5aecbaf80087d05acd0c1bebe931d1dbd7eee10764cfeac906595beb88be3181

Sharing

Copy URL Twitter E-mail

General

Target

5aecbaf80087d05acd0c1bebe931d1dbd7eee10764cfeac906595beb88be3181
Size

4.8MB
MD5

9b0a243062c383a3a607aa72b29e446a
SHA1

8553f629e39dfb9d65ffc3cb7e4e09cd09e58581
SHA256

5aecbaf80087d05acd0c1bebe931d1dbd7eee10764cfeac906595beb88be3181
SHA512

56a87bb0ad53124e842c410706143144843cfdb03dc3b03bf08d1ae1a4d7d783f28e5547b14c033548aeda85de66b3c7fd3f91508cd3df290473539756d6fca7
SSDEEP

98304:s7IwD7oy21GpUpBKhKmwV1m6L9EAN/sGAN/aAN/sICe:MND7D21mbq1dnxsXxTxH7

Score

1^/10

Malware Config

Signatures

Files

5aecbaf80087d05acd0c1bebe931d1dbd7eee10764cfeac906595beb88be3181
.exe windows x86

eb8879c05fa0553de5766e5d88fe330f

Code Sign

08:c8:ec:ea:59:44:ae:e2:2b:b2:18:50:8e:97:98:b8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

31/07/2020, 00:00

Not After

03/08/2023, 12:00

Subject

CN=Qi An Xin Technology Group Inc.,O=Qi An Xin Technology Group Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28/07/2022, 08:56

Not After

27/07/2033, 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:20:4d:b4:00:00:00:00:00:27
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:45

Not After

15/04/2021, 19:55

Subject

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:bc:db:09:00:11:fd:11:c3:34:1d:74:52:75:e9:9a
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/08/2020, 00:00

Not After

03/08/2023, 12:00

Subject

SERIALNUMBER=91110105397625067T,CN=Qi An Xin Technology Group Inc.,O=Qi An Xin Technology Group Inc.,ST=Beijing,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13074265696a696e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28/07/2022, 08:56

Not After

27/07/2033, 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:0d:b1:02:c2:cd:34:0f:bf:a7:0e:b1:58:15:26:09:03:bd:ef:e7:c5:8a:3a:e1:32:8b:d5:e4:17:a8:66:60
Signer

Actual PE Digest

1b:0d:b1:02:c2:cd:34:0f:bf:a7:0e:b1:58:15:26:09:03:bd:ef:e7:c5:8a:3a:e1:32:8b:d5:e4:17:a8:66:60

