Archive[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Archive.zip
Size

1.7MB
MD5

96ae618d303071c0c7e8c42eea774628
SHA1

1863f05fd306548abedcfc794a8a3bf4423984b3
SHA256

4376b620cd4379141d8d960120e314ca2aa9d1620cb08eb6bb9d96eead17d1a4
SHA512

ca2a57941389d9d5f6f018d27cb4ee61655176bd05c598dc13f4db7c695584cb69df3230f55053ff4b1bd1488796f2569a2261deb909b992eb6384090529bac3
SSDEEP

49152:d1AVXmUnoH2fgD3UHLVAPYrzXNZlVQDAubsaI+:dGV2ogD3KLV+Yt3VAA4s7+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/dev32.dll

Files

Archive.zip
.zip
Colors03.json
__MACOSX/._Colors03.json
__MACOSX/._dmde-4-0-6-806-win32-gui.zip
dmde-4-0-6-806-win32-gui.zip
.zip
changelog.txt
dev32.dll
.dll windows:4 windows x86

f59a557c040d34a621bee141202e90a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

user32

GetKeyboardType
DestroyWindow
MessageBoxA

kernel32

GetACP
Sleep
VirtualFree
VirtualAlloc
GetCurrentThreadId
VirtualQuery
GetStartupInfoA
GetCommandLineA
FreeLibrary
ExitProcess
WriteFile
UnhandledExceptionFilter
RtlUnwind
RaiseException
GetStdHandle
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LocalFree
LocalAlloc
ord37
ord36
ord35

Exports

Exports

FreeLibrary16
GetProcAddress16
LoadLibrary16

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 9KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 874B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
dev9x.dll
deviohsc.txt
dmde.exe
.exe windows:4 windows x86

b141c2a3f636e080cfb6f872e473e612

Code Sign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28/07/2022, 08:56

Not After

27/07/2033, 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3b:47:3a:f7:a1:e8:eb:af:71:dd:f3:48:1f:b4:c4:1b
Certificate

Issuer

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

02/09/2021, 12:15

Not After

01/09/2024, 12:15

Subject

CN=Dmitry Sidorov,O=Dmitry Sidorov,L=Novosibirsk,C=RU,1.2.840.113549.1.9.1=#0c0e637369676e40646d64652e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3b:47:3a:f7:a1:e8:eb:af:71:dd:f3:48:1f:b4:c4:1b
Certificate

Issuer

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

02/09/2021, 12:15

Not After

01/09/2024, 12:15

Subject

CN=Dmitry Sidorov,O=Dmitry Sidorov,L=Novosibirsk,C=RU,1.2.840.113549.1.9.1=#0c0e637369676e40646d64652e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28/07/2022, 08:56

Not After

27/07/2033, 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

da:58:40:f5:3c:2a:65:1e:97:06:21:8b:32:32:2c:e8:7d:a4:25:96:46:9e:e1:98:04:f2:96:5a:5b:49:e3:3f
Signer

Actual PE Digest

da:58:40:f5:3c:2a:65:1e:97:06:21:8b:32:32:2c:e8:7d:a4:25:96:46:9e:e1:98:04:f2:96:5a:5b:49:e3:3f

Digest Algorithm

sha256

PE Digest Matches

true

6b:de:ab:78:c9:4e:aa:9d:ee:a0:fd:be:52:b1:5a:f6:1d:00:aa:f2
Signer

Actual PE Digest

6b:de:ab:78:c9:4e:aa:9d:ee:a0:fd:be:52:b1:5a:f6:1d:00:aa:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayCreate
VariantChangeType
VariantCopy
VariantClear
VariantInit

