boosteroid-install-x64[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

boosteroid-install-x64.zip
Size

10.7MB
MD5

52ea5bd746ad9fe092fd07c7b870caff
SHA1

49ece3ee5b2971f697e7dbdc6bbb5efd9105d042
SHA256

4436be8c32c1135845de4f0b4ff151637c7a7d53a624828ac78e6e9e4dfb661d
SHA512

dd7d2e7b1c83a051b1a826ee7e7ab46326761b930274265bdbc34e1125fb0dceefe87a43b56cc0108df282dcc3ac248679c8e760f6c3a05969ccdf459a3c6a49
SSDEEP

196608:f9AUR0Q+8ZH2iYoNS4s4LBjpk5+/siTEVFoyz+FrK5fhvitVNrw4nU:f9A80bh4s4LhtUiIV2/K5fQK

Score

1^/10

Malware Config

Signatures

Files

boosteroid-install-x64.zip
.zip
Boosteroid-1.4.28-win64.exe
.exe windows x64

87ec2bc08560aed570e34a7de9d0e67d

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7e:15:1f:a8:13:df:55:bd:6b:90:d8:d6:12:82:f6:08
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

26/01/2022, 00:00

Not After

29/01/2023, 23:59

Subject

SERIALNUMBER=HE 383415,CN=Boosteroid Europe\, LTD,O=Boosteroid Europe\, LTD,ST=Lefkosia,C=CY,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024359

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:a0:ff:1e:0f:40:1f:be:ba:42:61:2a:17:02:6e:27:db:a8:98:a5
Signer

Actual PE Digest

9b:a0:ff:1e:0f:40:1f:be:ba:42:61:2a:17:02:6e:27:db:a8:98:a5

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=HE 383415,CN=Boosteroid Europe\, LTD,O=Boosteroid Europe\, LTD,ST=Lefkosia,C=CY,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024359

06/12/2022, 18:34
Valid: true

Chain 1

SERIALNUMBER=HE 383415,CN=Boosteroid Europe\, LTD,O=Boosteroid Europe\, LTD,ST=Lefkosia,C=CY,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024359

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

wtsapi32

WTSFreeMemory
WTSQuerySessionInformationW

uxtheme

GetThemePartSize
GetThemeColor
GetThemeInt
GetThemeEnumValue
GetThemeMargins
GetThemePropertyOrigin
GetThemeTransitionDuration
CloseThemeData
OpenThemeData
GetThemeBackgroundRegion
IsThemeBackgroundPartiallyTransparent
GetThemeBool
SetWindowTheme
IsThemeActive
IsAppThemed
GetCurrentThemeName
DrawThemeBackground
SetWindowThemeAttribute
DrawThemeTextEx
ord47
GetThemeSysFont

dwmapi

DwmSetWindowAttribute
DwmIsCompositionEnabled
DwmGetWindowAttribute
DwmEnableBlurBehindWindow
DwmExtendFrameIntoClientArea
DwmDefWindowProc

gdi32

GetCharABCWidthsFloatW
GetGlyphOutlineW
GetOutlineTextMetricsW
GetTextExtentPoint32W
GetCharABCWidthsI
SetBkMode
SetGraphicsMode
SetTextColor
SetTextAlign
SetWorldTransform
ExtTextOutW
GetDIBits
CreateCompatibleDC
CreateRectRgn
DeleteDC
DeleteObject
GetRegionData
SelectClipRgn
SelectObject
CreateDIBSection
GdiFlush
BitBlt
OffsetRgn
SetLayout
GetDeviceCaps
CreateCompatibleBitmap
CreateDCW
CreateBitmap
ChoosePixelFormat
SetPixelFormat
DescribePixelFormat
GetPixelFormat
SwapBuffers
GetBitmapBits
GetObjectW
CreateFontIndirectW
GetCharABCWidthsW
EnumFontFamiliesExW
GetFontData
GetStockObject
AddFontResourceExW
GetTextFaceW
GetTextMetricsW
RemoveFontMemResourceEx
AddFontMemResourceEx
RemoveFontResourceExW
CombineRgn

oleaut32

SysAllocString
VariantClear
VariantCopy
SysFreeString
SafeArrayPutElement
SafeArrayCreateVector
SysAllocStringLen

imm32

ImmSetCompositionWindow
ImmNotifyIME
ImmSetCandidateWindow
ImmGetVirtualKey
ImmGetDefaultIMEWnd
ImmGetContext
ImmReleaseContext
ImmAssociateContext
ImmAssociateContextEx
ImmGetCompositionStringW
ImmGetOpenStatus

