2024-02-02_3785768def373ffe6bc0281b9035bbe2_magniber_revil

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-02_3785768def373ffe6bc0281b9035bbe2_magniber_revil
Size

10.7MB
MD5

3785768def373ffe6bc0281b9035bbe2
SHA1

6cfe861499531ce16cfb2d3f132e0e57779fd916
SHA256

6e9f00bce27a83ddab455b763d90747a804d8a07403efb63c844c5f6dc958b8d
SHA512

f07ba2c11f8fab62b872650b7c827cfb5f3d1f34a21245c5a7483ab59804d61a8b91294d606ae658afb3313bd59bbec586cc158d95bcc4115385670ad7f48707
SSDEEP

196608:CQo7lJ2LUWn8vIREtNdPFZuJVDiFoXmPoPGte9K4NDbrQf:CX2gWOOEtNdFZur2FMMoPv9K4N7U

Score

1^/10

Malware Config

Signatures

Files

2024-02-02_3785768def373ffe6bc0281b9035bbe2_magniber_revil
.exe windows:6 windows x86 arch:x86

6041624286e95d5d9c40239706be35d2

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:14:ce:ba:6b:96:a8:ef:e6:b8:5e:fe:28:16:58:98
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

13/05/2022, 00:00

Not After

07/06/2023, 23:59

Subject

SERIALNUMBER=91330108328143515Q,CN=杭州诸相网络科技有限公司,O=杭州诸相网络科技有限公司,L=杭州市,ST=浙江省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e68bb1e5a285e58cba,1.3.6.1.4.1.311.60.2.1.2=#0c09e6b599e6b19fe79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:14:ce:ba:6b:96:a8:ef:e6:b8:5e:fe:28:16:58:98
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

13/05/2022, 00:00

Not After

07/06/2023, 23:59

Subject

SERIALNUMBER=91330108328143515Q,CN=杭州诸相网络科技有限公司,O=杭州诸相网络科技有限公司,L=杭州市,ST=浙江省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e68bb1e5a285e58cba,1.3.6.1.4.1.311.60.2.1.2=#0c09e6b599e6b19fe79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

fb:8d:74:88:17:ef:d8:ab:a5:56:28:d8:3b:da:25:9f:d4:fd:30:8d:0c:2a:a8:c7:e4:31:36:a7:2e:15:0a:3e
Signer

Actual PE Digest

fb:8d:74:88:17:ef:d8:ab:a5:56:28:d8:3b:da:25:9f:d4:fd:30:8d:0c:2a:a8:c7:e4:31:36:a7:2e:15:0a:3e

Digest Algorithm

sha256

PE Digest Matches

true

96:83:ff:e2:6e:35:31:52:5b:47:64:fb:07:8e:52:6f:e2:97:f4:0a
Signer

Actual PE Digest

96:83:ff:e2:6e:35:31:52:5b:47:64:fb:07:8e:52:6f:e2:97:f4:0a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\cpp\gogo\XubeiSteamBox\src\Win32\Release\Gogo.pdb

Imports

shlwapi

PathAppendW
PathFileExistsW
PathStripPathW
PathFindFileNameW
PathRemoveFileSpecW
PathAddBackslashW

libcef

cef_string_userfree_utf16_free
cef_string_list_alloc
cef_string_utf16_set
cef_string_utf8_clear
cef_string_utf16_clear
cef_string_utf16_cmp
cef_string_utf8_to_utf16
cef_string_utf16_to_utf8
cef_string_multimap_free
cef_string_multimap_alloc
cef_string_list_clear
cef_v8context_get_current_context
cef_v8value_create_array
cef_v8value_create_object
cef_v8value_create_string
cef_v8value_create_double
cef_v8value_create_int
cef_v8value_create_bool
cef_v8value_create_null
cef_string_multimap_append
cef_string_multimap_value
cef_string_multimap_key
cef_string_multimap_size
cef_string_map_append
cef_string_map_value
cef_string_map_key
cef_string_map_size
cef_string_list_append
cef_string_list_value
cef_string_list_size
cef_string_list_free
cef_get_min_log_level
cef_command_line_create
cef_string_map_free
cef_string_map_alloc
cef_browser_host_create_browser_sync
cef_create_context_shared
cef_request_context_get_global_context
cef_process_message_create
cef_value_create
cef_log
cef_api_hash
cef_enable_highdpi_support
cef_quit_message_loop
cef_run_message_loop
cef_do_message_loop_work
cef_shutdown
cef_initialize
cef_execute_process
cef_register_extension
cef_post_task
cef_currently_on

ggplaygame

ord22
ord11
ord8
ord7
ord6
ord4
ord1
ord28
ord14
ord13
ord12
ord26
ord25
ord9
ord5
ord24
ord23
ord3
ord2
ord21
ord20
ord10

