nchsetup[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

nchsetup.exe
Size

6.7MB
MD5

96652530a047533515202272f338479e
SHA1

d4f12c0ed3630a823c5477563ff83a7b7e709e3c
SHA256

9c2bab77848af2b5445632feff31a8e42f78ed2612c2b377f0562fe9cd7c03e5
SHA512

4b2897e6ca304b109e51d7b05c7f29809f5f9b6428bd3992e87a7911a3114497194445c7b5b5660e1277cb0c1b45e84ca4c382e9e58b627a9a19005d9985487e
SSDEEP

49152:OE0FEB49faR9bKLTh6/TjnnHh13cbkkUJBnnj0SqS08KICt3ASAPrQ8/P9h33R:90aB49f82LTcXHh6UJVnMQKIwv6QYLB

Score

1^/10

Malware Config

Signatures

Files

nchsetup.exe
.exe windows x86

ffadf51c9043bbb01040fe2c0dfa5c98

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:ef:f6:93:7e:47:22:71:e7:22:f7:e0:62:48:a3:f1
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/03/2022, 00:00

Not After

02/04/2025, 23:59

Subject

SERIALNUMBER=4489370,CN=NCH Software\, Inc.,O=NCH Software\, Inc.,L=Greenwood Village,ST=Colorado,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:ef:f6:93:7e:47:22:71:e7:22:f7:e0:62:48:a3:f1
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/03/2022, 00:00

Not After

02/04/2025, 23:59

Subject

SERIALNUMBER=4489370,CN=NCH Software\, Inc.,O=NCH Software\, Inc.,L=Greenwood Village,ST=Colorado,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

38:63:de:f8
Certificate

Issuer

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Not Before

24/12/1999, 17:50

Not After

24/07/2029, 14:15

Subject

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

Issuer

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Not Before

22/07/2015, 19:02

Not After

22/06/2029, 19:32

Subject

CN=Entrust Timestamping CA - TS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

56:ab:95:75:28:9c:a5:9f:0e:17:d4:0b:ea:05:c3:1f
Certificate

Issuer

CN=Entrust Timestamping CA - TS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Not Before

04/10/2022, 17:21

Not After

01/01/2029, 00:00

Subject

CN=Entrust Timestamp Authority - TSA1,O=Entrust\, Inc.,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

c6:44:cd:75:76:81:50:50:c3:18:2e:21:e7:da:a4:e8:ce:cc:5a:3f:25:19:c3:78:98:15:97:35:34:c0:2c:fd
Signer

Actual PE Digest

c6:44:cd:75:76:81:50:50:c3:18:2e:21:e7:da:a4:e8:ce:cc:5a:3f:25:19:c3:78:98:15:97:35:34:c0:2c:fd