iphlpapi

ConvertInterfaceLuidToNameW
ConvertInterfaceLuidToIndex
ConvertInterfaceNameToLuidW
GetAdaptersAddresses
ConvertInterfaceIndexToLuid
ConvertInterfaceLuidToGuid

crypt32

CertEnumCertificatesInStore
CertDuplicateCertificateContext
CertGetCertificateContextProperty
CertFreeCertificateChain
CertGetCertificateChain
CertAddCertificateContextToStore
CertFreeCertificateContext
CertCreateCertificateContext
CertOpenStore
CertOpenSystemStoreW
CertFindCertificateInStore
CertCloseStore

ws2_32

WSAAsyncSelect
WSASetLastError
send
gethostname
WSACleanup
WSAStartup
WSASocketW
WSASendTo
WSASend
WSARecvFrom
WSARecv
WSANtohs
WSANtohl
WSAIoctl
recv
WSAConnect
WSAAccept
WSAGetLastError
setsockopt
select
listen
htons
getsockname
getpeername
closesocket
bind
__WSAFDIsSet
getsockopt
getnameinfo
freeaddrinfo
getaddrinfo
ntohl
htonl
WSAHtonl

advapi32

RegFlushKey
CryptGenRandom
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
InitializeAcl
GetTokenInformation
GetLengthSid
AddAccessAllowedAce
RegNotifyChangeKeyValue
LookupPrivilegeValueW
RegEnumValueW
AdjustTokenPrivileges
OpenProcessToken
GetFileSecurityW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
RegEnumKeyExW
RegDeleteValueW
SystemFunction036
GetSidSubAuthority
GetSidSubAuthorityCount
AccessCheck
CopySid
DuplicateToken
MapGenericMask
LookupAccountSidW
GetEffectiveRightsFromAclW
GetNamedSecurityInfoW
BuildTrusteeWithSidW
RegCreateKeyExW
RegDeleteKeyW
RegQueryInfoKeyW

user32

GetUserObjectInformationW
GetProcessWindowStation
MessageBoxW
DrawIconEx
ChangeWindowMessageFilterEx
RealGetWindowClassW
GetWindowTextW
CloseTouchInputHandle
GetTouchInputInfo
GetAsyncKeyState
GetMessageExtraInfo
TrackMouseEvent
GetClipboardFormatNameW
GetCursorInfo
GetIconInfo
CreateIconIndirect
CreateCursor
LoadCursorW
GetCursor
SetCursorPos
EnumDisplayDevicesW
RegisterClassW
TrackPopupMenuEx
MapVirtualKeyW
ToUnicode
ToAscii
GetKeyboardState
GetKeyState
IsZoomed
PeekMessageW
FindWindowA
SetCaretPos
ShowCaret
HideCaret
DestroyCaret
CreateCaret
IsWindowEnabled
RegisterWindowMessageW
GetKeyboardLayout
RegisterClipboardFormatW
ChangeClipboardChain
SetClipboardViewer
IsHungAppWindow
LoadIconW
EnumDisplayMonitors
GetMonitorInfoW
MonitorFromWindow
SetMenuItemInfoW
GetMenuItemInfoW
TrackPopupMenu
RemoveMenu
ModifyMenuW
AppendMenuW
InsertMenuW
DestroyMenu
CreatePopupMenu
DrawMenuBar
SetMenu
LoadImageW
GetSysColorBrush
ChildWindowFromPointEx
WindowFromPoint
GetCursorPos
GetFocus
RegisterClassExW
GetClassInfoW
UnregisterClassW
UnregisterPowerSettingNotification
RegisterPowerSettingNotification
GetKeyboardLayoutList
GetAncestor
MonitorFromPoint
DestroyIcon
DestroyCursor
GetWindow
SetParent
GetParent
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
GetWindowLongW
ScreenToClient
ClientToScreen
SetCursor
AdjustWindowRectEx
GetWindowRect
GetClientRect
SetWindowTextW
InvalidateRect
SetWindowRgn
GetUpdateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
EnableMenuItem
GetSystemMenu
GetMenu
ReleaseCapture
SetCapture
GetCapture
IsTouchWindow
UnregisterTouchWindow
RegisterTouchWindow
SetFocus
IsIconic
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
SetWindowPos
MoveWindow
FlashWindowEx
SetLayeredWindowAttributes
UpdateLayeredWindow
ShowWindow
IsChild
CreateWindowExW
AttachThreadInput
SendMessageW
UpdateLayeredWindowIndirect
GetCaretBlinkTime
MessageBeep
IsWindow
GetDoubleClickTime
GetDesktopWindow
GetSysColor
ReleaseDC
GetDC
DestroyWindow
DefWindowProcW
SystemParametersInfoW
GetSystemMetrics
CharUpperW
SendMessageTimeoutW
GetWindowThreadProcessId
EnumWindows
PostMessageW
PostThreadMessageW
TranslateMessage
DispatchMessageW
GetQueueStatus
MsgWaitForMultipleObjectsEx
SetTimer
KillTimer
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
CharNextExA
RegisterDeviceNotificationW
UnregisterDeviceNotification
CreateMenu

