a6808209a32a480bd3e4af79dd8ae76b[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

a6808209a32a480bd3e4af79dd8ae76b.exe
Size

26.1MB
MD5

a6808209a32a480bd3e4af79dd8ae76b
SHA1

a4ec3b38348290f9ed3491eb0c7deb5736056d6d
SHA256

eba7c64e693a1092dfc9dce17576a7a638c1858dcf69d14534a2f462bce03b23
SHA512

e2839a2a956d2aa1313a168c1009733b78ceda38a0f98b0fd9eb3321d8a604e987b85c0859fd7eb3009aedcf16974289511d49152cd3f2cb7daddf695975a378
SSDEEP

393216:WhbSCAHRQptPol4ApKQU8WkyaxgJsv6tWKFdu9C+RSggL/t3ofR6GdtnFnOsMZ:NCAxQptPH3fD392/Osm

Score

1^/10

Malware Config

Signatures

Files

a6808209a32a480bd3e4af79dd8ae76b.exe
.exe windows:5 windows x86

0de22beb7d273dd9309db5681165b004

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

18:39:af:85:74:aa:0e:80:c3:71:d9:80:34:61:dd:7b
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

13/01/2022, 00:00

Not After

12/01/2025, 23:59

Subject

CN=ADLICE,O=ADLICE,ST=Loire-Atlantique,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f0:d7:c7:10:84:8a:f4:36:f3:f5:46:ec:3c:60:49:ac:c6:a0:9b:f7
Signer

Actual PE Digest

f0:d7:c7:10:84:8a:f4:36:f3:f5:46:ec:3c:60:49:ac:c6:a0:9b:f7

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glLineWidth
glIsTexture
glIsEnabled
glHint
glGetTexParameteriv
glGetTexParameterfv
glGetString
glGetIntegerv
glGetFloatv
glGetError
glPixelStorei
glPolygonOffset
glReadPixels
glScissor
glStencilFunc
glStencilMask
glStencilOp
glTexImage2D
glTexParameterf
glTexParameterfv
glTexParameteri
glTexParameteriv
glTexSubImage2D
glViewport
glGetBooleanv
glGenTextures
glFrontFace
glFlush
glFinish
glEnable
glDrawElements
glDrawArrays
glDisable
glDepthRange
glDepthMask
glDepthFunc
glDeleteTextures
glCullFace
glCopyTexSubImage2D
glCopyTexImage2D
glColorMask
glClearStencil
glClearDepth
glClearColor
glClear
glBlendFunc
glBindTexture