Digest Algorithm

sha256

PE Digest Matches

true

5b:69:51:f5:d1:f8:bc:d2:02:75:05:f2:f1:44:f6:78:4e:90:75:a8
Signer

Actual PE Digest

5b:69:51:f5:d1:f8:bc:d2:02:75:05:f2:f1:44:f6:78:4e:90:75:a8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
GetModuleFileNameW
ReadProcessMemory
GetLongPathNameW
SetFilePointer
ExitProcess
WaitForMultipleObjects
GetFileTime
OpenFileMappingW
ResetEvent
SetErrorMode
LockResource
GetUserDefaultUILanguage
DuplicateHandle
FreeResource
CloseHandle
DisconnectNamedPipe
FindNextFileW
CreateFileW
RemoveDirectoryW
InitializeCriticalSection
InterlockedIncrement
GetEnvironmentVariableW
SizeofResource
WriteFile
SetEnvironmentVariableW
GetCurrentThread
GetProcAddress
GetLastError
VerifyVersionInfoW
Sleep
CreateNamedPipeW
GetCurrentThreadId
GlobalHandle
GlobalUnlock
GetShortPathNameW
InterlockedExchangeAdd
MulDiv
ConnectNamedPipe
GlobalLock
GetDriveTypeW
LoadLibraryA
GetLogicalDrives
MultiByteToWideChar
SetEvent
LocalFree
FileTimeToSystemTime
GetTickCount
GetStdHandle
CreateEventW
GlobalFree
ReadFile
LoadLibraryExW
EnterCriticalSection
SetThreadPriority
GetFileAttributesW
GlobalSize
FreeLibrary
PeekNamedPipe
GetTempPathW
LeaveCriticalSection
LoadLibraryW
CancelIo
GetThreadPriority
FlushFileBuffers
WideCharToMultiByte
VerSetConditionMask
FindClose
GetCurrentProcessId
WaitForSingleObject
LocalAlloc
GetModuleHandleW
GetCurrentProcess
SetLastError
lstrlenW
GlobalAlloc
GetVersionExW
GetUserDefaultLCID
GetFileSizeEx
CreateDirectoryW
GetOverlappedResult
GetLogicalDriveStringsW
CreateProcessW
GetUserDefaultLangID
WaitNamedPipeW
lstrlenA
SetEnvironmentVariableA
GlobalMemoryStatusEx
HeapFree
MapViewOfFile
GetCommandLineW
GetSystemInfo
MoveFileExW
CreateThread
TerminateProcess
GetTimeFormatW
GetCPInfo
CreateToolhelp32Snapshot
HeapAlloc
IsBadWritePtr
FileTimeToLocalFileTime
ProcessIdToSessionId
QueryPerformanceCounter
GetModuleFileNameA
MoveFileW
ReleaseMutex
GetFileSize
SetFileAttributesW
GetThreadContext
GetCurrentDirectoryA
SetUnhandledExceptionFilter
RtlCaptureContext
GetVolumeInformationW
lstrcpyW
CreateFileMappingW
GetCurrentDirectoryW
GetStartupInfoW
CopyFileW
GetLocaleInfoW
ResumeThread
GetExitCodeProcess
GetTimeZoneInformation
GetPrivateProfileStringW
GetComputerNameW
GetPrivateProfileSectionNamesW
Process32FirstW
QueryPerformanceFrequency
GetACP
GetDiskFreeSpaceExW
SystemTimeToTzSpecificLocalTime
GetProcessHeap
CreateMutexW
GetSystemTime
SuspendThread
SetCurrentDirectoryW
VirtualQuery
Process32NextW
GetPrivateProfileIntW
UnmapViewOfFile
GetEnvironmentVariableA
DeviceIoControl
InterlockedDecrement
FindFirstFileW
CreatePipe
InterlockedExchange
GetVersionExA
DeleteFileW
DeleteCriticalSection
FindResourceW
SetFilePointerEx
LoadResource
SetEndOfFile
GetModuleHandleA
GetSystemTimeAsFileTime
HeapReAlloc
UnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
GetOEMCP
IsValidCodePage
CompareStringW
CompareStringA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
RtlUnwind
GetConsoleMode
GetConsoleCP
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
HeapCreate
HeapDestroy
VirtualAlloc
VirtualFree
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
LCMapStringA
LCMapStringW
HeapSize

advapi32

SetSecurityDescriptorDacl
RegEnumKeyW
OpenProcessToken
InitializeAcl
GetAce
RegSetKeySecurity
GetSidSubAuthority
AddAccessAllowedAce
RegCreateKeyExW
RegOpenKeyW
RegQueryValueExW
GetSidLengthRequired
RegQueryInfoKeyW
InitializeSid
RegCloseKey
RegEnumValueW
InitializeSecurityDescriptor
GetLengthSid
RegSetValueExW
GetUserNameW
RegDeleteValueW
FreeSid
CryptHashData
CryptDestroyKey
CryptCreateHash
CryptEncrypt
CheckTokenMembership
CryptDuplicateKey
CryptDecrypt
CryptDestroyHash
AllocateAndInitializeSid
SetFileSecurityW
RegEnumKeyExW
RegDeleteKeyW
CryptDeriveKey
CryptAcquireContextW
DuplicateTokenEx
RegOpenKeyExW

