2024-02-04_8b5bda3b0fbdc5fc86ca1a5e69582be1_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-04_8b5bda3b0fbdc5fc86ca1a5e69582be1_mafia
Size

8.3MB
MD5

8b5bda3b0fbdc5fc86ca1a5e69582be1
SHA1

f72cc96bfc67a3247f755e59d38fa09a1b36ddd0
SHA256

be17a633fca412099bd1e09cfc22b924240a36ad39ddb2e4bbed741fa2475bde
SHA512

06555767fcd746fcef8c17501e14646785b1ec183f9d8947434a081540169e7c645b0b3d928bdd91424c5b1332bd45a030c8e38e761d749eee7679738897fbfa
SSDEEP

196608:BRjW/32/e4HFMhmQ7hGMVyPYcAjRbeojDIg9Cbk/V8:BAv2/e4HFuwMVy4FD

Score

1^/10

Malware Config

Signatures

Files

2024-02-04_8b5bda3b0fbdc5fc86ca1a5e69582be1_mafia
.exe windows:5 windows x86 arch:x86

2a83c51fafd5bf20fc0d9f0a5e924239

Code Sign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2009, 11:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21/12/2009, 09:32

Not After

22/12/2020, 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

17/11/2006, 00:00

Not After

30/12/2020, 23:59

Subject

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:b2:26:5e:70:61:ab:2e:ff:21:db:85:bc:95:16:11
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

18/12/2012, 00:00

Not After

16/02/2015, 23:59

Subject

CN=厦门美图网科技有限公司,OU=产品部,O=厦门美图网科技有限公司,L=Xiamen,ST=Fujian,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

51:b8:ac:bb:a4:6a:ff:e2:ac:b3:c1:85:6a:d6:7b:45:5e:ed:21:cc
Signer

Actual PE Digest

51:b8:ac:bb:a4:6a:ff:e2:ac:b3:c1:85:6a:d6:7b:45:5e:ed:21:cc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\MeiTu\xiuxiu\XiuXiu.pdb

Imports

pcfile

?OnSaveHDJpeg@PC_File@@SAHPB_WPAVBitmap@Gdiplus@@HHPAVCObjProgress@@HH@Z
?OnLoadImage@PC_File@@SAPAVBitmap@Gdiplus@@HHPAK@Z
?OnLoadImage@PC_File@@SAPAVBitmap@Gdiplus@@PB_WPAVCObjProgress@@HH0@Z
?GetImageFormat@PC_File@@SA?AW4MT_IMAGE_FORMAT@@XZ
?GetImageInfo@PC_File@@SAPAUtag_ImageInfo@@XZ
?OnLoadImage@PC_File@@SAPAVBitmap@Gdiplus@@PB_WHHPAVCObjProgress@@HH@Z
?ImageSaveTobinary@PC_File@@SAHPAVBitmap@Gdiplus@@PB_W@Z
?ImageReadFrombinary@PC_File@@SAPAVBitmap@Gdiplus@@PB_W@Z
?OnSaveQuick@PC_File@@SAHPB_WPAVBitmap@Gdiplus@@W4MT_IMAGE_FORMAT@@H@Z
?OnLoadImage@PC_File@@SAPAVBitmap@Gdiplus@@PAEHW4MT_IMAGE_FORMAT@@PAVCObjProgress@@HH@Z
?GetEncoderClsid@PC_File@@SAHPB_WPAU_GUID@@@Z
?OnSaveQuick@PC_File@@SAHPB_WPAVBitmap@Gdiplus@@HHW4MT_IMAGE_FORMAT@@H@Z

