NEAS[.]caf65317d6afce109b4149a158f54120[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.caf65317d6afce109b4149a158f54120.exe
Size

2.2MB
MD5

caf65317d6afce109b4149a158f54120
SHA1

dece8600267ff289b5560c23e7d4b6ccfccac897
SHA256

5cc1b3195d9845e90b7e259502ed3656ec34eb5167fc04bec1ac72f1ea76463e
SHA512

80ea0ee10be25164f10cc36da873fd8dabc06a1ad125dcfdb8b6b6a5eb038a068a83d5d65f8ebdc3d70e5db509aca15c7672dccba64431cfd8e9c0463f553e01
SSDEEP

49152:aUj7GmGAgCA6LVATIsOdJpKcTONdm0BrHDEmuj/qh8Sd:V3CX6LVAFEpKvzHDNU/qh8m

Score

1^/10

Malware Config

Signatures

Files

NEAS.caf65317d6afce109b4149a158f54120.exe
.exe windows:5 windows x64

c29919f214a8e8503906d2416763bea3

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:c5:ca:59:e2:6c:32:0c:d3:51:5f:4b:9f:94:99:12
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

23/09/2022, 00:00

Not After

23/09/2023, 23:59

Subject

CN=Shenzhen Jingling Computer Systems Co.\, Ltd.,O=Shenzhen Jingling Computer Systems Co.\, Ltd.,L=Shenzhen,ST=Guangdong Province,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:c5:ca:59:e2:6c:32:0c:d3:51:5f:4b:9f:94:99:12
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

23/09/2022, 00:00

Not After

23/09/2023, 23:59

Subject

CN=Shenzhen Jingling Computer Systems Co.\, Ltd.,O=Shenzhen Jingling Computer Systems Co.\, Ltd.,L=Shenzhen,ST=Guangdong Province,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

88:60:30:72:7d:09:34:3a:4a:03:b4:0b:6f:a5:96:24:9d:0b:c7:d3:89:31:98:6c:e2:92:5b:5c:d2:94:65:0e
Signer

Actual PE Digest

88:60:30:72:7d:09:34:3a:4a:03:b4:0b:6f:a5:96:24:9d:0b:c7:d3:89:31:98:6c:e2:92:5b:5c:d2:94:65:0e

Digest Algorithm

sha256

PE Digest Matches

true

09:80:28:98:58:70:20:15:63:ec:96:57:74:18:77:b0:7b:cb:04:67
Signer

Actual PE Digest

09:80:28:98:58:70:20:15:63:ec:96:57:74:18:77:b0:7b:cb:04:67

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

ReadConsoleInputA
SetConsoleMode
FileTimeToLocalFileTime
FindFirstFileA
LocalFileTimeToFileTime
CreateFileA
GetCommandLineW
LocalFree
CreateProcessW
GetTempPathW
CopyFileW
MoveFileExW
SetUnhandledExceptionFilter
FreeResource
DeleteCriticalSection
WaitForMultipleObjects
GetSystemInfo
EnterCriticalSection
InitializeCriticalSection
SetFilePointer
CreateThread
FindClose
GetFileInformationByHandleEx
lstrlenW
WaitForSingleObject
GetCurrentProcessId
DeleteFileW
CloseHandle
GetCurrentThreadId
IsDebuggerPresent
DeviceIoControl
LockResource
CreateFileMappingW
GetLocalTime
GetProcAddress
GetFileAttributesA
GetFileInformationByHandle
LeaveCriticalSection
GetLastError
RaiseException
MultiByteToWideChar
CreateFileW
GetModuleFileNameW
ReadFile
TerminateProcess
SizeofResource
Sleep
FatalAppExitW
GetSystemDirectoryW
WriteFile
IsBadReadPtr
GetTickCount
GetModuleHandleW
GetCurrentProcess
LoadResource
FreeLibrary
FindResourceW
MapViewOfFile
GetNativeSystemInfo
GetFileSize
ExitProcess
SetFileAttributesW
lstrcpyW
SetCurrentDirectoryW
GetCurrentDirectoryW
WideCharToMultiByte
SetFileTime
CreateDirectoryW
lstrcpynW
lstrcmpiW
GlobalAlloc
MulDiv
GlobalUnlock
GlobalLock
LoadLibraryW
GlobalMemoryStatus
GetVersion
FlushConsoleInputBuffer
GetSystemTime
SystemTimeToFileTime
VirtualAlloc
VirtualFree
HeapFree
HeapAlloc
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
FileTimeToSystemTime
SetEnvironmentVariableA
GetCurrentDirectoryA
GetSystemTimeAsFileTime
GetStartupInfoW
RtlPcToFileHeader
RtlUnwindEx
LCMapStringA
LCMapStringW
GetCPInfo
ExitThread
HeapSetInformation
HeapCreate
GetStdHandle
GetModuleFileNameA
GetConsoleCP
GetConsoleMode
SetHandleCount
GetFileType
GetStartupInfoA
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
GetTimeZoneInformation
HeapSize
SetConsoleCtrlHandler
LoadLibraryA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetDateFormatA
GetTimeFormatA
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
HeapReAlloc
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
SetEndOfFile
GetProcessHeap
GetDriveTypeA
GetFullPathNameA
CompareStringA
CompareStringW
FormatMessageW
SleepEx
GetSystemDirectoryA
GetModuleHandleA
QueryPerformanceFrequency
PeekNamedPipe
GetEnvironmentVariableA
MoveFileExA
CompareFileTime
VerifyVersionInfoW
VerSetConditionMask
DeleteFileA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

