897a0b65ada79a9bfa7a0f6d2e153b59f11158aab3118a5fc5af23c971ba9949

Sharing

Copy URL Twitter E-mail

General

Target

897a0b65ada79a9bfa7a0f6d2e153b59f11158aab3118a5fc5af23c971ba9949
Size

1.6MB
MD5

bffa7d372e9bf5688b6830e4f16fc24b
SHA1

18918372e5cfdbbe462e560680908439155bea50
SHA256

897a0b65ada79a9bfa7a0f6d2e153b59f11158aab3118a5fc5af23c971ba9949
SHA512

562b6074e19ce1b1ae0d17df05bc59606f00ae39b457ba91f779e9309bf28a02913364b1f2f1fbf1bd49ae6903e9d4deb01231aabb01d5475882f6b3007b71c0
SSDEEP

24576:e1sjRQtoC264JOcxy7bWwpc8Ra7o+94/LN7ULQOC3rDcoDTLdtbj1rEH7j:e6jR7B1xQWuJluQp3roeTLdlw

Score

1^/10

Malware Config

Signatures

Files

897a0b65ada79a9bfa7a0f6d2e153b59f11158aab3118a5fc5af23c971ba9949
.dll windows:6 windows x86

82bdc365589cb80006e7d0ec02c33c07

Code Sign

0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/11/2020, 00:00

Not After

22/02/2024, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/11/2020, 00:00

Not After

22/02/2024, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,O=Tencent Technology(Shenzhen) Company Limited,L=Shenzhen,ST=Guangdong Province,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

37:d9:62:79:ef:f6:48:02:0c:76:56:52:3d:29:f4:cf:16:79:9b:35:f4:f5:b9:e7:34:e3:a9:5b:5d:df:a7:95
Signer

Actual PE Digest

37:d9:62:79:ef:f6:48:02:0c:76:56:52:3d:29:f4:cf:16:79:9b:35:f4:f5:b9:e7:34:e3:a9:5b:5d:df:a7:95

Digest Algorithm

sha256

PE Digest Matches

false

5a:ff:07:1f:b4:6b:14:e4:9c:7e:a5:a6:5d:b1:10:f8:20:e9:2f:48
Signer

Actual PE Digest

5a:ff:07:1f:b4:6b:14:e4:9c:7e:a5:a6:5d:b1:10:f8:20:e9:2f:48

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libcef

cef_log
cef_string_wide_to_utf8
cef_string_userfree_utf16_free
cef_string_list_alloc
cef_string_list_free
cef_currently_on
cef_post_task
cef_post_delayed_task
cef_register_extension
cef_execute_process
cef_initialize
cef_shutdown
cef_do_message_loop_work
cef_run_message_loop
cef_quit_message_loop
cef_set_osmodal_loop
cef_enable_highdpi_support
cef_parse_url
cef_get_mime_type
cef_base64encode
cef_parse_jsonand_return_error
cef_write_json
cef_get_path
cef_api_hash
cef_browser_host_create_browser
cef_browser_host_create_browser_sync
cef_cookie_manager_get_global_manager
cef_string_map_alloc
cef_string_map_free
cef_command_line_create
cef_command_line_get_global
cef_process_message_create
cef_drag_data_create
cef_stream_writer_create_for_handler
cef_stream_reader_create_for_file
cef_stream_reader_create_for_handler
cef_request_context_get_global_context
cef_request_context_create_context
cef_create_context_shared
cef_list_value_create
cef_dictionary_value_create
cef_value_create
cef_v8value_create_null
cef_v8value_create_bool
cef_v8value_create_int
cef_v8value_create_double
cef_v8value_create_string
cef_v8value_create_object
cef_v8value_create_array
cef_v8context_get_current_context
cef_string_list_size
cef_string_list_value
cef_string_list_append
cef_string_map_size
cef_string_map_key
cef_string_map_value
cef_string_map_append
cef_string_multimap_size
cef_string_multimap_key
cef_string_multimap_value
cef_string_multimap_append
cef_string_multimap_alloc
cef_string_multimap_free
cef_string_utf16_to_utf8
cef_string_utf8_clear
cef_string_utf16_set
cef_string_utf8_to_utf16
cef_string_utf16_cmp
cef_time_to_timet
cef_get_min_log_level
cef_get_current_platform_thread_id
cef_string_utf16_clear