pcdsp

?ExposureFilter@PC_Dsp@@SAHPAEHHMPAVCObjProgress@@HH@Z
?GeneralGifByBmp@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@HHHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAHPAVCObjProgress@@HH@Z
?RedEyeRemove@PC_Dsp@@SAHPAVBitmap@Gdiplus@@ABUtagRECT@@@Z
?ExecInpainting@PC_Dsp@@SA_NPAEHHH0HPAVCObjProgress@@HH@Z
?GaussIIRBlur@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HHPAVCObjProgress@@HH@Z
?Clone@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HHHHPAPAV23@@Z
?ResizeBitmap@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@HH@Z
?CalSuitRectForScene@PC_Dsp@@SAHHHHHPAUtagRECT@@AAN@Z
?WC2MB@PC_Dsp@@SAPADPB_W@Z
?CreatNetWord@PC_Dsp@@SAHAAUtagFontObj@@AAUtagPathObj@@V?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAVCObjProgress@@HHPB_W@Z
?GetWordSize@PC_Dsp@@SAHPAUHWND__@@AAUtagFontObj@@AAUtagPathObj@@H@Z
?CompositeWord@PC_Dsp@@SAHPAVGraphics@Gdiplus@@PAUtagFontObj@@PAUtagPathObj@@HNNMM@Z
?Color_Channel_Composite@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@EEEPAVCObjProgress@@HH@Z
?LightNew@PC_Dsp@@SAHPAEHHJHPAVCObjProgress@@HH@Z
?Circle_Gradient_Alpha@PC_Dsp@@SA_NPAPAEH@Z
?CannyDericheBlur@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@MMPAEPAVCObjProgress@@HH@Z
?CreateArray@PC_Dsp@@SAHPAEJJ@Z
?DisplayImageUseGDIPLUS@PC_Dsp@@SAHPAVGraphics@Gdiplus@@PAVBitmap@3@HHNHN@Z
?GetBits@CyImage@@QAEPAEK@Z
?GetBpp@CyImage@@QBEGXZ
??0CyImage@@QAE@XZ
??1CyImage@@UAE@XZ
?CreateFromHBITMAP@CyImage@@QAE_NPAUHBITMAP__@@PAUHPALETTE__@@@Z
??0CyImage@@QAE@ABV0@_N11@Z
?GaussDenoise@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HNNNNPAVCObjProgress@@HH@Z
?SimilarTopaz@PC_Dsp@@SAHPAVBitmap@Gdiplus@@PAVCObjProgress@@HH@Z
?CurveDenoise@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HHHPAVCObjProgress@@HH@Z
?SkinDenoise@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HHHHPAVCObjProgress@@HH@Z
?GrayScale@PC_Dsp@@SAHPAVBitmap@Gdiplus@@PAVCObjProgress@@HH@Z
?BitCrop@PC_Dsp@@SAPAVBitmap@Gdiplus@@PAV23@HHHH@Z
?WhiteBank@PC_Dsp@@SAHPAVBitmap@Gdiplus@@@Z
?IncreaseBpp@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@H@Z
?Negative@PC_Dsp@@SAHPAVBitmap@Gdiplus@@PAVCObjProgress@@HH@Z
?Mix@PC_Dsp@@SAHPAVBitmap@Gdiplus@@0JJ@Z
?GetBitDib@PC_Dsp@@SAPAUtagBITMAPINFOHEADER@@PAVBitmap@Gdiplus@@AAH@Z
?CropBitmap@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@HHHH@Z
?NaturalSkin@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@H@Z
?DrawImage@PC_Dsp@@SAHPAVBitmap@Gdiplus@@PAPAV23@HHHH@Z
?Circle_Gradient_Alpha2Eye@PC_Dsp@@SA_NPAPAEH@Z
?CompositeColor@PC_Dsp@@SAHPAVBitmap@Gdiplus@@EEEPAVCObjProgress@@HH@Z
?Mosaic@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HPAVCObjProgress@@HH@Z
?WholeWhitening@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@HHHPAVCObjProgress@@HH@Z