SetCursor
ScreenToClient
IsZoomed
SetWindowRgn
SetWindowLongW
GetKeyState
CharNextW
PtInRect
IntersectRect
DestroyWindow
GetActiveWindow
BeginPaint
EndPaint
GetUpdateRect
IsRectEmpty
MapWindowPoints
GetCursorPos
ReleaseCapture
GetSysColor
InvalidateRect
GetFocus
SetTimer
KillTimer
SetCapture
UpdateWindow
FillRect
DrawTextW
SetRect
CharPrevW
IsWindowEnabled
MoveWindow
UpdateLayeredWindow
GetWindowRgn
CreateCaret
ShowCaret
HideCaret
UnionRect
SetCaretPos
ClientToScreen
GetCaretBlinkTime
CreatePopupMenu
AppendMenuW
EnableMenuItem
TrackPopupMenu
DestroyMenu
InvalidateRgn
CreateAcceleratorTableW
GetGUIThreadInfo
EqualRect
SetWindowTextW
GetWindowTextLengthW
GetWindowTextW
wsprintfA
DrawTextA
MapVirtualKeyExW
GetKeyboardLayout
GetKeyNameTextW
GetClientRect
PostMessageW
ShowWindow
FindWindowW
SetForegroundWindow
InflateRect
OffsetRect
GetWindowLongW
GetPropW
SetPropW
CallWindowProcW
GetWindowLongPtrW
RegisterClassExW
GetClassInfoExW
RegisterClassW
LoadCursorW
LoadImageW
SendMessageW
DispatchMessageW
TranslateMessage
SetFocus
GetMessageW
EnableWindow
IsWindow
SetWindowLongPtrW
CreateWindowExW
IsWindowVisible
DefWindowProcW
GetDC
ReleaseDC
MessageBoxW
GetWindowRect
PostQuitMessage
IsIconic
GetParent
MonitorFromWindow
GetProcessWindowStation
GetUserObjectInformationW
SetWindowPos
GetSystemMetrics
GetMonitorInfoW
GetWindow
GetCaretPos

gdi32

GetBitmapBits
GetTextExtentPointA
SetBkColor
SetTextColor
SetBkMode
GetObjectA
LineTo
MoveToEx
CreatePenIndirect
CreateSolidBrush
CreatePatternBrush
PtInRegion
SetStretchBltMode
StretchBlt
CombineRgn
ExtSelectClipRgn
CreateRectRgn
GetClipBox
SelectClipRgn
PlayEnhMetaFile
GetEnhMetaFileHeader
CreateDIBitmap
AddFontMemResourceEx
GetTextMetricsW
CloseEnhMetaFile
CreateEnhMetaFileW
SetWindowOrgEx
Rectangle
RestoreDC
BitBlt
SaveDC
SelectObject
CreateCompatibleDC
DeleteDC
RemoveFontMemResourceEx
CreatePen
CreateFontIndirectW
GetStockObject
CreateRoundRectRgn
GetDeviceCaps
CreateCompatibleBitmap
CreateDIBSection
GdiFlush
TextOutW
GetTextExtentPoint32W
CreateRectRgnIndirect
GetCharABCWidthsW
GetObjectW
DeleteObject
SetBitmapBits

advapi32

ReportEventW
RegisterEventSourceW
OpenProcessToken
RegQueryValueExW
LookupPrivilegeValueW
RegOpenKeyExW
RegEnumKeyExW
AdjustTokenPrivileges
RegCloseKey
DeregisterEventSource
CryptDecrypt
CryptCreateHash
CryptSetHashParam
CryptSignHashW
CryptDestroyHash
CryptExportKey
CryptGetUserKey
CryptAcquireContextW
CryptGetProvParam
CryptDestroyKey
CryptReleaseContext
CryptEnumProvidersW

shell32

ord75
DragQueryFileW

ole32

DoDragDrop
CoCreateInstance
CoCreateGuid
CoInitialize
CreateStreamOnHGlobal
ReleaseStgMedium
OleLockRunning
CLSIDFromString
OleDuplicateData
CLSIDFromProgID

imagehlp

MapFileAndCheckSumW
CheckSumMappedFile

crypt32

CertDuplicateCertificateContext
CertGetCertificateContextProperty
CertOpenSystemStoreA
CertEnumCertificatesInStore
CertOpenStore
CertGetIntendedKeyUsage
CertGetEnhancedKeyUsage
CertFreeCertificateContext
CertFindCertificateInStore
CertCloseStore

