2024-02-19_8dea8f264248375a0b206750b9cb82b3_ryuk

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-19_8dea8f264248375a0b206750b9cb82b3_ryuk
Size

5.3MB
MD5

8dea8f264248375a0b206750b9cb82b3
SHA1

b2e5b9f29d6c639314d6d90aabec476c6eef1617
SHA256

e82731d1897879c316b4e0702d9244813e611c26209197a8f2d90d9cdba720bd
SHA512

c9ba96489068a3096255b7bcf38daf4af93c7ce2df38deb2bd9d4ab554d7dbedc7238a65af7f4a46920db1c6db78b7813fb0af48c994e73d2e0a1955de236ba9
SSDEEP

49152:ZUf6kIaOJzQxjgRIs2Ybo0a6Huot8CcUXVuE6lujmEI8MWHI1pzu/SBKMIj1UE7I:jc3sXRu27yqvE/ZNOIwxglxs83AQgWXl

Score

1^/10

Malware Config

Signatures

Files

2024-02-19_8dea8f264248375a0b206750b9cb82b3_ryuk
.exe windows:6 windows x64 arch:x64

2d11f3442e29e652a7fda60a9c31d2af

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

02:2c:06:5a:1a:87:06:ed:6a:b1:e6:cd:60:45:8b:86
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12/01/2022, 00:00

Not After

11/01/2025, 23:59

Subject

CN=8x8\, Inc.,O=8x8\, Inc.,L=Campbell,ST=California,C=US,1.2.840.113549.1.9.1=#0c0f737570706f7274403878382e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

96:d7:1a:eb:0c:06:5d:47:5b:1e:15:c1:21:1c:cc:a9:71:54:2f:3e:b2:35:bf:8f:fe:25:81:3c:8b:55:15:25
Signer

Actual PE Digest

96:d7:1a:eb:0c:06:5d:47:5b:1e:15:c1:21:1c:cc:a9:71:54:2f:3e:b2:35:bf:8f:fe:25:81:3c:8b:55:15:25

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\dev\mapi\src\MAPIEx\bin\x64\Release\MAPIEx.pdb