comctl32

ImageList_EndDrag
ImageList_GetIconSize
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_GetIcon
ImageList_GetImageInfo
ImageList_DragMove
ImageList_DrawEx
ImageList_Destroy
CreatePropertySheetPageW
_TrackMouseEvent
ImageList_Create
ImageList_DragLeave
ImageList_BeginDrag
PropertySheetW
ImageList_ReplaceIcon
InitCommonControlsEx
ord17
ImageList_Merge

comdlg32

GetOpenFileNameW
GetSaveFileNameW

gdi32

Polyline
SetDIBitsToDevice
SetBitmapBits
SetTextAlign
TextOutW
CreateBrushIndirect
Polygon
CreateRoundRectRgn
PtInRegion
GetBitmapBits
GetTextCharset
GetStockObject
StretchBlt
GetCurrentObject
SetWindowExtEx
SetBrushOrgEx
GetClipBox
GetBkMode
DeleteDC
GetTextExtentPoint32W
SetDCBrushColor
DeleteObject
BitBlt
SetDIBits
CreateCompatibleDC
CombineRgn
CreateDIBitmap
PatBlt
GetDIBits
PolyPolyline
CreateRectRgnIndirect
LineTo
SetPixel
CreatePen
GetWindowExtEx
SetBkColor
SetStretchBltMode
CreateBitmap
ExcludeClipRect
ExtTextOutW
CreatePatternBrush
CreateDIBSection
SetViewportExtEx
GetObjectA
CreateFontIndirectW
GetTextMetricsW
SetBkMode
MoveToEx
GetTextMetricsA
CreateCompatibleBitmap
SetTextColor
SelectObject
GetViewportExtEx
CreateSolidBrush
CreateRectRgn
CreateFontW
GetDeviceCaps
GetObjectW

msacm32

acmDriverClose
acmFormatDetailsW
acmStreamSize
acmFormatEnumW
acmStreamConvert
acmStreamUnprepareHeader
acmFormatTagEnumW
acmDriverEnum
acmStreamClose
acmStreamOpen
acmStreamPrepareHeader
acmDriverOpen
acmDriverDetailsW

ole32

CLSIDFromString
CoRevokeClassObject
CoUninitialize
StringFromCLSID
PropVariantClear
CoTaskMemFree
CoCreateGuid
CoCreateInstance
CoSetProxyBlanket
CoRegisterClassObject
CoResumeClassObjects
CoInitialize
CoInitializeSecurity
CoTaskMemAlloc
CreateStreamOnHGlobal
CoAddRefServerProcess
CoGetMalloc
StringFromGUID2

oleaut32

SysFreeString
SysAllocStringByteLen
VariantInit
VariantClear
SysStringByteLen
OleLoadPicture
SysAllocString
SysAllocStringLen
OleLoadPicturePath

shell32

DragFinish
ShellExecuteW
ShellExecuteExW
SHGetFolderPathW
ord155
SHCreateShellItem
Shell_NotifyIconW
SHChangeNotify
DragAcceptFiles
DragQueryFileW
SHQueryRecycleBinW
SHGetMalloc
SHGetPathFromIDListW
ShellExecuteA
SHEmptyRecycleBinW
CommandLineToArgvW
SHParseDisplayName
ord680
SHGetDesktopFolder
SHBrowseForFolderW

