Extracted

• a5c987e97d70845d3c44386e1574637f0336cd257c553824a0d0afaafc74b6ec

  .exe windows x86

  9e69d57de9a31d0ef69b73ad83ecccb3

  
  

  Code Sign

  87:82:52:60:00:00:00:00:51:d3:73:d9

  Certificate

  Issuer

  CN=Entrust Root Certification Authority - G2,OU=See www.entrust.net/legal-terms+OU=(c) 2009 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

  Not Before

  10/06/2015, 13:42

  Not After

  10/11/2030, 14:12

  Subject

  CN=Entrust Extended Validation Code Signing CA - EVCS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  05:f9:7d:05:4a:9b:fc:bf:9d:5e:12:f8:d0:ab:be:07

  Certificate

  Issuer

  CN=Entrust Extended Validation Code Signing CA - EVCS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

  Not Before

  08/12/2020, 14:34

  Not After

  08/12/2023, 14:34

  Subject

  SERIALNUMBER=31 333 532,CN=ESET\, spol. s r.o.,O=ESET\, spol. s r.o.,L=Bratislava,C=SK,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#1302534b

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  33:00:00:00:42:00:ba:5e:23:b0:a1:f3:99:00:00:00:00:00:42

  Certificate

  Issuer

  CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Not Before

  07/07/2015, 20:55

  Not After

  07/07/2025, 20:55

  Subject

  CN=Entrust Root Certification Authority - G2,OU=See www.entrust.net/legal-terms+OU=(c) 2009 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  52:0f:ba:3b:a4:6f:b7:4a:c4:45:0b:b4:98:75:2f:bc:4a:dc:bb:22

  Certificate

  Issuer

  CN=ESET Code Signing CA 2020,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Not Before

  19/07/2020, 00:00

  Not After

  19/07/2023, 00:00

  Subject

  CN=ESET\, spol. s r.o.,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  7d:90:d1:7c:6b:36:ca:f6:8f:b9:b7:2f:65:68:b8:22:3d:30:2d:a8

  Certificate

  Issuer

  CN=ESET Root Certificate Authority 2020,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Not Before

  17/07/2020, 00:00

  Not After

  17/07/2030, 00:00

  Subject

  CN=ESET Code Signing CA 2020,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  69:79:73:ba:c8:77:a9:31:6b:52:06:18:77:49:4b:9f:1a:b2:6c:bc

  Certificate

  Issuer

  CN=ESET Timestamping CA 2020,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Not Before

  18/07/2020, 00:00

  Not After

  18/07/2023, 00:00

  Subject

  CN=ESET Timestamp,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  76:79:fc:14:55:72:11:3a:f7:92:d1:f4:af:3c:4e:3a:8a:8a:6e:38

  Certificate

  Issuer

  CN=ESET Root Certificate Authority 2020,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Not Before

  16/07/2020, 00:00

  Not After

  16/07/2030, 00:00

  Subject

  CN=ESET Timestamping CA 2020,O=ESET\, spol. s r.o.,L=Bratislava,C=SK

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  61:1c:b2:8a:00:00:00:00:00:26

  Certificate

  Issuer

  CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Not Before

  15/04/2011, 19:41

  Not After

  15/04/2021, 19:51

  Subject

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a

  Certificate

  Issuer

  CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  01/08/2022, 00:00

  Not After

  09/11/2031, 23:59

  Subject

  CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b

  Certificate

  Issuer

  CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

  Not Before

  23/03/2022, 00:00

  Not After

  22/03/2037, 23:59

  Subject

  CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a

  Certificate

  Issuer

  CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

  Not Before

  21/09/2022, 00:00

  Not After

  21/11/2033, 23:59

  Subject

  CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  4e:ea:92:ef:73:c3:8e:e0:17:82:51:48:e0:72:49:09:44:43:03:bd:da:86:87:d6:3e:94:91:4c:e6:fe:c6:93

  Signer

  Actual PE Digest

  4e:ea:92:ef:73:c3:8e:e0:17:82:51:48:e0:72:49:09:44:43:03:bd:da:86:87:d6:3e:94:91:4c:e6:fe:c6:93

  Digest Algorithm

  sha256

  PE Digest Matches

  false

  4e:ea:92:ef:73:c3:8e:e0:17:82:51:48:e0:72:49:09:44:43:03:bd:da:86:87:d6:3e:94:91:4c:e6:fe:c6:93

  Signer

  Actual PE Digest

  4e:ea:92:ef:73:c3:8e:e0:17:82:51:48:e0:72:49:09:44:43:03:bd:da:86:87:d6:3e:94:91:4c:e6:fe:c6:93

