_list
memcpy
memchr

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_seh_filter_dll
_initterm_e
_initterm
_errno
_configure_narrow_argv

api-ms-win-crt-heap-l1-1-0

malloc
free
calloc

api-ms-win-crt-stdio-l1-1-0

_dup
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsprintf
_close
fclose
setbuf

api-ms-win-crt-convert-l1-1-0

strtoul

api-ms-win-crt-string-l1-1-0

_strdup
isspace
strncmp

api-ms-win-crt-math-l1-1-0

_fdopen

Exports

Exports

PyInit__cffi_backend

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/_ctypes.pyd
.dll windows x86

1b752e570fbca61ed9e4635d240ae2d5

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17-01-2022 00:00

Not After

15-01-2025 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

40:a0:96:c1:8e:93:f1:36:98:63:ed:46:57:ca:18:fc:d4:c7:2d:7f:ed:07:f3:cd:15:df:c2:1e:6d:bc:5d:78
Signer

Actual PE Digest

40:a0:96:c1:8e:93:f1:36:98:63:ed:46:57:ca:18:fc:d4:c7:2d:7f:ed:07:f3:cd:15:df:c2:1e:6d:bc:5d:78

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

17-05-2022 16:43
Valid: true

Chain 1

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libffi-7

ffi_prep_cif
ffi_call
ffi_prep_closure

ole32

ProgIDFromCLSID

oleaut32

SysAllocStringLen
SysFreeString
GetErrorInfo
SysStringLen

kernel32

GetCurrentProcess
SetUnhandledExceptionFilter
TerminateProcess
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetProcAddress
SetLastError
GetLastError
DisableThreadLibraryCalls
FormatMessageW
LocalFree
FreeLibrary
LoadLibraryExW
VirtualAlloc
GetSystemInfo
InitializeSListHead
UnhandledExceptionFilter

python39

PyUnicode_New
PyUnicode_FromWideChar
_Py_CheckFunctionResult
PyErr_SetString
_PyObject_LookupAttrId
PyExc_ValueError
PyDict_Next
PyErr_Format
PyDict_Type
PyModule_AddStringConstant
PyType_IsSubtype
PyExc_OverflowError
_Py_Dealloc
PyLong_AsUnsignedLongMask
PyTuple_GetItem
PySequence_GetSlice
PyDescr_NewGetSet
PyErr_ExceptionMatches
_PyUnicode_FromId
PyModule_AddObject
PySequence_SetItem
_PyArg_ParseTuple_SizeT
PyObject_CallFunctionObjArgs
PyUnicode_AsUTF8
PyUnicode_FromFormat
PyObject_GetBuffer
PySys_Audit
PyList_New
PyModule_Create2
PyType_Ready
PyObject_GetAttrString
PyErr_NewException
PyErr_Clear
_PyDict_GetItemIdWithError
PyObject_GenericSetAttr
PyDict_SetItem
PyDict_New
_PyLong_Sign
PyObject_VectorcallMethod
PyObject_IsInstance
_PyLong_Zero
PyMem_Free
PyLong_FromVoidPtr
PyUnicode_AsWideChar
PyErr_NoMemory
PyLong_AsVoidPtr
PyObject_CallObject
PyIndex_Check
PyBytes_FromStringAndSize
PyDict_DelItem
PyNumber_AsSsize_t
_PyObject_MakeTpCall
PyObject_IsSubclass
_PyWeakref_ProxyType
PyExc_TypeError
PyTuple_Pack
PyDict_SetItemString
PyMem_Malloc
PyExc_IndexError
Py_EnterRecursiveCall
PyArg_UnpackTuple
PyBuffer_Release
PyType_Type
PySequence_Tuple
PyEval_RestoreThread
PyUnicode_FromStringAndSize
PyImport_ImportModuleNoBlock
PyErr_WarnEx
PyExc_RuntimeWarning
PyOS_vsnprintf
PyObject_GC_UnTrack
PySys_GetObject
PyGILState_Release
PyErr_WriteUnraisable
Py_Initialize
PyObject_GC_Del
PyLong_AsLong
Py_IsInitialized
PyFile_WriteString
PyObject_GC_Track
PyGILState_Ensure
_PyObject_GC_NewVar
PyErr_Print
PyMem_Calloc
PyTuple_GetSlice
PyLong_AsUnsignedLong
PyCapsule_IsValid
PyBytes_AsString
PyErr_NormalizeException
_PyUnicode_AsUnicode
PyUnicode_AppendAndDel
Py_BuildValue
PyErr_SetFromWindowsErr
PyUnicode_FromFormatV
PyFloat_FromDouble
PyObject_CallFunction
PyTuple_Type
PyObject_Free
PyCapsule_GetPointer
PyErr_Fetch
PyUnicode_AsWideCharString
_PyObject_GetAttrId
PyThreadState_GetDict
PyCapsule_New
PyUnicode_Type
_PyTraceback_Add
_PyUnicode_IsPrintable
PyExc_OSError
_PyObject_New
PyMem_Realloc
PyObject_Str
PyExc_FileNotFoundError
PyUnicode_FromString
PyObject_Call
PyArg_ParseTuple
PyBool_FromLong
_PyFloat_Pack4
PyLong_FromUnsignedLongLong
_PyFloat_Unpack4
PyFloat_AsDouble
PyLong_FromLongLong
PyLong_FromUnsignedLong
PyLong_AsUnsignedLongLongMask
PyFloat_Type
_PyFloat_Unpack8
PyObject_IsTrue
_PyByteArray_empty_string
_PyFloat_Pack8
PyByteArray_Type
PyObject_GetAttr
PySequence_Fast
PyTuple_Size
_PyDict_SizeOf
_PyLong_AsInt
PyExc_AttributeError
PyTuple_New
_Py_NoneStruct
PyDict_GetItemWithError
_PyDict_SetItemId
_PyErr_WriteUnraisableMsg
PyBuffer_IsContiguous
PyUnicode_Concat
PySlice_Unpack
PyLong_FromLong
PyObject_SetAttrString
PyExc_RuntimeError
PyEval_SaveThread
PyUnicode_AsUTF8AndSize
_PyWeakref_CallableProxyType
_PyUnicode_EqualToASCIIString
PyLong_FromSsize_t
PyWeakref_NewProxy
PyErr_Occurred
PyDict_Update
PySequence_GetItem
PySlice_Type
Py_LeaveRecursiveCall
PyLong_AsSsize_t
_PyArg_NoKeywords
PyType_GenericNew
_PyObject_SetAttrId
_PyObject_CallFunction_SizeT
_Py_BuildValue_SizeT
PyExc_Exception
PySlice_AdjustIndices
PyThreadState_Get
PyDescr_NewClassMethod
PyUnicode_InternFromString
PyObject_SetAttr
PySequence_Size
Py_GenericAlias
PyErr_SetObject
PyMemoryView_FromObject
PyCallable_Check

vcruntime140

memset
memcpy
strchr
_except_handler4_common
__std_type_info_destroy_list
__current_exception
__current_exception_context
memmove

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_crt_at_quick_exit
_seh_filter_dll
_initterm_e
_initterm
_cexit
_errno
terminate
_configure_narrow_argv

api-ms-win-crt-string-l1-1-0

iswctype

Exports

Exports

DllCanUnloadNow
DllGetClassObject
PyInit__ctypes

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/_decimal.pyd
.dll windows x86

366aae0a02c495ffc64f7bd18bc1f4b5

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17-01-2022 00:00

Not After

15-01-2025 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

11:7e:9b:d4:77:9f:48:91:e7:35:18:a8:7d:13:2f:8f:92:09:df:01:2b:55:d9:c8:36:95:49:01:c1:38:15:75
Signer

Actual PE Digest

11:7e:9b:d4:77:9f:48:91:e7:35:18:a8:7d:13:2f:8f:92:09:df:01:2b:55:d9:c8:36:95:49:01:c1:38:15:75

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

17-05-2022 16:43
Valid: true

Chain 1

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

python39

_PyUnicode_IsWhitespace
PyObject_CallMethod
PyObject_IsInstance
PyMem_Free
PyErr_NoMemory
PyDict_GetItemString
PyObject_CallObject
PyComplex_Type
_Py_NotImplementedStruct
PyUnicode_Compare
PyArg_ParseTupleAndKeywords
_PyObject_New
PyExc_TypeError
PyMem_Realloc
PyErr_Format
PyUnicode_AsUTF8String
PyTuple_Pack
PyObject_HashNotImplemented
_PyUnicode_Ready
PyMem_Malloc
PyList_AsTuple
_Py_TrueStruct
PyUnicode_FromString
PyList_GetItem
PyUnicode_CompareWithASCIIString
PyType_Type
PyArg_ParseTuple
PyContextVar_New
PyFloat_FromString
PyLong_FromUnsignedLong
PyExc_ValueError
PyContextVar_Set
PyObject_CallFunction
PyExc_ZeroDivisionError
PyErr_SetString
PyUnicode_FromWideChar
PyList_Size
PyUnicode_New
PyExc_AttributeError
PyDict_New
_PyUnicode_ToDecimalDigit
PyDict_SetItem
PyObject_GenericSetAttr
_PyLong_New
PyTuple_Size
PyList_Append
PyErr_Clear
PyErr_NewException
PyFloat_FromDouble
PyObject_GetAttrString
PyDict_Size
PyType_Ready
PyModule_Create2
PyDict_SetItemString
PyTuple_New
_Py_NoneStruct
PyFloat_AsDouble
PyList_New
PyUnicode_FromFormat
PyLong_AsLong
PyObject_CallFunctionObjArgs
PyModule_AddObject
PyComplex_AsCComplex
PyObject_Free
_Py_Dealloc
PyExc_OverflowError
PyType_IsSubtype
PyLong_Type
PyFloat_Type
_Py_FalseStruct
PyTuple_Type
PyComplex_FromDoubles
PyModule_AddStringConstant
_PyLong_GCD
PyExc_ArithmeticError
PyDict_GetItemWithError
Py_BuildValue
PyContextVar_Get
PyLong_FromLong
PyExc_RuntimeError
PyUnicode_AsUTF8AndSize
PyObject_GenericGetAttr
PyUnicode_DecodeUTF8
PyLong_FromSsize_t
PyErr_Occurred
PyImport_ImportModule
PyExc_KeyError
PyLong_AsSsize_t
_Py_ascii_whitespace
PyType_GenericNew
PyModule_AddIntConstant
PyBool_FromLong
PyErr_SetObject
PyUnicode_InternFromString
PyObject_IsTrue
PyBaseObject_Type

