2024-02-12_7964f384957046db42ffebfbfc76cba5_icedid_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-12_7964f384957046db42ffebfbfc76cba5_icedid_magniber
Size

11.8MB
MD5

7964f384957046db42ffebfbfc76cba5
SHA1

b779731d31da240c7a2bc9876c44c456ce685798
SHA256

089290df710516fffa128310611fdc574718d2d990fa7cbe6b46af577aef8da0
SHA512

4fc434e6573814c114496dd226366c2e6bcda25364dd6b0607a812c3de4e9a05caeb66189d606875cc6c5d93317bcd419e398ddf35b1b02ec5b4c19675a8479b
SSDEEP

196608:ynxKbsIoEH6BN12N1q4MWhgTiQND7/xzujlnMP8gXnXSpYUB7T+4XbpyJr1zs:l6GriFr/XCXbsq

Score

1^/10

Malware Config

Signatures

Files

2024-02-12_7964f384957046db42ffebfbfc76cba5_icedid_magniber
.exe windows:4 windows x86 arch:x86

54931c55fe6ebd21a071bb5e2c1cb05a

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

18:da:d1:9e:26:7d:e8:bb:4a:21:58:cd:cc:6b:3b:4a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

16/07/2036, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5f:ee:6c:f2:26:34:1b:17:b2:1c:3c:73:f6:fb:8f:a1
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

13/01/2016, 00:00

Not After

21/11/2017, 23:59

Subject

CN=shenzhen bingchuan network technology Co.\,Ltd,O=shenzhen bingchuan network technology Co.\,Ltd,L=shenzhen,ST=guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2f:62:4e:63:fa:69:32:f4:6c:2f:ef:1f:7b:26:86:8b:73:42:6a:f2
Signer

Actual PE Digest

2f:62:4e:63:fa:69:32:f4:6c:2f:ef:1f:7b:26:86:8b:73:42:6a:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\Diamond20108888\Bin\Client\LWLaunch.pdb

Imports

kernel32

GetCurrentDirectoryA
SetErrorMode
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SetFileAttributesA
RtlUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
CreateDirectoryA
GetSystemTimeAsFileTime
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
ExitThread
HeapSize
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetStdHandle
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
SetConsoleCtrlHandler
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetPrivateProfileStringA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
WritePrivateProfileStringA
GetPrivateProfileIntA
SystemTimeToFileTime
GetExitCodeProcess
GetDriveTypeA
RemoveDirectoryA
FindNextFileA
GetFileSizeEx
OutputDebugStringW
PostQueuedCompletionStatus
GetQueuedCompletionStatus
CreateIoCompletionPort
WaitForMultipleObjects
SetPriorityClass
DeviceIoControl
IsBadStringPtrA
FileTimeToDosDateTime
Module32First
Module32Next
GetLocalTime
lstrcpyA
OutputDebugStringA
GetProcessTimes
GlobalMemoryStatusEx
ReleaseSemaphore
CreateSemaphoreA
InterlockedCompareExchange
FileTimeToSystemTime
GetDiskFreeSpaceA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetAtomNameA
GetOEMCP
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
DeleteFileA
SuspendThread
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
InterlockedDecrement
GetModuleFileNameW
GlobalSize
MulDiv
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
FindFirstFileA
FindClose
GetWindowsDirectoryA
GetSystemDirectoryA
CreateEventA
SetEvent
MoveFileA
GetDiskFreeSpaceExA
OpenMutexA
lstrcpynA
CreateProcessA
FormatMessageA
LocalFree
QueryPerformanceCounter
QueryPerformanceFrequency
LoadLibraryA
SetLastError
GetCPInfo
GetVersionExA
ExitProcess
lstrlenA
lstrcmpiA
lstrcmpiW
GetStringTypeExA
GetStringTypeExW
CompareStringA
CompareStringW
GetEnvironmentVariableA
InterlockedExchange
GetVersion
GetEnvironmentVariableW
MultiByteToWideChar
SetCurrentDirectoryA
CopyFileA
CreateMutexA
GetLastError
TerminateProcess
GlobalLock
GlobalUnlock
FindResourceA
LoadResource
FreeResource
LockResource
SizeofResource
GlobalAlloc
GlobalFree
GetCommandLineA
VirtualAllocEx
ReadProcessMemory
lstrlenW
VirtualFreeEx
GetModuleFileNameA
GetTickCount
FreeLibrary
CreateToolhelp32Snapshot
Process32First
Process32Next
CreateFileA
GetModuleHandleA
GetProcAddress
GetCurrentProcessId
GetProcessHeap
OpenProcess
GetCurrentProcess
DuplicateHandle
Sleep
HeapAlloc
HeapFree
CreateThread
WaitForSingleObject
TerminateThread
CloseHandle
WideCharToMultiByte
GetFileType
CreateFileW