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ws2_32

WSACreateEvent
WSAResetEvent
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
WSAEventSelect
WSACloseEvent
setsockopt
WSAIoctl
ntohs
closesocket
socket
WSAGetLastError
getsockname
bind
getsockopt
getpeername
recv
connect
WSASetLastError
select
__WSAFDIsSet
WSACleanup
WSAStartup
sendto
recvfrom
accept
listen
freeaddrinfo
getaddrinfo
ioctlsocket
htonl
gethostname
shutdown
getservbyname
gethostbyname
send
htons

shlwapi

PathMatchSpecExW
PathIsRootW
PathFileExistsW
PathRemoveFileSpecW
PathRemoveExtensionW
PathFindFileNameW
PathRemoveBackslashW

dbghelp

MiniDumpWriteDump

gdiplus

GdipGraphicsClear
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdipGetImageHeight
GdipFree
GdipAlloc
GdipImageSelectActiveFrame
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipBitmapSetPixel
GdipBitmapLockBits
GdipCloneImage
GdipGetImageWidth
GdipDisposeImage
GdiplusStartup
GdiplusShutdown
GdipLoadImageFromStream
GdipCreateFromHDC
GdipCreateSolidFill
GdipDeleteBrush
GdipFillRectangleI
GdipCreatePen1
GdipDeletePen
GdipSetPenMode
GdipDrawRectangleI
GdipSetSmoothingMode
GdipCreatePath
GdipDeletePath
GdipAddPathLine
GdipAddPathArc
GdipDrawPath
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipDeleteFont
GdipSetTextRenderingHint
GdipSetInterpolationMode
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipMeasureString
GdipDrawString
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipDrawImageRectI

wininet

InternetReadFile
InternetOpenUrlW
InternetOpenW
InternetCloseHandle
HttpQueryInfoW

oleaut32

SysFreeString
SysAllocString
VariantClear
VariantInit

wldap32

ord60
ord22
ord211
ord217
ord143
ord50
ord26
ord30
ord200
ord32
ord35
ord79
ord33
ord301
ord27
ord41
ord46

comctl32

_TrackMouseEvent
InitCommonControlsEx
ord17

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext

Sections

.text
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 691KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 395KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 25B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c29919f214a8e8503906d2416763bea3

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

06:c5:ca:59:e2:6c:32:0c:d3:51:5f:4b:9f:94:99:12Certificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

06:c5:ca:59:e2:6c:32:0c:d3:51:5f:4b:9f:94:99:12Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

88:60:30:72:7d:09:34:3a:4a:03:b4:0b:6f:a5:96:24:9d:0b:c7:d3:89:31:98:6c:e2:92:5b:5c:d2:94:65:0eSigner

09:80:28:98:58:70:20:15:63:ec:96:57:74:18:77:b0:7b:cb:04:67Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

imagehlp

crypt32

version

ws2_32

shlwapi

dbghelp

gdiplus

wininet

oleaut32

wldap32

comctl32

imm32

Sections

.text Size: - Virtual size: 2.2MB

.rdata Size: - Virtual size: 691KB

.data Size: - Virtual size: 395KB

.pdata Size: - Virtual size: 125KB

.tls Size: 512B - Virtual size: 25B

.vmp0 Size: - Virtual size: 228KB

.vmp1 Size: 2.2MB - Virtual size: 2.2MB

.reloc Size: 512B - Virtual size: 28B

.rsrc Size: 25KB - Virtual size: 540KB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

06:c5:ca:59:e2:6c:32:0c:d3:51:5f:4b:9f:94:99:12
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

06:c5:ca:59:e2:6c:32:0c:d3:51:5f:4b:9f:94:99:12
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

88:60:30:72:7d:09:34:3a:4a:03:b4:0b:6f:a5:96:24:9d:0b:c7:d3:89:31:98:6c:e2:92:5b:5c:d2:94:65:0e
Signer

09:80:28:98:58:70:20:15:63:ec:96:57:74:18:77:b0:7b:cb:04:67
Signer

.text
Size: - Virtual size: 2.2MB

.rdata
Size: - Virtual size: 691KB

.data
Size: - Virtual size: 395KB

.pdata
Size: - Virtual size: 125KB

.tls
Size: 512B - Virtual size: 25B

.vmp0
Size: - Virtual size: 228KB

.vmp1
Size: 2.2MB - Virtual size: 2.2MB

.reloc
Size: 512B - Virtual size: 28B

.rsrc
Size: 25KB - Virtual size: 540KB