ggrepair

ord8
ord2
ord6
ord7
ord1
ord3
ord5
ord4

kernel32

FreeResource
LoadResource
LockResource
SizeofResource
FindResourceW
MulDiv
SetEnvironmentVariableW
lstrcpyW
SystemTimeToFileTime
lstrcpynW
WriteConsoleW
RaiseException
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
FindResourceExW
SetUnhandledExceptionFilter
CreateThread
GlobalFree
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
CreateMutexW
FormatMessageA
GetModuleHandleA
GetTickCount
VerifyVersionInfoW
QueryPerformanceCounter
CreateProcessW
FormatMessageW
LocalFree
DeviceIoControl
CloseHandle
ConvertThreadToFiber
ConvertFiberToThread
CreateFiber
DeleteFiber
SwitchToFiber
ReadConsoleA
SetConsoleMode
GetEnvironmentVariableW
RemoveDirectoryW
GetFileAttributesExW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
GetModuleFileNameW
GetWindowsDirectoryW
OutputDebugStringW
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
WriteConsoleA
GetConsoleMode
GetDynamicTimeZoneInformation
WaitNamedPipeA
GetFileSize
GetACP
VerSetConditionMask
GetCurrentThreadId
GetCurrentProcessId
GetLastError
WriteFile
GetStdHandle
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VerifyVersionInfoA
WaitForMultipleObjects
GetEnvironmentVariableA
CompareFileTime
MoveFileExA
LoadLibraryA
CreateNamedPipeA
SleepEx
GetFullPathNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
FindFirstFileExW
GetOEMCP
IsValidCodePage
GetFileSizeEx
GetConsoleOutputCP
CreateDirectoryExW
ReadConsoleW
GetTimeZoneInformation
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
PeekNamedPipe
GetFileInformationByHandle
GetDriveTypeW
GetCurrentDirectoryW
MoveFileExW
SetConsoleCtrlHandler
GetFileType
SetStdHandle
ExitThread
RtlUnwind
GetSystemDirectoryW
GetPrivateProfileStringA
GetPrivateProfileIntA
SetEndOfFile
InterlockedCompareExchange
InterlockedExchange
GetStartupInfoW
UnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
InterlockedPushEntrySList
InitializeSListHead
LoadLibraryExW
FreeLibraryAndExitThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsDebuggerPresent
GetCPInfo
EncodePointer
SetNamedPipeHandleState
DisconnectNamedPipe
ConnectNamedPipe
FlushFileBuffers
CreateFileA
DeleteTimerQueueTimer
CreateTimerQueueTimer
GetFileTime
lstrlenW
FreeLibrary
SetLastError
SetFileAttributesW
CreateDirectoryW
GetLocalTime
GetSystemTimeAsFileTime
GetSystemTime
GlobalLock
GlobalUnlock
GlobalAlloc
GetModuleHandleW
GetVersionExW
GetSystemInfo
GetExitCodeThread
GetCurrentProcess
WideCharToMultiByte
MultiByteToWideChar
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
lstrcmpiW
TerminateProcess
CreatePipe
SetHandleInformation
ReadFile
CopyFileW
GetExitCodeProcess
DeleteCriticalSection
InitializeCriticalSectionEx
DecodePointer
Sleep
SetFilePointer
DosDateTimeToFileTime
SetFileTime
LocalFileTimeToFileTime
GetThreadTimes
CreateEventA
OutputDebugStringA
GetFileAttributesA
GetCommandLineW
LoadLibraryW
GetProcAddress
OpenEventW
ResetEvent
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
WritePrivateProfileStringW
GetPrivateProfileIntW
OpenProcess
WaitForSingleObject
SetEvent
GetCurrentThread
ExitProcess
QueryPerformanceFrequency
WaitForSingleObjectEx
SwitchToThread
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
LCMapStringEx
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
InitOnceBeginInitialize
CreateEventW
GetSystemDirectoryA
GetPrivateProfileStringW
GetStringTypeW
InitOnceExecuteOnce
GetLocaleInfoEx
IsProcessorFeaturePresent
GetModuleHandleExW
CloseThreadpoolWork
SubmitThreadpoolWork
CreateThreadpoolWork
FreeLibraryWhenCallbackReturns
InitOnceComplete
SetFilePointerEx