user32

TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
IntersectRect
IsIconic
GetWindowPlacement
GetWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
EndDialog
wsprintfA
EndPaint
BeginPaint
IsRectEmpty
SetLayeredWindowAttributes
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
ClientToScreen
DrawFocusRect
DrawStateA
FrameRect
InflateRect
LoadImageA
GetIconInfo
CreateIconIndirect
IsMenu
DestroyCursor
TrackPopupMenuEx
InsertMenuA
GetSubMenu
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
DeleteMenu
CreatePopupMenu
CreateMenu
GrayStringA
DrawTextExA
TabbedTextOutA
DrawEdge
SetMenuItemBitmaps
CopyRect
GetSysColorBrush
GetClassLongA
DrawTextA
DrawIconEx
DestroyIcon
SystemParametersInfoA
CheckDlgButton
CheckRadioButton
PostThreadMessageA
UnionRect
SetWindowLongA
GetWindowLongA
PostQuitMessage
GetMenuItemInfoA
GetUpdateRect
SetCursor
GetSysColor
OffsetRect
CharUpperA
CharUpperW
CharLowerA
CharLowerW
MessageBoxA
PtInRect
GetAsyncKeyState
CloseWindow
SetParent
UpdateWindow
FillRect
PeekMessageA
GetMessageA
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetLastActivePopup
GetForegroundWindow
GetWindowTextA
GetWindowTextLengthA
SetFocus
TranslateMessage
DispatchMessageA
PostMessageA
UpdateLayeredWindow
GetFocus
RemovePropA
GetPropA
SetPropA
ModifyMenuA
GetClassNameA
FlashWindowEx
IsClipboardFormatAvailable
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
ExitWindowsEx
ShowWindow
IsWindow
SetWindowPos
IsWindowVisible
SendMessageA
GetWindowThreadProcessId
FindWindowExA
FindWindowA
SetWindowRgn
GetWindowRect
GetClientRect
GetDC
GetDlgItemInt
ReleaseDC
InvalidateRect
SetTimer
KillTimer
GetParent
SetForegroundWindow
EnableWindow
LoadIconA
SetRect
RemoveMenu
GetSystemMenu
GetDesktopWindow
CallNextHookEx
SetWindowsHookExA
GetCapture
IsChild
WinHelpA
SendDlgItemMessageA
RegisterWindowMessageA
CheckMenuItem
EnableMenuItem
GetSystemMetrics
GetMenuCheckMarkDimensions
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
MessageBeep
GetNextDlgGroupItem
UnregisterClassA
CharNextA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadAcceleratorsA
InsertMenuItemA
BringWindowToTop
SetMenu
TranslateAcceleratorA
InvalidateRgn
CopyAcceleratorTableA
GetDialogBaseUnits
SetRectEmpty
MapVirtualKeyA
GetKeyNameTextA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
ValidateRect
DestroyMenu
GetMenuStringA
GetWindowDC
GetCursorPos
ReleaseCapture
LoadCursorA
SetCapture
DrawIcon
ScrollWindowEx
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
LoadBitmapA

gdi32

PatBlt
SetPixel
TextOutA
ExtTextOutA
GetTextExtentPoint32A
Escape
SetTextColor
SetBkColor
CreateBitmap
GetDIBColorTable
CreatePalette
CreateHalftonePalette
RealizePalette
GetDCOrgEx
GetClipBox
CreateEllipticRgn
DPtoLP
LPtoDP
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
SetArcDirection
SetColorAdjustment
GetBkMode
GetClipRgn
SelectClipPath
GetViewportExtEx
GetWindowExtEx
StartDocA
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
Rectangle
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
PolylineTo
PolyBezierTo
ExtSelectClipRgn
CreateDIBPatternBrushPt
CreatePatternBrush
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
ExtCreatePen
CopyMetaFileA
CreateDCA
CreateRectRgnIndirect
SetRectRgn
GetMapMode
GetCharWidthA
StretchDIBits
GetBkColor
GetTextMetricsA
GetRgnBox
GetTextColor
GetDeviceCaps
GetObjectA
CreateFontIndirectA
CreateHatchBrush
CreatePen
GetTextExtentPoint32W
SelectObject
GetCurrentObject
DeleteDC
GetPixel
CreateRoundRectRgn
CreateSolidBrush
CreateCompatibleBitmap
CreateFontA
CreateDIBSection
DeleteObject
BitBlt
CombineRgn
Ellipse
RectVisible
ScaleViewportExtEx
PtVisible
CreateRectRgn
SelectClipRgn
CreateCompatibleDC
GetStockObject

msimg32

TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

GetUserNameA
AdjustTokenPrivileges
RegCreateKeyA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegSetValueA
IsTextUnicode
CreateProcessAsUserA
OpenProcessToken
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA
LookupPrivilegeValueA

shell32

SHGetFileInfoA
ShellExecuteExA
Shell_NotifyIconA
SHGetSpecialFolderPathA
SHGetPathFromIDListA
ExtractIconA
DragQueryFileA
DragFinish
ShellExecuteA
SHFileOperationA
SHGetMalloc
SHGetSpecialFolderLocation