mpr

WNetGetUniversalNameA

userenv

GetUserProfileDirectoryW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

netapi32

NetShareEnum
NetApiBufferFree

kernel32

UnlockFile
LockFile
DeviceIoControl
CompareFileTime
GetProcAddress
GetFileSize
ReadFile
SetEndOfFile
SetFilePointer
SetFileTime
OpenEventW
OpenFileMappingW
InitOnceBeginInitialize
InitOnceComplete
EncodePointer
DecodePointer
MapViewOfFile
UnmapViewOfFile
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
RemoveDirectoryW
SetFileAttributesW
RtlPcToFileHeader
WriteFile
RaiseException
GetStringTypeW
GetCPInfo
RtlCaptureContext
RtlLookupFunctionEntry
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
RtlUnwindEx
RtlUnwind
ExitThread
FreeLibraryAndExitThread
SetConsoleCtrlHandler
SystemTimeToTzSpecificLocalTime
GetCommandLineA
GetConsoleOutputCP
SetStdHandle
HeapFree
HeapAlloc
IsValidLocale
EnumSystemLocalesW
HeapReAlloc
GetFileSizeEx
IsValidCodePage
GetACP
GetOEMCP
SetEnvironmentVariableW
GetProcessHeap
HeapSize
FlushFileBuffers
CreateFileW
FileTimeToSystemTime
GetLastError
CreateMutexW
ReleaseMutex
GetUserGeoID
GetGeoInfoW
FindNextChangeNotification
LCMapStringW
CompareStringW
FindFirstFileExW
GetFileInformationByHandleEx
TzSpecificLocalTimeToSystemTime
MoveFileExW
CopyFileW
GetFullPathNameW
GetFileAttributesW
SetFilePointerEx
GetLogicalDrives
WriteFileEx
SleepEx
CancelIoEx
PeekNamedPipe
ReadFileEx
RegisterWaitForSingleObject
UnregisterWaitEx
GetUserPreferredUILanguages
GetUserDefaultLCID
GetCurrencyFormatW
GetTimeFormatW
GetDateFormatW
GetTickCount64
QueryPerformanceFrequency
ResumeThread
TerminateThread
GetThreadPriority
SetThreadPriority
GetCurrentThread
CreateThread
SwitchToThread
GetProcessId
GetExitCodeProcess
Sleep
WaitForSingleObjectEx
DuplicateHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetLocalTime
GetStartupInfoW
CompareStringEx
IsProcessorFeaturePresent
OutputDebugStringW
GetNativeSystemInfo
SystemTimeToFileTime
GetSystemTime
ReadConsoleW
ReadConsoleA
SetConsoleMode
GetConsoleMode
ConvertThreadToFiber
ConvertFiberToThread
QueryPerformanceCounter
RtlVirtualUnwind
CreateFiber
DeleteFiber
SwitchToFiber
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
GetModuleHandleExW
SetHandleInformation
GetOverlappedResult
CreateNamedPipeW
ConnectNamedPipe
GlobalFree
WaitNamedPipeW
DisconnectNamedPipe
ExitProcess
GetConsoleWindow
GetVolumeInformationW
TerminateProcess
LocalAlloc
RtlDeleteFunctionTable
RtlAddFunctionTable
CreateFileMappingW
VirtualProtect
GetTimeZoneInformation
GetUserDefaultLangID
GlobalSize
LoadLibraryA
GetLocaleInfoW
GlobalLock
GlobalUnlock
GlobalAlloc
CheckRemoteDebuggerPresent
ExpandEnvironmentStringsW
WTSGetActiveConsoleSessionId
lstrcmpW
WaitForMultipleObjects
GetSystemInfo
GetCurrentProcess
VirtualFree
VirtualAlloc
CreateSemaphoreW
CreateEventW
ReleaseSemaphore
ResetEvent
SetEvent
InitializeCriticalSection
FileTimeToDosDateTime
GetSystemTimeAsFileTime
LoadLibraryW
LoadLibraryExW
GetModuleFileNameW
FreeLibrary
WideCharToMultiByte
MultiByteToWideChar
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleA
GetLogicalDriveStringsW
FindNextFileW
FindFirstFileW
FindFirstChangeNotificationW
FindCloseChangeNotification
FindClose
GetFileInformationByHandle
MoveFileW
GetModuleHandleW
GetSystemDirectoryW
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
WriteConsoleW
WaitForSingleObject
SetErrorMode
SetLastError
GetVolumePathNamesForVolumeNameW
GetDriveTypeW
GetDriveTypeA
GetDiskFreeSpaceExA
FindVolumeClose
FindNextVolumeW
FindFirstVolumeW
Process32NextW
FreeConsole
GetConsoleProcessList
GetCommandLineW
CloseHandle
CreateProcessW
LocalFree
FormatMessageW
GetFileAttributesExW
GetLongPathNameW
GetShortPathNameW
GetEnvironmentVariableW
GetStdHandle
GetFileType
OpenProcess
GetLogicalDriveStringsA
CreateToolhelp32Snapshot
Process32FirstW
GetTempPathW

