2f3a9931196e141a1038e2af96acc9584cbe674117a3c775d1054b8f56df3d5a

Sharing

Copy URL Twitter E-mail

General

Target

2f3a9931196e141a1038e2af96acc9584cbe674117a3c775d1054b8f56df3d5a
Size

8.2MB
MD5

fc713746ca03cde46c8a9f905d2c5647
SHA1

e4cf3e476d8638d1b9b3a424dbf73f70e4898284
SHA256

2f3a9931196e141a1038e2af96acc9584cbe674117a3c775d1054b8f56df3d5a
SHA512

e5fc017e6301ad9d6d0492a9521f9eee33cf72ac96fe388b0625e1d3590d352cd1a5aee4f4832dc05d94d8b27570b82bbe385bf68a1f70dcc07f597693c6c1b4
SSDEEP

196608:r4z6K53h8uRW+TReTRIq7ZwG5eWWi/zio/i6:rm6yRNwZDwWrX/R

Score

1^/10

Malware Config

Signatures

Files

2f3a9931196e141a1038e2af96acc9584cbe674117a3c775d1054b8f56df3d5a
.exe windows:5 windows x86

788193ddc4c3c89c2139597caf4968aa

Code Sign

0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/11/2020, 00:00

Not After

22/02/2024, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/11/2020, 00:00

Not After

22/02/2024, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

80:24:59:8f:a9:45:3c:bf:be:98:94:0b:61:a6:c1:8b:bc:36:d2:3b:fe:da:48:bb:9e:50:6b:82:72:44:87:06
Signer

Actual PE Digest

80:24:59:8f:a9:45:3c:bf:be:98:94:0b:61:a6:c1:8b:bc:36:d2:3b:fe:da:48:bb:9e:50:6b:82:72:44:87:06

Digest Algorithm

sha256

PE Digest Matches

false

c5:af:0e:c9:3c:35:07:4c:17:b3:eb:36:89:b7:71:7e:e2:f3:8a:37
Signer

Actual PE Digest

c5:af:0e:c9:3c:35:07:4c:17:b3:eb:36:89:b7:71:7e:e2:f3:8a:37

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

psapi

GetModuleFileNameExW

ws2_32

WSASocketW
bind
ioctlsocket
setsockopt
send
inet_addr
WSAJoinLeaf
WSAGetLastError
recv
select
freeaddrinfo
closesocket
gethostbyname
listen
getpeername
connect
socket
getaddrinfo
shutdown
htons
sendto
WSACreateEvent
WSAEventSelect
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
gethostname
WSASetLastError
getsockopt
getsockname
__WSAFDIsSet
accept
inet_ntoa
ntohl
ntohs
htonl
WSACleanup
WSAStartup
recvfrom