ws2_32

getnameinfo
freeaddrinfo
getaddrinfo
WSAIoctl

winmm

PlaySoundW

kernel32

HeapSize
GetProcessHeap
RaiseException
LoadResource
SizeofResource
lstrcmpiW
LoadLibraryExW
GetModuleFileNameW
FindResourceW
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
DeviceIoControl
LocalAlloc
VirtualAlloc
VirtualFree
GetFileInformationByHandle
GetFileType
SetFilePointerEx
lstrlenW
GetDiskFreeSpaceW
QueryDosDeviceW
IsBadReadPtr
IsBadWritePtr
GetVolumeNameForVolumeMountPointW
GetVolumePathNameW
lstrcmpA
lstrcpyW
GetCurrentThread
ResumeThread
GetModuleFileNameA
GetEnvironmentVariableW
OutputDebugStringA
GetVersionExA
CreateThread
OpenThread
WriteProcessMemory
CreateRemoteThread
Module32FirstW
Module32NextW
DefineDosDeviceW
SetFilePointer
GlobalAlloc
GlobalFree
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
SwitchToFiber
DeleteFiber
CreateFiber
QueryPerformanceCounter
GetSystemTimeAsFileTime
ConvertFiberToThread
ConvertThreadToFiber
LoadLibraryA
GetConsoleMode
SetConsoleMode
ReadConsoleA
ReadConsoleW
FormatMessageA
InitializeCriticalSection
SleepEx
QueryPerformanceFrequency
GetSystemDirectoryA
VerifyVersionInfoA
ExpandEnvironmentStringsA
CreateFileMappingA
SwitchToThread
CompareStringW
GetUserDefaultLCID
SetThreadPriority
GetThreadPriority
WaitForSingleObjectEx
GetLocalTime
OutputDebugStringW
GetStartupInfoW
GetCurrencyFormatW
GetUserDefaultUILanguage
GetLogicalDrives
SetEndOfFile
FindCloseChangeNotification
FindFirstChangeNotificationW
FindNextChangeNotification
FindFirstFileExW
GetTimeZoneInformation
IsValidLanguageGroup
IsValidLocale
GetUserDefaultLangID
HeapFree
GlobalUnlock
GlobalLock
GlobalSize
GetThreadLocale
GetVolumeInformationW
GetDriveTypeW
GetUserGeoID
GetGeoInfoW
GetLocaleInfoW
GetTempFileNameW
GetTempPathW
CancelIo
WaitNamedPipeW
CreateNamedPipeW
PeekNamedPipe
SetNamedPipeHandleState
DisconnectNamedPipe
ConnectNamedPipe
SetHandleInformation
FlushFileBuffers
ReadFile
WriteFile
GetOverlappedResult
CreateEventW
WaitForMultipleObjects
ResetEvent
CloseHandle
OpenProcess
ReadProcessMemory
LockFileEx
UnlockFile
HeapCompact
DeleteFileA
FlushViewOfFile
GetFileAttributesA
GetDiskFreeSpaceA
GetTempPathA
HeapValidate
UnlockFileEx
LockFile
AreFileApisANSI
VirtualQueryEx
CreateFileA
HeapCreate
GetFileSize
GetFileSizeEx
LockResource
GetPrivateProfileStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
WriteConsoleW
SetEnvironmentVariableA
EnumSystemLocalesW
GetACP
GetConsoleCP
SetStdHandle
GetFullPathNameA
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
SetConsoleCtrlHandler
InterlockedPushEntrySList
IsDebuggerPresent
InitializeSListHead
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetCPInfo
EncodePointer
GetStringTypeW
HeapReAlloc
HeapAlloc
HeapDestroy
InterlockedDecrement
InterlockedIncrement
DecodePointer
GetTickCount
CreateMutexW
ReleaseMutex
SetEvent
Thread32Next
Thread32First
Process32NextW
Process32FirstW
GetModuleHandleW
CreateToolhelp32Snapshot
TerminateJobObject
AssignProcessToJobObject
CreateJobObjectW
CreateProcessW
DuplicateHandle
WaitForSingleObject
SetLastError
TerminateThread
GetProcessId
GetExitCodeProcess
CheckRemoteDebuggerPresent
TerminateProcess
GetProcessTimes
GetCurrentProcessId
GetCommandLineW
GetVersionExW
VerSetConditionMask
MoveFileExW
MoveFileW
CopyFileW
FindNextFileW
FindFirstFileW
DeleteFileW
GetFileAttributesExW
GetFileAttributesW
SetFileAttributesW
CreateFileW
RemoveDirectoryW
CreateDirectoryW
GetFileTime
FindClose
GetFullPathNameW
ExpandEnvironmentStringsW
GetShortPathNameW
DeleteCriticalSection
TryEnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetDateFormatW
GetTimeFormatW
CompareFileTime
FileTimeToSystemTime
SystemTimeToFileTime
TzSpecificLocalTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetSystemTime
GetCurrentProcess
GetComputerNameW
GetCurrentDirectoryW
GetSystemDirectoryW
LoadLibraryW
FormatMessageW
GetSystemTimes
GetProcAddress
GetSystemInfo
Sleep
SetErrorMode
GetLastError
LocalFree
FreeLibrary
WideCharToMultiByte
MultiByteToWideChar
ExitProcess
GetModuleHandleA
GetConsoleWindow
lstrcmpW
GetLongPathNameW
LCMapStringW

user32

SetForegroundWindow
GetForegroundWindow
ReleaseCapture
SetCapture
GetCursor
LoadCursorW
CreateCursor
GetCursorInfo
TrackMouseEvent
GetMessageExtraInfo
GetWindowTextW
RealGetWindowClassW
CreateWindowExW
DefWindowProcW
SendMessageW
RegisterWindowMessageW
EnableMenuItem
GetSystemMenu
GetIconInfo
GetCapture
SetFocus
SystemParametersInfoW
GetSysColor
DestroyIcon
GetWindowThreadProcessId
DrawIconEx
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
InvalidateRect
SetWindowTextW
GetWindowRect
AdjustWindowRectEx
SetCursor
ClientToScreen
ScreenToClient
GetDesktopWindow
GetParent
SetParent
DestroyCursor
GetAncestor
SetCursorPos
GetClipboardFormatNameW
GetDC
IsIconic
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
GetSystemMetrics
GetKeyboardLayoutList
GetClassInfoW
RegisterClassExW
GetFocus
GetClientRect
GetCursorPos
ChildWindowFromPointEx
GetSysColorBrush
LoadImageW
GetMonitorInfoW
EnumDisplayMonitors
LoadIconW
SetClipboardViewer
ChangeClipboardChain
RegisterClipboardFormatW
GetAsyncKeyState
GetKeyboardLayout
MoveWindow
FlashWindowEx
SetWindowPos
IsChild
MessageBeep
CreateCaret
DestroyCaret
HideCaret
SetCaretPos
IsZoomed
GetKeyState
GetKeyboardState
ToAscii
ToUnicode
MapVirtualKeyW
GetMenu
TrackPopupMenuEx
SetWindowRgn
MessageBoxW
CreateIconIndirect
PostMessageW
ShowWindow
GetShellWindow
EnumWindows
DestroyWindow
SetMenuItemInfoW
SendInput
GetClassNameW
EnumChildWindows
UnregisterClassW
CharNextW
GetProcessWindowStation
GetUserObjectInformationW
SendMessageA
FindWindowA
TranslateMessage
DispatchMessageW
PeekMessageW
RegisterClassW
GetQueueStatus
MsgWaitForMultipleObjectsEx
SetTimer
KillTimer
GetWindowLongW
SetWindowLongW
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
CharNextExA
GetDoubleClickTime
GetCaretBlinkTime
NotifyWinEvent

