Extracted

Extracted

• b7f8e52f54aec8ed88d83bbe0c1ef28f5c77a34a9d4114366aad2db05680b485

  .exe windows x64

  037c95c1be37aad2bb4b2dbfb9a53187

  
  

  Code Sign

  0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40

  Certificate

  Issuer

  CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  25/11/2020, 00:00

  Not After

  22/02/2024, 23:59

  Subject

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  11/02/2011, 12:00

  Not After

  10/02/2026, 12:00

  Subject

  CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  22/10/2013, 12:00

  Not After

  22/10/2028, 12:00

  Subject

  CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6

  Certificate

  Issuer

  CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  25/11/2020, 00:00

  Not After

  22/02/2024, 23:59

  Subject

  CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a

  Certificate

  Issuer

  CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

  Not Before

  21/09/2022, 00:00

  Not After

  21/11/2033, 23:59

  Subject

  CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b

  Certificate

  Issuer

  CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  23/03/2022, 00:00

  Not After

  22/03/2037, 23:59

  Subject

  CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  01/08/2022, 00:00

  Not After

  09/11/2031, 23:59

  Subject

  CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  f4:42:9a:eb:ee:db:51:59:25:04:d2:12:c5:b4:db:8b:7e:69:5f:8c:e4:34:80:c5:c2:82:ba:4a:7f:ab:08:aa

  Signer

  Actual PE Digest

  f4:42:9a:eb:ee:db:51:59:25:04:d2:12:c5:b4:db:8b:7e:69:5f:8c:e4:34:80:c5:c2:82:ba:4a:7f:ab:08:aa

  Digest Algorithm

  sha256

  PE Digest Matches

  false

  81:09:3a:0f:5e:10:e5:85:89:e5:18:f3:a0:db:7e:15:25:26:7b:63

  Signer

  Actual PE Digest

  81:09:3a:0f:5e:10:e5:85:89:e5:18:f3:a0:db:7e:15:25:26:7b:63

  Digest Algorithm

  sha1

  PE Digest Matches

  false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  kernel32

  VerSetConditionMask

  VerifyVersionInfoW

  FindFirstFileW

  FindNextFileW

  GetCurrentProcess

  GetShortPathNameW

  TerminateProcess

  GetModuleFileNameW

  FindClose

  LocalAlloc

  GetFileAttributesW

  GetSystemDirectoryW

  GetPrivateProfileStringW

  Sleep

  GetLastError

  CloseHandle

  LoadLibraryW

  GetProcAddress

  GetModuleHandleW

  FreeLibrary

  SetDllDirectoryW

  WriteConsoleW

  CreateFileW

  HeapReAlloc

  HeapSize

  GetConsoleMode

  GetConsoleOutputCP

  FlushFileBuffers

  GetStringTypeW

  SetStdHandle

  GetProcessHeap

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  WideCharToMultiByte

  MultiByteToWideChar

  GetSystemInfo

  GetModuleHandleA

  LocalFree

  GetVersionExW

  GetCommandLineW

  GetCommandLineA

  GetCPInfo

  GetOEMCP

  GetACP

  IsValidCodePage

  FindFirstFileExW

  SetFilePointerEx

  GetCurrentThreadId

  WaitForSingleObjectEx

  EnterCriticalSection

  LeaveCriticalSection

  InitializeCriticalSectionEx

  DeleteCriticalSection

  QueryPerformanceCounter

  FlsAlloc

  FlsGetValue

  FlsSetValue

  FlsFree

  GetSystemTimeAsFileTime

  InitializeCriticalSectionAndSpinCount

  SetEvent

  ResetEvent

  CreateEventW

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsProcessorFeaturePresent

  IsDebuggerPresent

  GetStartupInfoW

  GetCurrentProcessId

  InitializeSListHead

  RtlUnwindEx

  RtlPcToFileHeader

  RaiseException

  SetLastError

  EncodePointer

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  LoadLibraryExW

  CreateThread

  ExitThread

  FreeLibraryAndExitThread

  GetModuleHandleExW

  ExitProcess

  GetStdHandle

  WriteFile

  HeapFree

  HeapAlloc

  GetFileType

  LCMapStringW

  user32

  GetSystemMetrics

  MessageBoxW

  FindWindowW

  advapi32

  RegSetValueExW

  RegOpenKeyExW

  RegQueryValueExW

  RegCloseKey

  shell32

  SHGetSpecialFolderLocation

  SHGetPathFromIDListW

  SHCreateDirectoryExW

  ShellExecuteW

  ole32

  CoTaskMemFree

  version

  VerQueryValueW

  GetFileVersionInfoSizeW

  GetFileVersionInfoW

  shlwapi

  PathFileExistsW

  PathRemoveFileSpecW

  Sections

  .text

  Size: 134KB - Virtual size: 134KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 59KB - Virtual size: 59KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 9KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 7KB - Virtual size: 6KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  _RDATA

  Size: 512B - Virtual size: 244B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 418KB - Virtual size: 417KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