NEAS[.]816eb82e362f8c463be722472e04a8d0[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

NEAS.816eb82e362f8c463be722472e04a8d0.exe
Size

5.0MB
MD5

816eb82e362f8c463be722472e04a8d0
SHA1

75b7365cd68503bf4186470af31fdf001186b4bd
SHA256

2c27593de097d969fc4494d79a392b99665418fc68d0e522de83a1b6b298329b
SHA512

945754e67834d7bd8ef89cf4f6cd7376565774a2a2b8495ada8f358e7ee5b64d01d70544d630f92c13213b8929790c8c3a005f299e7b07d45cbf5039e3f552c3
SSDEEP

98304:aX9XKtwHI0CCglxrxaYLkLnY+nfP5jK4PZyTuuIulhjgBiWsYBnK4ZVlkTTpTDcC:aX9XKyHI0CCgLrxaYAjY+nJjKsZyTuuL

Score

1^/10

Malware Config

Signatures

Files

NEAS.816eb82e362f8c463be722472e04a8d0.exe
.dll windows:4 windows x86

e40bbb0eb44fcbfba133b38519e63936

Code Sign

64:3e:2a:2a:1a:77:c7:9b:fc:26:44:15:5b:72:91:fe
Certificate

Issuer

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

10-03-2022 13:59

Not After

10-03-2023 13:59

Subject

CN=Open Source Developer\, Hendrik Leppkes,O=Open Source Developer,L=Hamburg,C=DE,1.2.840.113549.1.9.1=#0c13682e6c6570706b657340676d61696c2e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19-05-2021 05:32

Not After

18-05-2036 05:32

Subject

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28-07-2022 08:56

Not After

27-07-2033 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19-05-2021 05:32

Not After

18-05-2036 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31-05-2021 06:43

Not After

17-09-2029 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

a1:3c:da:91:ae:4f:4e:1f:c4:f9:84:39:2c:af:21:bb:48:50:23:bb:78:32:62:31:4f:58:da:b8:27:6f:eb:44
Signer

Actual PE Digest

a1:3c:da:91:ae:4f:4e:1f:c4:f9:84:39:2c:af:21:bb:48:50:23:bb:78:32:62:31:4f:58:da:b8:27:6f:eb:44

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

CryptAcquireContextW
CryptCreateHash
CryptDecrypt
CryptDestroyHash
CryptGetHashParam
CryptGetProvParam
CryptReleaseContext
CryptSetHashParam
CryptSetProvParam
CryptSignHashA

crypt32

CertCloseStore
CertDeleteCertificateFromStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertFreeCertificateContext
CertGetCertificateContextProperty
CertOpenStore
PFXImportCertStore

kernel32

AcquireSRWLockExclusive
AddVectoredExceptionHandler
CancelIoEx
CloseHandle
CreateEventA
CreateFileA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FindClose
FindFirstFileA
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetFileAttributesW
GetFileInformationByHandle
GetFileType
GetFinalPathNameByHandleA
GetFullPathNameW
GetHandleInformation
GetLastError
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GetProcessAffinityMask
GetSystemDirectoryW
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetTickCount64
InitializeConditionVariable
InitializeCriticalSection
InitializeSRWLock
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
MoveFileExA
MoveFileExW
MultiByteToWideChar
OpenProcess
OutputDebugStringA
PeekNamedPipe
RaiseException
ReleaseSRWLockExclusive
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEvent
SetLastError
SetProcessAffinityMask
SetThreadContext
SetThreadPriority
Sleep
SleepConditionVariableSRW
SuspendThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeConditionVariable
WideCharToMultiByte

msvcrt

__mb_cur_max
__setusermatherr
_access
_amsg_exit
_assert
_beginthreadex
_endthreadex
_errno
_findclose
_fstat64
_get_osfhandle
_getmaxstdio
_gmtime64
_hypot
_initterm
_iob
_localtime64
_lock
_lseeki64
_open_osfhandle
_rmdir
_setjmp3
_setmaxstdio
_stat64
_stati64
_stricmp
_time64
_ultoa
_unlink
_unlock
_waccess
_wfindfirst64
_wfindnext64
_wfopen
_wfullpath
_wgetenv
_wmkdir
_wopen
_wrmdir
_wunlink
abort
atof
atoi
bsearch
calloc
exit
fclose
ferror
fflush
fgetpos
fgets
fopen
fprintf
fputc
fread
free
fwrite
getc
getenv
islower
isspace
isupper
isxdigit
localeconv
log10
malloc
memchr
memcmp
memcpy
memmove
memset
localtime
gmtime
_mkdir
printf
qsort
raise
rand
realloc
setlocale
setvbuf
srand
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncat
strncmp
strncpy
strpbrk
strrchr
strspn
strstr
strtol
strtoul
tolower
toupper
ungetc
vfprintf
time
wcscat
wcscpy
wcslen
wcsrchr
wcstombs
_wstat
_wstat64
_stat
longjmp
_write
_strdup
_setmode
_read
_open
_getcwd
_fileno
_fdopen
_dup2
_dup
_close