ole32

CoCreateInstance
CoTaskMemFree
CoLockObjectExternal
CoInitialize
CoUninitialize
RevokeDragDrop
OleInitialize
OleUninitialize
CoInitializeEx
OleSetClipboard
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
ReleaseStgMedium
CoGetMalloc
StringFromGUID2
RegisterDragDrop
CoCreateGuid

shell32

SHBrowseForFolderW
SHGetKnownFolderIDList
SHGetPathFromIDListW
SHParseDisplayName
SHCreateItemFromParsingName
SHCreateItemFromIDList
Shell_NotifyIconGetRect
ord727
SHGetStockIconInfo
SHGetFileInfoW
SHChangeNotify
SHGetFolderLocation
ShellExecuteExW
Shell_NotifyIconW
ord155
SHGetFolderPathW
CommandLineToArgvW
SHGetKnownFolderPath
ShellExecuteW
SHGetMalloc

winmm

timeSetEvent
timeKillEvent
PlaySoundW

Sections

.text
Size: 15.6MB - Virtual size: 15.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 413KB - Virtual size: 586KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 730KB - Virtual size: 729KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmetad
Size: 512B - Virtual size: 239B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmimed
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 271KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87ec2bc08560aed570e34a7de9d0e67d

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6eCertificate

Extended Key Usages

Key Usages

7e:15:1f:a8:13:df:55:bd:6b:90:d8:d6:12:82:f6:08Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

9b:a0:ff:1e:0f:40:1f:be:ba:42:61:2a:17:02:6e:27:db:a8:98:a5Signer

Signature Validations

Verification

06/12/2022, 18:34 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

wtsapi32

uxtheme

dwmapi

gdi32

oleaut32

imm32

iphlpapi

crypt32

ws2_32

advapi32

user32

mpr

userenv

version

netapi32

kernel32

ole32

shell32

winmm

Sections

.text Size: 15.6MB - Virtual size: 15.6MB

.rdata Size: 5.2MB - Virtual size: 5.2MB

.data Size: 413KB - Virtual size: 586KB

.pdata Size: 730KB - Virtual size: 729KB

.qtmetad Size: 512B - Virtual size: 239B

.qtmimed Size: 2.2MB - Virtual size: 2.2MB

_RDATA Size: 512B - Virtual size: 148B

.rsrc Size: 271KB - Virtual size: 271KB

.reloc Size: 121KB - Virtual size: 120KB

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

7e:15:1f:a8:13:df:55:bd:6b:90:d8:d6:12:82:f6:08
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

9b:a0:ff:1e:0f:40:1f:be:ba:42:61:2a:17:02:6e:27:db:a8:98:a5
Signer

06/12/2022, 18:34
Valid: true

.text
Size: 15.6MB - Virtual size: 15.6MB

.rdata
Size: 5.2MB - Virtual size: 5.2MB

.data
Size: 413KB - Virtual size: 586KB

.pdata
Size: 730KB - Virtual size: 729KB

.qtmetad
Size: 512B - Virtual size: 239B

.qtmimed
Size: 2.2MB - Virtual size: 2.2MB

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 271KB - Virtual size: 271KB

.reloc
Size: 121KB - Virtual size: 120KB