?Overlay_Channel_Composite@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@EEEPAVCObjProgress@@HH@Z
?CreatSmallestRegion@PC_Dsp@@SAHHHPAUtagPOINT@@HPAUtagRECT@@@Z
?GeneralGifByCxs@PC_Dsp@@SAHPAPAVCyImage@@HHHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAHPAVCObjProgress@@HH@Z
?GeneralGifByCxs@PC_Dsp@@SAHPAPAVCyImage@@HHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAHPAVCObjProgress@@HH@Z
?CropImageByPoint@PC_Dsp@@SAPAVBitmap@Gdiplus@@V?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAUtagPOINT@@HAAUtagRECT@@@Z
?CalSuitNewRat@PC_Dsp@@SAHHHHHAAN@Z
?CalSuitNewPosition@PC_Dsp@@SAHHHHHAAH0@Z
?SetPaletteColor@CyImage@@QAEXEUtagRGBQUAD@@@Z
?ColorEqual@PC_Dsp@@SAHUtagRGBQUAD@@0@Z
?SetPixelIndex@CyImage@@QAEXJJE@Z
?SetTransColor@CyImage@@QAEXUtagRGBQUAD@@@Z
??0CQuantizer@@QAE@II@Z
??1CQuantizer@@UAE@XZ
?SetColorTable@CQuantizer@@QAEXPAUtagRGBQUAD@@@Z
?ProcessImage@CQuantizer@@QAEHPAX@Z
?DecreaseBpp@CyImage@@QAE_NK_NPAUtagRGBQUAD@@KPAVCObjProgress@@HH@Z
?Normal_Channel_Composite@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@EEEPAVCObjProgress@@HH@Z
?ConvertTo32Bits@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@@Z
?Light@PC_Dsp@@SAHPAVBitmap@Gdiplus@@JJPAVCObjProgress@@HH@Z
?Multiple@PC_Dsp@@SAHPAVBitmap@Gdiplus@@0PAVCObjProgress@@HH@Z
?SetColorWithBitmap@PC_Dsp@@SAHPAVBitmap@Gdiplus@@EEE@Z
?DrawByAlphaChange@PC_Dsp@@SAHPAVBitmap@Gdiplus@@0N@Z
?ExpandFrame@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@HHHHUtagRGBQUAD@@@Z
?ShowShadow@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@HHHHHK@Z
?SetNewCrop@PC_Dsp@@SAHPAPAVBitmap@Gdiplus@@HHHHHHHH@Z
??0CCUSMSharp@@QAE@XZ
??1CCUSMSharp@@QAE@XZ
?useEffect@CCUSMSharp@@QAEPAVBitmap@Gdiplus@@PAV23@MM@Z
?CreateGif@PC_Dsp@@SAHV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAPAVBitmap@Gdiplus@@HHPAVCObjProgress@@HH@Z
?Light@PC_Dsp@@SAHPAEHHJJPAVCObjProgress@@HH@Z
?Saturateconst@PC_Dsp@@SAHPAEHHJJPAVCObjProgress@@HH@Z
?SetHue@PC_Dsp@@SAHPAEHHHPAVCObjProgress@@HH@Z
?UsmSharp@PC_Dsp@@SAHPAEHHMMPAVCObjProgress@@HH@Z
?SetColor@PC_Dsp@@SAHPAEHHHHHPAVCObjProgress@@HH@Z
?AutoColorLevel@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HPAVCObjProgress@@HH@Z
?AutoConstrast@PC_Dsp@@SAHPAVBitmap@Gdiplus@@PAVCObjProgress@@HH@Z
?AutoColor@PC_Dsp@@SAHPAVBitmap@Gdiplus@@HHPAVCObjProgress@@HH@Z
?SoftLight_Channel_Composite@PC_Dsp@@SA_NPAVBitmap@Gdiplus@@HPAVCObjProgress@@HH@Z
?BlackEye@PC_Dsp@@SA_NPAEHH0HHPAVCObjProgress@@HH@Z
?ImageProcessWithInpaint@PC_Dsp@@SA_NPAEHH0HPAVCObjProgress@@HH@Z
?SingleRotate@PC_Dsp@@SAHPAVBitmap@Gdiplus@@W4RotateFlipType@3@@Z
?MultiRotate@PC_Dsp@@SAPAVBitmap@Gdiplus@@PAV23@HHHHH@Z
?MultiRotateEx@PC_Dsp@@SAPAVBitmap@Gdiplus@@PAV23@HHHHEEE@Z
?CompositeAlphaLevel@PC_Dsp@@SAHPAVBitmap@Gdiplus@@0PAVCObjProgress@@HH@Z

