lumma | OneLaunch[.]zip

Resubmissions

21-03-2023 19:47

230321-yhz3nseg6v 10

21-03-2023 17:44

230321-wbegaacc73 10

Sharing

Copy URL

Twitter E-mail

General

Target

OneLaunch.zip
Size

97.7MB
MD5

916a01334d5851752d1dd8464ef1deee
SHA1

172033be6f252c23d934e4655e8351862928d5af
SHA256

8c5977a93001297bb5c08cc6493d4b0c0c25bb7f394378d6bde8e508a3d85bc4
SHA512

4c220013225d0388fdc44c84252716d0eae6cf9323ce2db205d1c68bc8f50939a0a61333b417e76e88b699d825f1127adec9e6aba8b24418068425187e89c171
SSDEEP

3145728:vt+F5Op/wuXHDxxz2W0HOgjYNYT2x8Gv5+Epx:vt+WYuFxzv0ug0NU2xltP

Score

10^/10

lumma

Malware Config

Signatures

Lumma family
lumma

Files

OneLaunch.zip
.zip
OneLaunch\5.3.5\chromium\Locales\en-US.pak
OneLaunch\5.3.5\chromium\chrome.dll
.dll windows x86

60d4f9a20c6586466a91747fb46a76e9

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12-07-2021 00:00

Not After

16-07-2023 23:59

Subject

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

ae:a2:c1:79:02:a0:87:48:06:15:5a:96:8f:dc:e8:4f:85:74:4f:1e
Signer

Actual PE Digest

ae:a2:c1:79:02:a0:87:48:06:15:5a:96:8f:dc:e8:4f:85:74:4f:1e

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

21-03-2023 12:24
Valid: true

Chain 1

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiInAddBuffer
midiInClose
midiInGetDevCapsW
midiInGetNumDevs
midiInOpen
midiInPrepareHeader
midiInReset
midiInStart
midiInUnprepareHeader
midiOutClose
midiOutGetDevCapsW
midiOutGetNumDevs
midiOutLongMsg
midiOutOpen
midiOutPrepareHeader
midiOutReset
midiOutShortMsg
midiOutUnprepareHeader
timeBeginPeriod
timeEndPeriod
timeGetDevCaps
timeGetTime
waveInGetNumDevs
waveOutClose
waveOutGetNumDevs
waveOutOpen
waveOutPause
waveOutPrepareHeader
waveOutReset
waveOutRestart
waveOutUnprepareHeader
waveOutWrite

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
AllocConsole
AreFileApisANSI
AssignProcessToJobObject
AttachConsole
CallbackMayRunLong
CancelIo
CancelIoEx
CheckRemoteDebuggerPresent
ClearCommError
CloseHandle
CloseThreadpool
CloseThreadpoolWork
CompareStringW
ConnectNamedPipe
ContinueDebugEvent
CopyFileW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateHardLinkW
CreateIoCompletionPort
CreateJobObjectW
CreateMemoryResourceNotification
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateSemaphoreA
CreateSemaphoreW
CreateThread
CreateThreadpool
CreateThreadpoolWork
CreateToolhelp32Snapshot
DebugActiveProcess
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
DisconnectNamedPipe
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumResourceNamesW
EnumSystemLocalesW
EscapeCommFunction
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationW
FindFirstFileA
FindFirstFileExA
FindFirstFileExW
FindFirstFileW
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceW
FindVolumeClose
FlsAlloc
FlsSetValue
FlushFileBuffers
FlushInstructionCache
FlushViewOfFile
FoldStringW
FormatMessageA
FormatMessageW
FreeConsole
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommModemStatus
GetCommState
GetCommandLineA
GetCommandLineW
GetComputerNameExA
GetComputerNameExW
GetComputerNameW
GetConsoleDisplayMode
GetConsoleMode
GetConsoleOutputCP
GetCurrencyFormatEx
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatEx
GetDateFormatW
GetDiskFreeSpaceA
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetDriveTypeW
GetDynamicTimeZoneInformation
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameA
GetFullPathNameW
GetGeoInfoW
GetLastError
GetLocalTime
GetLocaleInfoEx
GetLocaleInfoW
GetLogicalDriveStringsW
GetLogicalProcessorInformation
GetLongPathNameW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetNamedPipeHandleStateW
GetNativeSystemInfo
GetNumberFormatEx
GetOEMCP
GetOverlappedResult
GetPriorityClass
GetPrivateProfileStringW
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetProcessId
GetProcessTimes
GetProductInfo
GetQueuedCompletionStatus
GetShortPathNameW
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempFileNameW
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadGroupAffinity
GetThreadId
GetThreadPreferredUILanguages
GetThreadPriority
GetThreadSelectorEntry
GetThreadTimes
GetTickCount
GetTimeFormatEx
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetUserDefaultUILanguage
GetUserGeoID
GetVersionExW
GetVolumeInformationW
GetVolumeNameForVolumeMountPointW
GetVolumePathNameW
GetVolumePathNamesForVolumeNameW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatusEx
GlobalSize
GlobalUnlock
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapLock
HeapReAlloc
HeapSetInformation
HeapSize
HeapUnlock
HeapValidate
HeapWalk
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
InterlockedPopEntrySList
InterlockedPushEntrySList
IsDebuggerPresent
IsProcessInJob
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32EmptyWorkingSet
K32EnumProcessModules
K32GetMappedFileNameW
K32GetModuleFileNameExW
K32GetModuleInformation
K32GetPerformanceInfo
K32GetProcessMemoryInfo
K32QueryWorkingSetEx
LCIDToLocaleName
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocaleNameToLCID
LockFile
LockFileEx
LockResource
MapViewOfFile
MapViewOfFileEx
Module32FirstW
Module32NextW
MoveFileExW
MoveFileW
MultiByteToWideChar
OpenEventW
OpenFileMappingW
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
PostQueuedCompletionStatus
PowerClearRequest
PowerCreateRequest
PowerSetRequest
Process32FirstW
Process32NextW
ProcessIdToSessionId
PurgeComm
QueryDosDeviceW
QueryFullProcessImageNameW
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
QueryUnbiasedInterruptTime
RaiseException
RaiseFailFastException
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
ReplaceFileW
ResetEvent
ResolveLocaleName
ResumeThread
RtlCaptureStackBackTrace
RtlUnwind
SetCommState
SetCommTimeouts
SetConsoleCtrlHandler
SetConsoleTextAttribute
SetCurrentDirectoryW
SetDllDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFileInformationByHandle
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetInformationJobObject
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetProcessDEPPolicy
SetStdHandle
SetThreadContext
SetThreadExecutionState
SetThreadPriority
SetThreadpoolThreadMaximum
SetThreadpoolThreadMinimum
SetUnhandledExceptionFilter
SizeofResource
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SubmitThreadpoolWork
SuspendThread
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryAcquireSRWLockShared
TryEnterCriticalSection
TzSpecificLocalTimeToSystemTime
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
UnregisterWaitEx
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualProtect
VirtualQuery
VirtualQueryEx
WaitForDebugEvent
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WaitForThreadpoolWorkCallbacks
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrcmpW
lstrcmpiA
lstrcmpiW

dbghelp

StackWalk64
SymCleanup
SymFromAddr
SymFunctionTableAccess64
SymGetLineFromAddr64
SymGetModuleBase64
SymGetSearchPathW
SymInitialize
SymSetOptions
SymSetSearchPathW