vcruntime140

memmove
__std_type_info_destroy_list
memcpy
_except_handler4_common
__current_exception
memset
__current_exception_context

api-ms-win-crt-math-l1-1-0

copysign
_finite
_except1
_isnan
ceil
_libm_sse2_log10_precise

api-ms-win-crt-convert-l1-1-0

strtol
mbstowcs

api-ms-win-crt-stdio-l1-1-0

fputs
fputc
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsprintf_s

api-ms-win-crt-runtime-l1-1-0

abort
_initterm_e
terminate
_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
raise
_initterm
__control87_2
_errno

api-ms-win-crt-string-l1-1-0

tolower
isupper
isdigit

api-ms-win-crt-locale-l1-1-0

localeconv

api-ms-win-crt-heap-l1-1-0

malloc
calloc
realloc
free

kernel32

GetCurrentProcess
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
UnhandledExceptionFilter

Exports

Exports

PyInit__decimal

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/bitbox02/communication/generated/backup_commands_pb2.pyi
MultiBit/bitbox02/communication/generated/bitbox02_system_pb2.pyi
MultiBit/bitbox02/communication/generated/btc_pb2.pyi
MultiBit/bitbox02/communication/generated/common_pb2.pyi
MultiBit/bitbox02/communication/generated/eth_pb2.pyi
MultiBit/bitbox02/communication/generated/hww_pb2.pyi
MultiBit/bitbox02/communication/generated/keystore_pb2.pyi
MultiBit/bitbox02/communication/generated/mnemonic_pb2.pyi
MultiBit/bitbox02/communication/generated/perform_attestation_pb2.pyi
MultiBit/bitbox02/communication/generated/system_pb2.pyi
MultiBit/certifi/cacert.pem
MultiBit/d3dcompiler_47.dll
.dll windows x86

f63cad154afed6da772d0ab361f448f6

Code Sign

33:00:00:00:2b:39:32:48:c1:b2:c9:48:f3:00:00:00:00:00:2b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04-09-2012 21:12

Not After

04-12-2013 21:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24-01-2013 22:33

Not After

24-04-2014 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:16:11:04:b4:88:38:8c:be:c3:00:00:00:00:00:16
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

30-08-2012 17:49

Not After

30-11-2013 17:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ab:69:30:eb:d8:d5:6c:83:dd:de:d2:5c:78:4a:69:da:61:fc:c5:96:29:e5:ab:ad:9d:48:a5:e2:d1:66:17:bb
Signer

Actual PE Digest

ab:69:30:eb:d8:d5:6c:83:dd:de:d2:5c:78:4a:69:da:61:fc:c5:96:29:e5:ab:ad:9d:48:a5:e2:d1:66:17:bb

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

16-03-2023 15:35
Valid: false

69:26:3d:60:06:7a:72:dd:e2:38:44:52:38:d1:d7:f8:7e:61:16:0d
Signer

Actual PE Digest

69:26:3d:60:06:7a:72:dd:e2:38:44:52:38:d1:d7:f8:7e:61:16:0d

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

22-08-2013 05:04
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_onexit
__dllonexit
_unlock
_lock
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_initterm
_amsg_exit
_XcptFilter
_strtoui64
sscanf
_isnan
_vsnprintf
strtoul
isxdigit
atof
setlocale
_strdup
_mbstrlen
_vsnwprintf
strnlen
ceil
modf
strrchr
strncpy_s
memcpy_s
isalnum
_finite
_clearfp
_controlfp
strcpy_s
malloc
_strnicmp
_fpclass
strncmp
isspace
strstr
strchr
free
sprintf_s
_stricmp
_purecall
memmove
qsort
isalpha
toupper
atoi
_except_handler4_common
tolower
??2@YAPAXI@Z
getenv
??3@YAXPAX@Z
wcsncmp
wcsncpy_s
_wcsicmp
memcpy
memset
fclose
strcat_s
bsearch
_CxxThrowException
_snwprintf_s
wcschr
iswdigit
__unDName
fread
fseek
_wfsopen
vsprintf_s
wcstol
_wcsnicmp
_wsplitpath_s
towlower
wcscpy_s
??_U@YAPAXI@Z
??_V@YAXPAX@Z
swprintf_s
wcsncat_s
wcsrchr
_wmakepath_s
time
_wfullpath
_wcsdup
_wgetenv
_chsize
_close
_read
_write
_lseeki64
_get_osfhandle
_open_osfhandle
wcscat_s
ftell
_mbscmp
_memicmp
isdigit
_wsopen
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
__CxxFrameHandler3
_ftol2
_ftol2_sse
floor

advapi32

CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
RegOpenKeyExW
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExW

kernel32

SetLastError
LocalFree
LocalAlloc
GetVersion
InterlockedDecrement
InterlockedIncrement
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LCMapStringW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
GetFileSize
GetSystemInfo
VirtualAlloc
VirtualFree
GetProcAddress
LoadLibraryExW
GetEnvironmentVariableA
GetFullPathNameA
GetFullPathNameW
TlsFree
TlsGetValue
TlsSetValue
TlsAlloc
Sleep
HeapFree
GetFileAttributesW
SetFileAttributesW
CopyFileExW
DeleteFileW
GetFileType
DeviceIoControl
ExpandEnvironmentStringsW
InitializeCriticalSectionAndSpinCount
SetFilePointer
FlushViewOfFile
MapViewOfFileEx
GetModuleFileNameA
CreateFileA
DisableThreadLibraryCalls
CreateFileW
GetLastError
GetFileSizeEx
ReadFile
CloseHandle
WriteFile
WideCharToMultiByte
FreeLibrary
lstrcmpiA
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
HeapCreate
HeapDestroy
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetProcessHeap

rpcrt4

UuidCreate

Exports

Exports

D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/libEGL.dll
.dll windows x86

9c98d3b5bee3ee0c5c0fdfcb4d295c31

Code Sign

07:e2:ef:84:3d:0d:6f:58:cb:bb:06:e3:e8:b3:d3:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06-10-2020 00:00

Not After

31-12-2023 12:00

Subject

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-10-2019 00:00

Not After

17-10-2030 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

58:a5:87:ab:5e:db:cf:00:2c:46:b0:04:8d:85:c8:b0:58:73:7c:13:fa:0c:ab:33:d4:ad:00:5d:dd:57:3c:91
Signer

Actual PE Digest

58:a5:87:ab:5e:db:cf:00:2c:46:b0:04:8d:85:c8:b0:58:73:7c:13:fa:0c:ab:33:d4:ad:00:5d:dd:57:3c:91