shlwapi

SHDeleteEmptyKeyW
PathCompactPathExW
SHDeleteKeyW
StrCmpLogicalW

user32

IsWindowVisible
DestroyCursor
PeekMessageW
PtInRect
CloseClipboard
EnableMenuItem
GetSystemMetrics
FlashWindowEx
InsertMenuItemW
EnumWindows
GetScrollBarInfo
SetFocus
FindWindowW
MonitorFromPoint
SetWindowPlacement
DestroyWindow
InsertMenuW
InvalidateRect
GetKeyState
PostMessageW
GetSysColor
GetWindowPlacement
GetClassInfoW
IsWindowEnabled
AttachThreadInput
GetWindowTextLengthW
ChangeClipboardChain
ReleaseDC
DrawIconEx
MsgWaitForMultipleObjects
RegisterClassW
LoadIconW
InvalidateRgn
SetWindowTextW
GetSysColorBrush
GetClassNameW
CreateDialogIndirectParamW
GetCursorInfo
DrawTextExW
IsIconic
UnhookWindowsHookEx
IsDialogMessageW
GetMessageW
GetCursor
RemoveMenu
IsWindow
WindowFromDC
CheckDlgButton
GetDC
ModifyMenuW
GetClipboardFormatNameW
ReleaseCapture
LoadStringW
SetScrollInfo
GetDlgItem
InflateRect
SetPropW
DialogBoxParamW
RegisterClipboardFormatW
AppendMenuW
GetMenu
EndMenu
GetMenuItemInfoW
SetForegroundWindow
SendMessageW
GetDlgItemTextW
IsDlgButtonChecked
GetWindowLongW
SetCursor
GetActiveWindow
WaitForInputIdle
LoadImageW
MapDialogRect
DefMDIChildProcW
DrawStateW
OffsetRect
GetIconInfo
DefFrameProcW
GetMenuItemCount
GetDesktopWindow
GetSubMenu
GetMenuItemID
GetWindowDC
SetWindowLongW
WindowFromPoint
CheckMenuItem
SetClipboardData
DrawMenuBar
RedrawWindow
GetAsyncKeyState
SetCapture
FillRect
GetWindow
BeginPaint
KillTimer
EnableWindow
SetClassLongW
GetFocus
GetComboBoxInfo
GetClipboardData
DrawTextW
EnumDisplayDevicesW
UpdateWindow
CreateDialogParamW
SystemParametersInfoW
RegisterClassExW
GetKeyboardState
CopyImage
OpenClipboard
CreatePopupMenu
MessageBoxW
GetClassNameA
TranslateMDISysAccel
SetDlgItemTextW
GetClientRect
DefWindowProcW
GetDlgCtrlID
FrameRect
TranslateMessage
ValidateRect
CharUpperW
DeleteMenu
GetCapture
UnregisterDeviceNotification
MapVirtualKeyW
SetDlgItemInt
GetMenuBarInfo
ShowScrollBar
RegisterDeviceNotificationW
FindWindowExW
GetDlgItemInt
GetUpdateRect
RegisterWindowMessageW
MonitorFromWindow
SetMenuItemBitmaps
CheckMenuRadioItem
ShowWindowAsync
SetMenu
GetMenuItemRect
GetKeyNameTextW
SetMenuDefaultItem
AdjustWindowRectEx
wvsprintfW
SetWindowRgn
GetNextDlgGroupItem
IsCharAlphaW
GetPropW
MapWindowPoints
DrawEdge
RemovePropW
GetWindowTextW
GetWindowWord
TrackPopupMenu
PostQuitMessage
SetActiveWindow
CallWindowProcW
DestroyIcon
EnumChildWindows
SetClipboardViewer
AllowSetForegroundWindow
DrawFocusRect
GetPriorityClipboardFormat
DispatchMessageW
GetMonitorInfoW
EnumDisplaySettingsW
ShowWindow
GetParent
MoveWindow
GetScrollInfo
SetMenuInfo
SetWindowWord
GetWindowThreadProcessId
SetWindowPos
CallNextHookEx
LoadCursorW
IsClipboardFormatAvailable
EndPaint
DestroyMenu
ScreenToClient
ScrollWindowEx
CountClipboardFormats
SetMenuItemInfoW
GetForegroundWindow
EndDialog
GetWindowRect
IsZoomed
wsprintfW
ClientToScreen
DialogBoxIndirectParamW
EqualRect
CreateWindowExW
GetAncestor
SetTimer
keybd_event
SetWindowsHookExW
SendDlgItemMessageW
EmptyClipboard
GetMenuInfo

