fd6c7b2d64aea412f15f0cd3da73f71b

Sharing

Copy URL Twitter E-mail

General

Target

fd6c7b2d64aea412f15f0cd3da73f71b
Size

1.5MB
MD5

fd6c7b2d64aea412f15f0cd3da73f71b
SHA1

6bf2e86598a21c7213d846371c40ba11080ae6a6
SHA256

3e6b53c338216dd6cad436ae3a5b3feef515969a225cd588cc5aeee5c04423f3
SHA512

3df15c942d9ece054c47af00a4ea59d9eb1b02986c97af0d9ff8518f440ee6e906f137d64cb939fe6d16168db76d881357c862f5185d9166be6001cb35015f7b
SSDEEP

24576:uAY3/UUsgk/rdWce6w7pDJS9g0YjJPypYLPM/YTTb0tMthjoNonGYl7kYmYn2SPS:gvUUsrKpw9Ky7SUMHo/Yl7BmY2SPDBOb

Score

1^/10

Malware Config

Signatures

Files

fd6c7b2d64aea412f15f0cd3da73f71b
.cab
AgentModule.dll
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

02:de:95:72:41:43:17:53:1c:3a:3d:52:98:9e:b1:1c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

06/12/2010, 00:00

Not After

21/12/2013, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Computer System,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