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

06-11-2020 05:30
Valid: true

Chain 1

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libglesv2

?CreateSync@egl@@YGPAXPAXIPBH@Z
?DestroySync@egl@@YGIPAX0@Z
?ClientWaitSync@egl@@YGHPAX0H_K@Z
?GetSyncAttrib@egl@@YGIPAX0HPAH@Z
?CreateImage@egl@@YGPAXPAX0I0PBH@Z
?DestroyImage@egl@@YGIPAX0@Z
?GetPlatformDisplay@egl@@YGPAXIPAXPBH@Z
?CreatePlatformWindowSurface@egl@@YGPAXPAX00PBH@Z
?CreatePlatformPixmapSurface@egl@@YGPAXPAX00PBH@Z
?WaitSync@egl@@YGIPAX0H@Z
?QuerySurfacePointerANGLE@egl@@YGIPAX0HPAPAX@Z
?PostSubBufferNV@egl@@YGIPAX0HHHH@Z
?GetPlatformDisplayEXT@egl@@YGPAXIPAXPBH@Z
?QueryDisplayAttribEXT@egl@@YGIPAXHPAH@Z
?QueryDeviceAttribEXT@egl@@YGIPAXHPAH@Z
?QueryDeviceStringEXT@egl@@YGPBDPAXH@Z
?CreateImageKHR@egl@@YGPAXPAX0I0PBH@Z
?DestroyImageKHR@egl@@YGIPAX0@Z
?GetCurrentContext@egl@@YGPAXXZ
?ReleaseDeviceANGLE@egl@@YGIPAX@Z
?CreateStreamKHR@egl@@YGPAXPAXPBH@Z
?DestroyStreamKHR@egl@@YGIPAX0@Z
?StreamAttribKHR@egl@@YGIPAX0IH@Z
?QueryStreamKHR@egl@@YGIPAX0IPAH@Z
?QueryStreamu64KHR@egl@@YGIPAX0IPA_K@Z
?StreamConsumerGLTextureExternalKHR@egl@@YGIPAX0@Z
?StreamConsumerAcquireKHR@egl@@YGIPAX0@Z
?StreamConsumerReleaseKHR@egl@@YGIPAX0@Z
?StreamConsumerGLTextureExternalAttribsNV@egl@@YGIPAX0PBH@Z
?CreateStreamProducerD3DTextureNV12ANGLE@egl@@YGIPAX0PBH@Z
?StreamPostD3DTextureNV12ANGLE@egl@@YGIPAX00PBH@Z
?GetSyncValuesCHROMIUM@egl@@YGIPAX0PA_K11@Z
?SwapBuffersWithDamageEXT@egl@@YAIPAX0PAHH@Z
?ProgramCacheGetAttribANGLE@egl@@YGHPAXI@Z
?ProgramCacheQueryANGLE@egl@@YGXPAXH0PAH01@Z
?ProgramCachePopulateANGLE@egl@@YGXPAXPBXH1H@Z
?ProgramCacheResizeANGLE@egl@@YGHPAXHI@Z
?WaitClient@egl@@YGIXZ
?ReleaseThread@egl@@YGIXZ
?CreatePbufferFromClientBuffer@egl@@YGPAXPAXI00PBH@Z
?QueryAPI@egl@@YGIXZ
?BindAPI@egl@@YGII@Z
?SwapInterval@egl@@YGIPAXH@Z
?SurfaceAttrib@egl@@YGIPAX0HH@Z
?ReleaseTexImage@egl@@YGIPAX0H@Z
?BindTexImage@egl@@YGIPAX0H@Z
?WaitNative@egl@@YGIH@Z
?WaitGL@egl@@YGIXZ
?Terminate@egl@@YGIPAX@Z
?SwapBuffers@egl@@YGIPAX0@Z
?QuerySurface@egl@@YGIPAX0HPAH@Z
?QueryString@egl@@YGPBDPAXH@Z
?QueryContext@egl@@YGIPAX0HPAH@Z
?MakeCurrent@egl@@YGIPAX000@Z
?Initialize@egl@@YGIPAXPAH1@Z
?GetProcAddress@egl@@YGP6AXXZPBD@Z
?GetError@egl@@YGHXZ
?GetDisplay@egl@@YGPAXPAUHDC__@@@Z
?GetCurrentSurface@egl@@YGPAXH@Z
?GetCurrentDisplay@egl@@YGPAXXZ
?GetConfigs@egl@@YGIPAXPAPAXHPAH@Z
?GetConfigAttrib@egl@@YGIPAX0HPAH@Z
?DestroySurface@egl@@YGIPAX0@Z
?DestroyContext@egl@@YGIPAX0@Z
?CreateWindowSurface@egl@@YGPAXPAX0PAUHWND__@@PBH@Z
?CreatePixmapSurface@egl@@YGPAXPAX0PAUHBITMAP__@@PBH@Z
?CreatePbufferSurface@egl@@YGPAXPAX0PBH@Z
?CreateContext@egl@@YGPAXPAX00PBH@Z
?CopyBuffers@egl@@YGIPAX0PAUHBITMAP__@@@Z
?CreateDeviceANGLE@egl@@YGPAXHPAXPBH@Z
?ChooseConfig@egl@@YGIPAXPBHPAPAXHPAH@Z

kernel32

QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess

vcruntime140

__std_type_info_destroy_list
_except_handler4_common
memset

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglCopyBuffers
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformWindowSurface
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureNV12ANGLE
eglCreateSync
eglCreateWindowSurface
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncValuesCHROMIUM
eglInitialize
eglMakeCurrent
eglPostSubBufferNV
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQuerySurface
eglQuerySurfacePointerANGLE
eglReleaseDeviceANGLE
eglReleaseTexImage
eglReleaseThread
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureNV12ANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageEXT
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/libeay32.dll
.dll windows x86

ef7853af6b3eb20216f3b9caaa5863f3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

recvfrom
WSACleanup
WSAStartup
getservbyname
gethostbyname
ntohs
ntohl
listen
getsockopt
ioctlsocket
bind
sendto
socket
setsockopt
htons
htonl
connect
WSAGetLastError
WSASetLastError
shutdown
closesocket
send
recv
accept

gdi32

GetDIBits
GetDeviceCaps
DeleteObject
CreateCompatibleBitmap
GetObjectA

advapi32

ReportEventA
RegisterEventSourceA
DeregisterEventSource

user32

GetDC
MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation
ReleaseDC

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
TerminateProcess
FindFirstFileA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FlushConsoleInputBuffer
GlobalMemoryStatus
GetTickCount
GetCurrentProcessId
QueryPerformanceCounter
FindNextFileA
CloseHandle
FreeLibrary
LoadLibraryA
GetModuleHandleA
FindClose
SetLastError
MultiByteToWideChar
GetSystemTime
GetCurrentProcess
GetCurrentThreadId
GetLastError
WriteFile
GetFileType
GetStdHandle
GetProcAddress
ExitProcess
SystemTimeToFileTime

vcruntime140

strchr
wcsstr
memcpy
memset
memmove
strstr
memchr
_except_handler4_common
strrchr
__std_type_info_destroy_list

api-ms-win-crt-stdio-l1-1-0

fwrite
ftell
fseek
fread
setvbuf
fopen
_open
_fileno
fgets
fflush
ferror
feof
fclose
_wfopen
__stdio_common_vfprintf
__stdio_common_vsscanf
fputs
__stdio_common_vsprintf
_setmode
_write
_read
__acrt_iob_func

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_initterm_e
_initterm
_errno
signal
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
strerror
raise
_cexit
_exit
_configure_narrow_argv
perror

api-ms-win-crt-convert-l1-1-0

strtoul
strtol
atoi

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-heap-l1-1-0

malloc
free
realloc

api-ms-win-crt-time-l1-1-0

_gmtime64_s
_time64
_localtime64

api-ms-win-crt-string-l1-1-0

strncmp
tolower
isalnum
isspace
_stricmp
_strnicmp
isxdigit
isupper
isdigit
strncpy
strcmp

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-math-l1-1-0

_fdopen

api-ms-win-crt-filesystem-l1-1-0

_stat64i32
_chmod

api-ms-win-crt-conio-l1-1-0

_getch

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_clear_free
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_diff
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_to_generalizedtime
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_bn_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_callback_ctrl
BIO_clear_flags
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_hex_string
BIO_indent
BIO_int_ctrl
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_PKCS7
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_ex_data
BIO_set_flags
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_test_flags
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_X931_derive_prime_ex
BN_X931_generate_Xpq
BN_X931_generate_prime_ex
BN_add
BN_add_word
BN_asc2bn
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_consttime_swap
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one

Sections

.text
Size: 864KB - Virtual size: 864KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/mnemonic/py.typed
MultiBit/mnemonic/wordlist/chinese_simplified.txt
MultiBit/mnemonic/wordlist/chinese_traditional.txt
MultiBit/mnemonic/wordlist/english.txt
MultiBit/mnemonic/wordlist/french.txt
MultiBit/mnemonic/wordlist/italian.txt
MultiBit/mnemonic/wordlist/japanese.txt
MultiBit/mnemonic/wordlist/korean.txt
MultiBit/mnemonic/wordlist/spanish.txt
MultiBit/python3.dll
.dll windows x86

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17-01-2022 00:00

Not After

15-01-2025 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

96:35:8c:b3:1a:0d:db:53:71:17:df:13:67:6a:92:71:ed:fb:4d:a8:67:62:59:c9:4f:c7:9c:c7:9b:de:76:58
Signer

Actual PE Digest

96:35:8c:b3:1a:0d:db:53:71:17:df:13:67:6a:92:71:ed:fb:4d:a8:67:62:59:c9:4f:c7:9c:c7:9b:de:76:58

