2024-02-02_676a6aa53e851751a8db9a60dd39fa47_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-02_676a6aa53e851751a8db9a60dd39fa47_mafia
Size

1.9MB
MD5

676a6aa53e851751a8db9a60dd39fa47
SHA1

d101fe0822240f27c132b6c421e2f36c7f13e9f7
SHA256

f7eb5a25aa89c69633672541f6210f1a09cb3c00729922c22997c49f4366967d
SHA512

13c328b996e903f081d5bb44faff0e5cd0e5684067894041970982346aecd0d6d646419e7836e002fc7063ee0ec8821ec0d3fef5e60896c40d01611501310e89
SSDEEP

49152:iFHhIo+ZujdD/eb/xhc3y+QlUUVn2D6Cx5z5hFIYIMd/gukR1Dvms1Vjx:av+ZujdCb/xhcf7UV2D6Cx5z+YtgukRb

Score

1^/10

Malware Config

Signatures

Files

2024-02-02_676a6aa53e851751a8db9a60dd39fa47_mafia
.exe windows:5 windows x86 arch:x86

b2feff132a503ade156696e049ef38e9

Code Sign

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6a
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

19/09/2018, 00:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:29:15:27:00:00:00:00:00:2a
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:55

Not After

15/04/2021, 20:05

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

28/07/2020, 00:00

Not After

18/03/2029, 00:00

Subject

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2a:1d:92:bc:05:48:91:6c:e0:79:a1:4a
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

28/12/2022, 06:53

Not After

27/01/2026, 06:53

Subject

SERIALNUMBER=91440300761955047C,CN=Chipspoint Electronics Co.\, Ltd.,O=Chipspoint Electronics Co.\, Ltd.,STREET=福田区福田路深圳国际文化大厦0701、0702,L=Shenzhen,ST=Guangdong,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085348454e5a48454e,1.3.6.1.4.1.311.60.2.1.2=#13094755414e47444f4e47,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f2:48:11:7f:c4:99:c4:60:33:fc:9a:98:76:0b:c3:24:88:49:f1:a2
Signer

Actual PE Digest

f2:48:11:7f:c4:99:c4:60:33:fc:9a:98:76:0b:c3:24:88:49:f1:a2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\WorkSpace\Plugin\Web2.0\NewPlugin_branch\src\Projects\OCX\WebClientApp\Release\WebClientApp.pdb

Imports

ws2_32

recvfrom
ntohl
htonl
select
WSAGetLastError
WSAEnumNetworkEvents
htons
WSAAccept
WSAEventSelect
setsockopt
sendto
WSACleanup
recv
WSACreateEvent
WSAStartup
WSAResetEvent
gethostbyname
send
WSAWaitForMultipleEvents
inet_ntoa
connect
ioctlsocket
getpeername
WSASetEvent
WSACloseEvent
inet_pton
ntohs
getsockname
closesocket
listen
bind
socket
WSARecv
shutdown
WSASend
__WSAFDIsSet

kernel32

VirtualQuery
SetStdHandle
GetFileType
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
UnhandledExceptionFilter
ExitProcess
TerminateProcess
IsProcessorFeaturePresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
LCMapStringW
GetStringTypeW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
EncodePointer
DecodePointer
HeapAlloc
HeapFree
RtlUnwind
GetFileAttributesA
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
GetUserDefaultLCID
VirtualProtect
GetSystemTimeAsFileTime
GetProfileIntW
InitializeCriticalSectionAndSpinCount
GetTempPathW
GetTempFileNameW
GetNumberFormatW
GetWindowsDirectoryW
GetCurrentDirectoryW
GlobalFlags
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
SetErrorMode
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DeleteFileW
lstrcmpiW
CopyFileW
GlobalSize
FormatMessageW
LocalFree
ReleaseActCtx
CreateActCtxW
lstrcpyW
GlobalFree
GlobalUnlock
MulDiv
GetPrivateProfileStringW
WritePrivateProfileStringW
ExitThread
ResumeThread
SetThreadPriority
lstrcmpA
HeapSize
SearchPathW
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalLock
GlobalAlloc
GetThreadLocale
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
FreeLibrary
CompareStringW
LoadLibraryW
ActivateActCtx
DeactivateActCtx
lstrcmpW
GetFileTime
GetFileAttributesW
lstrlenW
FileTimeToSystemTime
GetFileAttributesExW
GetModuleHandleW
GetProcAddress
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
GetModuleFileNameW
FileTimeToLocalFileTime
GetLocalTime
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
WideCharToMultiByte
SetUnhandledExceptionFilter
CreateFileW
GetCurrentProcessId
GetCurrentProcess
lstrlenA
FindResourceW
LoadResource
LockResource
SizeofResource
RaiseException
MultiByteToWideChar
FindFirstFileA
FindNextFileA
FindClose
VirtualAlloc
GetModuleFileNameA
GetCurrentThreadId
GetTickCount
GetLastError
SetLastError
Sleep
CreateThread
GetSystemInfo
SetFilePointer
SetFilePointerEx
GetFileSizeEx
ReadFile
WriteFile
CreateFileA
DeleteFileA
CreateDirectoryA
ReleaseSemaphore
CreateSemaphoreW
WaitForSingleObject
ResetEvent
SetEvent
CloseHandle
CreateEventW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
InterlockedIncrement
InterlockedDecrement
HeapQueryInformation
HeapReAlloc
GetPrivateProfileIntW
IsDebuggerPresent