pceffect

?ResizeMainToSuit@CMathDefine@@SAHHHHHPAVCRect@@AAN@Z
?PtChangeByRotate@CMathDefine@@SAXAAVPoint@Gdiplus@@HHN@Z
?AverageRandom@CMathDefine@@SAHHH@Z
?Effect_Bali@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?ChannelBlend_X@CEffect@@SAHPAE0HHHPAVCObjProgress@@HH@Z
?Effect_RouGuang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_NuanHua@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_HeiBai@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ZaoDian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_RuiHua@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_QuWu@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_RouHe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_DuiBiQiangLie@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ZhiNengHuiSe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_QuanCai@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_JingdianLomo@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_Hdr@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YaoGun@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_HouQingChun@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_KuAi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_80S@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_HuiYi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FuGuLomo@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_GeTeFeng@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YinXiang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YiZhou@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_JingDianHDR@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ShiGuangSuiDao@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ShenLanLeiYu@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_JiaoPian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FanHuangAnJiao@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FanZhuanSe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_HuaiJiu@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ZiSeQingMi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_GuTongSe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LengDiaoSe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FuGuHeiBai@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_XuanCaiLomo@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YunDuan@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LiuNian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ABaoSe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YouGe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_NingXia@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_AlphaAdJust@CEffect@@SAHPAE0HHN@Z
?Effect_XinRiXi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_MoRan@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FenHongJiaRen@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FuGu@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_BingLing@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FenNenXi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_JingDianYingLou@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LanDiao@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_DanYa@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LaoZhaoPian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_XiaoQingXin@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_RiXi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_NuanHuang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LengLan@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LengLv@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ZiSeHuanXiang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LengZi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LiangHong@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_PingAnYe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FeiXue@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YeJing@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_XingMang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_NiGuang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_JianGuang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_XiYangJianBian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_GuangShuJianBian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_BoLiShuiZhu@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_XieShengSuMiao@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_YouHua@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_GuDianSuMiao@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_CaiQian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_DianShiXian@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_SuMiao@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_GuangHuaMeiFu@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ZiRanMeiBai@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_WeiMei@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_ManHua@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_LaBi@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_FanSe@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?paper@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z
?Effect_JiuShiGuang@CEffect@@SAHPAEHHPAXPAVCObjProgress@@HH@Z