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

17-05-2022 16:43
Valid: true

Chain 1

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

PyArg_Parse
PyArg_ParseTuple
PyArg_ParseTupleAndKeywords
PyArg_UnpackTuple
PyArg_VaParse
PyArg_VaParseTupleAndKeywords
PyArg_ValidateKeywordArguments
PyBaseObject_Type
PyBool_FromLong
PyBool_Type
PyByteArrayIter_Type
PyByteArray_AsString
PyByteArray_Concat
PyByteArray_FromObject
PyByteArray_FromStringAndSize
PyByteArray_Resize
PyByteArray_Size
PyByteArray_Type
PyBytesIter_Type
PyBytes_AsString
PyBytes_AsStringAndSize
PyBytes_Concat
PyBytes_ConcatAndDel
PyBytes_DecodeEscape
PyBytes_FromFormat
PyBytes_FromFormatV
PyBytes_FromObject
PyBytes_FromString
PyBytes_FromStringAndSize
PyBytes_Repr
PyBytes_Size
PyBytes_Type
PyCFunction_Call
PyCFunction_GetFlags
PyCFunction_GetFunction
PyCFunction_GetSelf
PyCFunction_New
PyCFunction_NewEx
PyCFunction_Type
PyCMethod_New
PyCallIter_New
PyCallIter_Type
PyCallable_Check
PyCapsule_GetContext
PyCapsule_GetDestructor
PyCapsule_GetName
PyCapsule_GetPointer
PyCapsule_Import
PyCapsule_IsValid
PyCapsule_New
PyCapsule_SetContext
PyCapsule_SetDestructor
PyCapsule_SetName
PyCapsule_SetPointer
PyCapsule_Type
PyClassMethodDescr_Type
PyCodec_BackslashReplaceErrors
PyCodec_Decode
PyCodec_Decoder
PyCodec_Encode
PyCodec_Encoder
PyCodec_IgnoreErrors
PyCodec_IncrementalDecoder
PyCodec_IncrementalEncoder
PyCodec_KnownEncoding
PyCodec_LookupError
PyCodec_NameReplaceErrors
PyCodec_Register
PyCodec_RegisterError
PyCodec_ReplaceErrors
PyCodec_StreamReader
PyCodec_StreamWriter
PyCodec_StrictErrors
PyCodec_XMLCharRefReplaceErrors
PyComplex_FromDoubles
PyComplex_ImagAsDouble
PyComplex_RealAsDouble
PyComplex_Type
PyDescr_NewClassMethod
PyDescr_NewGetSet
PyDescr_NewMember
PyDescr_NewMethod
PyDictItems_Type
PyDictIterItem_Type
PyDictIterKey_Type
PyDictIterValue_Type
PyDictKeys_Type
PyDictProxy_New
PyDictProxy_Type
PyDictValues_Type
PyDict_Clear
PyDict_Contains
PyDict_Copy
PyDict_DelItem
PyDict_DelItemString
PyDict_GetItem
PyDict_GetItemString
PyDict_GetItemWithError
PyDict_Items
PyDict_Keys
PyDict_Merge
PyDict_MergeFromSeq2
PyDict_New
PyDict_Next
PyDict_SetItem
PyDict_SetItemString
PyDict_Size
PyDict_Type
PyDict_Update
PyDict_Values
PyEllipsis_Type
PyEnum_Type
PyErr_BadArgument
PyErr_BadInternalCall
PyErr_CheckSignals
PyErr_Clear
PyErr_Display
PyErr_ExceptionMatches
PyErr_Fetch
PyErr_Format
PyErr_FormatV
PyErr_GetExcInfo
PyErr_GivenExceptionMatches
PyErr_NewException
PyErr_NewExceptionWithDoc
PyErr_NoMemory
PyErr_NormalizeException
PyErr_Occurred
PyErr_Print
PyErr_PrintEx
PyErr_ProgramText
PyErr_ResourceWarning
PyErr_Restore
PyErr_SetExcFromWindowsErr
PyErr_SetExcFromWindowsErrWithFilename
PyErr_SetExcFromWindowsErrWithFilenameObject
PyErr_SetExcFromWindowsErrWithFilenameObjects
PyErr_SetExcInfo
PyErr_SetFromErrno
PyErr_SetFromErrnoWithFilename
PyErr_SetFromErrnoWithFilenameObject
PyErr_SetFromErrnoWithFilenameObjects
PyErr_SetFromWindowsErr
PyErr_SetFromWindowsErrWithFilename
PyErr_SetImportError
PyErr_SetImportErrorSubclass
PyErr_SetInterrupt
PyErr_SetNone
PyErr_SetObject
PyErr_SetString
PyErr_SyntaxLocation
PyErr_SyntaxLocationEx
PyErr_WarnEx
PyErr_WarnExplicit
PyErr_WarnFormat
PyErr_WriteUnraisable
PyEval_AcquireLock
PyEval_AcquireThread
PyEval_CallFunction
PyEval_CallMethod
PyEval_CallObjectWithKeywords
PyEval_EvalCode
PyEval_EvalCodeEx
PyEval_EvalFrame
PyEval_EvalFrameEx
PyEval_GetBuiltins
PyEval_GetCallStats
PyEval_GetFrame
PyEval_GetFuncDesc
PyEval_GetFuncName
PyEval_GetGlobals
PyEval_GetLocals
PyEval_InitThreads
PyEval_ReInitThreads
PyEval_ReleaseLock
PyEval_ReleaseThread
PyEval_RestoreThread
PyEval_SaveThread
PyEval_ThreadsInitialized
PyExc_ArithmeticError
PyExc_AssertionError
PyExc_AttributeError
PyExc_BaseException
PyExc_BlockingIOError
PyExc_BrokenPipeError
PyExc_BufferError
PyExc_BytesWarning
PyExc_ChildProcessError
PyExc_ConnectionAbortedError
PyExc_ConnectionError
PyExc_ConnectionRefusedError
PyExc_ConnectionResetError
PyExc_DeprecationWarning
PyExc_EOFError
PyExc_EnvironmentError
PyExc_Exception
PyExc_FileExistsError
PyExc_FileNotFoundError
PyExc_FloatingPointError
PyExc_FutureWarning
PyExc_GeneratorExit
PyExc_IOError
PyExc_ImportError
PyExc_ImportWarning
PyExc_IndentationError
PyExc_IndexError
PyExc_InterruptedError
PyExc_IsADirectoryError
PyExc_KeyError
PyExc_KeyboardInterrupt
PyExc_LookupError
PyExc_MemoryError
PyExc_ModuleNotFoundError
PyExc_NameError
PyExc_NotADirectoryError
PyExc_NotImplementedError
PyExc_OSError
PyExc_OverflowError
PyExc_PendingDeprecationWarning
PyExc_PermissionError
PyExc_ProcessLookupError
PyExc_RecursionError
PyExc_ReferenceError
PyExc_ResourceWarning
PyExc_RuntimeError
PyExc_RuntimeWarning
PyExc_StopAsyncIteration
PyExc_StopIteration
PyExc_SyntaxError
PyExc_SyntaxWarning
PyExc_SystemError
PyExc_SystemExit
PyExc_TabError
PyExc_TimeoutError
PyExc_TypeError
PyExc_UnboundLocalError
PyExc_UnicodeDecodeError
PyExc_UnicodeEncodeError
PyExc_UnicodeError
PyExc_UnicodeTranslateError
PyExc_UnicodeWarning
PyExc_UserWarning
PyExc_ValueError
PyExc_Warning
PyExc_WindowsError
PyExc_ZeroDivisionError
PyExceptionClass_Name
PyException_GetCause
PyException_GetContext
PyException_GetTraceback
PyException_SetCause
PyException_SetContext
PyException_SetTraceback
PyFile_FromFd
PyFile_GetLine
PyFile_WriteObject
PyFile_WriteString
PyFilter_Type
PyFloat_AsDouble
PyFloat_FromDouble
PyFloat_FromString
PyFloat_GetInfo
PyFloat_GetMax
PyFloat_GetMin
PyFloat_Type
PyFrame_GetCode
PyFrame_GetLineNumber
PyFrozenSet_New
PyFrozenSet_Type
PyGC_Collect
PyGILState_Ensure
PyGILState_GetThisThreadState
PyGILState_Release
PyGetSetDescr_Type
PyImport_AddModule
PyImport_AddModuleObject
PyImport_AppendInittab
PyImport_Cleanup
PyImport_ExecCodeModule
PyImport_ExecCodeModuleEx
PyImport_ExecCodeModuleObject
PyImport_ExecCodeModuleWithPathnames
PyImport_GetImporter
PyImport_GetMagicNumber
PyImport_GetMagicTag
PyImport_GetModule
PyImport_GetModuleDict
PyImport_Import
PyImport_ImportFrozenModule
PyImport_ImportFrozenModuleObject
PyImport_ImportModule
PyImport_ImportModuleLevel
PyImport_ImportModuleLevelObject
PyImport_ImportModuleNoBlock
PyImport_ReloadModule
PyIndex_Check
PyInterpreterState_Clear
PyInterpreterState_Delete
PyInterpreterState_GetID
PyInterpreterState_New
PyIter_Check
PyIter_Next
PyListIter_Type
PyListRevIter_Type
PyList_Append
PyList_AsTuple
PyList_GetItem
PyList_GetSlice
PyList_Insert
PyList_New
PyList_Reverse
PyList_SetItem
PyList_SetSlice
PyList_Size
PyList_Sort
PyList_Type
PyLongRangeIter_Type
PyLong_AsDouble
PyLong_AsLong
PyLong_AsLongAndOverflow
PyLong_AsLongLong
PyLong_AsLongLongAndOverflow
PyLong_AsSize_t
PyLong_AsSsize_t
PyLong_AsUnsignedLong
PyLong_AsUnsignedLongLong
PyLong_AsUnsignedLongLongMask
PyLong_AsUnsignedLongMask
PyLong_AsVoidPtr
PyLong_FromDouble
PyLong_FromLong
PyLong_FromLongLong
PyLong_FromSize_t
PyLong_FromSsize_t
PyLong_FromString
PyLong_FromUnsignedLong
PyLong_FromUnsignedLongLong
PyLong_FromVoidPtr
PyLong_GetInfo
PyLong_Type
PyMap_Type
PyMapping_Check
PyMapping_GetItemString
PyMapping_HasKey
PyMapping_HasKeyString
PyMapping_Items
PyMapping_Keys
PyMapping_Length
PyMapping_SetItemString
PyMapping_Size
PyMapping_Values
PyMem_Calloc
PyMem_Free
PyMem_Malloc
PyMem_Realloc
PyMemberDescr_Type
PyMemoryView_FromMemory
PyMemoryView_FromObject
PyMemoryView_GetContiguous
PyMemoryView_Type
PyMethodDescr_Type
PyModuleDef_Init
PyModuleDef_Type
PyModule_AddFunctions
PyModule_AddIntConstant
PyModule_AddObject
PyModule_AddStringConstant
PyModule_Create2
PyModule_ExecDef
PyModule_FromDefAndSpec2
PyModule_GetDef
PyModule_GetDict
PyModule_GetFilename
PyModule_GetFilenameObject
PyModule_GetName
PyModule_GetNameObject
PyModule_GetState
PyModule_New
PyModule_NewObject
PyModule_SetDocString
PyModule_Type
PyNullImporter_Type
PyNumber_Absolute
PyNumber_Add
PyNumber_And
PyNumber_AsSsize_t
PyNumber_Check
PyNumber_Divmod
PyNumber_Float
PyNumber_FloorDivide
PyNumber_InPlaceAdd
PyNumber_InPlaceAnd
PyNumber_InPlaceFloorDivide
PyNumber_InPlaceLshift
PyNumber_InPlaceMatrixMultiply
PyNumber_InPlaceMultiply
PyNumber_InPlaceOr
PyNumber_InPlacePower
PyNumber_InPlaceRemainder
PyNumber_InPlaceRshift
PyNumber_InPlaceSubtract
PyNumber_InPlaceTrueDivide
PyNumber_InPlaceXor
PyNumber_Index
PyNumber_Invert
PyNumber_Long
PyNumber_Lshift
PyNumber_MatrixMultiply
PyNumber_Multiply
PyNumber_Negative
PyNumber_Or
PyNumber_Positive
PyNumber_Power
PyNumber_Remainder
PyNumber_Rshift
PyNumber_Subtract
PyNumber_ToBase
PyNumber_TrueDivide
PyNumber_Xor
PyODictItems_Type
PyODictIter_Type
PyODictKeys_Type
PyODictValues_Type
PyODict_DelItem
PyODict_New
PyODict_SetItem
PyODict_Type
PyOS_AfterFork
PyOS_CheckStack
PyOS_FSPath
PyOS_InitInterrupts
PyOS_InputHook
PyOS_InterruptOccurred
PyOS_ReadlineFunctionPointer
PyOS_double_to_string
PyOS_getsig
PyOS_mystricmp
PyOS_mystrnicmp
PyOS_setsig
PyOS_snprintf
PyOS_string_to_double
PyOS_strtol
PyOS_strtoul
PyOS_vsnprintf
PyObject_ASCII
PyObject_AsCharBuffer
PyObject_AsFileDescriptor
PyObject_AsReadBuffer
PyObject_AsWriteBuffer
PyObject_Bytes
PyObject_Call
PyObject_CallFunction
PyObject_CallFunctionObjArgs
PyObject_CallMethod
PyObject_CallMethodObjArgs
PyObject_CallNoArgs
PyObject_CallObject
PyObject_Calloc
PyObject_CheckReadBuffer
PyObject_ClearWeakRefs
PyObject_DelItem
PyObject_DelItemString
PyObject_Dir
PyObject_Format
PyObject_Free
PyObject_GC_Del
PyObject_GC_Track
PyObject_GC_UnTrack
PyObject_GenericGetAttr
PyObject_GenericSetAttr
PyObject_GenericSetDict
PyObject_GetAttr
PyObject_GetAttrString
PyObject_GetItem
PyObject_GetIter
PyObject_HasAttr
PyObject_HasAttrString
PyObject_Hash
PyObject_HashNotImplemented
PyObject_Init
PyObject_InitVar
PyObject_IsInstance
PyObject_IsSubclass
PyObject_IsTrue
PyObject_Length
PyObject_Malloc
PyObject_Not
PyObject_Realloc
PyObject_Repr
PyObject_RichCompare
PyObject_RichCompareBool
PyObject_SelfIter
PyObject_SetAttr
PyObject_SetAttrString
PyObject_SetItem
PyObject_Size
PyObject_Str
PyObject_Type
PyParser_SimpleParseFileFlags
PyParser_SimpleParseStringFlags