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegFlushKey
RegCloseKey
FreeSid
AllocateAndInitializeSid

user32

GetKeyboardType
DestroyWindow
LoadStringA
MessageBoxA
CharNextA
CreateWindowExW
CreateWindowExA
WaitMessage
ValidateRgn
UpdateWindow
TranslateMessage
TranslateAcceleratorW
TranslateAcceleratorA
TrackPopupMenu
SystemParametersInfoA
ShowWindow
SetWindowsHookExA
SetWindowTextW
SetWindowTextA
SetWindowPos
SetWindowLongW
SetWindowLongA
SetTimer
SetScrollInfo
SetParent
SetMenuItemInfoW
SetMenuItemInfoA
SetMenuDefaultItem
SetMenu
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetDlgItemTextA
SetCursor
SetClipboardData
SetClassLongA
SetCapture
SetActiveWindow
SendMessageW
SendMessageA
ScreenToClient
ReleaseDC
ReleaseCapture
RegisterClassExW
RegisterClassExA
RedrawWindow
PtInRect
PostThreadMessageA
PostQuitMessage
PostMessageA
PeekMessageW
PeekMessageA
OpenClipboard
OffsetRect
OemToCharBuffA
MsgWaitForMultipleObjects
MessageBoxA
MapWindowPoints
MapDialogRect
LoadStringA
LoadMenuIndirectA
LoadImageW
LoadImageA
LoadIconA
LoadCursorA
KillTimer
IsWindowVisible
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageW
IsDialogMessageA
IsClipboardFormatAvailable
IsChild
InvertRect
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuW
InsertMenuA
InflateRect
GetWindowTextW
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetUpdateRect
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollInfo
GetParent
GetWindow
GetMessagePos
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenu
GetKeyboardLayoutNameA
GetKeyboardLayout
GetKeyState
GetIconInfo
GetFocus
GetDlgItem
GetDesktopWindow
GetDCEx
GetDC
GetClipboardData
GetClientRect
GetClassInfoExW
GetClassInfoExA
GetCaretBlinkTime
GetCapture
GetActiveWindow
FillRect
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextA
DrawMenuBar
DrawFrameControl
DrawFocusRect
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyAcceleratorTable
DeferWindowPos
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefMDIChildProcA
DefFrameProcW
DefFrameProcA
CreatePopupMenu
CreateDialogIndirectParamW
CreateDialogIndirectParamA
CreateAcceleratorTableA
CloseClipboard
ClipCursor
ClientToScreen
CheckMenuItem
CallWindowProcW
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
CharNextA
CharToOemBuffA
CharToOemA
AdjustWindowRect

kernel32

GetACP
Sleep
VirtualFree
VirtualAlloc
GetTickCount
QueryPerformanceCounter
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
lstrcpynA
LoadLibraryExA
GetThreadLocale
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetCommandLineA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess
ExitThread
CreateThread
WriteFile
UnhandledExceptionFilter
RtlUnwind
RaiseException
GetStdHandle
TlsSetValue
TlsGetValue
LocalAlloc
GetModuleHandleA
lstrcpyA
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
VirtualQuery
VirtualFree
VirtualAlloc
SuspendThread
Sleep
SetThreadContext
SetFileTime
SetFilePointer
SetFileAttributesW
SetFileAttributesA
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
ResetEvent
ReadFile
MultiByteToWideChar
MulDiv
MoveFileW
MoveFileA
LocalFileTimeToFileTime
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GetVolumeInformationW
GetVersionExA
GetUserDefaultLCID
GetTickCount
GetThreadLocale
GetThreadContext
GetStdHandle
GetProcAddress
GetOverlappedResult
GetOEMCP
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLogicalDrives
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileTime
GetFileSize
GetFileAttributesW
GetFileAttributesA
GetDriveTypeW
GetDriveTypeA
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentThreadId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
FindNextFileW
FindNextFileA
FindFirstFileW
FindFirstFileA
FindClose
EnumCalendarInfoA
EnterCriticalSection
DeviceIoControl
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateFileW
CreateFileA
CreateEventA
CreateDirectoryW
CreateDirectoryA
CompareStringW
CompareStringA
CloseHandle

gdi32

SetTextColor
SetTextAlign
SetDIBitsToDevice
SetBkMode
SetBkColor
SelectObject
Rectangle
Polyline
IntersectClipRect
GetTextMetricsW
GetTextMetricsA
GetTextExtentPoint32W
GetTextExtentPoint32A
GetTextColor
GetObjectA
GetDeviceCaps
GetDIBits
GetDCOrgEx
GetClipBox
GetBkMode
ExtTextOutW
ExtTextOutA
ExcludeClipRect
EnumFontFamiliesExA
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePen
CreateICA
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
CombineRgn
BitBlt