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

kernel32

SetEnvironmentVariableA
InterlockedCompareExchange
GetDriveTypeW
WriteConsoleW
TerminateThread
SizeofResource
LockResource
LoadResource
FindResourceW
GetPrivateProfileStringW
DeleteFileW
WritePrivateProfileStringW
MultiByteToWideChar
GetLastError
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
LoadLibraryW
GetProcAddress
GlobalAlloc
GlobalLock
GlobalUnlock
FreeResource
FreeLibrary
GetPrivateProfileIntW
Sleep
SetLastError
DeactivateActCtx
GetModuleHandleW
ActivateActCtx
GetVersion
CopyFileW
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
lstrlenW
WideCharToMultiByte
lstrcpynA
LCMapStringA
GlobalFree
GetVersionExW
lstrlenA
GetCPInfo
lstrcmpiW
SetEvent
WaitForSingleObject
GetModuleFileNameW
CreateDirectoryW
CreateFileW
ReadFile
SetFilePointer
WriteFile
CloseHandle
RemoveDirectoryW
GlobalMemoryStatus
GetFileSize
GetPrivateProfileSectionNamesW
OutputDebugStringW
FormatMessageW
GetProcessHeap
HeapFree
CreateFileA
HeapAlloc
CreateEventW
ResetEvent
SetEndOfFile
SetThreadPriority
WaitForMultipleObjects
GetCurrentThreadId
InitializeCriticalSection
lstrcpyW
VirtualAlloc
VirtualFree
GlobalMemoryStatusEx
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetTickCount
GetExitCodeThread
CreateSemaphoreW
CreateToolhelp32Snapshot
Process32FirstW
OpenProcess
TerminateProcess
Process32NextW
lstrcpynW
lstrcatW
LocalFree
GlobalReAlloc
GlobalSize
LocalAlloc
GetWindowsDirectoryW
SetFileAttributesW
DeviceIoControl
LoadLibraryA
ResumeThread
MulDiv
GetLocalTime
GetCurrentProcess
GetProcessTimes
FileTimeToSystemTime
FileTimeToLocalFileTime
AreFileApisANSI
VirtualProtect
FlushInstructionCache
VirtualQuery
lstrcmpW
CompareStringW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GetCurrentProcessId
SuspendThread
CreateActCtxW
ReleaseActCtx
lstrcmpA
FindClose
FindNextFileW
FindFirstFileW
CreateMutexW
ReleaseMutex
GlobalGetAtomNameW
GetThreadLocale
MoveFileW
FlushFileBuffers
LockFile
UnlockFile
DuplicateHandle
GetVolumeInformationW
GetFullPathNameW
InterlockedExchange
CompareStringA
GetLocaleInfoW
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
GetCurrentThread
GetFileAttributesExW
GetFileSizeEx
GetFileTime
TlsGetValue
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCurrentDirectoryW
GetUserDefaultLCID
GetTempFileNameW
SetErrorMode
GetNumberFormatW
GetTempPathW
GetProfileIntW
SearchPathW
FindResourceExW
GetCommandLineW
HeapSetInformation
GetStartupInfoW
EncodePointer
DecodePointer
ExitProcess
GetSystemTimeAsFileTime
ExitThread
CreateThread
GetTimeFormatW
GetDateFormatW
RtlUnwind
RaiseException
HeapReAlloc
HeapQueryInformation
HeapSize
SetStdHandle
GetFileType
GetSystemInfo
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
IsProcessorFeaturePresent
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation

user32

LockWindowUpdate
GetMenuDefaultItem
SetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
CharNextW
UnregisterClassW
RealChildWindowFromPoint
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
MessageBeep
PostQuitMessage
MonitorFromPoint
GetSystemMenu
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
TranslateAcceleratorW
DestroyAcceleratorTable
NotifyWinEvent
CharUpperW
DrawIcon
DestroyMenu
DrawStateW
MapVirtualKeyW
GetKeyNameTextW
InvalidateRgn
CopyAcceleratorTableW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
CheckDlgButton
ValidateRect
GetWindowThreadProcessId
GetActiveWindow
CreateDialogIndirectParamW
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuStringW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
GetFocus
GetWindowTextLengthW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetParent
GetClassInfoW
RegisterClassW
DeferWindowPos
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
GetIconInfo
WindowFromPoint
GetWindowRgn
CreateWindowExW
RegisterClassExW
DefWindowProcW
RegisterClipboardFormatW
ClipCursor
LoadImageW
DestroyCursor
EndPaint
BeginPaint
GetMessagePos
DrawFrameControl
InflateRect
SetRectEmpty
CreateIconIndirect
DrawFocusRect
IsZoomed
SetForegroundWindow
SetScrollInfo
GetScrollInfo
EnableScrollBar
ShowScrollBar
SetScrollRange
SetScrollPos
GetScrollRange
GetScrollPos
IsIconic
ShowWindow
FindWindowW
IsMenu
EnumWindows
UnhookWindowsHookEx
RemovePropW
RegisterDeviceNotificationW
SetWindowsHookExW
OffsetRect
MoveWindow
CallWindowProcA
SendMessageA
GetPropA
GetWindowLongA
SetWindowLongA
GetMenu
GetWindowTextW
EnableMenuItem
SetFocus
DestroyWindow
LoadIconW
FrameRect
LoadMenuW
GetCapture
UpdateLayeredWindow
GetWindowDC
MsgWaitForMultipleObjects
PeekMessageW
EqualRect
UnionRect
IsRectEmpty
IsClipboardFormatAvailable
WaitMessage
SetClassLongW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
CharUpperBuffW
SetCursorPos
IntersectRect
DispatchMessageW
TranslateMessage
GetMessageW
PostThreadMessageW
GetClassNameW
AdjustWindowRectEx
CallWindowProcW
EnumDisplaySettingsW
wsprintfW
GetParent
GetDlgItem
EnumChildWindows
CopyImage
GetNextDlgGroupItem
InvertRect
HideCaret
CopyIcon
GetDoubleClickTime
GetUpdateRect
SubtractRect
IsCharLowerW
MapVirtualKeyExW
GetClassInfoExW
GetSubMenu
DeleteMenu
RemoveMenu
GetSysColorBrush
CreatePopupMenu
CreateMenu
GetMenuItemID
GetMenuState
ModifyMenuW
InsertMenuW
GetMenuItemCount
AppendMenuW
GetDesktopWindow
CheckMenuItem
DestroyIcon
DrawIconEx
SystemParametersInfoW
GetMenuItemInfoW
GetSysColor
DrawEdge
FillRect
CopyRect
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
BringWindowToTop
GetAsyncKeyState
GetSystemMetrics
MessageBoxW
SetRect
IsWindowVisible
SetCapture
ReleaseCapture
SetWindowRgn
SendMessageW
GetWindow
ClientToScreen
IsWindow
RedrawWindow
UpdateWindow
PostMessageW
GetKeyState
ReleaseDC
SetWindowLongW
GetWindowLongW
GetWindowRect
GetDC
SetWindowPos
EnableWindow
LoadCursorW
SetCursor
ScreenToClient
GetCursorPos
KillTimer
PtInRect
SetTimer
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
InvalidateRect
GetClientRect
RemovePropA
SetPropA
GetClassNameA
LoadBitmapW