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

ws2_32

WSASocketA
gethostbyname
closesocket
select
WSAEnumNetworkEvents
WSARecvFrom
ntohl
recvfrom
listen
WSAStartup
inet_ntoa
gethostname
WSAGetLastError
WSAEventSelect
htons
ntohs
setsockopt
WSARecv
WSASend
WSAIoctl
WSACleanup
sendto
WSASendTo
ioctlsocket
bind
htonl
inet_addr
connect

oledlg

ord8

ole32

CoTaskMemFree
CoInitialize
CoCreateInstance
CoUninitialize
CoCreateGuid
CreateStreamOnHGlobal
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
CreateBindCtx
ReleaseStgMedium
CoTaskMemAlloc
SetConvertStg
CLSIDFromProgID
CLSIDFromString
WriteClassStg
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
StringFromGUID2
OleRun
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRegisterClassObject
CoRevokeClassObject
WriteFmtUserTypeStg
OleDuplicateData
OleRegGetUserType
CoDisconnectObject
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CreateILockBytesOnHGlobal

oleaut32

SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayCopy
SafeArrayAllocDescriptor
SafeArrayAllocData
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SysReAllocStringLen
SafeArrayUnaccessData
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysAllocString
SysFreeString
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
VarBstrFromDate
SafeArrayCreateVector
OleCreateFontIndirect
LoadTypeLi
VarDateFromStr
VarBstrFromDec
VarBstrFromCy
VarDecFromStr
SafeArrayAccessData
VarCyFromStr

gdiplus

GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipDisposeImage
GdipCloneImage
GdipCreateHBITMAPFromBitmap
GdipAlloc
GdipCloneBitmapAreaI
GdiplusStartup
GdiplusShutdown
GdipImageGetFrameDimensionsCount
GdipFree
GdipGetImagePixelFormat
GdipTranslateTextureTransform
GdipCloneBrush
GdipBitmapGetPixel
GdipDeleteGraphics
GdipFillRectangleI
GdipDrawImageRectRectI
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectI
GdipSetImageAttributesColorKeys
GdipReleaseDC
GdipDrawImageRectRect
GdipDrawImagePointsI
GdipRotateTextureTransform
GdipCreateFromHDC
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipCreateTexture
GdipDeleteBrush

winmm

timeGetTime

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

wininet

HttpQueryInfoA
InternetReadFile
InternetReadFileExA
HttpOpenRequestA
HttpSendRequestA
HttpAddRequestHeadersA
InternetCloseHandle
InternetSetStatusCallback
InternetOpenA
InternetGetConnectedState
InternetOpenUrlA
InternetConnectA

iphlpapi

GetAdaptersInfo
GetTcpTable

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA

psapi

GetModuleBaseNameA
EnumProcessModules
GetModuleInformation
EnumProcesses
GetProcessMemoryInfo

pdh

PdhOpenQueryA
PdhAddCounterA
PdhCollectQueryData
PdhGetFormattedCounterValue

dbghelp

SymFunctionTableAccess64
StackWalk64
SymFromAddr
UnDecorateSymbolName
SymGetLineFromAddr64
SymGetModuleBase64
SymEnumSymbols
SymSetOptions
SymInitialize
SymCleanup
MiniDumpWriteDump
SymSetContext
SymGetTypeInfo

mswsock

GetAcceptExSockaddrs
AcceptEx

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 504KB - Virtual size: 501KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8.6MB - Virtual size: 8.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54931c55fe6ebd21a071bb5e2c1cb05a

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

18:da:d1:9e:26:7d:e8:bb:4a:21:58:cd:cc:6b:3b:4aCertificate

Key Usages

5f:ee:6c:f2:26:34:1b:17:b2:1c:3c:73:f6:fb:8f:a1Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

2f:62:4e:63:fa:69:32:f4:6c:2f:ef:1f:7b:26:86:8b:73:42:6a:f2Signer

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ws2_32

oledlg

ole32

oleaut32

gdiplus

winmm

version

wininet

iphlpapi

setupapi

psapi

pdh

dbghelp

mswsock

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.rdata Size: 504KB - Virtual size: 501KB

.data Size: 84KB - Virtual size: 888KB

.rsrc Size: 8.6MB - Virtual size: 8.6MB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

18:da:d1:9e:26:7d:e8:bb:4a:21:58:cd:cc:6b:3b:4a
Certificate

5f:ee:6c:f2:26:34:1b:17:b2:1c:3c:73:f6:fb:8f:a1
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

2f:62:4e:63:fa:69:32:f4:6c:2f:ef:1f:7b:26:86:8b:73:42:6a:f2
Signer

.text
Size: 2.6MB - Virtual size: 2.6MB

.rdata
Size: 504KB - Virtual size: 501KB

.data
Size: 84KB - Virtual size: 888KB

.rsrc
Size: 8.6MB - Virtual size: 8.6MB