winmm

waveOutGetNumDevs
waveOutPrepareHeader
waveOutSetVolume
mixerGetControlDetailsW
waveOutUnprepareHeader
waveInOpen
waveInClose
mixerGetID
waveOutReset
waveInPrepareHeader
mixerGetLineControlsW
waveInGetNumDevs
waveInReset
waveInMessage
waveInStart
waveOutOpen
waveInUnprepareHeader
mixerSetControlDetails
waveInAddBuffer
waveInGetDevCapsW
waveOutGetVolume
waveInStop
mixerGetLineInfoW
waveOutClose
waveOutWrite
waveOutGetDevCapsW
waveOutPause
midiInGetNumDevs
waveOutRestart
waveOutMessage

ws2_32

connect
htons
WSAGetLastError
ntohs
send
closesocket
ioctlsocket
setsockopt
gethostname
gethostbyaddr
WSAStartup
socket
__WSAFDIsSet
select
gethostbyname
recv
inet_addr

rpcrt4

UuidFromStringW
UuidCreate
UuidToStringW
RpcStringFreeW

msimg32

GradientFill
AlphaBlend

secur32

DecryptMessage
InitializeSecurityContextW
QueryContextAttributesW
ApplyControlToken
FreeCredentialsHandle
EncryptMessage
AcquireCredentialsHandleW
DeleteSecurityContext
FreeContextBuffer

crypt32

CertCloseStore
CertFindCertificateInStore
CertVerifySubjectCertificateContext
CertFreeCertificateContext
CryptQueryObject

wintrust

WinVerifyTrust

iphlpapi

GetAdaptersAddresses
GetIpAddrTable

wininet

InternetGetConnectedState
InternetAutodial
InternetAutodialHangup
InternetQueryOptionA

dnsapi

DnsRecordListFree
DnsQuery_W

netapi32

NetApiBufferFree
NetUserGetInfo

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 912KB - Virtual size: 911KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 187KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ffadf51c9043bbb01040fe2c0dfa5c98

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:ef:f6:93:7e:47:22:71:e7:22:f7:e0:62:48:a3:f1Certificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

07:ef:f6:93:7e:47:22:71:e7:22:f7:e0:62:48:a3:f1Certificate

Extended Key Usages

Key Usages

38:63:de:f8Certificate

Key Usages

58:da:13:ff:00:00:00:00:51:ce:0d:f7Certificate

Extended Key Usages

Key Usages

56:ab:95:75:28:9c:a5:9f:0e:17:d4:0b:ea:05:c3:1fCertificate

Extended Key Usages

Key Usages

c6:44:cd:75:76:81:50:50:c3:18:2e:21:e7:da:a4:e8:ce:cc:5a:3f:25:19:c3:78:98:15:97:35:34:c0:2c:fdSigner

5b:69:51:f5:d1:f8:bc:d2:02:75:05:f2:f1:44:f6:78:4e:90:75:a8Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

comctl32

comdlg32

gdi32

msacm32

ole32

oleaut32

shell32

shlwapi

user32

winmm

ws2_32

rpcrt4

msimg32

secur32

crypt32

wintrust

iphlpapi

wininet

dnsapi

netapi32

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 912KB - Virtual size: 911KB

.data Size: 84KB - Virtual size: 632KB

.rsrc Size: 2.8MB - Virtual size: 2.8MB

.reloc Size: 187KB - Virtual size: 187KB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:ef:f6:93:7e:47:22:71:e7:22:f7:e0:62:48:a3:f1
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

07:ef:f6:93:7e:47:22:71:e7:22:f7:e0:62:48:a3:f1
Certificate

38:63:de:f8
Certificate

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

56:ab:95:75:28:9c:a5:9f:0e:17:d4:0b:ea:05:c3:1f
Certificate

c6:44:cd:75:76:81:50:50:c3:18:2e:21:e7:da:a4:e8:ce:cc:5a:3f:25:19:c3:78:98:15:97:35:34:c0:2c:fd
Signer

5b:69:51:f5:d1:f8:bc:d2:02:75:05:f2:f1:44:f6:78:4e:90:75:a8
Signer

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 912KB - Virtual size: 911KB

.data
Size: 84KB - Virtual size: 632KB

.rsrc
Size: 2.8MB - Virtual size: 2.8MB

.reloc
Size: 187KB - Virtual size: 187KB