Digest Algorithm

sha256

PE Digest Matches

false

de:98:ed:5f:03:5e:d5:86:a2:3f:ed:0a:2b:58:65:e2:ca:88:5a:bf
Signer

Actual PE Digest

de:98:ed:5f:03:5e:d5:86:a2:3f:ed:0a:2b:58:65:e2:ca:88:5a:bf

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DosDateTimeToFileTime
GetLocalTime
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
SetLastError
ResetEvent
ReleaseSemaphore
CreateEventW
GetCurrentThreadId
GetThreadTimes
GetSystemTimeAsFileTime
GetSystemDirectoryW
GetVersionExW
VirtualAlloc
VirtualProtect
VirtualFree
CreateTimerQueueTimer
DeleteTimerQueueTimer
ConvertThreadToFiber
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
GetUserDefaultLCID
EnumSystemLocalesW
SleepEx
QueryPerformanceFrequency
QueryPerformanceCounter
CompareFileTime
GetEnvironmentVariableA
GetStdHandle
PeekNamedPipe
VerSetConditionMask
GetModuleHandleA
VerifyVersionInfoW
GetUserDefaultUILanguage
GetConsoleMode
SetConsoleMode
ReadConsoleA
ReadConsoleW
DuplicateHandle
TlsSetValue
GetModuleHandleExW
SwitchToFiber
DeleteFiber
CreateFiber
GetSystemTime
ConvertFiberToThread
LoadLibraryA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
IsValidCodePage
CreatePipe
SetStdHandle
SetEnvironmentVariableW
IsValidLocale
GetConsoleCP
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
ExitThread
SetConsoleCtrlHandler
RtlUnwind
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
FreeLibraryAndExitThread
GetCurrentThread
GetProcessAffinityMask
ChangeTimerQueueTimer
GetThreadPriority
SetThreadPriority
CreateThread
SignalObjectAndWait
CreateTimerQueue
InitializeSListHead
GetStartupInfoW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetFileSizeEx
RtlCaptureStackBackTrace
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
GetComputerNameA
GetWindowsDirectoryA
InitializeCriticalSection
OutputDebugStringA
GetTempPathA
IsDebuggerPresent
GetStringTypeW
GetCPInfo
SetFilePointerEx
GetFullPathNameW
GetFileInformationByHandle
GetFileAttributesExW
FindFirstFileExW
TryEnterCriticalSection
GetExitCodeThread
SwitchToThread
ExitProcess
GetACP
GetCurrentDirectoryW
GetTickCount
MultiByteToWideChar
GetTempPathW
GetDriveTypeW
SystemTimeToFileTime
SetFileTime
SetFilePointer
MulDiv
GetFileType
GetPrivateProfileStringA
WideCharToMultiByte
FormatMessageW
FormatMessageA
LocalFree
LoadLibraryW
GetProcAddress
TlsFree
TlsAlloc
GetCurrentProcessId
MoveFileExW
lstrlenW
FreeLibrary
CreateProcessW
GetExitCodeProcess
SetEndOfFile
CreateDirectoryW
ReadFile
GetFileSize
FlushFileBuffers
FindResourceExW
WriteFile
RemoveDirectoryW
GetFileAttributesW
DeleteFileW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetPrivateProfileStringW
OpenProcess
TerminateProcess
WaitForSingleObjectEx
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
FindResourceW
SizeofResource
LockResource
LoadResource
FreeResource
OutputDebugStringW
GetModuleFileNameW
GetCurrentProcess
CreateMutexW
GetCommandLineW
TlsGetValue
GetModuleHandleW
CreateFileW
WaitForMultipleObjects
Sleep
CreateEventA
WaitForSingleObject
SetEvent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
RaiseException
CloseHandle
FindNextFileW
FindFirstFileW
FindClose
GetEnvironmentVariableW
WriteConsoleW

user32

SetFocus
GetFocus
GetKeyState
SetCapture
ReleaseCapture
IsIconic
KillTimer
GetDC
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
InvalidateRect
GetClientRect
GetWindowRect
IsWindowVisible
ScreenToClient
MapWindowPoints
IntersectRect
UnionRect
IsRectEmpty
PtInRect
SetWindowPos
SetWindowLongW
GetParent
GetWindow
DefWindowProcW
CallWindowProcW
RegisterClassW
RegisterClassExW
GetClassInfoExW
ShowWindow
EnableWindow
SetPropW
GetPropW
LoadCursorW
MonitorFromWindow
GetMonitorInfoW
wvsprintfW
SetCursor
OffsetRect
IsZoomed
SetWindowRgn
CreateCaret
GetCaretBlinkTime
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
ClientToScreen
GetSysColor
CharPrevW
DestroyWindow
IsWindow
CreateWindowExW
DrawTextW
FillRect
SetRect
CharNextW
GetWindowLongW
PostMessageW
DispatchMessageW
TranslateMessage
GetUserObjectInformationW
GetMessageW
ExitWindowsEx
MessageBoxW
PostQuitMessage
GetActiveWindow
LoadImageW
SendMessageW
GetCursorPos
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
MoveWindow
CreateAcceleratorTableW
InvalidateRgn
GetGUIThreadInfo
GetProcessWindowStation
SetTimer

gdi32

GetTextExtentPoint32W
GetClipBox
GetCharABCWidthsW
CreateSolidBrush
CreateRectRgnIndirect
CreatePenIndirect
CombineRgn
GetDeviceCaps
GetObjectA
CreateRoundRectRgn
SetWindowOrgEx
GetObjectW
LineTo
SelectObject
SaveDC
RestoreDC
Rectangle
GetStockObject
DeleteObject
DeleteDC
CreatePen
CreateFontIndirectW
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
RoundRect
SelectClipRgn
ExtSelectClipRgn
SetBkColor
SetBkMode
StretchBlt
SetStretchBltMode
SetTextColor
CreateDIBSection
MoveToEx
TextOutW
ExtTextOutW
GdiFlush
GetTextMetricsW
CreatePatternBrush

advapi32

AdjustTokenPrivileges
CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCloseKey
LookupPrivilegeValueW
OpenProcessToken
CryptDestroyKey
CryptSetHashParam
CryptGetProvParam
CryptGetUserKey
CryptExportKey
CryptDecrypt
CryptCreateHash
CryptDestroyHash
CryptSignHashW
CryptEnumProvidersW
CryptGenRandom

shell32

ShellExecuteExW
SHChangeNotify
SHGetSpecialFolderPathW
CommandLineToArgvW

ole32

OleLockRunning
CLSIDFromProgID
CreateStreamOnHGlobal
CoCreateInstance
CoUninitialize
CoInitialize
CoCreateGuid
CLSIDFromString