Imports

kernel32

QueryPerformanceCounter
GetTickCount
RtlVirtualUnwind
FindClose
FindFirstFileW
FindNextFileW
GetStdHandle
GetFileType
GetVersion
GetModuleHandleW
LoadLibraryW
LoadLibraryA
GetSystemDirectoryW
ExpandEnvironmentStringsW
GlobalMemoryStatus
FreeLibrary
GetProcAddress
GetLocaleInfoW
IsBadStringPtrW
WideCharToMultiByte
SystemTimeToTzSpecificLocalTime
FindResourceW
LoadResource
LockResource
MultiByteToWideChar
SizeofResource
GetDateFormatW
GetVersionExW
FlushConsoleInputBuffer
GetModuleHandleExW
GetTimeFormatW
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateIoCompletionPort
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
MulDiv
FormatMessageW
CopyFileW
CreateFileW
DeleteFileW
FlushFileBuffers
TlsFree
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
OutputDebugStringA
DuplicateHandle
GetCurrentProcess
GetModuleFileNameW
LoadLibraryExW
lstrcmpiW
CreateActCtxW
ActivateActCtx
DeactivateActCtx
FindActCtxSectionStringW
QueryActCtxW
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
SetThreadPriority
ResumeThread
lstrcmpA
GlobalGetAtomNameW
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
EncodePointer
FreeResource
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
GlobalFlags
CompareStringW
GetUserDefaultUILanguage
GetCurrentThread
VirtualProtect
lstrcpyW
GetCurrentDirectoryW
FindResourceExW
GetWindowsDirectoryW
GetTempFileNameW
GetTempPathW
GetProfileIntW
SearchPathW
GetUserDefaultLCID
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
OutputDebugStringW
GetExitCodeThread
GetNativeSystemInfo
TryEnterCriticalSection
RtlPcToFileHeader
QueryPerformanceFrequency
LCMapStringW
GetStringTypeW
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
FormatMessageA
CreateDirectoryW
GetDiskFreeSpaceExW
GetFileInformationByHandle
RemoveDirectoryW
SetFilePointerEx
DeviceIoControl
GetModuleHandleA
MoveFileExW
AreFileApisANSI
ReleaseSemaphore
OpenEventA
GetSystemInfo
GetLogicalProcessorInformation
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwindEx
ExitProcess
CreateThread
ExitThread
FreeLibraryAndExitThread
SetConsoleCtrlHandler
GetModuleFileNameA
WriteConsoleW
GetTimeZoneInformation
GetDriveTypeW
PeekNamedPipe
GetConsoleMode
ReadConsoleInputA
SetConsoleMode
HeapQueryInformation
GetCommandLineA
GetCommandLineW
VirtualAlloc
VirtualQuery
SetStdHandle
GetACP
IsValidLocale
EnumSystemLocalesW
GetConsoleCP
ReadConsoleW
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
CreateTimerQueue
SignalObjectAndWait
SwitchToThread
GetThreadPriority
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetThreadTimes
VirtualFree
InterlockedPopEntrySList
QueryDepthSList
UnregisterWaitEx
GetSystemTimeAsFileTime
TlsGetValue
VerifyVersionInfoW
SleepEx
GetProcessHeap
GetCurrentProcessId
VerSetConditionMask
DeleteCriticalSection
AcquireSRWLockShared
DecodePointer
QueueUserAPC
HeapAlloc
RaiseException
ReleaseSRWLockShared
CloseHandle
HeapReAlloc
TlsAlloc
TerminateThread
AcquireSRWLockExclusive
SetEvent
ReleaseSRWLockExclusive
GetLastError
Sleep
CreateEventW
PostQueuedCompletionStatus
HeapSize
ReleaseMutex
GetCurrentThreadId
WaitForSingleObject
InitializeCriticalSectionEx
CreateMutexW
GetQueuedCompletionStatus
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
WaitForMultipleObjects
CreateWaitableTimerW
EnterCriticalSection
SetLastError
HeapFree
TlsSetValue
CreateEventA
WaitForSingleObjectEx
InitializeCriticalSection
SetWaitableTimer
GetFileSize
InitializeSRWLock

user32

SetWindowTextW
IsDialogMessageW
RealChildWindowFromPoint
DestroyIcon
InflateRect
IntersectRect
DestroyMenu
GetMenuItemInfoW
SystemParametersInfoW
CopyImage
SendDlgItemMessageA
SetRectEmpty
OffsetRect
PostQuitMessage
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
TrackMouseEvent
InvalidateRect
LoadImageW
ShowOwnedPopups
SetCursor
DeleteMenu
SetTimer
KillTimer
GetNextDlgGroupItem
SetCapture
ReleaseCapture
WindowFromPoint
DrawFocusRect
IsRectEmpty
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
MapVirtualKeyW
GetKeyNameTextW
LoadMenuW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongPtrW
SetWindowRgn
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
IsZoomed
GetSystemMenu
BringWindowToTop
SetCursorPos
CopyIcon
FrameRect
DrawIcon
UnionRect
UpdateLayeredWindow
MonitorFromPoint
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
PostThreadMessageW
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
SetRect
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
FillRect
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetWindowTextLengthW
GetWindowTextW
GetLastActivePopup
GetWindowThreadProcessId
GetParent
GetWindowLongW
IsWindowEnabled
EnableWindow
LoadCursorW
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
SendMessageW
GetMessageW
UnhookWindowsHookEx
GetSystemMetrics
CharUpperW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
CheckDlgButton
BeginDeferWindowPos
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetWindow
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
GetMenuCheckMarkDimensions
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
GetDesktopWindow
TranslateMessage
PeekMessageW
DispatchMessageW
GetUserObjectInformationW
GetProcessWindowStation
MessageBoxW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
LoadBitmapW
GetKeyboardState
SetMenuItemInfoW

gdi32

PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
CreateBitmap
MoveToEx
TextOutW
LineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
GetTextExtentPoint32W
GetTextMetricsW
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
DeleteDC
DeleteObject
BitBlt
GetObjectW
SelectObject
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
CreateDCW
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
ExtTextOutW
CopyMetaFileW
GetTextFaceW
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
OffsetRgn
GetRgnBox
Rectangle
LPtoDP
CreateRoundRectRgn
Polyline
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
CreateDIBSection
StretchBlt
SetPixel
GetTextCharsetInfo
EnumFontFamiliesW