Sections

.text
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
MultiBit/python39.dll
.dll windows x86

88e87de6c1cd25baf0c731a778bb1647

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17-01-2022 00:00

Not After

15-01-2025 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29-03-2022 00:00

Not After

14-03-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7e:79:b8:39:97:7a:b5:6d:0e:9d:ac:4a:0f:4a:55:70:c4:73:1b:ab:bb:eb:46:92:07:70:b8:90:db:30:d5:ee
Signer

Actual PE Digest

7e:79:b8:39:97:7a:b5:6d:0e:9d:ac:4a:0f:4a:55:70:c4:73:1b:ab:bb:eb:46:92:07:70:b8:90:db:30:d5:ee

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

17-05-2022 16:43
Valid: true

Chain 1

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

ws2_32

send
WSAGetLastError
getsockopt

api-ms-win-core-path-l1-1-0

PathCchCanonicalizeEx
PathCchCombineEx
PathCchSkipRoot

advapi32

RegEnumValueW
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
RegCloseKey
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueW
RegFlushKey
RegCreateKeyExW
RegSaveKeyW
RegEnumKeyExW
GetUserNameW
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueW
RegQueryValueExW
RegLoadKeyW
RegDeleteValueW
RegConnectRegistryW
RegCreateKeyW
RegOpenKeyExW
RegSetValueExW

kernel32

HeapAlloc
GetProcessHeap
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetCurrentProcessId
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TlsGetValue
TlsFree
GetOverlappedResult
GetLocaleInfoA
GetACP
RemoveVectoredExceptionHandler
SetErrorMode
RaiseException
AddVectoredExceptionHandler
GetCurrentProcess
SetFilePointer
SetEndOfFile
UnmapViewOfFile
DuplicateHandle
GetLastError
FlushViewOfFile
CloseHandle
GetSystemInfo
CreateFileMappingA
GetFileSize
MapViewOfFile
CreateDirectoryW
GetFileInformationByHandleEx
FindFirstFileW
Process32First
SetHandleInformation
GetConsoleScreenBufferInfo
SetLastError
GetHandleInformation
FindNextFileW
GetStdHandle
DeviceIoControl
TerminateProcess
RemoveDirectoryW
GetFinalPathNameByHandleW
SetFileTime
SetEnvironmentVariableW
CreatePipe
CreateHardLinkW
FindClose
GetVolumePathNameW
CreateFileW
GetFileAttributesW
OpenProcess
SetFileAttributesW
CreateToolhelp32Snapshot
GetFileInformationByHandle
GetFileAttributesExW
GetDiskFreeSpaceExW
DeleteFileW
Process32Next
LoadLibraryW
GetActiveProcessorCount
GetCurrentDirectoryW
SetCurrentDirectoryW
GetProcAddress
MoveFileExW
GetModuleHandleW
CreateSymbolicLinkW
GetSystemTimeAsFileTime
GetFileType
GetProcessTimes
GenerateConsoleCtrlEvent
SetEvent
CreateEventA
Sleep
GetTimeZoneInformation
GetCurrentThread
WaitForSingleObjectEx
ResetEvent
GetThreadTimes
GetFullPathNameW
MultiByteToWideChar
GetConsoleMode
ReadConsoleW
WriteConsoleW
GetNumberOfConsoleInputEvents
WideCharToMultiByte
GetStringTypeW
ReadFile
CancelIo
SetNamedPipeHandleState
WaitNamedPipeA
CreateNamedPipeA
WriteFile
GetModuleFileNameW
WaitForMultipleObjects
InitializeProcThreadAttributeList
PeekNamedPipe
WaitForSingleObject
OpenFileMappingW
GetModuleHandleA
GetVersion
UpdateProcThreadAttribute
CreateFileA
DeleteProcThreadAttributeList
TlsAlloc
ExitProcess
CreateProcessW
CreateFileMappingW
VirtualQuery
ConnectNamedPipe
GetExitCodeProcess
VirtualFree
VirtualAlloc
ExpandEnvironmentStringsW
LoadLibraryExW
EnterCriticalSection
ReleaseSemaphore
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CreateSemaphoreA
FormatMessageW
FreeLibrary
LocalFree
GetConsoleOutputCP
GetConsoleCP
OutputDebugStringW
GetSystemTimeAdjustment
GetTickCount64
QueryPerformanceFrequency
QueryPerformanceCounter
GetVersionExW
TlsSetValue
HeapFree
GetCurrentThreadId

vcruntime140

memchr
memset
__current_exception_context
memcpy
strrchr
wcschr
wcsrchr
strchr
memmove
strstr
_except_handler4_common
__std_type_info_destroy_list
__current_exception

api-ms-win-crt-math-l1-1-0

cosh
erf
tanh
frexp
exp
nextafter
tan
fabs
acos
asin
sinh
cos
sin
atan
_finite
sqrt
_fdopen
_CIatan2
_CIcosh
_CIfmod
_CIsinh
_CItanh
_libm_sse2_cos_precise
_libm_sse2_exp_precise
round
_libm_sse2_log10_precise
modf
hypot
ldexp
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
copysign
_isnan
_libm_sse2_tan_precise
ceil
floor
erfc
_except1

api-ms-win-crt-locale-l1-1-0

localeconv
setlocale

api-ms-win-crt-string-l1-1-0

_wcsicmp
strcspn
isxdigit
wcscpy_s
wcscoll
wcscat_s
toupper
wcsnlen
isdigit
strncpy
tolower
isalnum
wcstok_s
wcsxfrm
wcsncmp
_stricmp
wcsncpy
strncmp
wcsncpy_s

api-ms-win-crt-runtime-l1-1-0

_set_thread_local_invalid_parameter_handler
signal
_exit
strerror
exit
raise
_wsystem
_invalid_parameter_noinfo
__control87_2
__fpe_flt_rounds
abort
_getpid
terminate
_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
__sys_errlist
__sys_nerr
_seh_filter_dll
_initterm_e
_initterm
_beginthreadex
_errno
_set_abort_behavior
_endthreadex
_resetstkoflw

api-ms-win-crt-stdio-l1-1-0

fwrite
__stdio_common_vsprintf
setvbuf
rewind
clearerr
_open_osfhandle
_wfopen
fputs
fflush
__acrt_iob_func
fclose
getc
__stdio_common_vfprintf
_locking
ungetc
fgets
_setmode
_get_osfhandle
_kbhit
_isatty
_fileno
_lseek
_dup2
feof
_close
_chsize_s
ferror
_open
_read
_dup
_write
fopen
_lseeki64
ftell
fread
_wopen
_commit
fputc

api-ms-win-crt-convert-l1-1-0

wcstombs
strtol
mbstowcs
wcstol
strtoul

api-ms-win-crt-time-l1-1-0

strftime
_time64
clock
_tzset
_localtime64_s
__daylight
__timezone
_gmtime64_s
_mktime64