ncrypt

BCryptCloseAlgorithmProvider
BCryptGenRandom
BCryptOpenAlgorithmProvider
NCryptDecrypt
NCryptDeleteKey
NCryptFreeObject
NCryptGetProperty
NCryptOpenKey
NCryptOpenStorageProvider
NCryptSignHash

ws2_32

WSACleanup
WSAGetLastError
WSASetLastError
WSAStartup
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostname
getnameinfo
getpeername
getsockname
getsockopt
htons
inet_ntop
inet_pton
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

avcodec-lav-59

av_ac3_parse_header
av_adts_header_parse
av_bsf_alloc
av_bsf_flush
av_bsf_free
av_bsf_get_by_name
av_bsf_init
av_bsf_receive_packet
av_bsf_send_packet
av_codec_is_decoder
av_codec_iterate
av_dirac_parse_sequence_header
av_dv_frame_profile
av_get_audio_frame_duration
av_get_audio_frame_duration2
av_get_bits_per_sample
av_get_exact_bits_per_sample
av_grow_packet
av_init_packet
av_new_packet
av_packet_add_side_data
av_packet_alloc
av_packet_copy_props
av_packet_free
av_packet_from_data
av_packet_get_side_data
av_packet_make_refcounted
av_packet_move_ref
av_packet_new_side_data
av_packet_pack_dictionary
av_packet_ref
av_packet_rescale_ts
av_packet_unref
av_parser_close
av_parser_init
av_parser_parse2
av_shrink_packet
av_vorbis_parse_frame_flags
av_vorbis_parse_free
av_vorbis_parse_init
av_vorbis_parse_reset
av_xiphlacing
avcodec_alloc_context3
avcodec_close
avcodec_decode_subtitle2
avcodec_descriptor_get
avcodec_descriptor_get_by_name
avcodec_find_decoder
avcodec_find_decoder_by_name
avcodec_free_context
avcodec_get_name
avcodec_get_type
avcodec_is_open
avcodec_open2
avcodec_parameters_alloc
avcodec_parameters_copy
avcodec_parameters_free
avcodec_parameters_from_context
avcodec_parameters_to_context
avcodec_pix_fmt_to_codec_tag
avcodec_receive_frame
avcodec_send_packet
avcodec_string
avpriv_ac3_parse_header
avpriv_adts_header_parse
avpriv_codec_get_cap_skip_frame_fill_param
avpriv_dca_convert_bitstream
avpriv_dca_parse_core_frame_header
avpriv_exif_decode_ifd
avpriv_find_start_code
avpriv_fits_header_init
avpriv_fits_header_parse_line
avpriv_h264_has_num_reorder_frames
avpriv_mpeg4audio_get_config2
avpriv_mpegaudio_decode_header
avpriv_packet_list_free
avpriv_packet_list_get
avpriv_packet_list_put
avpriv_pix_fmt_find
avpriv_tak_parse_streaminfo
avsubtitle_free

