MouseClick[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

MouseClick.exe
Size

21.5MB
MD5

f6f5b0cb8b3d80106d8911550d9958ff
SHA1

d50c3031f71c1bfa40a090febbf49855d7b6f220
SHA256

2e96439a31583ac266b0a415ba0aace16f7cf9c40425b87995466c9b4218312f
SHA512

224564a80abb40e800d35a9bf5a582cc227a984738f4a14809b63f154dbfb3ad66f1764dba1b5165bc4c0b03e3bed710de9ab6137c58f57a8ec28713709b660b
SSDEEP

393216:3+3AiuNVUVBngumM9t+h0MSSEGhvGLiAUy9dgN:3+3AiPpm0+h0MS1g1N

Score

1^/10

Malware Config

Signatures

Files

MouseClick.exe
.exe windows x86

9d1c8f2990c74db27203c6f71bf45810

Code Sign

6e:a1:d4:94:5f:0e:69:e9:d6:f1:48:2c:58:6a:71:af
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

17-04-2018 08:20

Not After

18-05-2027 08:20

Subject

CN=WoTrus Code Signing CA,O=WoTrus CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

13:eb:fd:4d:97:a5:bb:c6:e6:15:f9:89:d0:6d:42:59
Certificate

Issuer

CN=WoTrus Code Signing CA,O=WoTrus CA Limited,C=CN

Not Before

08-04-2020 11:40

Not After

08-04-2022 11:40

Subject

CN=天门数迈科技有限公司,O=天门数迈科技有限公司,L=天门市,ST=湖北省,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:3b:c7:91:00:00:00:00:00:34
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-04-2011 20:15

Not After

15-04-2021 20:25

Subject

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e6:c5:35:8a:40:f2:6b:cb:0b:5b:8b:f6:cc:8a:17:18:68:2a:3f:28:b9:d6:f0:6b:e7:04:96:c0:5c:9e:fd:5c
Signer

Actual PE Digest

e6:c5:35:8a:40:f2:6b:cb:0b:5b:8b:f6:cc:8a:17:18:68:2a:3f:28:b9:d6:f0:6b:e7:04:96:c0:5c:9e:fd:5c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetConnectionW

ws2_32

freeaddrinfo
getaddrinfo
WSACleanup
WSAStartup
WSAGetLastError
ntohl
connect
htons
bind
listen
closesocket
accept
getpeername
recv
shutdown
send
gethostbyname
gethostname
getsockname
getsockopt
ntohs
setsockopt
WSASetLastError
WSAIoctl
htonl
getnameinfo
sendto
recvfrom
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
WSACloseEvent
select
__WSAFDIsSet
socket
ioctlsocket