ws2_32

WSACleanup
WSACloseEvent
WSACreateEvent
WSAEnumNameSpaceProvidersW
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSAGetOverlappedResult
WSAIoctl
WSALookupServiceBeginW
WSALookupServiceEnd
WSALookupServiceNextW
WSARecvFrom
WSAResetEvent
WSASend
WSASendTo
WSASetEvent
WSASetServiceW
WSASocketW
WSAStartup
WSAWaitForMultipleEvents
WSCEnumProtocols
WSCGetProviderPath
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyname
gethostname
getpeername
getsockname
getsockopt
htonl
htons
inet_ntop
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

iphlpapi

CancelIPChangeNotify
FreeMibTable
GetAdaptersAddresses
GetAdaptersInfo
GetIfTable2
GetInterfaceInfo
IpReleaseAddress
IpRenewAddress
NotifyAddrChange

oleaut32

LoadRegTypeLi
LoadTypeLi
SafeArrayAccessData
SafeArrayCreateVector
SafeArrayDestroy
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayPutElement
SafeArrayUnaccessData
SysAllocString
SysAllocStringLen
SysFreeString
SysStringLen
VarBstrCmp
VarUI4FromStr
VariantClear
VariantCopy
VariantInit
VariantTimeToSystemTime

uiautomationcore

UiaGetReservedMixedAttributeValue
UiaGetReservedNotSupportedValue
UiaHostProviderFromHwnd
UiaRaiseAutomationEvent
UiaRaiseAutomationPropertyChangedEvent
UiaRaiseStructureChangedEvent
UiaReturnRawElementProvider

secur32

AcquireCredentialsHandleA
AcquireCredentialsHandleW
CompleteAuthToken
DeleteSecurityContext
FreeContextBuffer
FreeCredentialsHandle
GetUserNameExW
InitializeSecurityContextA
InitializeSecurityContextW
LsaConnectUntrusted
LsaDeregisterLogonProcess
LsaFreeReturnBuffer
LsaLogonUser
QueryContextAttributesW
QuerySecurityPackageInfoW

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock
EnterCriticalPolicySection
LeaveCriticalPolicySection
RegisterGPNotification
UnregisterGPNotification

wintrust

CryptCATAdminAcquireContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminEnumCatalogFromHash
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
CryptCATCatalogInfoFromContext
WTHelperProvDataFromStateData
WinVerifyTrust

crypt32

CertAddCertificateContextToStore
CertAddEncodedCertificateToStore
CertAddStoreToCollection
CertCloseStore
CertCompareCertificateName
CertCreateCTLContext
CertCreateCertificateChainEngine
CertDuplicateCertificateContext
CertFindCertificateInStore
CertFindChainInStore
CertFindExtension
CertFreeCTLContext
CertFreeCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateContext
CertGetCertificateChain
CertGetCertificateContextProperty
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertGetIssuerCertificateFromStore
CertGetNameStringW
CertOpenStore
CertOpenSystemStoreW
CertSetCertificateContextProperty
CertVerifyCertificateChainPolicy
CertVerifyTimeValidity
CryptAcquireCertificatePrivateKey
CryptDecodeObjectEx
CryptInstallOIDFunctionAddress
CryptMsgClose
CryptMsgGetParam
CryptProtectData
CryptQueryObject
CryptUnprotectData
CryptVerifyCertificateSignatureEx

chrome_elf

ClearReportsBetween_ExportThunk
CrashForException_ExportThunk
DumpProcessWithoutCrash
GetCrashReports_ExportThunk
GetInstallDetailsPayload
GetUserDataDirectoryThunk
InjectDumpForHungInput_ExportThunk
IsThirdPartyInitialized
RequestSingleCrashUpload_ExportThunk
SetMetricsClientId
SetUploadConsent_ExportThunk

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

dwrite

DWriteCreateFactory

winhttp

WinHttpCloseHandle
WinHttpConnect
WinHttpGetIEProxyConfigForCurrentUser
WinHttpGetProxyForUrl
WinHttpOpen
WinHttpOpenRequest
WinHttpQueryDataAvailable
WinHttpQueryHeaders
WinHttpReadData
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpSetStatusCallback
WinHttpSetTimeouts

winspool.drv

ClosePrinter
DeviceCapabilitiesW
DocumentPropertiesW
EnumPrintersW
FindClosePrinterChangeNotification
FindFirstPrinterChangeNotification
FindNextPrinterChangeNotification
ord203
GetJobW
GetPrinterDriverW
GetPrinterW
OpenPrinterW

dhcpcsvc

DhcpCApiInitialize
DhcpRequestParams

Exports

Exports

??0Observer@WebBarSettings@@QAE@$$QAV01@@Z
??0Observer@WebBarSettings@@QAE@ABV01@@Z
??0Observer@WebBarSettings@@QAE@XZ
??0WebBarSettings@@AAE@XZ
??1WebBarSettings@@AAE@XZ
??4Observer@WebBarSettings@@QAEAAV01@$$QAV01@@Z
??4Observer@WebBarSettings@@QAEAAV01@ABV01@@Z
??_7Observer@WebBarSettings@@6B@
?AddObserver@WebBarSettings@@QAEXPAVObserver@1@@Z
?ApplyInstallInfoSubstitutions@WebBarSettings@@AAEXAAV?$basic_string@DU?$char_traits@D@__1@std@@V?$allocator@D@23@@__1@std@@@Z
?ApplySettingsHacks@WebBarSettings@@AAEXXZ
?GetDockGeneratedPropsDict@WebBarSettings@@QAE?AV?$unique_ptr@VDictionaryValue@base@@U?$default_delete@VDictionaryValue@base@@@__1@std@@@__1@std@@XZ
?GetDockGeneratedPropsDict@update_client@@YA_NAAV?$basic_string@DU?$char_traits@D@__1@std@@V?$allocator@D@23@@__1@std@@@Z
?GetFeedKey@WebBarSettings@@QAE?AV?$basic_string@DU?$char_traits@D@__1@std@@V?$allocator@D@23@@__1@std@@XZ
?GetInstallPropsDict@WebBarSettings@@QAE?AV?$unique_ptr@VDictionaryValue@base@@U?$default_delete@VDictionaryValue@base@@@__1@std@@@__1@std@@XZ
?GetInstallPropsDict@update_client@@YA_NAAVDictionaryValue@base@@@Z
?GetInstance@WebBarSettings@@SAPAV1@XZ
?GetSearchFeedSyncValues@update_client@@YA_NAAV?$basic_string@DU?$char_traits@D@__1@std@@V?$allocator@D@23@@__1@std@@@Z
?GetSettings@update_client@@YA_NAAV?$basic_string@DU?$char_traits@D@__1@std@@V?$allocator@D@23@@__1@std@@@Z
?GetSettingsDict@WebBarSettings@@QAE?AV?$unique_ptr@VDictionaryValue@base@@U?$default_delete@VDictionaryValue@base@@@__1@std@@@__1@std@@XZ
?GetVersion@update_client@@YA_NAAV?$basic_string@DU?$char_traits@D@__1@std@@V?$allocator@D@23@@__1@std@@@Z
?GetWdPath@update_client@@YA_NAAVFilePath@base@@@Z
?IncrementQueryCount@update_client@@YAHXZ
?IsAdminInstall@update_client@@YA_NXZ
?IsElevated@update_client@@YA_NXZ
?OnDockPropertiesChanged@Observer@WebBarSettings@@UAEXXZ
?OnSettingsChanged@Observer@WebBarSettings@@UAEXXZ
?Refresh@WebBarSettings@@AAEXXZ
?RemoveObserver@WebBarSettings@@QAEXPAVObserver@1@@Z
ChromeMain
GetHandleVerifier
GetMainTargetServices
IsSandboxedProcess
RelaunchChromeBrowserWithNewCommandLineIfNeeded
_ovly_debug_event
nacl_global_xlate_base
nacl_thread_ids
nacl_user