avutil-lav-57

av_add_q
av_add_stable
av_aes_alloc
av_aes_crypt
av_aes_ctr_alloc
av_aes_ctr_crypt
av_aes_ctr_free
av_aes_ctr_init
av_aes_ctr_set_full_iv
av_aes_init
av_append_path_component
av_asprintf
av_base64_decode
av_base64_encode
av_basename
av_blowfish_crypt_ecb
av_blowfish_init
av_bprint_append_data
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_init
av_bprint_init_for_buffer
av_bprintf
av_buffer_alloc
av_buffer_create
av_buffer_default_free
av_buffer_pool_get
av_buffer_pool_init
av_buffer_pool_uninit
av_buffer_ref
av_buffer_unref
av_calloc
av_channel_layout_channel_from_index
av_channel_layout_check
av_channel_layout_copy
av_channel_layout_default
av_channel_layout_from_mask
av_channel_layout_uninit
av_channel_name
av_chroma_location_pos_to_enum
av_color_primaries_name
av_color_space_name
av_color_transfer_name
av_compare_mod
av_compare_ts
av_content_light_metadata_alloc
av_crc
av_crc_get_table
av_d2q
av_default_item_name
av_des_alloc
av_des_crypt
av_des_init
av_des_mac
av_dict_copy
av_dict_count
av_dict_free
av_dict_get
av_dict_parse_string
av_dict_set
av_dict_set_int
av_dirname
av_display_rotation_get
av_div_q
av_dovi_alloc
av_dynarray2_add
av_dynarray_add
av_dynarray_add_nofree
av_encryption_info_add_side_data
av_encryption_info_alloc
av_encryption_info_clone
av_encryption_info_free
av_encryption_init_info_add_side_data
av_encryption_init_info_alloc
av_encryption_init_info_free
av_encryption_init_info_get_side_data
av_fast_malloc
av_fast_realloc
av_fifo_alloc2
av_fifo_can_read
av_fifo_can_write
av_fifo_drain2
av_fifo_freep2
av_fifo_read
av_fifo_write
av_find_info_tag
av_fourcc_make_string
av_frame_alloc
av_frame_free
av_free
av_freep
av_gcd
av_get_bits_per_pixel
av_get_channel_name
av_get_media_type_string
av_get_picture_type_char
av_get_pix_fmt
av_get_random_seed
av_get_token
av_gettime
av_gettime_relative
av_hmac_alloc
av_hmac_final
av_hmac_free
av_hmac_init
av_hmac_update
av_image_check_sar
av_image_check_size
av_image_get_buffer_size
av_lfg_init
av_log
av_log_get_level
av_malloc
av_malloc_array
av_mallocz
av_mastering_display_metadata_alloc
av_match_list
av_match_name
av_md5_alloc
av_md5_final
av_md5_init
av_md5_sum
av_md5_update
av_memdup
av_mul_q
av_opt_copy
av_opt_flag_is_set
av_opt_free
av_opt_get
av_opt_get_dict_val
av_opt_get_int
av_opt_get_key_value
av_opt_ptr
av_opt_set
av_opt_set_bin
av_opt_set_defaults
av_opt_set_dict
av_opt_set_dict2
av_opt_set_dict_val
av_opt_set_int
av_parse_time
av_parse_video_rate
av_pix_fmt_desc_get
av_rc4_alloc
av_rc4_crypt
av_rc4_init
av_realloc
av_realloc_array
av_realloc_f
av_reallocp
av_reallocp_array
av_reduce
av_rescale
av_rescale_q
av_rescale_q_rnd
av_rescale_rnd
av_set_options_string
av_sha_alloc
av_sha_final
av_sha_init
av_sha_update
av_small_strptime
av_spherical_alloc
av_spherical_projection_name
av_spherical_tile_bounds
av_sscanf
av_stereo3d_alloc
av_stereo3d_type_name
av_strcasecmp
av_strdup
av_strerror
av_strireplace
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strndup
av_strstart
av_strtod
av_strtok
av_sub_q
av_tea_alloc
av_tea_crypt
av_tea_init
av_timecode_init
av_timecode_init_from_components
av_timecode_make_smpte_tc_string2
av_timecode_make_string
av_timegm
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_alloc
av_usleep
av_uuid_unparse
av_uuid_urn_parse
av_vbprintf
av_xtea_le_crypt
av_xtea_le_init
avpriv_dict_set_timestamp
avpriv_fopen_utf8
avpriv_open
avpriv_report_missing_feature
avpriv_request_sample