??0?$AgentModuleSingleTone@VAgentModule@@@@QAE@XZ
??0AgentModule@@QAE@ABV0@@Z
??0AgentModule@@QAE@XZ
??0AgentNetworkModule@@QAE@ABV0@@Z
??0AgentNetworkModule@@QAE@XZ
??0AgentUtilModule@@QAE@XZ
??0BaseNetworkModule@@QAE@ABV0@@Z
??0CMarkup@@QAE@ABV0@@Z
??0CMarkup@@QAE@H@Z
??0CMarkup@@QAE@UMCD_CSTR@@@Z
??0CMarkup@@QAE@XZ
??0FileProcessAndTimeModule@@QAE@ABV0@@Z
??0NetworkModule@@QAE@ABV0@@Z
??1?$AgentModuleSingleTone@VAgentModule@@@@QAE@XZ
??1AgentModule@@QAE@XZ
??1AgentNetworkModule@@QAE@XZ
??1AgentUtilModule@@QAE@XZ
??4?$AgentModuleSingleTone@VAgentModule@@@@QAEAAV0@ABV0@@Z
??4AgentModule@@QAEAAV0@ABV0@@Z
??4AgentNetworkModule@@QAEAAV0@ABV0@@Z
??4AgentUtilModule@@QAEAAV0@ABV0@@Z
??4BaseNetworkModule@@QAEAAV0@ABV0@@Z
??4CStopWatch@@QAEAAV0@ABV0@@Z
??4FileProcessAndTimeModule@@QAEAAV0@ABV0@@Z
??4GlobalFirmwareInfo@@QAEAAV0@ABV0@@Z
??4GlobalFunc@@QAEAAV0@ABV0@@Z
??4NetworkModule@@QAEAAV0@ABV0@@Z
??_7AgentModule@@6BBaseNetworkModule@@@
??_7AgentModule@@6BFileProcessAndTimeModule@@@
??_7AgentNetworkModule@@6BBaseNetworkModule@@@
??_7AgentNetworkModule@@6BFileProcessAndTimeModule@@@
??_7BaseNetworkModule@@6B@
??_7FileProcessAndTimeModule@@6B@
??_7NetworkModule@@6BBaseNetworkModule@@@
??_7NetworkModule@@6BFileProcessAndTimeModule@@@
?AddAttrib@CMarkup@@QAE_NUMCD_CSTR@@0@Z
?AddAttrib@CMarkup@@QAE_NUMCD_CSTR@@H@Z
?AddChildAttrib@CMarkup@@QAE_NUMCD_CSTR@@0@Z
?AddChildAttrib@CMarkup@@QAE_NUMCD_CSTR@@H@Z
?AddChildElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?AddChildElem@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?AddChildSubDoc@CMarkup@@QAE_NUMCD_CSTR@@@Z
?AddElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?AddElem@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?AddNode@CMarkup@@QAE_NHUMCD_CSTR@@@Z
?AddSubDoc@CMarkup@@QAE_NUMCD_CSTR@@@Z
?ApplicationDownloadRetryAgain@AgentNetworkModule@@CGXIIKKK@Z
?ApplicationDownloadingStatusCallBackFunc@AgentNetworkModule@@CGXW4_DOWNLOADING_STATUS@@PB_W_J2@Z
?CheckAgentParameter@AgentModule@@AAE_NAAVAgentParameter@@H@Z
?CheckEmergencyNoticePopupInfo@AgentUtilModule@@AAE_NPB_W@Z
?CompareCheckSize@AgentModule@@AAE_NPB_WH@Z
?DeleteAuthParamClientFile@AgentNetworkModule@@QAEXXZ
?FindEmergencyList@AgentUtilModule@@QAEXAAV?$vector@VUpdateDeviceInfo@@V?$allocator@VUpdateDeviceInfo@@@std@@@std@@@Z
?FindRecoveryList@AgentUtilModule@@QAEXHAAV?$vector@VUpdateDeviceInfo@@V?$allocator@VUpdateDeviceInfo@@@std@@@std@@@Z
?GetAddNoticeUrlLast@AgentModule@@QAEPB_WXZ
?GetAgentParameterPtr@AgentModule@@QAEPAVAgentParameter@@XZ
?GetAttrib@CMarkup@@QBE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@UMCD_CSTR@@@Z
?GetAuthParamClientFileFullPath@AgentNetworkModule@@CAPB_WXZ
?GetChildAttrib@CMarkup@@QBE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@UMCD_CSTR@@@Z
?GetChildData@CMarkup@@QAE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetChildSubDoc@CMarkup@@QAE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetChildTagName@CMarkup@@QBE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetComplete100S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete110S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete130L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete180S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete190S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete240S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete290S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetCompleteURL@AgentUtilModule@@QAEPB_WPB_W0_N@Z
?GetCurrentUpdateNotice@AgentModule@@QAEPB_WXZ
?GetData@CMarkup@@QAE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetDoc@CMarkup@@QBEABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetDocFlags@CMarkup@@QBEHXZ
?GetElemContent@CMarkup@@QBE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetNodeType@CMarkup@@QAEHXZ
?GetNoticeURL@AgentUtilModule@@QAEPB_WPAVUpdateDeviceInfo@@@Z
?GetNoticeUrlLast@AgentModule@@QAEPB_WXZ
?GetResult@CMarkup@@QBEABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetSingleTone@?$AgentModuleSingleTone@VAgentModule@@@@SAPAVAgentModule@@XZ
?GetSubDoc@CMarkup@@QAE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?GetUpdateApplicationInformation@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateApplicationInfo@@@Z
?GetUpdateInfo@AgentModule@@QAE_NW4_FUS_UPDATE_BINARY_TYPE@@PAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUpdateInfo_EmergencyList@AgentModule@@QAE_NPAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUpdateInfo_Native@AgentModule@@AAE_NW4_FUS_UPDATE_BINARY_TYPE@@PAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUpdateInfo_ZLog@AgentModule@@QAE_NW4_FUS_UPDATE_BINARY_TYPE@@PAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUrl100S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl110S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl130K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl130L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl190S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl220L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl240S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl290K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl290S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE110S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE120K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE120L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE120S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE140K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE140L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE140S