gdi32

PatBlt
CreateHatchBrush
Rectangle
CreatePolygonRgn
PtInRegion
CreateEllipticRgn
GetClipBox
CreateRectRgnIndirect
ExcludeClipRect
SetBkColor
CreateBitmap
CreatePalette
RealizePalette
GetTextMetricsW
Polygon
LineDDA
SetPixelV
CreateFontW
GetDIBits
GetSystemPaletteEntries
SelectPalette
CreateDIBitmap
SetDIBColorTable
SetStretchBltMode
StretchBlt
GetPaletteEntries
CreateDCW
SetPaletteEntries
GetNearestPaletteIndex
SetMapMode
FillRgn
EnumFontsW
SetBkMode
SetTextColor
CopyMetaFileW
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SetPixel
GetLayout
SetLayout
SelectClipRgn
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
GetObjectType
SetRectRgn
GetRgnBox
GetTextColor
EnumFontFamiliesW
GetTextCharsetInfo
OffsetRgn
Polyline
GetWindowOrgEx
GetBoundsRect
GetViewportOrgEx
ExtFloodFill
GetTextFaceW
CreateDIBSection
Ellipse
GetTextExtentPoint32W
CreateFontIndirectW
GetBkMode
CreatePen
GetDeviceCaps
FrameRgn
GetPixel
CreateSolidBrush
EnumFontFamiliesExW
CombineRgn
CreateRectRgn
GetObjectW
GetStockObject
CreateRoundRectRgn
DeleteDC
DeleteObject
SelectObject
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
CreateCompatibleDC
LPtoDP
CreateCompatibleBitmap
GetMapMode
GetWindowExtEx
GetViewportExtEx
DPtoLP
BitBlt
GetBkColor
ExtTextOutA

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegEnumValueW
RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegEnumKeyW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueW
RegEnumKeyExW
RegQueryValueExW