Exports

Exports

av_add_index_entry
av_append_packet
av_codec_get_id
av_codec_get_tag
av_codec_get_tag2
av_demuxer_iterate
av_disposition_from_string
av_disposition_to_string
av_dump_format
av_filename_number_test
av_find_best_stream
av_find_default_stream_index
av_find_input_format
av_find_program_from_stream
av_fmt_ctx_get_duration_estimation_method
av_format_ffversion
av_format_inject_global_side_data
av_get_frame_filename
av_get_frame_filename2
av_get_output_timestamp
av_get_packet
av_guess_codec
av_guess_format
av_guess_frame_rate
av_guess_sample_aspect_ratio
av_hex_dump
av_hex_dump_log
av_index_search_timestamp
av_interleaved_write_frame
av_interleaved_write_uncoded_frame
av_lav_stream_codec_info_nb_frames
av_lav_stream_get_timing_info
av_lav_stream_parser_get_flags
av_lav_stream_parser_get_needed
av_lav_stream_parser_init
av_lav_stream_parser_set_needed
av_lav_stream_parser_update_flags
av_match_ext
av_mkv_get_edition
av_mkv_get_editions
av_mkv_get_num_editions
av_mkv_set_next_edition
av_muxer_iterate
av_new_program
av_pkt_dump2
av_pkt_dump_log2
av_probe_input_buffer
av_probe_input_buffer2
av_probe_input_format
av_probe_input_format2
av_probe_input_format3
av_program_add_stream_index
av_read_frame
av_read_pause
av_read_play
av_sdp_create
av_seek_frame
av_stream_add_side_data
av_stream_get_class
av_stream_get_codec_timebase
av_stream_get_end_pts
av_stream_get_parser
av_stream_get_side_data
av_stream_new_side_data
av_url_split
av_write_frame
av_write_trailer
av_write_uncoded_frame
av_write_uncoded_frame_query
avformat_alloc_context
avformat_alloc_output_context2
avformat_close_input
avformat_configuration
avformat_find_stream_info
avformat_flush
avformat_free_context
avformat_get_class
avformat_get_mov_audio_tags
avformat_get_mov_video_tags
avformat_get_riff_audio_tags
avformat_get_riff_video_tags
avformat_index_get_entries_count
avformat_index_get_entry
avformat_index_get_entry_from_timestamp
avformat_init_output
avformat_license
avformat_match_stream_specifier
avformat_network_deinit
avformat_network_init
avformat_new_stream
avformat_open_input
avformat_query_codec
avformat_queue_attached_pictures
avformat_seek_file
avformat_transfer_internal_stream_timing_info
avformat_version
avformat_write_header
avio_accept
avio_alloc_context
avio_check
avio_close
avio_close_dir
avio_close_dyn_buf
avio_closep
avio_context_free
avio_enum_protocols
avio_feof
avio_find_protocol_name
avio_flush
avio_free_directory_entry
avio_get_dyn_buf
avio_get_str
avio_get_str16be
avio_get_str16le
avio_handshake
avio_open
avio_open2
avio_open_dir
avio_open_dyn_buf
avio_pause
avio_print_string_array
avio_printf
avio_protocol_get_class
avio_put_str
avio_put_str16be
avio_put_str16le
avio_r8
avio_rb16
avio_rb24
avio_rb32
avio_rb64
avio_read
avio_read_dir
avio_read_partial
avio_read_to_bprint
avio_rl16
avio_rl24
avio_rl32
avio_rl64
avio_seek
avio_seek_time
avio_size
avio_skip
avio_vprintf
avio_w8
avio_wb16
avio_wb24
avio_wb32
avio_wb64
avio_wl16
avio_wl24
avio_wl32
avio_wl64
avio_write
avio_write_marker
avpriv_dv_get_packet
avpriv_dv_init_demux
avpriv_dv_produce_packet
avpriv_mpegts_add_stream
avpriv_mpegts_parse_close
avpriv_mpegts_parse_open
avpriv_mpegts_parse_packet
avpriv_new_chapter
avpriv_register_devices
avpriv_set_pts_info
avpriv_stream_set_need_parsing
avpriv_update_cur_dts
ff_rm_reorder_sipr_data
ff_sipr_subpk_size
ff_vorbis_comment

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e40bbb0eb44fcbfba133b38519e63936

Code Sign

64:3e:2a:2a:1a:77:c7:9b:fc:26:44:15:5b:72:91:feCertificate

Extended Key Usages

Key Usages

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39Certificate

Extended Key Usages

Key Usages

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

a1:3c:da:91:ae:4f:4e:1f:c4:f9:84:39:2c:af:21:bb:48:50:23:bb:78:32:62:31:4f:58:da:b8:27:6f:eb:44Signer

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

crypt32

kernel32

msvcrt

ncrypt

ws2_32

avcodec-lav-59

avutil-lav-57

Exports

Exports

Sections

.text Size: 3.7MB - Virtual size: 3.7MB

.data Size: 8KB - Virtual size: 7KB

.rdata Size: 1.0MB - Virtual size: 1.0MB

.bss Size: - Virtual size: 10KB

.edata Size: 5KB - Virtual size: 4KB

.idata Size: 17KB - Virtual size: 16KB

.CRT Size: 512B - Virtual size: 48B

.tls Size: 512B - Virtual size: 8B

.rsrc Size: 1024B - Virtual size: 920B

.reloc Size: 128KB - Virtual size: 128KB

64:3e:2a:2a:1a:77:c7:9b:fc:26:44:15:5b:72:91:fe
Certificate

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

a1:3c:da:91:ae:4f:4e:1f:c4:f9:84:39:2c:af:21:bb:48:50:23:bb:78:32:62:31:4f:58:da:b8:27:6f:eb:44
Signer

.text
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 8KB - Virtual size: 7KB

.rdata
Size: 1.0MB - Virtual size: 1.0MB

.bss
Size: - Virtual size: 10KB

.edata
Size: 5KB - Virtual size: 4KB

.idata
Size: 17KB - Virtual size: 16KB

.CRT
Size: 512B - Virtual size: 48B

.tls
Size: 512B - Virtual size: 8B

.rsrc
Size: 1024B - Virtual size: 920B

.reloc
Size: 128KB - Virtual size: 128KB