user32

CopyIcon
FrameRect
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFrameControl
DrawEdge
SetClassLongW
DestroyAcceleratorTable
RegisterClipboardFormatW
DrawIconEx
LoadImageW
CopyImage
GetIconInfo
HideCaret
DrawFocusRect
InvertRect
MapVirtualKeyW
UnregisterClassW
GetNextDlgGroupItem
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
MessageBeep
RedrawWindow
SetWindowRgn
GetSystemMenu
LoadMenuW
DestroyIcon
WaitMessage
WindowFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
KillTimer
DeleteMenu
ReleaseCapture
SetCapture
InvalidateRgn
IntersectRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
LoadCursorW
GetSysColorBrush
RealChildWindowFromPoint
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
CharUpperW
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
InvalidateRect
DrawStateW
SetWindowContextHelpId
MapDialogRect
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
GetActiveWindow
GetCursorPos
ValidateRect
PostQuitMessage
OffsetRect
CharNextW
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
IsWindow
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetWindowRgn
DestroyCursor
SubtractRect
GetDoubleClickTime
GetUpdateRect
IsClipboardFormatAvailable
CreateMenu
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
SetForegroundWindow
ShowScrollBar
UpdateWindow
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
DefFrameProcW
MapVirtualKeyExW
IsCharLowerW
GetKeyNameTextW
PostThreadMessageW
GetDC
CharUpperBuffW
GetSysColor
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
GetWindowLongW
SetWindowLongW
SetWindowPos
GetWindow
SetParent
ClientToScreen
ScreenToClient
BringWindowToTop
GetWindowThreadProcessId
IsWindowVisible
GetParent
EnumChildWindows
EnumWindows
GetForegroundWindow
GetClassNameA
PostMessageW
GetSystemMetrics
LoadIconW
SetTimer
GetClientRect
GetWindowRect
IsIconic
SendMessageW
DrawIcon
EnableWindow
GetDesktopWindow

gdi32

CreateHatchBrush
CopyMetaFileW
CreateDCW
CreateFontIndirectW
GetTextExtentPoint32W
CreateRectRgnIndirect
GetRgnBox
OffsetViewportOrgEx
CreateDIBitmap
CreateCompatibleBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateRoundRectRgn
CreateDIBSection
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
OffsetRgn
CreateSolidBrush
CreatePen
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
SetPixelV
GetTextFaceW
SetViewportOrgEx
SelectObject
Escape
SetDIBColorTable
ExtTextOutW
TextOutW
RectVisible
GetObjectType
SelectPalette
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
GetStockObject
CreateBitmap
GetObjectW
SetBkColor
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetTextColor
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetTextColor
GetBkColor
GetDeviceCaps
SetViewportExtEx