Sections

.text
Size: 118.2MB - Virtual size: 118.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18.1MB - Virtual size: 18.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 370KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 349B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 373B

CPADinfo
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OneLaunch\5.3.5\chromium\chrome_100_percent.pak
OneLaunch\5.3.5\chromium\chrome_200_percent.pak
OneLaunch\5.3.5\chromium\chrome_elf.dll
.dll windows x86

4969da4276e96ac212771133411416d8

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12-07-2021 00:00

Not After

16-07-2023 23:59

Subject

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

ed:ec:f9:6f:1e:a3:19:95:5d:13:2d:5c:ca:59:4f:94:7d:e0:d7:64
Signer

Actual PE Digest

ed:ec:f9:6f:1e:a3:19:95:5d:13:2d:5c:ca:59:4f:94:7d:e0:d7:64

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

21-03-2023 12:24
Valid: true

Chain 1

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateDirectoryW
CreateEventW
CreateFileW
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateRemoteThread
CreateThread
DecodePointer
DeleteCriticalSection
DeleteFileW
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetComputerNameExW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileAttributesW
GetFileInformationByHandle
GetFileSizeEx
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetLocalTime
GetLocaleInfoW
GetLogicalProcessorInformation
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessId
GetProductInfo
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadId
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetVersionExW
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
LockFileEx
MultiByteToWideChar
OpenProcess
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
ReadProcessMemory
ReleaseMutex
ReleaseSRWLockExclusive
RemoveDirectoryW
ResetEvent
RtlCaptureStackBackTrace
RtlUnwind
SetConsoleCtrlHandler
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetNamedPipeHandleState
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SleepEx
SwitchToThread
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransactNamedPipe
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnlockFileEx
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualProtectEx
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrcmpiA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

ClearReportsBetween_ExportThunk
CrashForException_ExportThunk
DisableHook
DrainLog
DumpHungProcessWithPtype_ExportThunk
DumpProcessWithoutCrash
GetApplyHookResult
GetBlockedModulesCount
GetCrashReports_ExportThunk
GetCrashpadDatabasePath_ExportThunk
GetHandleVerifier
GetInstallDetailsPayload
GetUniqueBlockedModulesCount
GetUserDataDirectoryThunk
InjectDumpForHungInput_ExportThunk
IsBrowserProcess
IsThirdPartyInitialized
RegisterLogNotification
RequestSingleCrashUpload_ExportThunk
SetMetricsClientId
SetUploadConsent_ExportThunk
SignalChromeElf
SignalInitializeCrashReporting

Sections

.text
Size: 712KB - Virtual size: 711KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crthunk
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 266B

CPADinfo
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OneLaunch\5.3.5\chromium\chromium.exe
.exe windows x86

e641829f29fcf67fe96ecdaeee56cde7

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12-07-2021 00:00

Not After

16-07-2023 23:59

Subject

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

ca:6c:90:28:93:0e:67:c3:ec:7b:ff:48:d0:83:e7:75:ad:6a:5a:e2
Signer

Actual PE Digest

ca:6c:90:28:93:0e:67:c3:ec:7b:ff:48:d0:83:e7:75:ad:6a:5a:e2

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

21-03-2023 12:24
Valid: true

Chain 1

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

chrome_elf

GetInstallDetailsPayload
IsBrowserProcess
SignalChromeElf
SignalInitializeCrashReporting

kernel32

AcquireSRWLockExclusive
AssignProcessToJobObject
CloseHandle
CompareStringW
ConnectNamedPipe
ConvertFiberToThread
ConvertThreadToFiberEx
CreateDirectoryW
CreateEventW
CreateFiberEx
CreateFileMappingW
CreateFileW
CreateIoCompletionPort
CreateJobObjectW
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateRemoteThread
CreateSemaphoreW
CreateThread
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFiber
DeleteFileW
DeleteProcThreadAttributeList
DisconnectNamedPipe
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesEx
EnumSystemLocalesW
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsSetValue
FlushFileBuffers
FlushViewOfFile
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetComputerNameExW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentProcessorNumber
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileSizeEx
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetLocalTime
GetLocaleInfoW
GetLogicalProcessorInformation
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHandleCount
GetProcessHeap
GetProcessHeaps
GetProcessId
GetProcessTimes
GetProductInfo
GetQueuedCompletionStatus
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDefaultLCID
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadContext
GetThreadId
GetThreadLocale
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetUserDefaultLocaleName
GetVersionExW
GetWindowsDirectoryW
HeapDestroy
HeapSetInformation
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
IsDebuggerPresent
IsProcessorFeaturePresent
IsThreadAFiber
IsValidCodePage
IsValidLocale
IsWow64Process
K32GetPerformanceInfo
K32GetProcessMemoryInfo
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
LockFileEx
MapViewOfFile
MoveFileW
MultiByteToWideChar
OpenProcess
OutputDebugStringA
PeekNamedPipe
PostQueuedCompletionStatus
ProcessIdToSessionId
QueryDosDeviceW
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseSRWLockExclusive
ReleaseSemaphore
RemoveDirectoryW
ReplaceFileW
ResetEvent
ResumeThread
RtlCaptureStackBackTrace
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFileAttributesW
SetFilePointerEx
SetHandleInformation
SetInformationJobObject
SetLastError
SetNamedPipeHandleState
SetProcessDEPPolicy
SetProcessShutdownParameters
SetStdHandle
SetThreadAffinityMask
SetThreadPriority
SetUnhandledExceptionFilter
SignalObjectAndWait
Sleep
SleepConditionVariableSRW
SleepEx
SuspendThread
SwitchToFiber
SwitchToThread
SystemTimeToTzSpecificLocalTime
TerminateJobObject
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransactNamedPipe
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnlockFileEx
UnmapViewOfFile
UnregisterWait
UnregisterWaitEx
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualFreeEx
VirtualProtect
VirtualProtectEx
VirtualQuery
VirtualQueryEx
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrlenW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

GetHandleVerifier
GetMainTargetServices
GetPakFileHashes
IsSandboxedProcess

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 328KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 181B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 268B

CPADinfo
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OneLaunch\5.3.5\chromium\d3dcompiler_47.dll
.dll windows x86

131726669bc1e34b495edb4198d0aca3

Code Sign

33:00:00:03:26:ae:ce:ed:f9:bc:e4:7b:92:00:00:00:00:03:26
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04-03-2020 18:29

Not After

03-03-2021 18:29

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9d:6e:b3:7f:16:6d:b5:27:89:b4:d6:e4:65:fa:7d:25:22:3c:ad:f0:45:d0:d5:cf:cc:73:e8:b8:19:f8:46:46
Signer

Actual PE Digest

9d:6e:b3:7f:16:6d:b5:27:89:b4:d6:e4:65:fa:7d:25:22:3c:ad:f0:45:d0:d5:cf:cc:73:e8:b8:19:f8:46:46