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE150S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE160K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE160L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE160S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM210S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM250K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM250L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM250S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM305W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM340K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM340L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM340S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM380K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM380S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM380W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM430W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlPlayer_GB@AgentUtilModule@@AAEPB_WPB_W@Z
?InitializeAgentParameter@AgentModule@@QAE_NPB_W000000000000H0HAAVAgentParameter@@00@Z
?InsertChildElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?InsertChildElem@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?InsertChildSubDoc@CMarkup@@QAE_NUMCD_CSTR@@@Z
?InsertElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?InsertElem@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?InsertNode@CMarkup@@QAE_NHUMCD_CSTR@@@Z
?InsertSubDoc@CMarkup@@QAE_NUMCD_CSTR@@@Z
?IsBadaTempBinaryUpdatedModel@AgentModule@@QAE_NAAVFUSUpdateInfo@@AAVUpdateDeviceInfo@@AAVAgentParameter@@@Z
?IsBootUpgradeModel@AgentUtilModule@@QAE_NPB_W@Z
?IsRunning@CStopWatch@@QAE_NXZ
?MakeAuthorizationHeaderWithGeneratedNonceValueAndAMModule@AgentNetworkModule@@CAPB_WPB_W@Z
?MakeMemCheckZLogFirst_RequestInfoMap@AgentNetworkModule@@AAEXAAVUpdateDeviceInfo@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?MakeZLogFirst_RequestInfoMap@AgentNetworkModule@@AAEXAAVUpdateDeviceInfo@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?MakeZLog_RequestInfoMap@AgentNetworkModule@@AAEXAAVUpdateDeviceInfo@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?MemoryCheckString@AgentModule@@AAEXHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?NeedApplicationUpdate@AgentModule@@QAE_NAAVUpdateApplicationInfo@@@Z
?NeedFirmwareUpdateRecovery@AgentModule@@QAE_NXZ
?NotiAllDownloadBinaryProcessingHasBeenEnded@AgentNetworkModule@@MAEX_N@Z
?ObexBatteryCheck@AgentModule@@QAE_NPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ObexMemSizeCheck@AgentModule@@QAE_NHPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ObexRootingCheck@AgentModule@@QAEHPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ParseObexMemSizeCheckResponse@AgentModule@@AAE_NHV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@HAAV23@@Z
?ParsingNoticeURL@AgentUtilModule@@QAEPB_WAAH0PB_W@Z
?QueryLatestMP3PVersionFromServer@AgentNetworkModule@@QAE_NPB_W0000AAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ReceiveAndProcessNFModuleSignal@AgentNetworkModule@@CA_NI@Z
?ResetChildPos@CMarkup@@QAEXXZ
?ResetMainPos@CMarkup@@QAEXXZ
?ResetPos@CMarkup@@QAEXXZ
?SendAuthorizationHeaderResponseSignal@AgentNetworkModule@@CA_NPB_W@Z
?SendMemCheckZLogInformation@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?SendZLogInformation@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?SendZLogInformation_SizeCheck@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?SetAddNoticeUrlLast@AgentModule@@QAEXPB_W@Z
?SetAgentParameter@AgentModule@@QAEXAAVAgentParameter@@@Z
?SetAttrib@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?SetAttrib@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?SetChildAttrib@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?SetChildAttrib@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?SetChildData@CMarkup@@QAE_NH@Z
?SetChildData@CMarkup@@QAE_NUMCD_CSTR@@H@Z
?SetCurrentUpdateNotice@AgentModule@@QAEXPB_W@Z
?SetData@CMarkup@@QAE_NH@Z
?SetData@CMarkup@@QAE_NUMCD_CSTR@@H@Z
?SetDocFlags@CMarkup@@QAEXH@Z
?SetElemContent@CMarkup@@QAE_NUMCD_CSTR@@@Z
?SetNoticeUrlLast@AgentModule@@QAEXPB_W@Z
?SignalReceiverForNFModuleThreadFunc@AgentNetworkModule@@CAIPAX@Z
?StartDownloadApplication@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateApplicationInfo@@@Z
?StartPredownload@AgentModule@@QAEXXZ
?StartSignalReceiverForNFModule@AgentNetworkModule@@QAEXXZ
?m_pSingleTone@?$AgentModuleSingleTone@VAgentModule@@@@0PAVAgentModule@@A

Sections

Size: 39KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 732KB - Virtual size: 803KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1016KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdanfmlt
Size: 796KB - Virtual size: 800KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vrketlpd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

baa93d47220682c04d92f7797d9224ce

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

02:de:95:72:41:43:17:53:1c:3a:3d:52:98:9e:b1:1cCertificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

Exports

Exports

Sections

Size: 39KB - Virtual size: 268KB

.rsrc Size: 732KB - Virtual size: 803KB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 1016KB

rdanfmlt Size: 796KB - Virtual size: 800KB

vrketlpd Size: 512B - Virtual size: 4KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

02:de:95:72:41:43:17:53:1c:3a:3d:52:98:9e:b1:1c
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

.rsrc
Size: 732KB - Virtual size: 803KB

.idata
Size: 512B - Virtual size: 4KB

rdanfmlt
Size: 796KB - Virtual size: 800KB

vrketlpd
Size: 512B - Virtual size: 4KB