kernel32

lstrcmpW
QueryFullProcessImageNameW
FreeResource
SetConsoleCtrlHandler
FreeConsole
AllocConsole
SetConsoleTitleW
SetConsoleMode
GetConsoleScreenBufferInfo
GenerateConsoleCtrlEvent
GetConsoleWindow
GetLocalTime
SetConsoleTextAttribute
WriteConsoleW
SetUnhandledExceptionFilter
SetLastError
HeapAlloc
GetProcessHeap
HeapFree
RemoveDirectoryW
GetVolumeInformationW
GetSystemInfo
GetModuleFileNameW
GetTempPathW
FindNextFileW
SetFilePointer
GetFileInformationByHandle
DebugBreak
GetACP
VerSetConditionMask
MulDiv
VerifyVersionInfoW
GetCurrentDirectoryW
LocalFileTimeToFileTime
SetFileTime
ExitProcess
GetWindowsDirectoryW
lstrcpyW
DecodePointer
RaiseException
InitializeCriticalSectionAndSpinCount
lstrcpynW
DeleteFileA
GetTempPathA
GetTempFileNameA
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CreateFileA
GetFileAttributesExA
LockFileEx
UnlockFileEx
FindFirstFileExA
FindNextFileA
LoadLibraryA
GetEnvironmentVariableA
SwitchToThread
lstrcmpA
InitializeCriticalSectionEx
InitializeConditionVariable
WakeConditionVariable
SleepConditionVariableCS
WaitForSingleObjectEx
CreateFileMappingA
CreateEventA
TlsAlloc
TlsGetValue
TlsSetValue
ReleaseSemaphore
CreateSemaphoreA
FindFirstFileExW
GetFullPathNameW
GetWindowsDirectoryA
GetComputerNameA
RtlCaptureStackBackTrace
SleepEx
GetSystemDirectoryW
MoveFileExW
CompareFileTime
GetFileType
PeekNamedPipe
InterlockedIncrement
InterlockedDecrement
GetDriveTypeW
ConvertThreadToFiber
ConvertFiberToThread
CreateFiber
DeleteFiber
SwitchToFiber
ReadConsoleA
ExpandEnvironmentStringsA
GetVersionExA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceFrequency
GetCommandLineA
GetOEMCP
IsValidCodePage
SetEndOfFile
SetStdHandle
HeapSize
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
FlushFileBuffers
GetTimeZoneInformation
GetFileSizeEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
SystemTimeToTzSpecificLocalTime
SetFilePointerEx
GetFileAttributesExW
ExitThread
GetModuleHandleExW
RtlUnwind
CreateTimerQueue
VirtualFree
VirtualProtect
VirtualAlloc
UnregisterWait
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
TlsFree
SignalObjectAndWait
RegisterWaitForSingleObject
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
DuplicateHandle
FreeLibraryAndExitThread
GetThreadTimes
GetCurrentThread
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
GetLocaleInfoEx
GetCPInfo
CompareStringEx
CloseThreadpoolWait
SetThreadpoolWait
CreateThreadpoolWait
CloseThreadpoolTimer
WaitForThreadpoolTimerCallbacks
SetThreadpoolTimer
CreateThreadpoolTimer
FreeLibraryWhenCallbackReturns
GetCurrentProcessorNumber
FlushProcessWriteBuffers
CreateSemaphoreExW
CreateEventExW
LCMapStringEx
EncodePointer
SleepConditionVariableSRW
WakeAllConditionVariable
TryEnterCriticalSection
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
GetExitCodeThread
GetStringTypeW
GetProcessTimes
MoveFileW
SetCommState
K32EnumProcessModules
CopyFileW
CreateProcessW
GetCurrentProcessId
QueryPerformanceCounter
DeleteFileW
CreateDirectoryW
ResetEvent
GetModuleHandleA
GetExitCodeProcess
GetCommandLineW
ReadDirectoryChangesW
K32EnumProcesses
CreateThread
GetCommState
GetThreadPriority
TerminateThread
GetDiskFreeSpaceExW
K32GetModuleBaseNameW
BuildCommDCBW
GetLogicalDriveStringsW
ResumeThread
SuspendThread
ReleaseMutex
CreateMutexW
CreatePipe
SetThreadPriority
K32GetModuleFileNameExW
SetEnvironmentVariableW
CreateNamedPipeW
TerminateProcess
OutputDebugStringA
GetShortPathNameW
WriteFile
GetStdHandle
SetHandleInformation
GetProcessWorkingSetSize
LoadLibraryExA
FormatMessageA
GetModuleFileNameA
lstrcmpiW
SizeofResource
LockResource
LoadResource
FindResourceW
ConnectNamedPipe
LoadLibraryExW
ReadFile
CreateFileW
OpenProcess
GetCurrentProcess
GetEnvironmentVariableW
GetFileSize
GetFileAttributesW
FindClose
FindFirstFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
SystemTimeToFileTime
GlobalUnlock
GlobalLock
GlobalAlloc
lstrlenW
GetVersionExW
FreeLibrary
LoadLibraryW
GetModuleHandleW
GetProcAddress
OutputDebugStringW
GetSystemTimeAsFileTime
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
WaitForMultipleObjects
WaitForSingleObject
MapViewOfFile
CreateFileMappingW
LocalFree
CloseHandle
SetEvent
GetLastError
GetTickCount64
FormatMessageW
CreateEventW
UnmapViewOfFile
OpenFileMappingW
OpenEventW
GetTickCount
WideCharToMultiByte
Sleep
MultiByteToWideChar
GetCurrentThreadId
GetSystemTime