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

21-03-2023 12:24
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

api-ms-win-crt-string-l1-1-0

wcsncmp
strnlen
__isascii
strncmp
memset

api-ms-win-crt-math-l1-1-0

_finite
_isnan

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
_controlfp
_clearfp

api-ms-win-crt-private-l1-1-0

_o__atoi64
_o__callnewh
_o__cexit
_o__chsize_s
_o__CIacos
_o__CIasin
_o__CIatan
_o__CIatan2
_o__CIcos
_o__CIcosh
_o__CIexp
_o__CIfmod
_o__CIlog
_o__CIpow
_o__CIsin
_o__CIsinh
_o__CIsqrt
_o__CItan
_o__CItanh
_o__close
_o__configure_narrow_argv
_o__crt_atexit
_o__errno
_o__execute_onexit_table
_o__filelengthi64
_o__fpclass
_o__get_osfhandle
_o__initialize_narrow_environment
_o__initialize_onexit_table
_o__invalid_parameter_noinfo
_o__lseeki64
_o__mbscmp
_o__mbstrlen
_o__memicmp
_o__open_osfhandle
_o__purecall
_o__read
_o__register_onexit_function
_o__seh_filter_dll
_o__strdup
_o__stricmp
_o__strnicmp
_o__strtoui64
_o__wcsdup
_o__wcsicmp
_o__wcsnicmp
_o__wfsopen
_o__wfullpath
_o__wgetenv
_o__wmakepath_s
_o__write
_o__wsopen_s
_o__wsplitpath_s
_o__wtoi
_o_atof
_o_atoi
_o_bsearch
_o_calloc
_o_ceil
_o_fclose
_o_floor
_o_fread
_o_free
_o_fseek
_o_ftell
_o_getenv
_o_isalnum
_o_isalpha
_o_isdigit
_o_isspace
_o_isxdigit
_o_malloc
_o_modf
_o_qsort
_o_setlocale
_o_strcat_s
_o_strcpy_s
_o_strncpy_s
_o_strtod
_o_strtoul
_o_terminate
_o_tolower
_o_toupper
_o_towlower
_o_wcscat_s
_o_wcscpy_s
_o_wcsncat_s
_o_wcsncpy_s
_o_wcstoul
strrchr
strchr
_except_handler4_common
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsscanf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsprintf
_o___stdio_common_vsnwprintf_s
_o___stdio_common_vsnprintf_s
_o___std_type_info_destroy_list
memcpy
_CxxThrowException
memmove
strstr
__unDName
wcschr
wcsrchr
__CxxFrameHandler3

kernel32

FlushViewOfFile
MapViewOfFileEx
SetFilePointer
CreateFileA
InitializeCriticalSectionAndSpinCount
ExpandEnvironmentStringsW
DeviceIoControl
SetFilePointerEx
SetEndOfFile
GetFileType
DeleteFileW
SetFileAttributesW
GetFileAttributesW
LCMapStringW
SetLastError
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
SetEvent
GetModuleFileNameA
ResetEvent
WaitForSingleObjectEx
CreateEventW
LocalFree
LocalAlloc
LoadLibraryExW
lstrcmpiA
GetModuleHandleW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetFullPathNameA
GetFullPathNameW
TlsFree
TlsGetValue
HeapDestroy
TlsSetValue
TlsAlloc
Sleep
FreeLibrary
CloseHandle
ReadFile
GetFileSizeEx
GetLastError
CreateFileW
GetSystemInfo
VirtualAlloc
VirtualFree
WriteFile
HeapFree
GetProcessHeap
HeapAlloc
OutputDebugStringA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
MultiByteToWideChar
DisableThreadLibraryCalls
HeapCreate
GetProcAddress
GetEnvironmentVariableA

advapi32

CryptDestroyHash
RegEnumKeyExA
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
RegQueryValueExA
CryptAcquireContextW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyExA

api-ms-win-crt-time-l1-1-0

_time32

rpcrt4

UuidCreate

Exports

Exports

D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OneLaunch\5.3.5\chromium\icudtl.dat
OneLaunch\5.3.5\chromium\libEGL.dll
.dll windows x86

671e9b94c17af069171fc66ac98b577e

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12-07-2021 00:00

Not After

16-07-2023 23:59

Subject

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

b0:92:64:25:f7:fa:f5:5a:53:ff:ca:f6:2a:6f:71:5f:d8:8e:61:90
Signer

Actual PE Digest

b0:92:64:25:f7:fa:f5:5a:53:ff:ca:f6:2a:6f:71:5f:d8:8e:61:90

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

21-03-2023 12:24
Valid: true

Chain 1

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglClientWaitSyncKHR
eglCopyBuffers
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreateNativeClientBufferANDROID
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurface
eglCreatePlatformWindowSurfaceEXT
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureANGLE
eglCreateSync
eglCreateSyncKHR
eglCreateWindowSurface
eglDebugMessageControlKHR
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglDestroySyncKHR
eglDupNativeFenceFDANDROID
eglExportVkImageANGLE
eglGetCompositorTimingANDROID
eglGetCompositorTimingSupportedANDROID
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetFrameTimestampSupportedANDROID
eglGetFrameTimestampsANDROID
eglGetMscRateANGLE
eglGetNativeClientBufferANDROID
eglGetNextFrameIdANDROID
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncAttribKHR
eglGetSyncValuesCHROMIUM
eglHandleGPUSwitchANGLE
eglInitialize
eglLabelObjectKHR
eglLockSurfaceKHR
eglMakeCurrent
eglPostSubBufferNV
eglPresentationTimeANDROID
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDebugKHR
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribANGLE
eglQueryDisplayAttribEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQueryStringiANGLE
eglQuerySurface
eglQuerySurface64KHR
eglQuerySurfacePointerANGLE
eglReacquireHighPowerGPUANGLE
eglReleaseDeviceANGLE
eglReleaseHighPowerGPUANGLE
eglReleaseTexImage
eglReleaseThread
eglSetBlobCacheFuncsANDROID
eglSignalSyncKHR
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageKHR
eglSwapBuffersWithFrameTokenANGLE
eglSwapInterval
eglTerminate
eglUnlockSurfaceKHR
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync
eglWaitSyncKHR

Sections

.text
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 145B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 240B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OneLaunch\5.3.5\chromium\libGLESv2.dll
.dll windows x86

f57b063473f1876c9b4683fa8f92be4b

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12-07-2021 00:00

Not After

16-07-2023 23:59

Subject

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5f:dc:b5:a1:05:fc:a9:f7:c5:d5:51:29:90:b5:ec:ef:28:f6:4c:fe
Signer

Actual PE Digest

5f:dc:b5:a1:05:fc:a9:f7:c5:d5:51:29:90:b5:ec:ef:28:f6:4c:fe

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

21-03-2023 12:24
Valid: true

Chain 1

CN=ONELAUNCH TECHNOLOGIES INC.,O=ONELAUNCH TECHNOLOGIES INC.,L=Victoria,ST=British Columbia,C=CA

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
CreateWindowExW
DefWindowProcA
DestroyWindow
GetClassInfoA
GetClientRect
GetDC
GetWindowThreadProcessId
InvalidateRect
IsIconic
IsWindow
LoadCursorA
RegisterClassA
ReleaseDC
UnregisterClassA
WindowFromDC