ole32

CoCreateInstance
CLSIDFromString

comctl32

CreateStatusWindowA
CreateMappedBitmap
ImageList_GetIconSize
ImageList_GetIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Draw
ImageList_SetOverlayImage
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create

shell32

ShellExecuteExW
ShellExecuteW
ShellExecuteA
DragQueryFileW
DragQueryFileA
DragFinish
DragAcceptFiles

comdlg32

CommDlgExtendedError
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 716B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 2.1MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
dmde.ini
dmde_en.chm
.chm
eula.txt
locals/de.lng
locals/dmde_pl.chm
.chm
locals/dmde_ru.chm
.chm
locals/en.ln~
locals/es.lng
locals/eula_ru.txt
locals/fa.lng
locals/fr.lng
locals/it.lng
locals/multi.tbl
locals/pl.lng
locals/pt-br.lng
locals/pt-pt.lng
locals/ru.lng
locals/tr.lng
locals/zh-cn.lng
readme.txt
template.txt

Sharing

General

Malware Config

Signatures

Files

f59a557c040d34a621bee141202e90a9

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.itext Size: 512B - Virtual size: 176B

.data Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 9KB

.idata Size: 1024B - Virtual size: 874B

.edata Size: 512B - Virtual size: 125B

.reloc Size: 1024B - Virtual size: 744B

.rsrc Size: 512B - Virtual size: 512B

b141c2a3f636e080cfb6f872e473e612

Code Sign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

3b:47:3a:f7:a1:e8:eb:af:71:dd:f3:48:1f:b4:c4:1bCertificate

Extended Key Usages

Key Usages

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39Certificate

Extended Key Usages

Key Usages

3b:47:3a:f7:a1:e8:eb:af:71:dd:f3:48:1f:b4:c4:1bCertificate

Extended Key Usages

Key Usages

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

da:58:40:f5:3c:2a:65:1e:97:06:21:8b:32:32:2c:e8:7d:a4:25:96:46:9e:e1:98:04:f2:96:5a:5b:49:e3:3fSigner

6b:de:ab:78:c9:4e:aa:9d:ee:a0:fd:be:52:b1:5a:f6:1d:00:aa:f2Signer

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

advapi32

user32

kernel32

gdi32

ole32

comctl32

shell32

comdlg32

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.itext Size: 1024B - Virtual size: 716B

.data Size: 27KB - Virtual size: 27KB

.bss Size: - Virtual size: 2.1MB

.idata Size: 10KB - Virtual size: 9KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.rsrc Size: 174KB - Virtual size: 174KB

.text
Size: 10KB - Virtual size: 10KB

.itext
Size: 512B - Virtual size: 176B

.data
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 9KB

.idata
Size: 1024B - Virtual size: 874B

.edata
Size: 512B - Virtual size: 125B

.reloc
Size: 1024B - Virtual size: 744B

.rsrc
Size: 512B - Virtual size: 512B

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

3b:47:3a:f7:a1:e8:eb:af:71:dd:f3:48:1f:b4:c4:1b
Certificate

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

3b:47:3a:f7:a1:e8:eb:af:71:dd:f3:48:1f:b4:c4:1b
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

da:58:40:f5:3c:2a:65:1e:97:06:21:8b:32:32:2c:e8:7d:a4:25:96:46:9e:e1:98:04:f2:96:5a:5b:49:e3:3f
Signer

6b:de:ab:78:c9:4e:aa:9d:ee:a0:fd:be:52:b1:5a:f6:1d:00:aa:f2
Signer

.text
Size: 2.2MB - Virtual size: 2.2MB

.itext
Size: 1024B - Virtual size: 716B

.data
Size: 27KB - Virtual size: 27KB

.bss
Size: - Virtual size: 2.1MB

.idata
Size: 10KB - Virtual size: 9KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.rsrc
Size: 174KB - Virtual size: 174KB