api-ms-win-crt-environment-l1-1-0

_wputenv
_wgetenv
getenv
_wputenv_s
__p__wenviron
_wgetcwd

api-ms-win-crt-process-l1-1-0

_wexecv
_wspawnv
_wspawnve
_cwait
_wexecve

api-ms-win-crt-heap-l1-1-0

_heapmin
realloc
malloc
free
calloc

api-ms-win-crt-conio-l1-1-0

_ungetwch
_getwche
_putwch
_getche
_ungetch
_putch
_getwch
_getch

api-ms-win-crt-filesystem-l1-1-0

_wstat64i32
_umask

Exports

Exports

PyAST_CompileEx
PyAST_CompileObject
PyAST_FromNode
PyAST_FromNodeObject
PyAST_Validate
PyArena_AddPyObject
PyArena_Free
PyArena_Malloc
PyArena_New
PyArg_Parse
PyArg_ParseTuple
PyArg_ParseTupleAndKeywords
PyArg_UnpackTuple
PyArg_VaParse
PyArg_VaParseTupleAndKeywords
PyArg_ValidateKeywordArguments
PyAsyncGen_New
PyAsyncGen_Type
PyBaseObject_Type
PyBool_FromLong
PyBool_Type
PyBuffer_FillContiguousStrides
PyBuffer_FillInfo
PyBuffer_FromContiguous
PyBuffer_GetPointer
PyBuffer_IsContiguous
PyBuffer_Release
PyBuffer_SizeFromFormat
PyBuffer_ToContiguous
PyByteArrayIter_Type
PyByteArray_AsString
PyByteArray_Concat
PyByteArray_FromObject
PyByteArray_FromStringAndSize
PyByteArray_Resize
PyByteArray_Size
PyByteArray_Type
PyBytesIter_Type
PyBytes_AsString
PyBytes_AsStringAndSize
PyBytes_Concat
PyBytes_ConcatAndDel
PyBytes_DecodeEscape
PyBytes_FromFormat
PyBytes_FromFormatV
PyBytes_FromObject
PyBytes_FromString
PyBytes_FromStringAndSize
PyBytes_Repr
PyBytes_Size
PyBytes_Type
PyCFunction_Call
PyCFunction_GetFlags
PyCFunction_GetFunction
PyCFunction_GetSelf
PyCFunction_NewEx
PyCFunction_Type
PyCMethod_New
PyCMethod_Type
PyCallIter_New
PyCallIter_Type
PyCallable_Check
PyCapsule_GetContext
PyCapsule_GetDestructor
PyCapsule_GetName
PyCapsule_GetPointer
PyCapsule_Import
PyCapsule_IsValid
PyCapsule_New
PyCapsule_SetContext
PyCapsule_SetDestructor
PyCapsule_SetName
PyCapsule_SetPointer
PyCapsule_Type
PyCell_Get
PyCell_New
PyCell_Set
PyCell_Type
PyClassMethodDescr_Type
PyClassMethod_New
PyClassMethod_Type
PyCode_Addr2Line
PyCode_New
PyCode_NewEmpty
PyCode_NewWithPosOnlyArgs
PyCode_Optimize
PyCode_Type
PyCodec_BackslashReplaceErrors
PyCodec_Decode
PyCodec_Decoder
PyCodec_Encode
PyCodec_Encoder
PyCodec_IgnoreErrors
PyCodec_IncrementalDecoder
PyCodec_IncrementalEncoder
PyCodec_KnownEncoding
PyCodec_LookupError
PyCodec_NameReplaceErrors
PyCodec_Register
PyCodec_RegisterError
PyCodec_ReplaceErrors
PyCodec_StreamReader
PyCodec_StreamWriter
PyCodec_StrictErrors
PyCodec_XMLCharRefReplaceErrors
PyCompile_OpcodeStackEffect
PyCompile_OpcodeStackEffectWithJump
PyComplex_AsCComplex
PyComplex_FromCComplex
PyComplex_FromDoubles
PyComplex_ImagAsDouble
PyComplex_RealAsDouble
PyComplex_Type
PyConfig_Clear
PyConfig_InitIsolatedConfig
PyConfig_InitPythonConfig
PyConfig_Read
PyConfig_SetArgv
PyConfig_SetBytesArgv
PyConfig_SetBytesString
PyConfig_SetString
PyConfig_SetWideStringList
PyContextToken_Type
PyContextVar_Get
PyContextVar_New
PyContextVar_Reset
PyContextVar_Set
PyContextVar_Type
PyContext_Copy
PyContext_CopyCurrent
PyContext_Enter
PyContext_Exit
PyContext_New
PyContext_Type
PyCoro_New
PyCoro_Type
PyDescr_NewClassMethod
PyDescr_NewGetSet
PyDescr_NewMember
PyDescr_NewMethod
PyDescr_NewWrapper
PyDictItems_Type
PyDictIterItem_Type
PyDictIterKey_Type
PyDictIterValue_Type
PyDictKeys_Type
PyDictProxy_New
PyDictProxy_Type
PyDictRevIterItem_Type
PyDictRevIterKey_Type
PyDictRevIterValue_Type
PyDictValues_Type
PyDict_Clear
PyDict_Contains
PyDict_Copy
PyDict_DelItem
PyDict_DelItemString
PyDict_GetItem
PyDict_GetItemString
PyDict_GetItemWithError
PyDict_Items
PyDict_Keys
PyDict_Merge
PyDict_MergeFromSeq2
PyDict_New
PyDict_Next
PyDict_SetDefault
PyDict_SetItem
PyDict_SetItemString
PyDict_Size
PyDict_Type
PyDict_Update
PyDict_Values
PyEllipsis_Type
PyEnum_Type
PyErr_BadArgument
PyErr_BadInternalCall
PyErr_CheckSignals
PyErr_Clear
PyErr_Display
PyErr_ExceptionMatches
PyErr_Fetch
PyErr_Format
PyErr_FormatV
PyErr_GetExcInfo
PyErr_GivenExceptionMatches
PyErr_NewException
PyErr_NewExceptionWithDoc
PyErr_NoMemory
PyErr_NormalizeException
PyErr_Occurred
PyErr_Print
PyErr_PrintEx
PyErr_ProgramText
PyErr_ProgramTextObject
PyErr_ResourceWarning
PyErr_Restore
PyErr_SetExcFromWindowsErr
PyErr_SetExcFromWindowsErrWithFilename
PyErr_SetExcFromWindowsErrWithFilenameObject
PyErr_SetExcFromWindowsErrWithFilenameObjects
PyErr_SetExcFromWindowsErrWithUnicodeFilename
PyErr_SetExcInfo
PyErr_SetFromErrno
PyErr_SetFromErrnoWithFilename
PyErr_SetFromErrnoWithFilenameObject
PyErr_SetFromErrnoWithFilenameObjects
PyErr_SetFromErrnoWithUnicodeFilename
PyErr_SetFromWindowsErr
PyErr_SetFromWindowsErrWithFilename
PyErr_SetFromWindowsErrWithUnicodeFilename
PyErr_SetImportError
PyErr_SetImportErrorSubclass
PyErr_SetInterrupt
PyErr_SetNone
PyErr_SetObject
PyErr_SetString
PyErr_SyntaxLocation
PyErr_SyntaxLocationEx
PyErr_SyntaxLocationObject
PyErr_WarnEx
PyErr_WarnExplicit
PyErr_WarnExplicitFormat
PyErr_WarnExplicitObject
PyErr_WarnFormat
PyErr_WriteUnraisable
PyEval_AcquireLock
PyEval_AcquireThread
PyEval_CallFunction
PyEval_CallMethod
PyEval_CallObjectWithKeywords
PyEval_EvalCode
PyEval_EvalCodeEx
PyEval_EvalFrame
PyEval_EvalFrameEx
PyEval_GetBuiltins
PyEval_GetFrame
PyEval_GetFuncDesc
PyEval_GetFuncName
PyEval_GetGlobals
PyEval_GetLocals
PyEval_InitThreads
PyEval_MergeCompilerFlags
PyEval_ReleaseLock
PyEval_ReleaseThread
PyEval_RestoreThread
PyEval_SaveThread
PyEval_SetProfile
PyEval_SetTrace
PyEval_ThreadsInitialized
PyExc_ArithmeticError
PyExc_AssertionError
PyExc_AttributeError
PyExc_BaseException
PyExc_BlockingIOError
PyExc_BrokenPipeError
PyExc_BufferError
PyExc_BytesWarning
PyExc_ChildProcessError
PyExc_ConnectionAbortedError
PyExc_ConnectionError
PyExc_ConnectionRefusedError
PyExc_ConnectionResetError
PyExc_DeprecationWarning
PyExc_EOFError
PyExc_EnvironmentError
PyExc_Exception
PyExc_FileExistsError
PyExc_FileNotFoundError
PyExc_FloatingPointError
PyExc_FutureWarning
PyExc_GeneratorExit
PyExc_IOError
PyExc_ImportError
PyExc_ImportWarning
PyExc_IndentationError
PyExc_IndexError
PyExc_InterruptedError
PyExc_IsADirectoryError
PyExc_KeyError
PyExc_KeyboardInterrupt
PyExc_LookupError
PyExc_MemoryError
PyExc_ModuleNotFoundError
PyExc_NameError
PyExc_NotADirectoryError
PyExc_NotImplementedError
PyExc_OSError
PyExc_OverflowError
PyExc_PendingDeprecationWarning
PyExc_PermissionError
PyExc_ProcessLookupError
PyExc_RecursionError
PyExc_ReferenceError
PyExc_ResourceWarning
PyExc_RuntimeError
PyExc_RuntimeWarning
PyExc_StopAsyncIteration
PyExc_StopIteration
PyExc_SyntaxError
PyExc_SyntaxWarning
PyExc_SystemError
PyExc_SystemExit
PyExc_TabError
PyExc_TimeoutError
PyExc_TypeError
PyExc_UnboundLocalError
PyExc_UnicodeDecodeError
PyExc_UnicodeEncodeError
PyExc_UnicodeError
PyExc_UnicodeTranslateError
PyExc_UnicodeWarning
PyExc_UserWarning
PyExc_ValueError
PyExc_Warning
PyExc_WindowsError
PyExc_ZeroDivisionError
PyExceptionClass_Name
PyException_GetCause
PyException_GetContext
PyException_GetTraceback
PyException_SetCause
PyException_SetContext
PyException_SetTraceback
PyFile_FromFd
PyFile_GetLine
PyFile_NewStdPrinter
PyFile_OpenCode
PyFile_OpenCodeObject
PyFile_SetOpenCodeHook
PyFile_WriteObject
PyFile_WriteString
PyFilter_Type
PyFloat_AsDouble
PyFloat_FromDouble
PyFloat_FromString
PyFloat_GetInfo
PyFloat_GetMax
PyFloat_GetMin
PyFloat_Type
PyFrame_BlockPop
PyFrame_BlockSetup
PyFrame_FastToLocals
PyFrame_FastToLocalsWithError
PyFrame_GetBack
PyFrame_GetCode
PyFrame_GetLineNumber
PyFrame_LocalsToFast
PyFrame_New
PyFrame_Type
PyFrozenSet_New
PyFrozenSet_Type
PyFunction_GetAnnotations
PyFunction_GetClosure
PyFunction_GetCode
PyFunction_GetDefaults
PyFunction_GetGlobals
PyFunction_GetKwDefaults
PyFunction_GetModule
PyFunction_New
PyFunction_NewWithQualName
PyFunction_SetAnnotations
PyFunction_SetClosure
PyFunction_SetDefaults
PyFunction_SetKwDefaults
PyFunction_Type
PyFuture_FromAST
PyFuture_FromASTObject
PyGC_Collect
PyGILState_Check
PyGILState_Ensure
PyGILState_GetThisThreadState
PyGILState_Release
PyGen_New
PyGen_NewWithQualName
PyGen_Type
PyGetSetDescr_Type
PyHash_GetFuncDef
PyImport_AddModule
PyImport_AddModuleObject
PyImport_AppendInittab
PyImport_ExecCodeModule
PyImport_ExecCodeModuleEx
PyImport_ExecCodeModuleObject
PyImport_ExecCodeModuleWithPathnames
PyImport_ExtendInittab
PyImport_FrozenModules
PyImport_GetImporter
PyImport_GetMagicNumber
PyImport_GetMagicTag
PyImport_GetModule
PyImport_GetModuleDict
PyImport_Import
PyImport_ImportFrozenModule
PyImport_ImportFrozenModuleObject
PyImport_ImportModule
PyImport_ImportModuleLevel
PyImport_ImportModuleLevelObject
PyImport_ImportModuleNoBlock
PyImport_Inittab
PyImport_ReloadModule
PyIndex_Check
PyInstanceMethod_Function
PyInstanceMethod_New
PyInstanceMethod_Type
PyInterpreterState_Clear
PyInterpreterState_Delete
PyInterpreterState_Get
PyInterpreterState_GetDict
PyInterpreterState_GetID
PyInterpreterState_Head
PyInterpreterState_Main
PyInterpreterState_New
PyInterpreterState_Next
PyInterpreterState_ThreadHead
PyIter_Check
PyIter_Next
PyListIter_Type
PyListRevIter_Type
PyList_Append
PyList_AsTuple
PyList_GetItem
PyList_GetSlice
PyList_Insert
PyList_New
PyList_Reverse
PyList_SetItem
PyList_SetSlice
PyList_Size
PyList_Sort
PyList_Type
PyLongRangeIter_Type
PyLong_AsDouble
PyLong_AsLong
PyLong_AsLongAndOverflow
PyLong_AsLongLong
PyLong_AsLongLongAndOverflow
PyLong_AsSize_t
PyLong_AsSsize_t
PyLong_AsUnsignedLong
PyLong_AsUnsignedLongLong
PyLong_AsUnsignedLongLongMask
PyLong_AsUnsignedLongMask
PyLong_AsVoidPtr
PyLong_FromDouble
PyLong_FromLong
PyLong_FromLongLong
PyLong_FromSize_t
PyLong_FromSsize_t
PyLong_FromString
PyLong_FromUnicode
PyLong_FromUnicodeObject
PyLong_FromUnsignedLong
PyLong_FromUnsignedLongLong
PyLong_FromVoidPtr
PyLong_GetInfo
PyLong_Type
PyMap_Type
PyMapping_Check
PyMapping_GetItemString
PyMapping_HasKey
PyMapping_HasKeyString
PyMapping_Items
PyMapping_Keys
PyMapping_Length
PyMapping_SetItemString
PyMapping_Size
PyMapping_Values
PyMarshal_ReadLastObjectFromFile
PyMarshal_ReadLongFromFile
PyMarshal_ReadObjectFromFile
PyMarshal_ReadObjectFromString
PyMarshal_ReadShortFromFile
PyMarshal_WriteLongToFile
PyMarshal_WriteObjectToFile
PyMarshal_WriteObjectToString
PyMem_Calloc
PyMem_Free
PyMem_GetAllocator
PyMem_Malloc
PyMem_RawCalloc
PyMem_RawFree
PyMem_RawMalloc
PyMem_RawRealloc
PyMem_Realloc
PyMem_SetAllocator
PyMem_SetupDebugHooks
PyMemberDescr_Type
PyMember_GetOne
PyMember_SetOne
PyMemoryView_FromBuffer
PyMemoryView_FromMemory
PyMemoryView_FromObject
PyMemoryView_GetContiguous
PyMemoryView_Type
PyMethodDescr_Type
PyMethod_Function
PyMethod_New
PyMethod_Self
PyMethod_Type