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
CreateThread
DecodePointer
DeleteCriticalSection
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlUnwind
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

dxgi

CreateDXGIFactory1
CreateDXGIFactory

gdi32

ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers

Exports

Exports

??0PlatformMethods@angle@@QAE@XZ
??4PlatformMethods@angle@@QAEAAU01@$$QAU01@@Z
??4PlatformMethods@angle@@QAEAAU01@ABU01@@Z
EGL_BindAPI
EGL_BindTexImage
EGL_ChooseConfig
EGL_ClientWaitSync
EGL_ClientWaitSyncKHR
EGL_CopyBuffers
EGL_CreateContext
EGL_CreateDeviceANGLE
EGL_CreateImage
EGL_CreateImageKHR
EGL_CreateNativeClientBufferANDROID
EGL_CreatePbufferFromClientBuffer
EGL_CreatePbufferSurface
EGL_CreatePixmapSurface
EGL_CreatePlatformPixmapSurface
EGL_CreatePlatformPixmapSurfaceEXT
EGL_CreatePlatformWindowSurface
EGL_CreatePlatformWindowSurfaceEXT
EGL_CreateStreamKHR
EGL_CreateStreamProducerD3DTextureANGLE
EGL_CreateSync
EGL_CreateSyncKHR
EGL_CreateWindowSurface
EGL_DebugMessageControlKHR
EGL_DestroyContext
EGL_DestroyImage
EGL_DestroyImageKHR
EGL_DestroyStreamKHR
EGL_DestroySurface
EGL_DestroySync
EGL_DestroySyncKHR
EGL_DupNativeFenceFDANDROID
EGL_ExportVkImageANGLE
EGL_GetCompositorTimingANDROID
EGL_GetCompositorTimingSupportedANDROID
EGL_GetConfigAttrib
EGL_GetConfigs
EGL_GetCurrentContext
EGL_GetCurrentDisplay
EGL_GetCurrentSurface
EGL_GetDisplay
EGL_GetError
EGL_GetFrameTimestampSupportedANDROID
EGL_GetFrameTimestampsANDROID
EGL_GetMscRateANGLE
EGL_GetNativeClientBufferANDROID
EGL_GetNextFrameIdANDROID
EGL_GetPlatformDisplay
EGL_GetPlatformDisplayEXT
EGL_GetProcAddress
EGL_GetSyncAttrib
EGL_GetSyncAttribKHR
EGL_GetSyncValuesCHROMIUM
EGL_HandleGPUSwitchANGLE
EGL_Initialize
EGL_LabelObjectKHR
EGL_LockSurfaceKHR
EGL_MakeCurrent
EGL_PostSubBufferNV
EGL_PresentationTimeANDROID
EGL_ProgramCacheGetAttribANGLE
EGL_ProgramCachePopulateANGLE
EGL_ProgramCacheQueryANGLE
EGL_ProgramCacheResizeANGLE
EGL_QueryAPI
EGL_QueryContext
EGL_QueryDebugKHR
EGL_QueryDeviceAttribEXT
EGL_QueryDeviceStringEXT
EGL_QueryDisplayAttribANGLE
EGL_QueryDisplayAttribEXT
EGL_QueryStreamKHR
EGL_QueryStreamu64KHR
EGL_QueryString
EGL_QueryStringiANGLE
EGL_QuerySurface
EGL_QuerySurface64KHR
EGL_QuerySurfacePointerANGLE
EGL_ReacquireHighPowerGPUANGLE
EGL_ReleaseDeviceANGLE
EGL_ReleaseHighPowerGPUANGLE
EGL_ReleaseTexImage
EGL_ReleaseThread
EGL_SetBlobCacheFuncsANDROID
EGL_SignalSyncKHR
EGL_StreamAttribKHR
EGL_StreamConsumerAcquireKHR
EGL_StreamConsumerGLTextureExternalAttribsNV
EGL_StreamConsumerGLTextureExternalKHR
EGL_StreamConsumerReleaseKHR
EGL_StreamPostD3DTextureANGLE
EGL_SurfaceAttrib
EGL_SwapBuffers
EGL_SwapBuffersWithDamageKHR
EGL_SwapBuffersWithFrameTokenANGLE
EGL_SwapInterval
EGL_Terminate
EGL_UnlockSurfaceKHR
EGL_WaitClient
EGL_WaitGL
EGL_WaitNative
EGL_WaitSync
EGL_WaitSyncKHR
_ANGLEGetDisplayPlatform@20
_ANGLEResetDisplayPlatform@4
_EGL_BindAPI@4
_EGL_BindTexImage@12
_EGL_ChooseConfig@20
_EGL_ClientWaitSync@20
_EGL_ClientWaitSyncKHR@20
_EGL_CopyBuffers@12
_EGL_CreateContext@16
_EGL_CreateDeviceANGLE@12
_EGL_CreateImage@20
_EGL_CreateImageKHR@20
_EGL_CreateNativeClientBufferANDROID@4
_EGL_CreatePbufferFromClientBuffer@20
_EGL_CreatePbufferSurface@12
_EGL_CreatePixmapSurface@16
_EGL_CreatePlatformPixmapSurface@16
_EGL_CreatePlatformPixmapSurfaceEXT@16
_EGL_CreatePlatformWindowSurface@16
_EGL_CreatePlatformWindowSurfaceEXT@16
_EGL_CreateStreamKHR@8
_EGL_CreateStreamProducerD3DTextureANGLE@12
_EGL_CreateSync@12
_EGL_CreateSyncKHR@12
_EGL_CreateWindowSurface@16
_EGL_DebugMessageControlKHR@8
_EGL_DestroyContext@8
_EGL_DestroyImage@8
_EGL_DestroyImageKHR@8
_EGL_DestroyStreamKHR@8
_EGL_DestroySurface@8
_EGL_DestroySync@8
_EGL_DestroySyncKHR@8
_EGL_DupNativeFenceFDANDROID@8
_EGL_ExportVkImageANGLE@16
_EGL_GetCompositorTimingANDROID@20
_EGL_GetCompositorTimingSupportedANDROID@12
_EGL_GetConfigAttrib@16
_EGL_GetConfigs@16
_EGL_GetCurrentContext@0
_EGL_GetCurrentDisplay@0
_EGL_GetCurrentSurface@4
_EGL_GetDisplay@4
_EGL_GetError@0
_EGL_GetFrameTimestampSupportedANDROID@12
_EGL_GetFrameTimestampsANDROID@28
_EGL_GetMscRateANGLE@16
_EGL_GetNativeClientBufferANDROID@4
_EGL_GetNextFrameIdANDROID@12
_EGL_GetPlatformDisplay@12
_EGL_GetPlatformDisplayEXT@12
_EGL_GetProcAddress@4
_EGL_GetSyncAttrib@16
_EGL_GetSyncAttribKHR@16
_EGL_GetSyncValuesCHROMIUM@20
_EGL_HandleGPUSwitchANGLE@4
_EGL_Initialize@12
_EGL_LabelObjectKHR@16
_EGL_LockSurfaceKHR@12
_EGL_MakeCurrent@16
_EGL_PostSubBufferNV@24
_EGL_PresentationTimeANDROID@16
_EGL_ProgramCacheGetAttribANGLE@8
_EGL_ProgramCachePopulateANGLE@20
_EGL_ProgramCacheQueryANGLE@24
_EGL_ProgramCacheResizeANGLE@12
_EGL_QueryAPI@0
_EGL_QueryContext@16
_EGL_QueryDebugKHR@8
_EGL_QueryDeviceAttribEXT@12
_EGL_QueryDeviceStringEXT@8
_EGL_QueryDisplayAttribANGLE@12
_EGL_QueryDisplayAttribEXT@12
_EGL_QueryStreamKHR@16
_EGL_QueryStreamu64KHR@16
_EGL_QueryString@8
_EGL_QueryStringiANGLE@12
_EGL_QuerySurface64KHR@16
_EGL_QuerySurface@16
_EGL_QuerySurfacePointerANGLE@16
_EGL_ReacquireHighPowerGPUANGLE@8
_EGL_ReleaseDeviceANGLE@4
_EGL_ReleaseHighPowerGPUANGLE@8
_EGL_ReleaseTexImage@12
_EGL_ReleaseThread@0
_EGL_SetBlobCacheFuncsANDROID@12
_EGL_SignalSyncKHR@12
_EGL_StreamAttribKHR@16
_EGL_StreamConsumerAcquireKHR@8
_EGL_StreamConsumerGLTextureExternalAttribsNV@12
_EGL_StreamConsumerGLTextureExternalKHR@8
_EGL_StreamConsumerReleaseKHR@8
_EGL_StreamPostD3DTextureANGLE@16
_EGL_SurfaceAttrib@16
_EGL_SwapBuffers@8
_EGL_SwapBuffersWithDamageKHR@16
_EGL_SwapBuffersWithFrameTokenANGLE@16
_EGL_SwapInterval@8
_EGL_Terminate@4
_EGL_UnlockSurfaceKHR@8
_EGL_WaitClient@0
_EGL_WaitGL@0
_EGL_WaitNative@4
_EGL_WaitSync@12
_EGL_WaitSyncKHR@12
_GL_AcquireTexturesANGLE@12
_GL_ActiveShaderProgram@8
_GL_ActiveShaderProgramEXT@8
_GL_ActiveTexture@4
_GL_AlphaFunc@8
_GL_AlphaFuncx@8
_GL_AttachShader@8
_GL_BeginQuery@8
_GL_BeginQueryEXT@8
_GL_BeginTransformFeedback@4
_GL_BindAttribLocation@12
_GL_BindBuffer@8
_GL_BindBufferBase@12
_GL_BindBufferRange@20
_GL_BindFragDataLocationEXT@12
_GL_BindFragDataLocationIndexedEXT@16
_GL_BindFramebuffer@8
_GL_BindFramebufferOES@8
_GL_BindImageTexture@28
_GL_BindProgramPipeline@4
_GL_BindProgramPipelineEXT@4
_GL_BindRenderbuffer@8
_GL_BindRenderbufferOES@8
_GL_BindSampler@8
_GL_BindTexture@8
_GL_BindTransformFeedback@8
_GL_BindUniformLocationCHROMIUM@12
_GL_BindVertexArray@4
_GL_BindVertexArrayOES@4
_GL_BindVertexBuffer@16
_GL_BlendBarrier@0
_GL_BlendBarrierKHR@0
_GL_BlendColor@16
_GL_BlendEquation@4
_GL_BlendEquationSeparate@8
_GL_BlendEquationSeparatei@12