shlwapi

PathFileExistsW
PathRemoveFileSpecW
PathAppendW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
GetModuleFileNameW
GetModuleHandleW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
SizeofResource
LockResource
IsProcessorFeaturePresent
FindResourceW
SetLastError
GetLastError
LoadLibraryW
GetProcAddress
MulDiv
QueryPerformanceFrequency
QueryPerformanceCounter
GetCommandLineW
Sleep
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
IsDebuggerPresent
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
WaitForSingleObjectEx
ResetEvent
LoadResource
CloseHandle
SetEvent

user32

RedrawWindow
AdjustWindowRectEx
CallWindowProcW
GetMenu
GetPropW
MonitorFromWindow
SetActiveWindow
EnumChildWindows
SetWindowRgn
FillRect
SendMessageW
RemovePropW
GetMonitorInfoW
IsWindowEnabled
SetMenu
IsRectEmpty
BringWindowToTop
SetPropW
GetWindowDC
SetWindowLongW
IsZoomed
SystemParametersInfoW
GetParent
UpdateWindow
GetAncestor
IsIconic
ReleaseDC
EnableWindow
GetMessageExtraInfo
GetSystemMetrics
WindowFromPoint
SetClassLongW
IsWindow
GetCapture
RegisterTouchWindow
GetKeyState
GetDoubleClickTime
TrackMouseEvent
GetMessageTime
SetFocus
LoadIconW
LoadCursorW
SetCapture
SetCursor
GetClientRect
ReleaseCapture
GetCursorPos
BeginPaint
EndPaint
GetWindowRect
GetDC
UpdateLayeredWindow
RegisterClipboardFormatW
ScreenToClient
GetMessageW
LoadAcceleratorsW
DispatchMessageW
IsDialogMessageW
TranslateAcceleratorW
TranslateMessage
RegisterWindowMessageW
DefWindowProcW
PostMessageW
DestroyWindow
CreateWindowExW
RegisterClassExW
SetTimer
KillTimer
PostQuitMessage
GetWindowLongW
IsWindowVisible
SetWindowPos
ShowWindow
SetParent
MessageBoxW
FindWindowW
GetForegroundWindow
ClientToScreen

gdi32

DeleteObject
CreateCompatibleDC
CreateDIBSection
SelectObject
CreateSolidBrush
CombineRgn
PtInRegion
CreateRectRgn
CreateCompatibleBitmap
DeleteDC
BitBlt
SetRectRgn
GetDeviceCaps

shell32

DragQueryFileW
DragFinish

ole32

CoTaskMemAlloc
CoTaskMemFree
DoDragDrop
RegisterDragDrop
RevokeDragDrop
CoCreateInstance
CreateStreamOnHGlobal
ReleaseStgMedium

msvcp140

?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??Bid@locale@std@@QAEIXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?_Xbad_function_call@std@@YAXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
?good@ios_base@std@@QBE_NXZ
?flags@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??Bios_base@std@@QBE_NXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
?_Raise_handler@std@@3P6AXABVexception@stdext@@@ZA
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setf@ios_base@std@@QAEHHH@Z
?id@?$ctype@D@std@@2V0locale@2@A
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?is@?$ctype@D@std@@QBE_NFD@Z
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
?_Xlength_error@std@@YAXPBD@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