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MultiBit/safetlib/tests/txcache/insight_bcash_tx_502e8577b237b0152843a416f8f1ab0c63321b1be7a8cad7bf5c5c216fcf062c.json
MultiBit/safetlib/tests/txcache/insight_bcash_tx_8b6db9b8ba24235d86b053ea2ccb484fc32b96f89c3c39f98d86f90db16076a0.json
MultiBit/safetlib/tests/txcache/insight_bcash_tx_bc37c28dfb467d2ecb50261387bf752a3977d7e5337915071bb4151e6b711a78.json
MultiBit/safetlib/tests/txcache/insight_bcash_tx_f68caf10df12d5b07a34601d88fa6856c6edcbf4d05ebef3486510ae1c293d5f.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_gold_tx_25526bf06c76ad3082bba930cf627cdd5f1b3cd0b9907dd7ff1a07e14addc985.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_gold_tx_db77c2461b840e6edbe7f9280043184a98e020d9795c1b65cb7cef2551a8fb18.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_1570416eb4302cf52979afd5e6909e37d8fdd874301f7cc87e547e509cb1caa6.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_39a29e954977662ab3879c66fb251ef753e0912223a83d1dcb009111d28265e5.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_4a7b7e0403ae5607e473949cfa03f09f2cd8b0f404bf99ce10b7303d86280bf7.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_50f6f1209ca92d7359564be803cb2c932cde7d370f7cee50fd1fad6790f6206d.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_54aa5680dea781f45ebb536e53dffc526d68c0eb5c00547e323b2c32382dfba3.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_58497a7757224d1ff1941488d23087071103e5bf855f4c1c44e5c8d9d82ca46e.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_6189e3febb5a21cee8b725aa1ef04ffce7e609448446d3a8d6f483c634ef5315.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_a6e2829d089cee47e481b1a753a53081b40738cc87e38f1d9b23ab57d9ad4396.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_c6091adf4c0c23982a35899a6e58ae11e703eacd7954f588ed4b9cdefc4dba52.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_c63e24ed820c5851b60c54613fbc4bcb37df6cd49b4c96143e99580a472f79fb.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_c6be22d34946593bcad1d2b013e12f74159e69574ffea21581dad115572e031c.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_d1d08ea63255af4ad16b098e9885a252632086fa6be53301521d05253ce8a73d.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_d5f65ee80147b4bcc70b75e4bbf2d7382021b871bd8867ef8fa525ef50864882.json
MultiBit/safetlib/tests/txcache/insight_bitcoin_tx_e4bc1ae5e5007a08f2b3926fe11c66612e8f73c6b00c69c7027213b84d259be3.json
MultiBit/safetlib/tests/txcache/insight_decred_testnet_tx_16da185052740d85a630e79c140558215b64e26c500212b90e16b55d13ca06a8.json
MultiBit/safetlib/tests/txcache/insight_decred_testnet_tx_3f7c395521d38387e7617565fe17628723ef6635a08537ad9c46cfb1619e4c3f.json
MultiBit/safetlib/tests/txcache/insight_decred_testnet_tx_5e6e3500a333c53c02f523db5f1a9b17538a8850b4c2c24ecb9b7ba48059b970.json
MultiBit/safetlib/tests/txcache/insight_decred_testnet_tx_ccf95b0fd220ef59ae2e5b17005a81e222758122682d522eff8ae1fcbc93bc74.json
MultiBit/safetlib/tests/txcache/insight_decred_testnet_tx_e16248f0b39a0a0c0e53d6f2f84c2a944f0d50e017a82701e8e02e46e979d5ed.json
MultiBit/safetlib/tests/txcache/insight_decred_testnet_tx_f395ef3e72a831a766db15e7a38bc28025d4ee02234d68bdea2d8353b47a3113.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_09144602765ce3dd8f4329445b20e3684e948709c5cdcaf12da3bb079c99448a.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_16c6c8471b8db7a628f2b2bb86bfeefae1766463ce8692438c7fd3fce3f43ce5.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_20912f98ea3ed849042efed0fdac8cb4fc301961c5988cba56902d8ffb61c337.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_31bc1c88ce6ae337a6b3057a16d5bad0b561ad1dfc047d0a7fbb8814668f91e5.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_65b811d3eca0fe6915d9f2d77c86c5a7f19bf66b1b1253c2c51cb4ae5f0c017b.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_6f90f3c7cbec2258b0971056ef3fe34128dbde30daa9c0639a898f9977299d54.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_9c31922be756c06d02167656465c8dc83bb553bf386a3f478ae65b5c021002be.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_b0946dc27ba308a749b11afecc2018980af18f79e89ad6b080b58220d856f739.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_c9348040bbc2024e12dcb4a0b4806b0398646b91acf314da028c3f03dd0179fc.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_d2dcdaf547ea7f57a713c607f15e883ddc4a98167ee2c43ed953c53cb5153e24.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_d6da21677d7cca5f42fbc7631d062c9ae918a0254f7c6c22de8e8cb7fd5b8236.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_d80c34ee14143a8bf61125102b7ef594118a3796cad670fa8ee15080ae155318.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_e5040e1bc1ae7667ffb9e5248e90b2fb93cd9150234151ce90e14ab2f5933bcd.json
MultiBit/safetlib/tests/txcache/insight_testnet_tx_f41cbedd8becee05a830f418d13aa665125464547db5c7a6cd28f21639fe1228.json
MultiBit/usb1/libusb-1.0.dll
.dll windows x86