_GL_BlendEquationSeparateiEXT@12
_GL_BlendEquationSeparateiOES@12
_GL_BlendEquationi@8
_GL_BlendEquationiEXT@8
_GL_BlendEquationiOES@8
_GL_BlendFunc@8
_GL_BlendFuncSeparate@16
_GL_BlendFuncSeparatei@20
_GL_BlendFuncSeparateiEXT@20
_GL_BlendFuncSeparateiOES@20
_GL_BlendFunci@12
_GL_BlendFunciEXT@12
_GL_BlendFunciOES@12
_GL_BlitFramebuffer@40
_GL_BlitFramebufferANGLE@40
_GL_BlitFramebufferNV@40
_GL_BufferData@16
_GL_BufferStorageEXT@16
_GL_BufferStorageExternalEXT@20
_GL_BufferStorageMemEXT@20
_GL_BufferSubData@16
_GL_CheckFramebufferStatus@4
_GL_CheckFramebufferStatusOES@4
_GL_Clear@4
_GL_ClearBufferfi@16
_GL_ClearBufferfv@12
_GL_ClearBufferiv@12
_GL_ClearBufferuiv@12
_GL_ClearColor@16
_GL_ClearColorx@16
_GL_ClearDepthf@4
_GL_ClearDepthx@4
_GL_ClearStencil@4
_GL_ClientActiveTexture@4
_GL_ClientWaitSync@16
_GL_ClipControlEXT@8
_GL_ClipPlanef@8
_GL_ClipPlanex@8
_GL_Color4f@16
_GL_Color4ub@16
_GL_Color4x@16
_GL_ColorMask@16
_GL_ColorMaski@20
_GL_ColorMaskiEXT@20
_GL_ColorMaskiOES@20
_GL_ColorPointer@16
_GL_CompileShader@4
_GL_CompressedCopyTextureCHROMIUM@8
_GL_CompressedTexImage2D@32
_GL_CompressedTexImage2DRobustANGLE@36
_GL_CompressedTexImage3D@36
_GL_CompressedTexImage3DOES@36
_GL_CompressedTexImage3DRobustANGLE@40
_GL_CompressedTexSubImage2D@36
_GL_CompressedTexSubImage2DRobustANGLE@40
_GL_CompressedTexSubImage3D@44
_GL_CompressedTexSubImage3DOES@44
_GL_CompressedTexSubImage3DRobustANGLE@48
_GL_CopyBufferSubData@20
_GL_CopyImageSubData@60
_GL_CopyImageSubDataEXT@60
_GL_CopyImageSubDataOES@60
_GL_CopySubTexture3DANGLE@68
_GL_CopySubTextureCHROMIUM@56
_GL_CopyTexImage2D@32
_GL_CopyTexSubImage2D@32
_GL_CopyTexSubImage3D@36
_GL_CopyTexSubImage3DOES@36
_GL_CopyTexture3DANGLE@40
_GL_CopyTextureCHROMIUM@40
_GL_CoverageModulationCHROMIUM@4
_GL_CreateMemoryObjectsEXT@8
_GL_CreateProgram@0
_GL_CreateShader@4
_GL_CreateShaderProgramv@12
_GL_CreateShaderProgramvEXT@12
_GL_CullFace@4
_GL_CurrentPaletteMatrixOES@4
_GL_DebugMessageCallback@8
_GL_DebugMessageCallbackKHR@8
_GL_DebugMessageControl@24
_GL_DebugMessageControlKHR@24
_GL_DebugMessageInsert@24
_GL_DebugMessageInsertKHR@24
_GL_DeleteBuffers@8
_GL_DeleteFencesNV@8
_GL_DeleteFramebuffers@8
_GL_DeleteFramebuffersOES@8
_GL_DeleteMemoryObjectsEXT@8
_GL_DeleteProgram@4
_GL_DeleteProgramPipelines@8
_GL_DeleteProgramPipelinesEXT@8
_GL_DeleteQueries@8
_GL_DeleteQueriesEXT@8
_GL_DeleteRenderbuffers@8
_GL_DeleteRenderbuffersOES@8
_GL_DeleteSamplers@8
_GL_DeleteSemaphoresEXT@8
_GL_DeleteShader@4
_GL_DeleteSync@4
_GL_DeleteTextures@8
_GL_DeleteTransformFeedbacks@8
_GL_DeleteVertexArrays@8
_GL_DeleteVertexArraysOES@8
_GL_DepthFunc@4
_GL_DepthMask@4
_GL_DepthRangef@8
_GL_DepthRangex@8
_GL_DetachShader@8
_GL_Disable@4
_GL_DisableClientState@4
_GL_DisableExtensionANGLE@4
_GL_DisableVertexAttribArray@4
_GL_Disablei@8
_GL_DisableiEXT@8
_GL_DisableiOES@8
_GL_DiscardFramebufferEXT@12
_GL_DispatchCompute@12
_GL_DispatchComputeIndirect@4
_GL_DrawArrays@12
_GL_DrawArraysIndirect@8
_GL_DrawArraysInstanced@16
_GL_DrawArraysInstancedANGLE@16
_GL_DrawArraysInstancedBaseInstanceANGLE@20
_GL_DrawArraysInstancedEXT@16
_GL_DrawBuffers@8
_GL_DrawBuffersEXT@8
_GL_DrawElements@16
_GL_DrawElementsBaseVertex@20
_GL_DrawElementsBaseVertexEXT@20
_GL_DrawElementsBaseVertexOES@20
_GL_DrawElementsIndirect@12
_GL_DrawElementsInstanced@20
_GL_DrawElementsInstancedANGLE@20
_GL_DrawElementsInstancedBaseVertex@24
_GL_DrawElementsInstancedBaseVertexBaseInstanceANGLE@28
_GL_DrawElementsInstancedBaseVertexEXT@24
_GL_DrawElementsInstancedBaseVertexOES@24
_GL_DrawElementsInstancedEXT@20
_GL_DrawRangeElements@24
_GL_DrawRangeElementsBaseVertex@28
_GL_DrawRangeElementsBaseVertexEXT@28
_GL_DrawRangeElementsBaseVertexOES@28
_GL_DrawTexfOES@20
_GL_DrawTexfvOES@4
_GL_DrawTexiOES@20
_GL_DrawTexivOES@4
_GL_DrawTexsOES@20
_GL_DrawTexsvOES@4
_GL_DrawTexxOES@20
_GL_DrawTexxvOES@4
_GL_EGLImageTargetRenderbufferStorageOES@8
_GL_EGLImageTargetTexStorageEXT@12
_GL_EGLImageTargetTexture2DOES@8
_GL_EGLImageTargetTextureStorageEXT@12
_GL_Enable@4
_GL_EnableClientState@4
_GL_EnableVertexAttribArray@4
_GL_Enablei@8
_GL_EnableiEXT@8
_GL_EnableiOES@8
_GL_EndQuery@4
_GL_EndQueryEXT@4
_GL_EndTransformFeedback@0
_GL_FenceSync@8
_GL_Finish@0
_GL_FinishFenceNV@4
_GL_Flush@0
_GL_FlushMappedBufferRange@12
_GL_FlushMappedBufferRangeEXT@12
_GL_Fogf@8
_GL_Fogfv@8
_GL_Fogx@8
_GL_Fogxv@8
_GL_FramebufferFetchBarrierEXT@0
_GL_FramebufferParameteri@12
_GL_FramebufferRenderbuffer@16
_GL_FramebufferRenderbufferOES@16
_GL_FramebufferTexture2D@20
_GL_FramebufferTexture2DMultisampleEXT@24
_GL_FramebufferTexture2DOES@20
_GL_FramebufferTexture3DOES@24
_GL_FramebufferTexture@16
_GL_FramebufferTextureEXT@16
_GL_FramebufferTextureLayer@20
_GL_FramebufferTextureMultiviewOVR@24
_GL_FramebufferTextureOES@16
_GL_FrontFace@4
_GL_Frustumf@24
_GL_Frustumx@24
_GL_GenBuffers@8
_GL_GenFencesNV@8
_GL_GenFramebuffers@8
_GL_GenFramebuffersOES@8
_GL_GenProgramPipelines@8
_GL_GenProgramPipelinesEXT@8
_GL_GenQueries@8
_GL_GenQueriesEXT@8
_GL_GenRenderbuffers@8
_GL_GenRenderbuffersOES@8
_GL_GenSamplers@8
_GL_GenSemaphoresEXT@8
_GL_GenTextures@8
_GL_GenTransformFeedbacks@8
_GL_GenVertexArrays@8
_GL_GenVertexArraysOES@8
_GL_GenerateMipmap@4
_GL_GenerateMipmapOES@4
_GL_GetActiveAttrib@28
_GL_GetActiveUniform@28
_GL_GetActiveUniformBlockName@20
_GL_GetActiveUniformBlockiv@16
_GL_GetActiveUniformBlockivRobustANGLE@24
_GL_GetActiveUniformsiv@20
_GL_GetAttachedShaders@16
_GL_GetAttribLocation@8
_GL_GetBooleani_v@12
_GL_GetBooleani_vRobustANGLE@20
_GL_GetBooleanv@8
_GL_GetBooleanvRobustANGLE@16
_GL_GetBufferParameteri64v@12
_GL_GetBufferParameteri64vRobustANGLE@20
_GL_GetBufferParameteriv@12
_GL_GetBufferParameterivRobustANGLE@20
_GL_GetBufferPointerv@12
_GL_GetBufferPointervOES@12
_GL_GetBufferPointervRobustANGLE@20
_GL_GetClipPlanef@8
_GL_GetClipPlanex@8
_GL_GetCompressedTexImageANGLE@12
_GL_GetDebugMessageLog@32
_GL_GetDebugMessageLogKHR@32
_GL_GetError@0
_GL_GetFenceivNV@12
_GL_GetFixedv@8
_GL_GetFloatv@8
_GL_GetFloatvRobustANGLE@16
_GL_GetFragDataIndexEXT@8
_GL_GetFragDataLocation@8
_GL_GetFramebufferAttachmentParameteriv@16
_GL_GetFramebufferAttachmentParameterivOES@16
_GL_GetFramebufferAttachmentParameterivRobustANGLE@24
_GL_GetFramebufferParameteriv@12
_GL_GetFramebufferParameterivRobustANGLE@20
_GL_GetGraphicsResetStatus@0
_GL_GetGraphicsResetStatusEXT@0
_GL_GetInteger64i_v@12
_GL_GetInteger64i_vRobustANGLE@20
_GL_GetInteger64v@8
_GL_GetInteger64vEXT@8
_GL_GetInteger64vRobustANGLE@16
_GL_GetIntegeri_v@12
_GL_GetIntegeri_vRobustANGLE@20