user32

SetClassLongW
SetParent
RegisterWindowMessageW
EnumChildWindows
MonitorFromPoint
IntersectRect
CharPrevW
ClientToScreen
SetCursor
GetCapture
GetDoubleClickTime
GetMessageTime
TrackMouseEvent
SetWindowRgn
PtInRect
IsRectEmpty
MapWindowPoints
ScreenToClient
InvalidateRect
GetUpdateRect
EndPaint
BeginPaint
UpdateLayeredWindow
GetWindowRgn
CreatePopupMenu
DestroyMenu
EnableMenuItem
AppendMenuW
TrackPopupMenu
CreateCaret
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetKeyState
GetFocus
GetActiveWindow
DestroyWindow
PostQuitMessage
MonitorFromWindow
LoadImageW
LoadCursorW
GetWindow
GetParent
RemovePropW
GetPropW
SetPropW
SetFocus
CreateWindowExW
GetClassInfoExW
RegisterClassExW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetCaretBlinkTime
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
GetSysColor
wsprintfW
IsWindowEnabled
GetWindowTextW
GetWindowTextLengthW
EqualRect
wsprintfA
DrawTextA
CreateAcceleratorTableW
InvalidateRgn
GetGUIThreadInfo
GetKeyboardLayout
GetKeyNameTextW
MapVirtualKeyExW
PostMessageW
SetRect
FillRect
DrawTextW
DispatchMessageW
TranslateMessage
AttachThreadInput
IsWindow
ShowWindow
SetWindowPos
IsWindowVisible
GetUserObjectInformationW
GetProcessWindowStation
IsIconic
GetForegroundWindow
SetForegroundWindow
GetWindowThreadProcessId
MessageBoxW
MoveWindow
IsZoomed
GetClientRect
GetWindowRect
GetCursorPos
GetWindowLongW
SetWindowLongW
SendMessageW
SetWindowTextW
EnableWindow
FindWindowW
LoadIconW
CharNextW
GetMessageW
OffsetRect
UnionRect
InflateRect
GetSystemMetrics
EnumDisplayMonitors
GetMonitorInfoW
ReleaseDC
GetDC
WindowFromPoint

gdi32

GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateFontIndirectW
CreatePen
DeleteDC
DeleteObject
GetStockObject
AddFontMemResourceEx
RemoveFontMemResourceEx
Rectangle
RestoreDC
SaveDC
SelectObject
GetTextMetricsW
GetObjectW
SetWindowOrgEx
CreateRoundRectRgn
ChoosePixelFormat
CombineRgn
SetBitmapBits
GetBitmapBits
FillRgn
GetTextExtentPointA
CreatePatternBrush
GdiFlush
TextOutW
MoveToEx
GetObjectA
SetTextColor
SetStretchBltMode
StretchBlt
SetBkMode
SetBkColor
ExtSelectClipRgn
SelectClipRgn
LineTo
GetTextExtentPoint32W
GetClipBox
GetCharABCWidthsW
CreateRectRgnIndirect
CreatePenIndirect
CreateCompatibleBitmap
SwapBuffers
CreateDIBSection
SetRectRgn
SetPixelFormat
PtInRegion
CreateSolidBrush
CreateRectRgn

advapi32

RegCloseKey
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
CryptDestroyHash
CryptEnumProvidersW
CryptSignHashW
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptHashData
CryptCreateHash
CryptGenRandom
CryptGetHashParam
CryptReleaseContext
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
CryptDestroyKey
CryptAcquireContextA
RegQueryValueExA
RegOpenKeyExA

shell32

SHChangeNotify
SHGetFolderPathW
SHGetSpecialFolderPathW
ShellExecuteW
ShellExecuteA
Shell_NotifyIconW
ord165
SHGetFolderPathA

ole32

CoGetApartmentType
CoGetObjectContext
StringFromGUID2
OleLockRunning
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoUninitialize
CreateStreamOnHGlobal
CoCreateGuid
CoCreateInstance

oleaut32

VariantClear
SysAllocString
VariantInit
SysFreeString

comctl32

ord17
_TrackMouseEvent

gdiplus

GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageHeight
GdipGetImageWidth
GdiplusShutdown
GdiplusStartup
GdipFree
GdipDeleteBrush
GdipCreateSolidFill
GdipCreatePen1
GdipDeletePen
GdipSetPenMode
GdipGetPropertyItem
GdipCloneImage
GdipDisposeImage
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdipSetInterpolationMode
GdipDrawRectangleI
GdipDrawPath
GdipFillRectangleI
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipDeleteFont
GdipDrawString
GdipMeasureString
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipCloneStringFormat
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipGetPropertyItemSize
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectI
GdipAlloc
GdipCreatePath
GdipDeletePath
GdipAddPathLineI
GdipClosePathFigure
GdipLoadImageFromStream
GdipAddPathArcI
GdipFillPath