gdi32

CreateFontIndirectW
GetFontData
EnumFontFamiliesExW
AddFontResourceExW
RemoveFontResourceExW
CreateDCW
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
DeleteDC
DeleteObject
GetDIBits
SelectObject
OffsetRgn
CreateDIBSection
CombineRgn
CreateRectRgn
GetRegionData
SelectClipRgn
GdiFlush
CreateBitmap
GetObjectW
BitBlt
GetStockObject
AddFontMemResourceEx
RemoveFontMemResourceEx
GetTextMetricsW
GetTextFaceW
ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SwapBuffers
GetBitmapBits
GetCharABCWidthsW
GetGlyphOutlineW
GetOutlineTextMetricsW
GetTextExtentPoint32W
GetCharABCWidthsI
SetBkMode
SetGraphicsMode
SetTextColor
SetTextAlign
SetWorldTransform
ExtTextOutW
SetPixelFormat
GetCharABCWidthsFloatW

shell32

Shell_NotifyIconW
SHGetMalloc
ord51
ShellExecuteW
CommandLineToArgvW
ShellExecuteExW
SHGetFolderPathW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHGetPathFromIDListW
SHBrowseForFolderW
ExtractIconExW

ole32

StringFromCLSID
StringFromGUID2
CoCreateGuid
CoTaskMemFree
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc
CoSetProxyBlanket
CoInitialize
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleInitialize
OleUninitialize
OleSetClipboard
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
ReleaseStgMedium
CoGetMalloc

oleaut32

SafeArrayCreate
SystemTimeToVariantTime
VariantChangeType
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayDestroy
VarUI4FromStr
VariantClear
VariantInit
SysStringLen
SysFreeString
SysAllocString

advapi32

RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW
DuplicateTokenEx
CreateProcessAsUserW
SetEntriesInAclW
CheckTokenMembership
LookupPrivilegeValueW
SetSecurityDescriptorOwner
SetSecurityDescriptorDacl
IsValidSecurityDescriptor
InitializeSecurityDescriptor
InitializeAcl
FreeSid
AllocateAndInitializeSid
AdjustTokenPrivileges
GetTokenInformation
OpenProcessToken
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegSetValueExW
IsValidSid
GetLengthSid
CopySid
LookupAccountSidW
LookupAccountNameW
ConvertSidToStringSidW
ConvertStringSidToSidW
RegEnumValueW
GetAce
RegGetKeySecurity
RegSetKeySecurity
GetExplicitEntriesFromAclW
GetNamedSecurityInfoW
SetNamedSecurityInfoW
CryptDestroyHash
CryptCreateHash
CryptSignHashW
CryptEnumProvidersW
DeregisterEventSource
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetHashParam
CryptGetProvParam
CryptGetUserKey
CryptExportKey
CryptDecrypt
GetSecurityInfo
LookupPrivilegeValueA
StartServiceW
SetServiceObjectSecurity
QueryServiceStatusEx
QueryServiceStatus
QueryServiceConfig2W
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
EnumServicesStatusW
CryptGenRandom
EnumDependentServicesW
DeleteService
CreateServiceW
ControlService
CloseServiceHandle
ChangeServiceConfig2W
ChangeServiceConfigW
RegQueryValueExW
RegFlushKey