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 153B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 278B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OneLaunch\5.3.5\chromium\resources.pak
OneLaunch\5.3.5\chromium\v8_context_snapshot.bin
OneLaunch\User Data\BrowserMetrics\BrowserMetrics-6419AFF6-202C.pma
OneLaunch\User Data\ClientSidePhishing\29.0\visual_model.tflite
OneLaunch\User Data\Default\AccessContextAudit
OneLaunch\User Data\Default\Affiliation Database
OneLaunch\User Data\Default\Cache\Cache_Data\data_0
OneLaunch\User Data\Default\Cache\Cache_Data\data_1
OneLaunch\User Data\Default\Cache\Cache_Data\data_2
OneLaunch\User Data\Default\Cache\Cache_Data\data_3
OneLaunch\User Data\Default\Cache\Cache_Data\index
OneLaunch\User Data\Default\Extension State\000003.log
OneLaunch\User Data\Default\Extension State\LOG
OneLaunch\User Data\Default\Extension State\MANIFEST-000001
OneLaunch\User Data\Default\Favicons
OneLaunch\User Data\Default\Favicons-journal
OneLaunch\User Data\Default\GCM Store\Encryption\LOG
OneLaunch\User Data\Default\GCM Store\Encryption\MANIFEST-000001
OneLaunch\User Data\Default\GPUCache\data_0
OneLaunch\User Data\Default\GPUCache\data_1
OneLaunch\User Data\Default\GPUCache\data_2
OneLaunch\User Data\Default\GPUCache\data_3
OneLaunch\User Data\Default\GPUCache\index
OneLaunch\User Data\Default\History
OneLaunch\User Data\Default\History-journal
OneLaunch\User Data\Default\Local Storage\leveldb\000003.log
OneLaunch\User Data\Default\Local Storage\leveldb\LOG
OneLaunch\User Data\Default\Local Storage\leveldb\MANIFEST-000001
OneLaunch\User Data\Default\Login Data
OneLaunch\User Data\Default\Login Data For Account
OneLaunch\User Data\Default\Network\Cookies
OneLaunch\User Data\Default\Network\Reporting and NEL
OneLaunch\User Data\Default\Network\Trust Tokens
OneLaunch\User Data\Default\Preferences
OneLaunch\User Data\Default\Safe Browsing Network\Safe Browsing Cookies
OneLaunch\User Data\Default\Site Characteristics Database\000003.log
OneLaunch\User Data\Default\Site Characteristics Database\LOG
OneLaunch\User Data\Default\Site Characteristics Database\MANIFEST-000001
OneLaunch\User Data\Default\Sync Data\LevelDB\000003.log
OneLaunch\User Data\Default\Sync Data\LevelDB\LOG
OneLaunch\User Data\Default\Sync Data\LevelDB\MANIFEST-000001
OneLaunch\User Data\Default\Top Sites
OneLaunch\User Data\Default\Visited Links
OneLaunch\User Data\Default\Web Data
OneLaunch\User Data\Default\data_reduction_proxy_leveldb\LOG
OneLaunch\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000354
OneLaunch\User Data\Default\heavy_ad_intervention_opt_out.db
OneLaunch\User Data\Default\shared_proto_db\000003.log
OneLaunch\User Data\Default\shared_proto_db\LOG
OneLaunch\User Data\Default\shared_proto_db\MANIFEST-000001
OneLaunch\User Data\Default\shared_proto_db\metadata\000003.log
OneLaunch\User Data\Default\shared_proto_db\metadata\LOG
OneLaunch\User Data\Default\shared_proto_db\metadata\MANIFEST-000001
OneLaunch\User Data\GrShaderCache\GPUCache\data_0
OneLaunch\User Data\GrShaderCache\GPUCache\data_1
OneLaunch\User Data\GrShaderCache\GPUCache\data_2
OneLaunch\User Data\GrShaderCache\GPUCache\data_3
OneLaunch\User Data\GrShaderCache\GPUCache\index
OneLaunch\User Data\Local State
OneLaunch\User Data\ShaderCache\GPUCache\data_0
OneLaunch\User Data\ShaderCache\GPUCache\data_1
OneLaunch\User Data\ShaderCache\GPUCache\data_2
OneLaunch\User Data\ShaderCache\GPUCache\data_3
OneLaunch\User Data\ShaderCache\GPUCache\index
OneLaunch\User Data\Variations