user32

SetWindowRgn
IsRectEmpty
IntersectRect
GetSysColor
MapWindowPoints
GetUpdateRect
EndPaint
BeginPaint
ReleaseCapture
SetCapture
GetActiveWindow
CharNextW
IsZoomed
MonitorFromPoint
MonitorFromWindow
GetWindow
GetClientRect
GetPropW
SetPropW
EqualRect
UpdateLayeredWindow
GetWindowRgn
CharPrevW
DrawTextW
SetRect
CreatePopupMenu
DestroyMenu
AppendMenuW
TrackPopupMenu
CreateCaret
GetUserObjectInformationW
GetProcessWindowStation
GetCaretBlinkTime
TranslateMessage
PeekMessageW
DispatchMessageW
MsgWaitForMultipleObjects
PostMessageW
wsprintfW
GetDC
ReleaseDC
SendInput
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
IsWindowEnabled
GetWindowTextLengthW
GetWindowThreadProcessId
GetAsyncKeyState
GetForegroundWindow
GetKeyboardLayout
GetCursorPos
UnhookWindowsHookEx
wsprintfA
keybd_event
GetSystemMetrics
WindowFromPoint
SendMessageW
mouse_event
SetWindowsHookExW
GetWindowTextW
CreateWindowExW
GetClassInfoExW
RegisterClassExW
GetKeyState
GetGUIThreadInfo
ActivateKeyboardLayout
GetKeyboardLayoutNameW
MapVirtualKeyExW
ToUnicodeEx
VkKeyScanExW
MapVirtualKeyW
GetWindowRect
IsWindow
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsIconic
ClientToScreen
GetDesktopWindow
LoadImageW
FillRect
SetForegroundWindow
GetParent
GetWindowModuleFileNameW
GetClassNameW
FindWindowW
GetClipboardData
EnumWindows
MoveWindow
VkKeyScanW
ShowWindow
TileWindows
MessageBeep
SetWindowTextW
WaitForInputIdle
EnumChildWindows
MessageBoxW
SetWindowPos
IsWindowVisible
DestroyWindow
ShowWindowAsync
SetWindowLongW
CreateWindowExA
CallWindowProcW
DefWindowProcW
GetWindowLongW
SetCursorPos
GetFocus
SetTimer
KillTimer
PostThreadMessageW
GetMessageW
PtInRect
ScreenToClient
RegisterClassW
OffsetRect
UnionRect
InflateRect
UpdateWindow
DrawTextA
CreateAcceleratorTableW
InvalidateRgn
CallNextHookEx
GetKeyNameTextW
PostQuitMessage
MessageBoxA
RegisterWindowMessageW
LoadIconW
SetFocus
GetTopWindow
EnableWindow
LoadCursorW
DestroyCursor
SetCursor
FlashWindow
InvalidateRect
SetParent
GetSystemMenu
EnableMenuItem
RemoveMenu
GetMonitorInfoW
EnumDisplayMonitors
GetDlgCtrlID
GetWindowDC
PrintWindow
SetLayeredWindowAttributes

gdi32

SetBkColor
SetBkMode
StretchBlt
SetStretchBltMode
SetTextColor
GetObjectA
MoveToEx
TextOutW
CreatePatternBrush
GetTextExtentPointA
SetBitmapBits
ExtSelectClipRgn
SelectClipRgn
GetDeviceCaps
DeleteObject
CreateSolidBrush
GetObjectW
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteDC
CreateDIBSection
GdiFlush
GetDIBits
GetBitmapBits
BitBlt
CreateDIBitmap
CreateFontIndirectW
CreatePen
GetStockObject
AddFontMemResourceEx
RemoveFontMemResourceEx
Rectangle
RestoreDC
SaveDC
CloseEnhMetaFile
CreateEnhMetaFileW
GetEnhMetaFileHeader
PlayEnhMetaFile
GetTextMetricsW
SetWindowOrgEx
CreateRoundRectRgn
CreateRectRgn
PtInRegion
CombineRgn
CreatePenIndirect
CreateRectRgnIndirect
GetCharABCWidthsW
GetClipBox
LineTo
CreateDCW
GetTextExtentPoint32W

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

SetSecurityDescriptorDacl
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
CryptEnumProvidersW
CryptSignHashW
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
InitializeSecurityDescriptor
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegFlushKey
RegDeleteKeyW
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextW
CryptGetHashParam
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptDecrypt
CryptEncrypt
CryptSetKeyParam
CryptImportKey

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragQueryFileW
Shell_NotifyIconW

ole32

OleUninitialize
OleInitialize
CoInitialize
CreateStreamOnHGlobal
CoCreateInstance
DoDragDrop
OleDuplicateData
ReleaseStgMedium
CLSIDFromString
CLSIDFromProgID
OleLockRunning
CoCreateGuid
CoUninitialize

oleaut32

VariantClear
SysFreeString
SysAllocString
VariantInit

wininet

InternetReadFile
InternetQueryDataAvailable
InternetCrackUrlW
InternetCloseHandle
HttpQueryInfoW
HttpSendRequestW
HttpOpenRequestW
InternetConnectW
InternetOpenW

comctl32

ord17
_TrackMouseEvent
InitCommonControlsEx

gdiplus

GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSetPropertyItem
GdipSaveAddImage
GdipSaveImageToFile
GdipDrawImageRectI
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipDrawImageRectRect
GdipSetInterpolationMode
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdiplusShutdown
GdipAlloc
GdipFree
GdipSetPenMode
GdipCreateFromHDC
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdipDrawRectangleI
GdipDrawPath
GdipFillRectangleI
GdipFillPath
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipDeleteFont
GdipDrawString
GdipMeasureString
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipCloneStringFormat
GdipSetStringFormatFlags
GdiplusStartup
GdipCreatePath
GdipDeletePath
GdipDeletePen
GdipAddPathArc
GdipCloneBrush
GdipCreateSolidFill
GdipDeleteBrush
GdipDisposeImage
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipCreatePen1
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipAddPathLine

imm32

ImmGetContext
ImmSetCompositionWindow
ImmReleaseContext
ImmAssociateContext

shlwapi

SHGetValueW

winmm

PlaySoundW
sndPlaySoundW
timeEndPeriod
timeBeginPeriod

dbghelp

SymSetOptions
SymCleanup
SymInitialize
SymFromAddr
UnDecorateSymbolName
MiniDumpWriteDump

wldap32

ord133
ord147
ord301
ord145
ord219
ord79
ord14
ord216
ord208
ord41
ord117
ord27
ord142
ord167
ord127
ord46
ord26

crypt32

CertEnumCertificatesInStore
CertFreeCertificateContext
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertOpenStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertCloseStore
CertGetCertificateContextProperty
CertOpenSystemStoreW

bcrypt

BCryptGenRandom

Exports

Exports

create_log_producer
create_log_producer_config
destroy_log_producer
destroy_log_producer_config
get_log_producer_client
is_log_producer_result_ok
log_producer_client_add_log
log_producer_client_add_log_with_len
log_producer_client_add_log_with_len_time
log_producer_client_add_raw_log_buffer
log_producer_client_network_recover
log_producer_config_add_tag
log_producer_config_get_security
log_producer_config_is_valid
log_producer_config_reset_security_token
log_producer_config_set_access_id
log_producer_config_set_access_key
log_producer_config_set_compress_type
log_producer_config_set_connect_timeout_sec
log_producer_config_set_destroy_flusher_wait_sec
log_producer_config_set_destroy_sender_wait_sec
log_producer_config_set_endpoint
log_producer_config_set_logstore
log_producer_config_set_max_buffer_limit
log_producer_config_set_net_interface
log_producer_config_set_ntp_time_offset
log_producer_config_set_packet_log_bytes
log_producer_config_set_packet_log_count
log_producer_config_set_packet_timeout
log_producer_config_set_project
log_producer_config_set_send_thread_count
log_producer_config_set_send_timeout_sec
log_producer_config_set_source
log_producer_config_set_topic
log_producer_env_destroy
log_producer_env_init
log_set_get_time_function

Sections

.text
Size: 15.2MB - Virtual size: 15.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IPPCODE
Size: 573KB - Virtual size: 572KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 119KB - Virtual size: 739KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 426KB - Virtual size: 425KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d1c8f2990c74db27203c6f71bf45810

Code Sign

6e:a1:d4:94:5f:0e:69:e9:d6:f1:48:2c:58:6a:71:afCertificate

Extended Key Usages

Key Usages

13:eb:fd:4d:97:a5:bb:c6:e6:15:f9:89:d0:6d:42:59Certificate

Extended Key Usages

Key Usages

61:3b:c7:91:00:00:00:00:00:34Certificate

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

e6:c5:35:8a:40:f2:6b:cb:0b:5b:8b:f6:cc:8a:17:18:68:2a:3f:28:b9:d6:f0:6b:e7:04:96:c0:5c:9e:fd:5cSigner

Headers

DLL Characteristics

File Characteristics

Imports

mpr

ws2_32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

wininet

comctl32

gdiplus

imm32

shlwapi

winmm

dbghelp

wldap32

crypt32

bcrypt

Exports

Exports

Sections

.text Size: 15.2MB - Virtual size: 15.2MB

IPPCODE Size: 573KB - Virtual size: 572KB

.rdata Size: 3.8MB - Virtual size: 3.8MB

.data Size: 119KB - Virtual size: 739KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 426KB - Virtual size: 425KB

6e:a1:d4:94:5f:0e:69:e9:d6:f1:48:2c:58:6a:71:af
Certificate

13:eb:fd:4d:97:a5:bb:c6:e6:15:f9:89:d0:6d:42:59
Certificate

61:3b:c7:91:00:00:00:00:00:34
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

e6:c5:35:8a:40:f2:6b:cb:0b:5b:8b:f6:cc:8a:17:18:68:2a:3f:28:b9:d6:f0:6b:e7:04:96:c0:5c:9e:fd:5c
Signer

.text
Size: 15.2MB - Virtual size: 15.2MB

IPPCODE
Size: 573KB - Virtual size: 572KB

.rdata
Size: 3.8MB - Virtual size: 3.8MB

.data
Size: 119KB - Virtual size: 739KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 426KB - Virtual size: 425KB