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
SHGetSpecialFolderPathW
ShellExecuteExW
DragQueryFileW
DragFinish
SHGetFileInfoW
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
ShellExecuteW

comctl32

ImageList_GetIconSize
InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathFileExistsW
PathFindFileNameW
PathRemoveFileSpecW
PathFindExtensionW
PathIsURLW
PathRemoveExtensionW
SHGetValueW
SHSetValueW
PathRemoveArgsW
PathUnquoteSpacesW
UrlUnescapeW
PathStripToRootW
PathIsUNCW

ole32

CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoInitializeEx
OleDraw
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CLSIDFromString
OleLockRunning
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
DoDragDrop
RevokeDragDrop
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CLSIDFromProgID
CoCreateInstance
CoTaskMemFree
CoCreateGuid
CoUninitialize
CoInitialize
CreateStreamOnHGlobal
RegisterDragDrop
CoLockObjectExternal

oleaut32

VarBstrCmp
VariantClear
OleLoadPicture
VariantChangeType
VariantInit
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SysFreeString
VarBstrFromDate
OleCreateFontIndirect
SysAllocStringLen
SysStringLen
SysAllocString
SysAllocStringByteLen

oledlg

OleUIBusyW

urlmon

FindMimeFromData

wininet

InternetSetFilePointer
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetCanonicalizeUrlW
InternetCrackUrlW
InternetErrorDlg
InternetReadFileExA
HttpAddRequestHeadersW
HttpOpenRequestW
InternetQueryOptionW
InternetSetStatusCallbackW
InternetSetOptionW
HttpSendRequestExW
InternetConnectW
HttpEndRequestW
InternetWriteFile
HttpAddRequestHeadersA
HttpOpenRequestA
InternetCloseHandle
HttpSendRequestW
InternetReadFile
HttpQueryInfoW
InternetOpenUrlW
InternetOpenW

gdiplus

GdipAddPathBezier
GdipSetTextureWrapMode
GdipSetTextureTransform
GdipResetTextureTransform
GdipBitmapGetPixel
GdipGetPenWidth
GdipFillEllipse
GdipDrawCurve
GdipGetPenColor
GdipGetPenFillType
GdipSetPenStartCap
GdipSetPenWidth
GdipDrawEllipse
GdipCreateTextureIAI
GdipAddPathPolygon
GdipCreateCustomLineCap
GdipCreateFontFromDC
GdipAddPathCurve2I
GdipClonePen
GdipBitmapSetPixel
GdipScaleTextureTransform
GdipCreateLineBrushFromRectI
GdipGetPathData
GdipGetPageUnit
GdipGetDpiX
GdipGetDpiY
GdipFillRectanglesI
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateTexture2I
GdipMeasureString
GdipAddPathLine
GdipSetPenCustomEndCap
GdipCreateFontFromLogfontW
GdipBitmapSetResolution
GdipGetImageVerticalResolution
GdipGetImageHorizontalResolution
GdipDeleteCustomLineCap
GdipLoadImageFromFile
GdipDrawRectangle
GdipDisposeImage
GdipFree
GdipAlloc
GdipCloneImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetImageHeight
GdipGetImageWidth
GdipCreateTexture2
GdipDeleteBrush
GdipCloneBrush
GdipTranslateTextureTransform
GdipFillRectangle
GdipCreateFont
GdipDeleteFont
GdipSetTextRenderingHint
GdipDrawImageRectI
GdipCreateSolidFill
GdipDrawString
GdipReleaseDC
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipDrawImageRectRect
GdipLoadImageFromStream
GdipDrawImagePointRectI
GdipCreateTexture
GdipFillRectangleI
GdipGetGenericFontFamilySansSerif
GdipDeleteRegion
GdipCreateRegionHrgn
GdipFillRegion
GdipDeletePen
GdipCreatePen2
GdipDrawRectangleI
GdipGraphicsClear
GdipCreatePen1
GdipDrawLineI
GdipSetPenDashStyle
GdipCreateStringFormat
GdipDeleteStringFormat
GdipAddPathStringI
GdipGetGenericFontFamilyMonospace
GdipCreatePath
GdipDeletePath
GdipGetPathWorldBounds
GdipCreateMatrix
GdipDeleteMatrix
GdipTranslateMatrix
GdipTransformPath
GdipClonePath
GdipSetInterpolationMode
GdipSetSmoothingMode
GdipFillPath
GdipAddPathPath
GdipScaleMatrix
GdipCreateLineBrushI
GdipSaveImageToStream
GdipSaveAddImage
GdipSaveAdd
GdipCreateBitmapFromStream
GdipTransformMatrixPointsI
GdipRotateMatrix
GdipSetWorldTransform
GdipDrawImageRectRectI
GdipImageRotateFlip
GdipCloneBitmapAreaI
GdipGetImagePixelFormat
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipSetImageAttributesWrapMode
GdipSetCompositingMode
GdipFillEllipseI
GdipResetWorldTransform
GdipDrawImageI
GdipGetInterpolationMode
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipImageSelectActiveFrame
GdipResetPath
GdipDrawPath
GdipDrawPolygonI
GdipCreateHBITMAPFromBitmap
GdipSetClipRectI
GdipDrawEllipseI
GdipAddPathEllipseI
GdipSetPenEndCap
GdipSetPenMode
GdipSetPenLineJoin
GdipDrawLinesI
GdipSetStringFormatFlags
GdipAddPathString
GdipGetGenericFontFamilySerif
GdipSetImagePalette
GdipAddPathLine2I
GdipCreateRegionPath
GdipCreateRegionRectI
GdipCombineRegionRegion
GdipIsEmptyRegion
GdipDrawImagePointsI
GdipDrawImageRect
GdipCreateBitmapFromHBITMAP
GdipDrawLine
GdipSetSolidFillColor
GdipTransformMatrixPoints
GdiplusStartup
GdiplusShutdown
GdipStartPathFigure
GdipAddPathArcI
GdipClosePathFigure
GdipAddPathLineI
GdipCreateHatchBrush
GdipAddPathRectangleI
GdipSetPenColor
GdipGetPointCount
GdipSetMatrixElements
GdipGetFontHeightGivenDPI