advapi32

RegCloseKey
RegCreateKeyExW
RegisterEventSourceW
ReportEventW
DeregisterEventSource
RegQueryValueExA
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegSetValueExW

msimg32

TransparentBlt
AlphaBlend

shlwapi

StrFormatKBSizeW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathStripToRootW

uxtheme

DrawThemeBackground
GetThemePartSize
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
GetWindowTheme
GetThemeColor
GetCurrentThemeName
IsAppThemed

ws2_32

ioctlsocket
freeaddrinfo
htonl
getsockopt
WSARecv
connect
getsockname
WSAStartup
getaddrinfo
WSASocketW
WSASetLastError
send
recv
WSACleanup
__WSAFDIsSet
accept
bind
WSAIoctl
closesocket
WSASend
select
shutdown
listen
WSAGetLastError
setsockopt

mswsock

GetAcceptExSockaddrs
AcceptEx

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

shell32

SHAppBarMessage
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
SHGetFileInfoW

ole32

OleTranslateAccelerator
IsAccelerator
CoDisconnectObject
OleDestroyMenuDescriptor
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

VariantChangeType
VariantCopy
VariantClear
SysFreeString
LoadTypeLi
SysAllocStringLen
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VarBstrFromDate
VariantInit
SysAllocString

Exports

Exports

?$TSS0@?1??create@?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@CAAEAUPolymorphicCasters@34@XZ@4HA
?$TSS0@?1??create@?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@CAAEAUVersions@34@XZ@4HA
??4?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@QEAAAEAV012@AEBV012@@Z
??4?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@QEAAAEAV012@AEBV012@@Z
?create@?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@CAAEAUPolymorphicCasters@23@XZ
?create@?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@CAAEAUVersions@23@XZ
?getInstance@?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@SAAEAUPolymorphicCasters@23@XZ
?getInstance@?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@SAAEAUVersions@23@XZ
?instance@?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@0AEAUPolymorphicCasters@23@EA
?instance@?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@0AEAUVersions@23@EA
?instantiate@?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@CAXAEBUPolymorphicCasters@23@@Z
?instantiate@?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@CAXAEBUVersions@23@@Z
?t@?1??create@?$StaticObject@UPolymorphicCasters@detail@cereal@@@detail@cereal@@CAAEAUPolymorphicCasters@34@XZ@4U534@A
?t@?1??create@?$StaticObject@UVersions@detail@cereal@@@detail@cereal@@CAAEAUVersions@34@XZ@4U534@A

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 333KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d11f3442e29e652a7fda60a9c31d2af

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

02:2c:06:5a:1a:87:06:ed:6a:b1:e6:cd:60:45:8b:86Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

96:d7:1a:eb:0c:06:5d:47:5b:1e:15:c1:21:1c:cc:a9:71:54:2f:3e:b2:35:bf:8f:fe:25:81:3c:8b:55:15:25Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

msimg32

shlwapi

uxtheme

ws2_32

mswsock

oleacc

gdiplus

imm32

winmm

winspool.drv

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 3.4MB - Virtual size: 3.4MB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.data Size: 333KB - Virtual size: 410KB

.pdata Size: 175KB - Virtual size: 175KB

.gfids Size: 107KB - Virtual size: 107KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 83KB - Virtual size: 83KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

02:2c:06:5a:1a:87:06:ed:6a:b1:e6:cd:60:45:8b:86
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

96:d7:1a:eb:0c:06:5d:47:5b:1e:15:c1:21:1c:cc:a9:71:54:2f:3e:b2:35:bf:8f:fe:25:81:3c:8b:55:15:25
Signer

.text
Size: 3.4MB - Virtual size: 3.4MB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 333KB - Virtual size: 410KB

.pdata
Size: 175KB - Virtual size: 175KB

.gfids
Size: 107KB - Virtual size: 107KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 83KB - Virtual size: 83KB