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shlwapi

PathRemoveArgsW
PathQuoteSpacesW
PathRemoveBackslashW
PathRemoveExtensionW
PathRemoveFileSpecW
PathSearchAndQualifyW
PathUnquoteSpacesW
PathUnExpandEnvStringsW
StrFormatByteSizeW
AssocQueryStringW
StrDupW
StrCmpIW
PathRemoveBlanksW
PathIsNetworkPathW
PathIsRelativeW
PathIsPrefixW
PathIsDirectoryW
PathGetDriveNumberW
PathGetArgsW
PathAddBackslashW
PathAppendW
PathCommonPrefixW
PathFileExistsW
PathFindExtensionW
PathFindFileNameW

wininet

InternetGetConnectedState

psapi

GetModuleInformation
GetProcessImageFileNameW
GetModuleFileNameExW
GetModuleBaseNameW

userenv

GetProfilesDirectoryW
DestroyEnvironmentBlock
CreateEnvironmentBlock

wsock32

inet_ntoa
getsockname
getsockopt
ntohs
WSAStartup
WSACleanup
WSAGetLastError
recv
send
WSASetLastError
accept
bind
connect
listen
setsockopt
socket
getpeername
htons
__WSAFDIsSet
select
htonl
recvfrom
sendto
gethostname
WSAAsyncSelect
shutdown
closesocket

ntdll

NtQueryVirtualMemory
RtlUnwind
memcmp
islower
isupper
bsearch
wcsncmp
wcstombs
strpbrk
strtol
atoi
_stricmp
_strnicmp
strtoul
strspn
strcmp
strrchr
strncpy
qsort
NtQuerySystemInformation
NtQueryKey
NtCreateKey
NtSetValueKey
NtDeleteValueKey
NtDeleteKey
NtOpenKey
wcsstr
isalnum
_wtoi64
_wcsicmp
memchr
tolower
toupper
isspace
strstr
isdigit
wcsrchr
floor
strchr
ceil
strncmp
memset
memcpy
memmove
wcschr
RtlInitUnicodeString
NtLoadDriver
NtUnloadDriver
towupper
isprint
strcspn

crypt32

CryptQueryObject
CryptMsgClose
CryptMsgGetParam
CertCloseStore
CertFindCertificateInStore
CertGetCertificateContextProperty
CertDuplicateCertificateContext
CertEnumCertificatesInStore
CertOpenStore
CertGetNameStringW
CertNameToStrW
CertFreeCertificateContext
CryptDecodeObject

wintrust

CryptCATAdminReleaseCatalogContext
WinVerifyTrust
CryptCATAdminEnumCatalogFromHash
CryptCATAdminCalcHashFromFileHandle
CryptCATCatalogInfoFromContext
CryptCATAdminAcquireContext
CryptCATAdminReleaseContext

wtsapi32

WTSQueryUserToken
WTSEnumerateSessionsW

mpr

WNetGetConnectionW

imm32

ImmGetCompositionStringW
ImmGetDefaultIMEWnd
ImmGetContext
ImmReleaseContext
ImmAssociateContext
ImmNotifyIME
ImmSetCompositionWindow
ImmSetCandidateWindow
ImmGetVirtualKey

Sections

.text
Size: 13.1MB - Virtual size: 13.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.8MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 208KB - Virtual size: 377KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 13B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmetad
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0de22beb7d273dd9309db5681165b004

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

18:39:af:85:74:aa:0e:80:c3:71:d9:80:34:61:dd:7bCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

f0:d7:c7:10:84:8a:f4:36:f3:f5:46:ec:3c:60:49:ac:c6:a0:9b:f7Signer

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

ws2_32

winmm

kernel32

user32

gdi32

shell32

ole32

oleaut32

advapi32

version

shlwapi

wininet

psapi

userenv

wsock32

ntdll

crypt32

wintrust

wtsapi32

mpr

imm32

Sections

.text Size: 13.1MB - Virtual size: 13.1MB

.rdata Size: 5.8MB - Virtual size: 5.8MB

.data Size: 208KB - Virtual size: 377KB

.tls Size: 512B - Virtual size: 13B

.qtmetad Size: 1024B - Virtual size: 588B

.gfids Size: 1024B - Virtual size: 528B

_RDATA Size: 512B - Virtual size: 292B

.rsrc Size: 5.9MB - Virtual size: 5.9MB

.reloc Size: 1.1MB - Virtual size: 1.1MB

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

18:39:af:85:74:aa:0e:80:c3:71:d9:80:34:61:dd:7b
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

f0:d7:c7:10:84:8a:f4:36:f3:f5:46:ec:3c:60:49:ac:c6:a0:9b:f7
Signer

.text
Size: 13.1MB - Virtual size: 13.1MB

.rdata
Size: 5.8MB - Virtual size: 5.8MB

.data
Size: 208KB - Virtual size: 377KB

.tls
Size: 512B - Virtual size: 13B

.qtmetad
Size: 1024B - Virtual size: 588B

.gfids
Size: 1024B - Virtual size: 528B

_RDATA
Size: 512B - Virtual size: 292B

.rsrc
Size: 5.9MB - Virtual size: 5.9MB

.reloc
Size: 1.1MB - Virtual size: 1.1MB