  Digest Algorithm

  sha256

  PE Digest Matches

  false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_GUARD_CF

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

  IMAGE_FILE_NET_RUN_FROM_SWAP

  Imports

  rpcrt4

  UuidCreate

  kernel32

  GetLocaleInfoW

  GetModuleFileNameW

  LoadLibraryExW

  DeleteCriticalSection

  MulDiv

  RaiseException

  HeapDestroy

  HeapAlloc

  HeapFree

  HeapReAlloc

  HeapSize

  GetProcessHeap

  lstrcpynW

  EnterCriticalSection

  LeaveCriticalSection

  WaitForSingleObject

  GetExitCodeProcess

  CreateMutexA

  SetEvent

  SetProcessShutdownParameters

  SetThreadLocale

  SetThreadUILanguage

  GetUserDefaultLangID

  EnumResourceLanguagesW

  GetThreadLocale

  GetSystemDirectoryW

  GetCommandLineW

  SetFileTime

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetOEMCP

  GetACP

  IsValidCodePage

  FindFirstFileExW

  GetConsoleOutputCP

  ReadConsoleW

  GetConsoleMode

  GetFileType

  EnumSystemLocalesW

  GetUserDefaultLCID

  IsValidLocale

  LCMapStringW

  ExitProcess

  GetCommandLineA

  FreeLibraryAndExitThread

  ExitThread

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  RtlUnwind

  OutputDebugStringW

  InitializeSListHead

  GetStartupInfoW

  ResetEvent

  IsProcessorFeaturePresent

  TerminateProcess

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  GetCPInfo

  GetSystemTimeAsFileTime

  TryEnterCriticalSection

  GetExitCodeThread

  WaitForSingleObjectEx

  GetStringTypeW

  FreeLibrary

  SetFileAttributesW

  GetProcAddress

  LoadLibraryW

  FreeResource

  FindResourceExW

  WideCharToMultiByte

  MultiByteToWideChar

  GetCurrentProcessId

  GetCurrentThreadId

  QueryPerformanceCounter

  LocalFree

  MoveFileExW

  CreateDirectoryW

  RemoveDirectoryW

  FindClose

  FindNextFileW

  FindFirstFileW

  UnmapViewOfFile

  GetStdHandle

  MapViewOfFile

  FlushFileBuffers

  GetTempPathW

  CopyFileW

  DeleteFileW

  SetEndOfFile

  WriteFile

  ReadFile

  LocalFileTimeToFileTime

  DosDateTimeToFileTime

  LockResource

  LoadResource

  SizeofResource

  FindResourceW

  GetCurrentProcess

  GetLastError

  GetCurrentThread

  GetModuleHandleW

  InitializeCriticalSection

  SetLastError

  SetStdHandle

  WriteConsoleW

  user32

  CopyRect

  DrawFocusRect

  InvalidateRect

  CreateDialogIndirectParamW

  PeekMessageW

  TranslateMessage

  EnableWindow

  GetSystemMetrics

  GetDC

  ReleaseDC

  GetPropW

  GetClientRect

  GetWindowRect

  RegisterWindowMessageW

  PostQuitMessage

  LoadAcceleratorsW

  GetClassInfoW

  LoadIconW

  LoadCursorW

  RegisterClassExW

  SetPropW

  GetWindowLongW

  SetWindowPos

  InflateRect

  OffsetRect

  PtInRect

  EndPaint

  BeginPaint

  RedrawWindow

  FindWindowExW

  SystemParametersInfoW

  DrawTextW

  wsprintfW

  TranslateAcceleratorW

  MsgWaitForMultipleObjectsEx

  LoadImageW

  DialogBoxIndirectParamW

  EndDialog

  GetDlgItem

  ScreenToClient

  IsWindowVisible

  KillTimer

  SetTimer

  IsWindowEnabled

  SetWindowTextW

  GetWindowTextW

  GetWindowTextLengthW

  SetForegroundWindow

  MapWindowPoints

  GetDesktopWindow

  MonitorFromWindow

  GetWindow

  GetParent

  ShowWindow

  SendMessageW

  gdi32

  SetStretchBltMode

  LineTo

  MoveToEx

  SetDCPenColor

  CreateFontIndirectW

  CreateBitmap

  BitBlt

  CreateCompatibleDC

  SetBkMode

  StretchBlt

  GetObjectW

  GetStockObject

  SelectObject

  CreateSolidBrush

  ExtTextOutW

  SetBkColor

  DeleteObject

  GetDeviceCaps

  SetDCBrushColor

  SetTextColor

  Ellipse

  advapi32

  RegGetValueW

  RegGetValueA

  RegEnumKeyExA

  RegQueryInfoKeyW

  FreeSid

  EqualSid

  AllocateAndInitializeSid

  GetTokenInformation

  OpenProcessToken

  OpenThreadToken

  shell32

  ShellExecuteExW

  CommandLineToArgvW

  ole32

  StringFromGUID2

  gdiplus

  GdiplusShutdown

  GdiplusStartup

  GdipGetImageEncoders

  GdipGetImageEncodersSize

  GdipCreateBitmapFromScan0

  GdipCreateBitmapFromStream

  GdipGetImagePixelFormat

  GdipGetImageHeight

  GdipGetImageWidth

  GdipSaveImageToStream

  GdipCloneImage

  GdipDrawImageRectRectI

  GdipSetInterpolationMode

  GdipDeleteGraphics

  GdipGetImageGraphicsContext

  GdipDisposeImage

  GdipSetImageAttributesWrapMode

  GdipDisposeImageAttributes

  GdipCreateImageAttributes

  GdipAlloc

  GdipFree

  Sections

  .text

  Size: 319KB - Virtual size: 319KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 84KB - Virtual size: 83KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 6KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 8.1MB - Virtual size: 8.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 15KB - Virtual size: 15KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