imm32

ImmSetCompositionWindow
ImmGetContext
ImmReleaseContext

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

rpcrt4

UuidToStringA
RpcStringFreeA

msimg32

AlphaBlend

netapi32

Netbios

ws2_32

getsockname
getsockopt
WSAIoctl
accept
recv
send
listen
ioctlsocket
WSACloseEvent
WSACreateEvent
connect
WSAEventSelect
bind
WSASetLastError
WSAStartup
__WSAFDIsSet
getnameinfo
WSACleanup
getaddrinfo
freeaddrinfo
closesocket
recvfrom
sendto
shutdown
getpeername
setsockopt
socket
WSAGetLastError
gethostname
inet_pton
htonl
htons
select
ntohs
WSAEnumNetworkEvents
ntohl

crypt32

CertVerifyCertificateChainPolicy
CertDuplicateCertificateContext
CertOpenStore
CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CryptStringToBinaryA
PFXImportCertStore
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertOpenSystemStoreA
CryptDecodeObjectEx
CertAddCertificateContextToStore
CertFindExtension
CertGetNameStringA
CryptQueryObject
CertCreateCertificateChainEngine
CertFreeCertificateChainEngine
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateContext
CryptUnprotectMemory
CertGetCertificateContextProperty

iphlpapi

GetAdaptersInfo

bcrypt

BCryptOpenAlgorithmProvider
BCryptGenRandom
BCryptGetProperty
BCryptCreateHash
BCryptHashData
BCryptFinishHash
BCryptDestroyHash
BCryptCloseAlgorithmProvider

winhttp

WinHttpReadData
WinHttpWriteData
WinHttpQueryDataAvailable
WinHttpQueryOption
WinHttpSetOption
WinHttpSetTimeouts
WinHttpSetStatusCallback
WinHttpCloseHandle
WinHttpSendRequest
WinHttpSetCredentials
WinHttpQueryAuthSchemes
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpGetProxyForUrl
WinHttpGetIEProxyConfigForCurrentUser
WinHttpOpen
WinHttpConnect
WinHttpAddRequestHeaders
WinHttpGetDefaultProxyConfiguration
WinHttpOpenRequest

opengl32

glTexImage2D
glTexEnvf
glPushAttrib
glPopAttrib
wglCreateContext
glPixelStorei
glMatrixMode
glLoadIdentity
glInterleavedArrays
glHint
glGenTextures
glEnd
glEnable
glDrawArrays
glDisable
glDeleteTextures
glColor4f
glClearColor
glClear
glTexParameteri
glViewport
glVertex2f
glTexSubImage2D
wglDeleteContext
glBindTexture
glBegin
wglMakeCurrent
glBlendFunc

wldap32

ord35
ord79
ord30
ord200
ord301
ord41
ord50
ord45
ord33
ord32
ord27
ord26
ord60
ord211
ord46
ord143
ord22

Sections

.text
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 935KB - Virtual size: 934KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 156KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6041624286e95d5d9c40239706be35d2

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0c:14:ce:ba:6b:96:a8:ef:e6:b8:5e:fe:28:16:58:98Certificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0c:14:ce:ba:6b:96:a8:ef:e6:b8:5e:fe:28:16:58:98Certificate

Extended Key Usages

Key Usages

fb:8d:74:88:17:ef:d8:ab:a5:56:28:d8:3b:da:25:9f:d4:fd:30:8d:0c:2a:a8:c7:e4:31:36:a7:2e:15:0a:3eSigner

96:83:ff:e2:6e:35:31:52:5b:47:64:fb:07:8e:52:6f:e2:97:f4:0aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

shlwapi

libcef

ggplaygame

ggrepair

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

gdiplus

imm32

version

rpcrt4

msimg32

netapi32

ws2_32

crypt32

iphlpapi

bcrypt

winhttp

opengl32

wldap32

Sections

.text Size: 4.1MB - Virtual size: 4.1MB

.rdata Size: 935KB - Virtual size: 934KB

.data Size: 156KB - Virtual size: 182KB

.rsrc Size: 5.4MB - Virtual size: 5.4MB

.reloc Size: 207KB - Virtual size: 207KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0c:14:ce:ba:6b:96:a8:ef:e6:b8:5e:fe:28:16:58:98
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0c:14:ce:ba:6b:96:a8:ef:e6:b8:5e:fe:28:16:58:98
Certificate

fb:8d:74:88:17:ef:d8:ab:a5:56:28:d8:3b:da:25:9f:d4:fd:30:8d:0c:2a:a8:c7:e4:31:36:a7:2e:15:0a:3e
Signer

96:83:ff:e2:6e:35:31:52:5b:47:64:fb:07:8e:52:6f:e2:97:f4:0a
Signer

.text
Size: 4.1MB - Virtual size: 4.1MB

.rdata
Size: 935KB - Virtual size: 934KB

.data
Size: 156KB - Virtual size: 182KB

.rsrc
Size: 5.4MB - Virtual size: 5.4MB

.reloc
Size: 207KB - Virtual size: 207KB