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW

shell32

ShellExecuteW
SHGetFolderPathA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHAppBarMessage
DragQueryFileW
DragFinish
ShellExecuteExW
SHGetFileInfoW
SHBrowseForFolderW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW

ole32

OleInitialize
CoInitializeEx
CreateStreamOnHGlobal
CoCreateGuid
OleFlushClipboard
OleCreateMenuDescriptor
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoCreateInstance
CoFreeUnusedLibraries
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoUninitialize
CoInitialize
OleUninitialize
OleIsCurrentClipboard
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor

oleaut32

VarBstrFromDate
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysAllocString
OleCreateFontIndirect
VariantInit
SysAllocStringLen
SysFreeString
VariantClear
VariantChangeType

iphlpapi

GetExtendedTcpTable

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCreateBitmapFromStream

dbghelp

MiniDumpWriteDump

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Exports

Exports

?NET_SOCKET_AddConnect@@YAHIPBDG@Z
?NET_SOCKET_AddConnectByP2P2@@YAIIPBD0G0@Z
?NET_SOCKET_AddConnectByP2P@@YAHIPBD0G@Z
?NET_SOCKET_CheckConnectState@@YA_NH@Z
?NET_SOCKET_CreateUDPNetCommunication@@YAHPBDI_N@Z
?NET_SOCKET_DelConnect@@YAXH@Z
?NET_SOCKET_DestroyHNetCommunication@@YAXH@Z
?NET_SOCKET_DestroyUDPNetCommunication@@YAXH@Z
?NET_SOCKET_GetLastError@@YAIXZ
?NET_SOCKET_GetLocalIP@@YA_NHAAUsockaddr_in@@@Z
?NET_SOCKET_GetRemoteIP@@YA_NHAAUsockaddr_in@@@Z
?NET_SOCKET_Inet_ntoa@@YA_NIPAD@Z
?NET_SOCKET_Initial@@YA_NHHH@Z
?NET_SOCKET_PopConnectResult@@YA_NHAAHI@Z
?NET_SOCKET_Quit@@YAXXZ
?NET_SOCKET_Recv_Immediate@@YAHHPADHPA_N@Z
?NET_SOCKET_Recv_Immediate@@YAHHPADH_NI@Z
?NET_SOCKET_RegisterNode@@YA_NHPAVCSocketDataObserver@@PAXHH@Z
?NET_SOCKET_Send@@YAHHPBDI0IPAV?$CChildPairContainer@PAEH@@I@Z
?NET_SOCKET_Send_Immediate@@YAHHPBDHAA_N@Z
?NET_SOCKET_Send_Immediate@@YAHHPBDHI@Z
?NET_SOCKET_SimpleClientComm@@YAHPBDG0IPADI0I@Z
?NET_SOCKET_SimpleClientComm@@YAHPBDG0IPADIPAPBDII@Z
?NET_SOCKET_Start@@YA_NH@Z
?NET_SOCKET_StartAcceptConnect@@YA_NXZ
?NET_SOCKET_StartHttpServerListen@@YA_NGPAVCSocketDataObserver@@I@Z
?NET_SOCKET_StartListen@@YA_NGPAVCListenSocketObserver@@I_N@Z
?NET_SOCKET_StartListenByP2P@@YA_NGPAVCListenSocketObserver@@I_NPBD2GI22@Z
?NET_SOCKET_Stop@@YAXH@Z
?NET_SOCKET_StopHttpServerListen@@YAXG@Z
?NET_SOCKET_StopListen@@YAXG@Z
?NET_SOCKET_UDPRecv@@YAIHAAIAAGPAXII@Z
?NET_SOCKET_UDPRecvSelect@@YAIPAHHIPA_N@Z
?NET_SOCKET_UDPSend@@YA_NHIGPBXII@Z
?NET_SOCKET_UnRegisterNode@@YAXH@Z

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2feff132a503ade156696e049ef38e9

Code Sign

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6aCertificate

Key Usages

61:29:15:27:00:00:00:00:00:2aCertificate

Key Usages

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54Certificate

Extended Key Usages

Key Usages

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate

Extended Key Usages

Key Usages

2a:1d:92:bc:05:48:91:6c:e0:79:a1:4aCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

f2:48:11:7f:c4:99:c4:60:33:fc:9a:98:76:0b:c3:24:88:49:f1:a2Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

iphlpapi

oledlg

gdiplus

dbghelp

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 302KB - Virtual size: 301KB

.data Size: 30KB - Virtual size: 62KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 172KB - Virtual size: 171KB

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6a
Certificate

61:29:15:27:00:00:00:00:00:2a
Certificate

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

2a:1d:92:bc:05:48:91:6c:e0:79:a1:4a
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

f2:48:11:7f:c4:99:c4:60:33:fc:9a:98:76:0b:c3:24:88:49:f1:a2
Signer

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 302KB - Virtual size: 301KB

.data
Size: 30KB - Virtual size: 62KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 172KB - Virtual size: 171KB