imm32

ImmDisableIME

kernel32

UnhandledExceptionFilter
GetCurrentProcess
DeviceIoControl
GetDiskFreeSpaceExW
GetLogicalDrives
GetDriveTypeW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetExitCodeProcess
OpenProcess
TerminateProcess
DeleteFileW
GetSystemInfo
GlobalMemoryStatusEx
OutputDebugStringW
LoadLibraryExW
GetModuleFileNameW
GetCommandLineW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetPrivateProfileSectionW
GetFileAttributesW
GetFileAttributesExA
DeleteFileA
GetLocaleInfoW
GetEnvironmentVariableW
GetSystemTime
SystemTimeToFileTime
GetModuleFileNameA
GetTickCount
GetFileAttributesExW
FindFirstFileW
RemoveDirectoryW
FindNextFileW
FindClose
GetFullPathNameW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetLocalTime
InterlockedExchangeAdd
MoveFileW
GetCurrentThreadId
FormatMessageW
GetVersion
MoveFileExW
CopyFileW
VirtualAlloc
VirtualFree
ExpandEnvironmentStringsW
GetLongPathNameW
CreateDirectoryW
lstrcmpW
LocalFileTimeToFileTime
SetFileTime
FileTimeToSystemTime
InitializeCriticalSection
SearchPathW
lstrcpynW
VirtualQuery
GetCurrentProcessId
WriteProcessMemory
SetUnhandledExceptionFilter
Thread32First
Thread32Next
OpenThread
SuspendThread
DuplicateHandle
Module32FirstW
Module32NextW
SetErrorMode
WaitForMultipleObjects
ReadProcessMemory
VirtualAllocEx
RaiseException
GetACP
FreeResource
GetVersionExW
GetWindowsDirectoryW
CreatePipe
SetHandleInformation
PeekNamedPipe
DecodePointer
SetLastError
lstrcmpiW
ResetEvent
lstrlenW
GetTempFileNameW
GetComputerNameW
FindResourceExW
IsDBCSLeadByte
GlobalFree
UnmapViewOfFile
TryEnterCriticalSection
TlsSetValue
GetQueuedCompletionStatus
PostQueuedCompletionStatus
TlsAlloc
TlsGetValue
TlsFree
CreateIoCompletionPort
IsDebuggerPresent
GetSystemDefaultLangID
SwitchToThread
K32GetModuleFileNameExA
IsBadReadPtr
IsBadWritePtr
GetVersionExA
SetEndOfFile
CreateFileA
CreateDirectoryA
GetPrivateProfileIntA
CreateEventW
GetStdHandle
GetCPInfo
SleepEx
FormatMessageA
GetFileType
ExpandEnvironmentStringsA
SetConsoleCtrlHandler
GetTimeZoneInformation
SetStdHandle
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetConsoleCP
ReadConsoleW
GetConsoleMode
ExitProcess
SetEnvironmentVariableA
GetFullPathNameA
SystemTimeToTzSpecificLocalTime
GetModuleHandleExW
ResumeThread
ExitThread
RtlUnwind
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
ReleaseSemaphore
VirtualProtect
GetModuleHandleA
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
CreateThread
SignalObjectAndWait
CreateTimerQueue
GetStartupInfoW
LoadLibraryExA
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
LCMapStringW
CompareStringW
GetSystemTimeAsFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThread
EncodePointer
IsProcessorFeaturePresent
QueueUserWorkItem
GetStringTypeW
AreFileApisANSI
FindFirstFileExW
MapViewOfFile
CreateFileMappingW
WaitForSingleObjectEx
LoadLibraryA
SetEvent
FindResourceW
LoadResource
LockResource
GlobalLock
GlobalAlloc
SizeofResource
Sleep
InterlockedExchange
InterlockedCompareExchange
CreateProcessW
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
OpenMutexW
WriteFile
SetFilePointerEx
GetFileSize
ReadFile
SetFilePointer
GetModuleHandleW
GetLastError
CreateFileW
LocalFree
SetConsoleMode
LocalAlloc
FreeLibrary
GetProcAddress
LoadLibraryW
GetSystemDirectoryW
WideCharToMultiByte
CloseHandle
ReleaseMutex
WaitForSingleObject
CreateMutexW
MultiByteToWideChar
GetPrivateProfileStringA
DeleteCriticalSection
IsValidCodePage
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
OutputDebugStringA
WriteConsoleW
GetThreadContext
SetThreadContext
CreateMutexA
HeapCreate
GetDiskFreeSpaceW
LockFile
UnlockFileEx
HeapValidate
GetTempPathA
GetDiskFreeSpaceA
GetFileAttributesA
FlushViewOfFile
HeapCompact
UnlockFile
CreateFileMappingA
LockFileEx
GlobalMemoryStatus
FlushConsoleInputBuffer
ReadConsoleInputA
GetTempPathW

user32

CreateWindowExA
RegisterClassExA
DefWindowProcW
DestroyWindow
ReleaseDC
GetDC
CopyImage
SendMessageTimeoutW
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA
LoadImageW
FindWindowW
MonitorFromWindow
GetMonitorInfoW
PostMessageW
GetWindowTextW
GetWindowTextLengthW
GetSysColor
PostQuitMessage
KillTimer
wsprintfW
EnumDisplayDevicesW
GetSystemMetrics
GetDesktopWindow
SetWindowLongW
GetWindowLongW
CreateWindowExW
SendMessageW
MoveWindow
SetWindowPos
GetWindowRect
GetClientRect
ClientToScreen
MapWindowPoints
GetWindowDC
InvalidateRect
ShowWindow
IsWindowEnabled
DrawEdge
TrackPopupMenu
DrawIconEx
EnableWindow
SetActiveWindow
GetWindow
GetParent
GetDlgItem
SetWindowRgn
IsWindow
LoadStringW
UnregisterClassW
CharNextW
FillRect
RegisterWindowMessageW
GetClassInfoExW
LoadCursorW
RegisterClassExW
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
CopyRect
SetRect
InflateRect
OffsetRect
FrameRect
MsgWaitForMultipleObjects
GetActiveWindow
CallWindowProcW
GetKeyState
SetWindowTextW
GetSystemMenu
BeginPaint
EndPaint
UpdateWindow
IsWindowVisible
SetTimer
SetCapture
ShowScrollBar
GetDlgCtrlID
ReleaseCapture
PostThreadMessageW
LoadIconW
DrawTextW
DrawFrameControl
EqualRect
PtInRect
GetQueueStatus
MsgWaitForMultipleObjectsEx
WaitMessage
SetCursor

gdi32

LineTo
MoveToEx
GetTextExtentPoint32W
SetRectRgn
OffsetRgn
Rectangle
ExtSelectClipRgn
CreateRectRgnIndirect
CreatePen
SetTextColor
CreateBitmap
CombineRgn
CreateRectRgn
ExtTextOutW
SetBkColor
CreateDIBSection
GetObjectW
GetStockObject
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject
GetTextMetricsW
SelectObject
CreateFontIndirectW
GetDeviceCaps
SetPixelFormat
ChoosePixelFormat
SetBkMode
TextOutW
RoundRect
SelectClipRgn
GetClipRgn
RestoreDC
SaveDC
RectInRegion
GetCurrentObject
CreateSolidBrush
StretchBlt