gdiplus

GdipDrawString
GdipFree
GdipSetImageAttributesWrapMode
GdipCreateFromHDC
GdipCloneBrush
GdipMeasureString
GdipSetStringFormatLineAlign
GdipCreateFont
GdipCreateSolidFill
GdipDisposeImage
GdipCreateBitmapFromStreamICM
GdipDisposeImageAttributes
GdipAlloc
GdipCreateBitmapFromStream
GdipDeleteBrush
GdipCloneImage
GdipCreateFontFamilyFromName
GdipSetImageAttributesColorMatrix
GdipGetImageHeight
GdipDeleteFontFamily
GdipCreateStringFormat
GdiplusShutdown
GdipDeleteStringFormat
GdiplusStartup
GdipDeleteGraphics
GdipDeleteFont
GdipGetImageWidth
GdipCreateImageAttributes
GdipSetStringFormatAlign
GdipDrawImageRectRectI

vcruntime140

_purecall
__std_type_info_destroy_list
memmove
_except_handler4_common
_CxxThrowException
memcmp
__std_terminate
memchr
wcsrchr
__CxxFrameHandler3
memcpy
memset
__vcrt_InitializeCriticalSectionEx
__std_exception_copy
__std_exception_destroy

api-ms-win-crt-runtime-l1-1-0

_errno
abort
_initterm_e
_initterm
terminate
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_invalid_parameter_noinfo_noreturn
_configure_narrow_argv
_seh_filter_dll
_invalid_parameter_noinfo
_invoke_watson

api-ms-win-crt-heap-l1-1-0

malloc
free
realloc
_callnewh

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsnwprintf_s
fclose
fwrite
__stdio_common_vsprintf
_get_stream_buffer_pointers
_fseeki64
fputc
fflush
fgetc
__stdio_common_vsprintf_s
fsetpos
setvbuf
ungetc
fgetpos

api-ms-win-crt-string-l1-1-0

tolower
wcsncpy_s

api-ms-win-crt-convert-l1-1-0

atoi
strtod
strtoll
strtoull

api-ms-win-crt-filesystem-l1-1-0

_lock_file
_unlock_file

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-math-l1-1-0

floor
_except1
_dsign
_dtest

api-ms-win-crt-locale-l1-1-0

localeconv

Exports

Exports

CreateBrowser
IsNameReolveError
TbsAppInstance

Sections

.text
Size: 894KB - Virtual size: 894KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 159KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 412KB - Virtual size: 411KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82bdc365589cb80006e7d0ec02c33c07

Code Sign

0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6Certificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

37:d9:62:79:ef:f6:48:02:0c:76:56:52:3d:29:f4:cf:16:79:9b:35:f4:f5:b9:e7:34:e3:a9:5b:5d:df:a7:95Signer

5a:ff:07:1f:b4:6b:14:e4:9c:7e:a5:a6:5d:b1:10:f8:20:e9:2f:48Signer

Headers

DLL Characteristics

File Characteristics

Imports

libcef

shlwapi

version

kernel32

user32

gdi32

shell32

ole32

msvcp140

gdiplus

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-locale-l1-1-0

Exports

Exports

Sections

.text Size: 894KB - Virtual size: 894KB

.rdata Size: 159KB - Virtual size: 159KB

.data Size: 20KB - Virtual size: 21KB

.gfids Size: 512B - Virtual size: 84B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 412KB - Virtual size: 411KB

.reloc Size: 42KB - Virtual size: 41KB

0e:33:12:30:52:5a:25:a7:f8:10:e5:34:88:b0:aa:40
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0e:a7:f6:86:bc:40:35:4a:70:f2:c2:97:c1:31:5e:f6
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

37:d9:62:79:ef:f6:48:02:0c:76:56:52:3d:29:f4:cf:16:79:9b:35:f4:f5:b9:e7:34:e3:a9:5b:5d:df:a7:95
Signer

5a:ff:07:1f:b4:6b:14:e4:9c:7e:a5:a6:5d:b1:10:f8:20:e9:2f:48
Signer

.text
Size: 894KB - Virtual size: 894KB

.rdata
Size: 159KB - Virtual size: 159KB

.data
Size: 20KB - Virtual size: 21KB

.gfids
Size: 512B - Virtual size: 84B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 412KB - Virtual size: 411KB

.reloc
Size: 42KB - Virtual size: 41KB