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocString

shlwapi

PathCombineW
PathIsDirectoryW
SHGetValueW
SHSetValueW
PathAppendW
PathRemoveFileSpecW
PathCombineA
SHDeleteKeyW
SHDeleteValueW
PathFileExistsW
SHSetValueA

comctl32

_TrackMouseEvent
ord17

gdiplus

GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDrawString
GdipGetFamily
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDeleteFontFamily
GdipDrawImage
GdipGraphicsClear
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipSetPixelOffsetMode
GdipSetSmoothingMode
GdipSetCompositingQuality
GdipCreateBitmapFromScan0
GdipAlloc
GdipCreateLineBrushI
GdipDeleteBrush
GdipCloneBrush
GdipDrawImageRectI
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipDeleteGraphics
GdipCreateFromHDC
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdiplusShutdown
GdiplusStartup
GdipFree
GdipGetImageGraphicsContext

ws2_32

getsockname
getpeername
getsockopt
bind
recv
WSACleanup
__WSAFDIsSet
select
WSASetLastError
send
WSACloseEvent
htons
ntohs
setsockopt
socket
WSAIoctl
accept
htonl
listen
getaddrinfo
freeaddrinfo
sendto
ioctlsocket
gethostname
getnameinfo
shutdown
WSAStartup
connect
WSAGetLastError
closesocket
WSAWaitForMultipleEvents
WSAResetEvent
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
recvfrom

psapi

GetModuleFileNameExW

imm32

ImmGetContext
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmReleaseContext

dbghelp

SymInitialize
SymCleanup
SymSetOptions
SymFromAddr
UnDecorateSymbolName

wldap32

ord301
ord147
ord133
ord79
ord142
ord167
ord127
ord27
ord26
ord117
ord41
ord208
ord216
ord14
ord46
ord219
ord145

crypt32

CertGetIntendedKeyUsage
CertFindCertificateInStore
CertFreeCertificateContext
CertEnumCertificatesInStore
CertCloseStore
CertOpenSystemStoreW
CertOpenStore
CertDuplicateCertificateContext
CertGetEnhancedKeyUsage
CertGetCertificateContextProperty

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 716KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 108KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

eb8879c05fa0553de5766e5d88fe330f

Code Sign

08:c8:ec:ea:59:44:ae:e2:2b:b2:18:50:8e:97:98:b8Certificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

61:20:4d:b4:00:00:00:00:00:27Certificate

Key Usages

0a:bc:db:09:00:11:fd:11:c3:34:1d:74:52:75:e9:9aCertificate

Extended Key Usages

Key Usages

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate

Extended Key Usages

Key Usages

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

1b:0d:b1:02:c2:cd:34:0f:bf:a7:0e:b1:58:15:26:09:03:bd:ef:e7:c5:8a:3a:e1:32:8b:d5:e4:17:a8:66:60Signer

de:98:ed:5f:03:5e:d5:86:a2:3f:ed:0a:2b:58:65:e2:ca:88:5a:bfSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

gdiplus

ws2_32

psapi

imm32

dbghelp

wldap32

crypt32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 716KB - Virtual size: 716KB

.data Size: 32KB - Virtual size: 120KB

.rsrc Size: 1.6MB - Virtual size: 1.6MB

.reloc Size: 108KB - Virtual size: 176KB

08:c8:ec:ea:59:44:ae:e2:2b:b2:18:50:8e:97:98:b8
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

61:20:4d:b4:00:00:00:00:00:27
Certificate

0a:bc:db:09:00:11:fd:11:c3:34:1d:74:52:75:e9:9a
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

1b:0d:b1:02:c2:cd:34:0f:bf:a7:0e:b1:58:15:26:09:03:bd:ef:e7:c5:8a:3a:e1:32:8b:d5:e4:17:a8:66:60
Signer

de:98:ed:5f:03:5e:d5:86:a2:3f:ed:0a:2b:58:65:e2:ca:88:5a:bf
Signer

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 716KB - Virtual size: 716KB

.data
Size: 32KB - Virtual size: 120KB

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

.reloc
Size: 108KB - Virtual size: 176KB