advapi32

QueryServiceStatusEx
RegDeleteValueW
CloseServiceHandle
ReportEventA
RegisterEventSourceA
DeregisterEventSource
CryptGenRandom
CryptAcquireContextW
RegEnumKeyW
RegOpenKeyExA
ControlService
OpenServiceW
OpenSCManagerW
RegQueryValueExA
AdjustTokenPrivileges
LookupPrivilegeValueW
LookupPrivilegeNameW
GetTokenInformation
OpenProcessToken
RegQueryInfoKeyW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA
RegDeleteKeyW

shell32

ShellExecuteW
SHGetPathFromIDListW
SHBrowseForFolderW
ord165
SHGetFolderPathA
CommandLineToArgvW
SHCreateDirectoryExW
SHGetSpecialFolderPathW
SHFileOperationW
ShellExecuteExW

ole32

CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal
CoCreateGuid
CoTaskMemRealloc
CoInitialize
CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysFreeString
SysAllocString
SysStringLen
VarUI4FromStr
OleLoadPicture

shlwapi

StrStrIA
StrCpyW
StrCmpW
PathAppendW
StrToIntA
PathFindFileNameW
SHDeleteKeyW
SHGetValueW
PathIsDirectoryW
PathRemoveFileSpecA
PathAddBackslashW
PathFileExistsW
wnsprintfW
StrStrIW
PathRemoveFileSpecW

imagehlp

MapAndLoad
UnMapAndLoad

d3d9

Direct3DCreate9

opengl32

glGetString
wglGetProcAddress
wglDeleteContext
wglMakeCurrent
wglCreateContext

wininet

InternetCanonicalizeUrlW
InternetCrackUrlW
HttpQueryInfoW
InternetCloseHandle
InternetReadFile
InternetSetOptionW
InternetQueryOptionW
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetConnectW
InternetOpenW
DeleteUrlCacheEntryW
InternetCreateUrlW

winmm

timeSetEvent
timeKillEvent

comctl32

_TrackMouseEvent
InitCommonControlsEx

gdiplus

GdipCreateBitmapFromStream
GdipCloneImage
GdipDrawImageI
GdipAlloc
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectI
GdipDrawImageRectRectI
GdipGetImageWidth
GdipGetImageHeight
GdipCreateHBITMAPFromBitmap
GdiplusShutdown
GdiplusStartup
GdipLoadImageFromStream
GdipDisposeImage
GdipFree

urlmon

URLDownloadToFileW

winhttp

WinHttpOpen
WinHttpSetTimeouts
WinHttpCrackUrl
WinHttpConnect
WinHttpOpenRequest
WinHttpSetOption
WinHttpAddRequestHeaders
WinHttpSendRequest
WinHttpGetIEProxyConfigForCurrentUser
WinHttpGetProxyForUrl
WinHttpWriteData
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpCloseHandle

iphlpapi

IcmpCreateFile
IcmpCloseHandle
GetIpForwardTable
IcmpSendEcho

netapi32

NetWkstaTransportEnum
NetApiBufferFree
Netbios

wldap32

ord50
ord22
ord26
ord27
ord32
ord33
ord60
ord79
ord30
ord200
ord301
ord143
ord211
ord35
ord46
ord41

Exports

Exports

curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_maprintf
curl_mfprintf
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 791KB - Virtual size: 791KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 21B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.QMGuid
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tvm0
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 166KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

788193ddc4c3c89c2139597caf4968aa

Code Sign

0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

80:24:59:8f:a9:45:3c:bf:be:98:94:0b:61:a6:c1:8b:bc:36:d2:3b:fe:da:48:bb:9e:50:6b:82:72:44:87:06Signer

c5:af:0e:c9:3c:35:07:4c:17:b3:eb:36:89:b7:71:7e:e2:f3:8a:37Signer

Headers

DLL Characteristics

File Characteristics

Imports

version

psapi

ws2_32

imm32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

imagehlp

d3d9

opengl32

wininet

winmm

comctl32

gdiplus

urlmon

winhttp

iphlpapi

netapi32

wldap32

Exports

Exports

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 791KB - Virtual size: 791KB

.data Size: 72KB - Virtual size: 96KB

.gfids Size: 3KB - Virtual size: 3KB

.tls Size: 512B - Virtual size: 21B

.QMGuid Size: 512B - Virtual size: 48B

.rsrc Size: 4.0MB - Virtual size: 4.0MB

.tvm0 Size: 37KB - Virtual size: 40KB

.reloc Size: 166KB - Virtual size: 168KB

0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

80:24:59:8f:a9:45:3c:bf:be:98:94:0b:61:a6:c1:8b:bc:36:d2:3b:fe:da:48:bb:9e:50:6b:82:72:44:87:06
Signer

c5:af:0e:c9:3c:35:07:4c:17:b3:eb:36:89:b7:71:7e:e2:f3:8a:37
Signer

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 791KB - Virtual size: 791KB

.data
Size: 72KB - Virtual size: 96KB

.gfids
Size: 3KB - Virtual size: 3KB

.tls
Size: 512B - Virtual size: 21B

.QMGuid
Size: 512B - Virtual size: 48B

.rsrc
Size: 4.0MB - Virtual size: 4.0MB

.tvm0
Size: 37KB - Virtual size: 40KB

.reloc
Size: 166KB - Virtual size: 168KB