crashreport

Install
TrySwitch
Unstall

setupapi

SetupIterateCabinetW

iphlpapi

GetAdaptersAddresses

winmm

PlaySoundW

netapi32

Netbios

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

vcomp100

_vcomp_fork
_vcomp_for_static_simple_init
_vcomp_for_static_end

Sections

.text
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1006KB - Virtual size: 1005KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 130KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 494KB - Virtual size: 493KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a83c51fafd5bf20fc0d9f0a5e924239

Code Sign

04:00:00:00:00:01:20:19:c1:90:66Certificate

Key Usages

01:00:00:00:00:01:25:b0:b4:cc:01Certificate

Extended Key Usages

Key Usages

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91Certificate

Key Usages

73:b2:26:5e:70:61:ab:2e:ff:21:db:85:bc:95:16:11Certificate

Extended Key Usages

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5eCertificate

Extended Key Usages

Key Usages

51:b8:ac:bb:a4:6a:ff:e2:ac:b3:c1:85:6a:d6:7b:45:5e:ed:21:ccSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

pcfile

pcdsp

pceffect

version

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

urlmon

wininet

gdiplus

crashreport

setupapi

iphlpapi

winmm

netapi32

oleacc

imm32

vcomp100

Sections

.text Size: 5.2MB - Virtual size: 5.2MB

.rdata Size: 1006KB - Virtual size: 1005KB

.data Size: 130KB - Virtual size: 189KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 494KB - Virtual size: 493KB

04:00:00:00:00:01:20:19:c1:90:66
Certificate

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91
Certificate

73:b2:26:5e:70:61:ab:2e:ff:21:db:85:bc:95:16:11
Certificate

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

51:b8:ac:bb:a4:6a:ff:e2:ac:b3:c1:85:6a:d6:7b:45:5e:ed:21:cc
Signer

.text
Size: 5.2MB - Virtual size: 5.2MB

.rdata
Size: 1006KB - Virtual size: 1005KB

.data
Size: 130KB - Virtual size: 189KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 494KB - Virtual size: 493KB