c982b5dd19e7d90ecc86fc2adc271781

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetCurrentThreadId
DeleteCriticalSection
SleepEx
TlsGetValue
SetWaitableTimer
CreateWaitableTimerW
WaitForMultipleObjects
WaitForSingleObject
CancelWaitableTimer
CreateEventW
SetEvent
CloseHandle
ResetEvent
GetSystemTimeAsFileTime
SleepConditionVariableCS
TryEnterCriticalSection
TlsSetValue
WakeAllConditionVariable
InitializeConditionVariable
TlsAlloc
TlsFree
GetLastError
VerifyVersionInfoA
GetCurrentProcess
GetQueuedCompletionStatus
PostQueuedCompletionStatus
GetSystemDirectoryA
LoadLibraryA
GetVersionExA
QueryPerformanceFrequency
CancelIoEx
GetOverlappedResult
VerSetConditionMask
FormatMessageA
QueryPerformanceCounter
CreateIoCompletionPort
IsWow64Process
GetProcAddress
FreeLibrary
ReadFile
WriteFile
DeviceIoControl
CreateFileA
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetCurrentProcessId
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
UnhandledExceptionFilter

vcruntime140

__current_exception_context
__current_exception
_except_handler4_common
strrchr
strchr
strstr
__std_type_info_destroy_list
memset
memcpy
memmove

api-ms-win-crt-heap-l1-1-0

realloc
malloc
free
calloc

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
__stdio_common_vsscanf
fputs
__acrt_iob_func

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-string-l1-1-0

isdigit
tolower
toupper
strncmp
strtok
_strdup
_stricmp

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initialize_narrow_environment
_initterm
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
_seh_filter_dll
_initialize_onexit_table
_configure_narrow_argv
_beginthreadex

Exports

Exports

libusb_alloc_streams
libusb_alloc_streams
libusb_alloc_transfer
libusb_alloc_transfer
libusb_attach_kernel_driver
libusb_attach_kernel_driver
libusb_bulk_transfer
libusb_bulk_transfer
libusb_cancel_transfer
libusb_cancel_transfer
libusb_claim_interface
libusb_claim_interface
libusb_clear_halt
libusb_clear_halt
libusb_close
libusb_close
libusb_control_transfer
libusb_control_transfer
libusb_detach_kernel_driver
libusb_detach_kernel_driver
libusb_dev_mem_alloc
libusb_dev_mem_alloc
libusb_dev_mem_free
libusb_dev_mem_free
libusb_error_name
libusb_error_name
libusb_event_handler_active
libusb_event_handler_active
libusb_event_handling_ok
libusb_event_handling_ok
libusb_exit
libusb_exit
libusb_free_bos_descriptor
libusb_free_bos_descriptor
libusb_free_config_descriptor
libusb_free_config_descriptor
libusb_free_container_id_descriptor
libusb_free_container_id_descriptor
libusb_free_device_list
libusb_free_device_list
libusb_free_pollfds
libusb_free_pollfds
libusb_free_ss_endpoint_companion_descriptor
libusb_free_ss_endpoint_companion_descriptor
libusb_free_ss_usb_device_capability_descriptor
libusb_free_ss_usb_device_capability_descriptor
libusb_free_streams
libusb_free_streams
libusb_free_transfer
libusb_free_transfer
libusb_free_usb_2_0_extension_descriptor
libusb_free_usb_2_0_extension_descriptor
libusb_get_active_config_descriptor
libusb_get_active_config_descriptor
libusb_get_bos_descriptor
libusb_get_bos_descriptor
libusb_get_bus_number
libusb_get_bus_number
libusb_get_config_descriptor
libusb_get_config_descriptor
libusb_get_config_descriptor_by_value
libusb_get_config_descriptor_by_value
libusb_get_configuration
libusb_get_configuration
libusb_get_container_id_descriptor
libusb_get_container_id_descriptor
libusb_get_device
libusb_get_device
libusb_get_device_address
libusb_get_device_address
libusb_get_device_descriptor
libusb_get_device_descriptor
libusb_get_device_list
libusb_get_device_list
libusb_get_device_speed
libusb_get_device_speed
libusb_get_max_iso_packet_size
libusb_get_max_iso_packet_size
libusb_get_max_packet_size
libusb_get_max_packet_size
libusb_get_next_timeout
libusb_get_next_timeout
libusb_get_parent
libusb_get_parent
libusb_get_pollfds
libusb_get_pollfds
libusb_get_port_number
libusb_get_port_number
libusb_get_port_numbers
libusb_get_port_numbers
libusb_get_port_path
libusb_get_port_path
libusb_get_ss_endpoint_companion_descriptor
libusb_get_ss_endpoint_companion_descriptor
libusb_get_ss_usb_device_capability_descriptor
libusb_get_ss_usb_device_capability_descriptor
libusb_get_string_descriptor_ascii
libusb_get_string_descriptor_ascii
libusb_get_usb_2_0_extension_descriptor
libusb_get_usb_2_0_extension_descriptor
libusb_get_version
libusb_get_version
libusb_handle_events
libusb_handle_events
libusb_handle_events_completed
libusb_handle_events_completed
libusb_handle_events_locked
libusb_handle_events_locked
libusb_handle_events_timeout
libusb_handle_events_timeout
libusb_handle_events_timeout_completed
libusb_handle_events_timeout_completed
libusb_has_capability
libusb_has_capability
libusb_hotplug_deregister_callback
libusb_hotplug_deregister_callback
libusb_hotplug_get_user_data
libusb_hotplug_get_user_data
libusb_hotplug_register_callback
libusb_hotplug_register_callback
libusb_init
libusb_init
libusb_interrupt_event_handler
libusb_interrupt_event_handler
libusb_interrupt_transfer
libusb_interrupt_transfer
libusb_kernel_driver_active
libusb_kernel_driver_active
libusb_lock_event_waiters
libusb_lock_event_waiters
libusb_lock_events
libusb_lock_events
libusb_open
libusb_open
libusb_open_device_with_vid_pid
libusb_open_device_with_vid_pid
libusb_pollfds_handle_timeouts
libusb_pollfds_handle_timeouts
libusb_ref_device
libusb_ref_device
libusb_release_interface
libusb_release_interface
libusb_reset_device
libusb_reset_device
libusb_set_auto_detach_kernel_driver
libusb_set_auto_detach_kernel_driver
libusb_set_configuration
libusb_set_configuration
libusb_set_debug
libusb_set_debug
libusb_set_interface_alt_setting
libusb_set_interface_alt_setting
libusb_set_log_cb
libusb_set_log_cb
libusb_set_option
libusb_set_option
libusb_set_pollfd_notifiers
libusb_set_pollfd_notifiers
libusb_setlocale
libusb_setlocale
libusb_strerror
libusb_strerror
libusb_submit_transfer
libusb_submit_transfer
libusb_transfer_get_stream_id
libusb_transfer_get_stream_id
libusb_transfer_set_stream_id
libusb_transfer_set_stream_id
libusb_try_lock_events
libusb_try_lock_events
libusb_unlock_event_waiters
libusb_unlock_event_waiters
libusb_unlock_events
libusb_unlock_events
libusb_unref_device
libusb_unref_device
libusb_wait_for_event
libusb_wait_for_event
libusb_wrap_sys_device
libusb_wrap_sys_device

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87Certificate

Extended Key Usages

Key Usages

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9dCertificate

Key Usages

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1Certificate

Extended Key Usages

Key Usages

ac:3d:f6:13:0b:ef:3d:ad:ee:e4:fd:8c:3c:18:68:cf:d7:ef:4c:26Signer

Signature Validations

Verification

23-04-2021 11:40 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 332KB - Virtual size: 331KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87Certificate

Extended Key Usages

Key Usages

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9dCertificate

Key Usages

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1Certificate

Extended Key Usages

Key Usages

d0:8d:57:1b:52:d7:be:48:23:e9:37:e5:ab:6d:95:2f:4f:bf:24:b8Signer

Signature Validations

Verification

23-04-2021 11:40 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 97KB - Virtual size: 96KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

.text
Size: 1.3MB - Virtual size: 1.3MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

ac:3d:f6:13:0b:ef:3d:ad:ee:e4:fd:8c:3c:18:68:cf:d7:ef:4c:26
Signer

23-04-2021 11:40
Valid: true

.text
Size: 332KB - Virtual size: 331KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

d0:8d:57:1b:52:d7:be:48:23:e9:37:e5:ab:6d:95:2f:4f:bf:24:b8
Signer

23-04-2021 11:40
Valid: true

.text
Size: 97KB - Virtual size: 96KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

85:75:47:e5:a0:ce:56:a4:30:b7:8e:d1:89:d7:a3:25:47:33:bf:06
Signer

23-04-2021 11:40
Valid: true

.text
Size: 144KB - Virtual size: 144KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate

39:b5:a2:14:1a:92:82:9c:49:bd:88:24:15:7a:21:7a:5c:6b:37:b4
Signer

23-04-2021 11:40
Valid: true

.text
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5c:a8:2f:f3:e2:49:8f:60:ba:9b:0f:ad:f3:bc:d4:87
Certificate

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

6d:d4:72:eb:02:ae:04:06:e3:dd:84:3f:5f:e1:45:e1
Certificate