Resubmissions

Sharing

General

Malware Config

Signatures

Files

60d4f9a20c6586466a91747fb46a76e9

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8Certificate

Extended Key Usages

Key Usages

ae:a2:c1:79:02:a0:87:48:06:15:5a:96:8f:dc:e8:4f:85:74:4f:1eSigner

Signature Validations

Verification

21-03-2023 12:24 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

dbghelp

ws2_32

iphlpapi

oleaut32

uiautomationcore

secur32

userenv

wintrust

crypt32

chrome_elf

version

dwrite

winhttp

winspool.drv

dhcpcsvc

Exports

Exports

Sections

.text Size: 118.2MB - Virtual size: 118.2MB

.rdata Size: 18.1MB - Virtual size: 18.1MB

.data Size: 370KB - Virtual size: 2.5MB

.00cfg Size: 512B - Virtual size: 4B

.rodata Size: 2KB - Virtual size: 2KB

.tls Size: 512B - Virtual size: 349B

.voltbl Size: 512B - Virtual size: 373B

CPADinfo Size: 512B - Virtual size: 40B

.rsrc Size: 193KB - Virtual size: 192KB

.reloc Size: 4.6MB - Virtual size: 4.6MB

4969da4276e96ac212771133411416d8

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8Certificate

Extended Key Usages

Key Usages

ed:ec:f9:6f:1e:a3:19:95:5d:13:2d:5c:ca:59:4f:94:7d:e0:d7:64Signer

Signature Validations

Verification

21-03-2023 12:24 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

version

Exports

Exports

Sections

.text Size: 712KB - Virtual size: 711KB

.rdata Size: 109KB - Virtual size: 108KB

.data Size: 15KB - Virtual size: 84KB

.00cfg Size: 512B - Virtual size: 4B

.crthunk Size: 512B - Virtual size: 64B

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

ae:a2:c1:79:02:a0:87:48:06:15:5a:96:8f:dc:e8:4f:85:74:4f:1e
Signer

21-03-2023 12:24
Valid: true

.text
Size: 118.2MB - Virtual size: 118.2MB

.rdata
Size: 18.1MB - Virtual size: 18.1MB

.data
Size: 370KB - Virtual size: 2.5MB

.00cfg
Size: 512B - Virtual size: 4B

.rodata
Size: 2KB - Virtual size: 2KB

.tls
Size: 512B - Virtual size: 349B

.voltbl
Size: 512B - Virtual size: 373B

CPADinfo
Size: 512B - Virtual size: 40B

.rsrc
Size: 193KB - Virtual size: 192KB

.reloc
Size: 4.6MB - Virtual size: 4.6MB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

ed:ec:f9:6f:1e:a3:19:95:5d:13:2d:5c:ca:59:4f:94:7d:e0:d7:64
Signer

21-03-2023 12:24
Valid: true

.text
Size: 712KB - Virtual size: 711KB

.rdata
Size: 109KB - Virtual size: 108KB

.data
Size: 15KB - Virtual size: 84KB

.00cfg
Size: 512B - Virtual size: 4B

.crthunk
Size: 512B - Virtual size: 64B

.tls
Size: 512B - Virtual size: 165B

.voltbl
Size: 512B - Virtual size: 266B

CPADinfo
Size: 512B - Virtual size: 40B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 28KB - Virtual size: 28KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0a:11:8f:49:ab:8e:6b:2f:f7:ed:a3:1a:dd:5b:43:c8
Certificate

ca:6c:90:28:93:0e:67:c3:ec:7b:ff:48:d0:83:e7:75:ad:6a:5a:e2
Signer

21-03-2023 12:24
Valid: true

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 328KB - Virtual size: 327KB

.data
Size: 16KB - Virtual size: 78KB

.00cfg
Size: 512B - Virtual size: 4B

.tls
Size: 512B - Virtual size: 181B

.voltbl
Size: 512B - Virtual size: 268B

CPADinfo
Size: 512B - Virtual size: 40B

.rsrc
Size: 208KB - Virtual size: 207KB

.reloc
Size: 52KB - Virtual size: 51KB

33:00:00:03:26:ae:ce:ed:f9:bc:e4:7b:92:00:00:00:00:03:26
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

9d:6e:b3:7f:16:6d:b5:27:89:b4:d6:e4:65:fa:7d:25:22:3c:ad:f0:45:d0:d5:cf:cc:73:e8:b8:19:f8:46:46
Signer

21-03-2023 12:24
Valid: false

.text
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: 25KB - Virtual size: 57KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 119KB - Virtual size: 118KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate