hdsentinel_pro_portable[.]zip

Resubmissions

22/02/2024, 02:16

240222-cp8shaah72 7

22/02/2024, 02:13

240222-cnpm8sah54 7

Sharing

Copy URL

Twitter E-mail

General

Target

hdsentinel_pro_portable.zip
Size

40.9MB
MD5

1d82820ea8f60dfe76a4a5d0c763a632
SHA1

42e9db80dfdff2549547d29afa3746809d09a3ac
SHA256

230f0082865e50035b6852690a86d1c58cdf8f04849bcd108b5f47bfd1fd4f0b
SHA512

a89479b64ad9e1b733359611e637d8a848b181de62a59bacc19f3ad9e9dc08a551b7fd87fedaaff0d73268e44265ea0d3dadc1516afd45ffdd2b976bde5487af
SSDEEP

786432:QnlzjpDd0Sa0G9A3rqwgfrxRTkIxepCJ1aeY6rFfCNKqfQ0bwPpbzbxQ8:QnfTu9A3rIDfkmepYwKrVAhY0UPpvW8

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 11 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/bc_vbdll.dll	acprotect
static1/unpack001/fnp_act_installer.dll	acprotect
static1/unpack001/hptdev.dll	acprotect
static1/unpack001/infomgr.dll	acprotect
static1/unpack001/libxml2.dll	acprotect
static1/unpack001/mv_api.dll	acprotect
static1/unpack001/prdecode.dll	acprotect
static1/unpack001/prerrlog.dll	acprotect
static1/unpack001/pri2plgnnapa.dll	acprotect
static1/unpack001/storelibir-2.dll	acprotect
static1/unpack001/storelibir.dll	acprotect

UPX packed file 25 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/HDSentinelTray.exe	upx
static1/unpack001/Storagetest.dll	upx
static1/unpack001/bc_vbdll.dll	upx
static1/unpack001/deta.dll	upx
static1/unpack001/deta1.dll	upx
static1/unpack001/detect.dll	upx
static1/unpack001/dethp.dll	upx
static1/unpack001/dethpt.dll	upx
static1/unpack001/detjmx.dll	upx
static1/unpack001/detp.dll	upx
static1/unpack001/detrc.dll	upx
static1/unpack001/fnp_act_installer.dll	upx
static1/unpack001/harddisksentinelupdate.exe	upx
static1/unpack001/hdsaction.exe	upx
static1/unpack001/hdsctrl.exe	upx
static1/unpack001/hptdev.dll	upx
static1/unpack001/infomgr.dll	upx
static1/unpack001/libxml2.dll	upx
static1/unpack001/mv_api.dll	upx
static1/unpack001/prdecode.dll	upx
static1/unpack001/prerrlog.dll	upx
static1/unpack001/pri2plgnnapa.dll	upx
static1/unpack001/storectrl.dll	upx
static1/unpack001/storelibir-2.dll	upx
static1/unpack001/storelibir.dll	upx

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack005/out.upx
unpack006/out.upx
unpack008/out.upx
unpack009/out.upx

Files

hdsentinel_pro_portable.zip
.zip

Password: hd
109CommandLib.dll
.dll windows:5 windows x86 arch:x86

Password: hd

f3289d313f3096f14e6df44e93cc4d4f

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:91:f9:6a:e1:94:cf:37:c4:57:f1:d3:2b:c4:8c:5e
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2016, 00:00

Not After

06/08/2019, 23:59

Subject

CN=ASMedia Technology Inc.,O=ASMedia Technology Inc.,L=New Taipei City,ST=Taipei,C=TW

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:87:b8:6b:ea:1f:bf:3c:9a:57:40:41:46:8d:6c:42:03:d6:81:2f
Signer

Actual PE Digest

05:87:b8:6b:ea:1f:bf:3c:9a:57:40:41:46:8d:6c:42:03:d6:81:2f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Jimmy_PC_Code\109\COMMAND LIB\109CommandLibv4\Debug\109CommandLib.pdb

Imports

kernel32

ReadFile
SetFilePointer
GetCurrentProcessId
RaiseException
SetEvent
OpenEventA
OutputDebugStringA
OutputDebugStringW
MultiByteToWideChar
lstrlenA
GetLastError
UnmapViewOfFile
GetSystemInfo
MapViewOfFile
CreateFileMappingA
GetCurrentThread
OpenFileMappingA
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameW
Sleep
CloseHandle
VirtualAlloc
CreateFileA
GetSystemTimeAsFileTime
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetModuleFileNameA
HeapValidate
IsBadReadPtr
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
IsDebuggerPresent
DebugBreak
WideCharToMultiByte
GetProcAddress
LoadLibraryA
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
SetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStdHandle
WriteFile
WriteConsoleW
GetFileType
ExitProcess
SetConsoleCtrlHandler
LoadLibraryW
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
QueryPerformanceCounter
GetTickCount
HeapAlloc
HeapSize
HeapReAlloc
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
InitializeCriticalSectionAndSpinCount
GetProcessHeap
VirtualQuery
FreeLibrary
InterlockedExchange
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
GetTimeZoneInformation
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA

advapi32

RevertToSelf
SetThreadToken
OpenThreadToken

Exports

Exports

?IFCmdBistStart@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEEEE@Z
?IFCmdBistStop@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEPAU_BIST_RESULTS@@@Z
?IFCmdEraseFlashRomSector@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEIH@Z
?IFCmdGetCapabilities@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEPAU_CAPABILITIES_STRUCTURE@@@Z
?IFCmdGetDiskStatus@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEPAU_DISK_STATUS@@@Z
?IFCmdGetEnclosureStatus@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEPAU_ENCLOSURE_STATUS@@@Z
?IFCmdGetRAIDStatus@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEPAU_RAID_STATUS@@@Z
?IFCmdGetRegister@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEGPAE@Z
?IFCmdGetTopology@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@PAU_TOPOLOGY_@@@Z
?IFCmdIdentify@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@XZ
?IFCmdModeChange@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEPAU_RAID_PARAMETER_109@@G@Z
?IFCmdReadFlashRom@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEIPAEH@Z
?IFCmdRebuild@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEEE@Z
?IFCmdReset@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEG@Z
?IFCmdSetRegister@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEGE@Z
?IFCmdSmartIdentifyDevice@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EQAE@Z
?IFCmdSmartReadAttributeThreshold@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EQAE@Z
?IFCmdSmartReadData@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EQAE@Z
?IFCmdVerify@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEEE@Z
?IFCmdWriteFlashRom@ASM2109CmdPacket@@QAE?AW4_INTERFACE_STATUS@@EEIPAEH@Z
?closeHDevice@ASM2109CmdPacket@@QAEHXZ
?initialPacket@ASM2109CmdPacket@@QAEXXZ
?setHDevice@ASM2109CmdPacket@@QAEHPAD@Z
?setSectorSize@ASM2109CmdPacket@@QAEXH@Z

Sections

.textbss
Size: - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 408KB - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EN.LNG
HDSEvtMsg.dll
.dll windows:4 windows x86 arch:x86

Password: hd

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

53:23:57:b6:cf:e1:67:52:32:28:63:87:20:e3:0f:4b:01:a3:57:4a:35:90:62:5f:b2:80:29:19:d0:8f:d6:e1
Signer

Actual PE Digest

53:23:57:b6:cf:e1:67:52:32:28:63:87:20:e3:0f:4b:01:a3:57:4a:35:90:62:5f:b2:80:29:19:d0:8f:d6:e1

Digest Algorithm

sha256

PE Digest Matches

true

11:93:61:6e:b0:79:55:f2:0e:bc:b6:53:ab:3b:16:d7:d8:2e:10:60
Signer

Actual PE Digest

11:93:61:6e:b0:79:55:f2:0e:bc:b6:53:ab:3b:16:d7:d8:2e:10:60

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HDSentinel.exe
.exe windows:4 windows x86 arch:x86

Password: hd

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:14:8e:65:43:15:7b:14:8c:f1:6b:84:47:69:c6:69:be:ce:c0:d2:5a:71:60:32:41:22:a2:4c:3e:1d:b7:8a
Signer

Actual PE Digest

09:14:8e:65:43:15:7b:14:8c:f1:6b:84:47:69:c6:69:be:ce:c0:d2:5a:71:60:32:41:22:a2:4c:3e:1d:b7:8a

Digest Algorithm

sha256

PE Digest Matches

true

14:d8:a4:8b:e2:28:0d:0e:b4:b1:ea:12:6f:57:51:f6:6c:1c:fe:de
Signer

Actual PE Digest

14:d8:a4:8b:e2:28:0d:0e:b4:b1:ea:12:6f:57:51:f6:6c:1c:fe:de

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 13.0MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HDSentinel.rdi
HDSentinelTray.exe
.exe windows:4 windows x86 arch:x86

Password: hd

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

00:9c:c0:72:13:81:f7:2b:30:1a:6e:e6:c0:6c:45:5f:d8:bd:6f:ba:98:1a:5b:17:3c:35:51:11:89:67:57:9d
Signer

Actual PE Digest

00:9c:c0:72:13:81:f7:2b:30:1a:6e:e6:c0:6c:45:5f:d8:bd:6f:ba:98:1a:5b:17:3c:35:51:11:89:67:57:9d

Digest Algorithm

sha256

PE Digest Matches

true

a3:97:89:18:79:b9:87:f2:bd:ff:7a:8d:0c:13:94:a2:24:87:ad:91
Signer

Actual PE Digest

a3:97:89:18:79:b9:87:f2:bd:ff:7a:8d:0c:13:94:a2:24:87:ad:91

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 756KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 255KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 456KB - Virtual size: 456KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 214KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 259KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HDnotify.wav
HDsirena.mp3
Storagetest.dll
.exe windows:4 windows x86 arch:x86

Password: hd

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

75:46:3a:3e:f8:70:05:29:31:a4:26:96:d9:8e:a7:1e:f1:f1:60:41:4d:8c:ff:07:1e:80:a2:90:08:bf:cd:68
Signer

Actual PE Digest

75:46:3a:3e:f8:70:05:29:31:a4:26:96:d9:8e:a7:1e:f1:f1:60:41:4d:8c:ff:07:1e:80:a2:90:08:bf:cd:68

Digest Algorithm

sha256

PE Digest Matches

true

b5:6b:be:c0:7a:3f:ea:9a:cc:3f:6e:43:22:93:78:6d:5d:61:5b:53
Signer

Actual PE Digest

b5:6b:be:c0:7a:3f:ea:9a:cc:3f:6e:43:22:93:78:6d:5d:61:5b:53

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 48.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 46.1MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 670KB - Virtual size: 670KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
afaapi.dll
.dll windows:4 windows x86 arch:x86

Password: hd

eb842ac86186f73eea06f1e518a1bd36

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

f8:39:e8:9d:2a:0e:74:5c:04:c5:18:58:2c:29:43:94:91:89:67:81:62:c4:f0:88:12:fb:3d:7f:f6:12:6d:80
Signer

Actual PE Digest

f8:39:e8:9d:2a:0e:74:5c:04:c5:18:58:2c:29:43:94:91:89:67:81:62:c4:f0:88:12:fb:3d:7f:f6:12:6d:80

Digest Algorithm

sha256

PE Digest Matches

true

26:b1:28:79:11:52:a9:5f:fa:a4:56:fe:7c:36:a5:c6:b7:1e:c7:30
Signer

Actual PE Digest

26:b1:28:79:11:52:a9:5f:fa:a4:56:fe:7c:36:a5:c6:b7:1e:c7:30

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WriteFile
SetFilePointer
ReadFile
GetSystemTimeAsFileTime
GetFileSize
CreateMutexW
GetCurrentProcess
GetProcAddress
GetModuleHandleA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SystemTimeToFileTime
GetSystemTime
SetEvent
GetEnvironmentVariableA
OpenEventA
LoadLibraryA
GetLocalTime
GetVersionExA
GetComputerNameW
FindFirstVolumeA
FindClose
FindFirstFileA
CreateEventA
CreateMutexA
GlobalFree
GlobalAlloc
ResetEvent
GetModuleFileNameW
GetPrivateProfileStringW
lstrlenA
DisableThreadLibraryCalls
QueryDosDeviceA
CreateThread
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
CompareStringW
GetDriveTypeA
GetVolumeInformationA
FindFirstVolumeMountPointA
FindNextVolumeMountPointA
FindVolumeMountPointClose
FindNextVolumeA
FindVolumeClose
GetVolumePathNamesForVolumeNameA
CreateFileW
CreateFileA
FlushFileBuffers
Sleep
DeviceIoControl
CloseHandle
SetLastError
GetLastError
GetCurrentThreadId
ReleaseMutex
WaitForSingleObject
LocalAlloc
LocalFree
GetTimeZoneInformation
CompareStringA
SetStdHandle
GetConsoleMode
GetConsoleCP
RtlUnwind
MultiByteToWideChar
RaiseException
HeapFree
HeapAlloc
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
FileTimeToSystemTime
FileTimeToLocalFileTime
WideCharToMultiByte
ExitThread
ResumeThread
GetCommandLineA
GetProcessHeap
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
GetStdHandle
GetModuleFileNameA
GetFullPathNameA
GetCurrentDirectoryA
HeapSize
LCMapStringA
LCMapStringW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetFileAttributesA

user32

FindWindowA
SendMessageA
BroadcastSystemMessageA
wsprintfW

advapi32

RegCreateKeyExA
RegEnumValueA
RegSetValueExA
RegFlushKey
GetUserNameW
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
FreeSid
LookupAccountSidA
EqualSid
RegOpenKeyExW
RegQueryValueExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

ShellExecuteA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiRemoveDevice
SetupDiGetDeviceRegistryPropertyA

Exports

Exports

FSASetWearOutParams
FsaAlarm
FsaApiInternalGetRaid6Options
FsaApplyCustomDefaults
FsaBattery
FsaClearAdapterSasPhyInfo
FsaClearControllerNvsRam
FsaClearDeadDriveLog
FsaClearDriveErrorTable
FsaClearMaxCachePool
FsaClearPreservedLogicalDriveCache
FsaCloseAdapter
FsaCommitDriveConfiguration
FsaContainer
FsaContainerForceOnline
FsaContainerGetCacheMode
FsaContainerGetCacheParams
FsaContainerSetCacheParams
FsaContainerSetITPCacheSettings
FsaContainerSetMaxCacheWriteCacheSettings
FsaContainerSetPowerManagement
FsaContainerSwapDrives
FsaCreateJBOD
FsaCreateLogicalDrive
FsaCreateMirrorFromVolume
FsaCreatePrimaryContainer
FsaCreateRAID50
FsaCreateRAID60
FsaCreateSecondaryContainer
FsaCreateUFIfromFile
FsaCtrChangeComplete
FsaCtrRemovalComplete
FsaDeleteJBOD
FsaDeleteMultipleContainer
FsaDiagnostic
FsaDiagnosticEx
FsaDisableDebugLogs
FsaEnclosureMgt
FsaEnumAdaptersA
FsaEnumAdaptersW
FsaEnumChannels
FsaEnumScsiChannels
FsaExecuteArcUartCommand
FsaExecuteBackupUnitOperation
FsaExposeCtrToOs
FsaExposeNewPhysicalSpace
FsaFailPartition
FsaFailoverSpace
FsaFailoverSpaceByUniqueCtrID
FsaForcePartitionCacheUpdate
FsaGetAdapterOemId
FsaGetAdapterSasPhyInfo
FsaGetAutomaticFailover
FsaGetBusTargetLunFromDevHandle
FsaGetConnectorMap
FsaGetConnectorMapSize
FsaGetContainerInfo
FsaGetContainerInfo2
FsaGetContainerOptions
FsaGetContainerUsage
FsaGetControllerInternalLogData
FsaGetControllerInternalLogInfo
FsaGetControllerStats
FsaGetCopyback
FsaGetCurrentArcConsoleParams
FsaGetDeadDriveLog
FsaGetDeadDriveLog2
FsaGetDiskSasPhyInfo
FsaGetDriveErrorTable
FsaGetDriveErrorTable2
FsaGetDriveErrorTableSize
FsaGetDriveLetterUsage
FsaGetDriveLetterUsageEx
FsaGetErrorTextA
FsaGetErrorTextW
FsaGetErrorTunableParamList
FsaGetErrorTunableProfileID
FsaGetExpanderCount
FsaGetFsaPartitionInfo
FsaGetGeneralInformation
FsaGetGeneralInformation2
FsaGetGeneralInformation2Ex
FsaGetHandleFromIndex
FsaGetHandleFromSerial
FsaGetHardwareLog
FsaGetIndexFromSerial
FsaGetLogicalDeviceCount
FsaGetMaxCacheFeatures
FsaGetMaxCacheIndexList
FsaGetNvramEventLog
FsaGetOSType
FsaGetOwnerId
FsaGetPCIIds
FsaGetPCISerdesInfo
FsaGetPbsiConfiguration
FsaGetPhyPCIDfeInfo
FsaGetPhySASDfeInfo
FsaGetPhysicalDeviceCount
FsaGetPhysicalDeviceInfo
FsaGetPreservedLogicalDriveInfo
FsaGetRaid6Options
FsaGetRuntimeArcConsoleParams
FsaGetSASAddress
FsaGetSPMParameters
FsaGetSPMParametersDefault
FsaGetScsiStorageDeviceInfo
FsaGetSmartDeviceInfo
FsaGetSmartHistoryBufferData
FsaGetSmartHistoryBufferStatus
FsaGetSmartHistoryDescriptor
FsaGetSmartHistoryDictionary
FsaGetSmartHistoryModuleCount
FsaGetStorageDeviceInfo
FsaGetTaskDetails
FsaGetTaskList
FsaGetTaskProgress
FsaGetVersionStatus
FsaGrowPrimaryVolumeSet
FsaHasDirtyData
FsaHasDirtyDataContainer
FsaInitCreateThread
FsaInitStorageDeviceForFsa
FsaInitStorageDeviceSetForFsa
FsaInstallFeatureKey
FsaInvokeCpldCommand
FsaInvokeSetBiosParamsCommand
FsaInvokeSetBootDevice
FsaIsAdapterPausedEx
FsaIsNTOS
FsaIsUnixOS
FsaLinkForContainerExInternal
FsaMaxCacheWriteCacheDisableAll
FsaMirror
FsaMorphContainer
FsaNTCheckDynamicDiskOnContainer
FsaNTCheckFTDiskOnContainer
FsaNTGetByContainer
FsaNTLinkForContainer
FsaNewFailoverSpace
FsaNewFailoverSpaceByUniqueCtrID
FsaNewGetDiskSasPhyInfo
FsaNvram
FsaOnlineControllerDiagnostic
FsaOnlineDiskDiagnostic
FsaOpenAdapter2A
FsaOpenAdapter2W
FsaOpenAdapterA
FsaOpenAdapterW
FsaParseAdapterName
FsaPauseResumeIo
FsaPauseResumeIoStatus
FsaPauseResumeIoStatusEx
FsaPollForEvent
FsaPrepareCtrForChange
FsaPrepareCtrForRemoval
FsaProtectStorageDeviceSet
FsaReadArcConsoleData
FsaRefreshSupportedRAIDFeatures
FsaRegisterGeneralCallback
FsaReleaseContainerCache
FsaResetController
FsaResetControllerStatsCounters
FsaResetNvramEventLog
FsaResetScsiBus
FsaResetScsiBusEx
FsaRunHardwareDiagnosticTest
FsaSendATACommand
FsaSendReceiveFib
FsaSendSMPCommand
FsaSendScsiCommand
FsaSetAutomaticFailover
FsaSetConnectorFunctionalMode
FsaSetControllerDeviceCachePolicy
FsaSetControllerStats
FsaSetCopyback
FsaSetDDRCachePreservation
FsaSetDefaultLDTaskPriority
FsaSetDirtyPageThresholdValue
FsaSetErrorTunableParams
FsaSetErrorTunableProfile
FsaSetFairnessMode
FsaSetFairnessParameters
FsaSetFunctionalMode
FsaSetGlobalMaxSASPhyLinkRate
FsaSetGlobalPhysicalDevicesWriteCachePolicy
FsaSetMaxCacheBgCheck
FsaSetMaxCacheFlushAndFetchRate
FsaSetMaxCacheRWFactor
FsaSetMaxCacheWrite
FsaSetMonitorLogSeverityLevel
FsaSetPCISerdesInfo
FsaSetPMSpinupLimits
FsaSetPMStayAwakePeriod
FsaSetPMUTCToLocalTimeDiff
FsaSetPbsiConfiguration
FsaSetPerformanceMode
FsaSetSPMParameters
FsaSetSataNCQ
FsaSetSaveCustomDefaults
FsaSetSmartPollSetting
FsaSetUiThreadCallBack
FsaSetVerifyWrite
FsaSnapshot
FsaStartGetConfig
FsaStartMaxCacheBgCheck
FsaStorageDevice
FsaStorageDevice2
FsaStorageDeviceSetCachePool
FsaTask
FsaUnloadAPI
FsaUpdateBackupUnitFlash
FsaUpdateControllerMfgSector
FsaUpdateFlashImages
FsaValidHostOs
FsaVerifyContainer
FsaVerifyContainer2
FsaVerifyContainerGetInfo
FsaVerifyContainerGetInfo2
FsaWaitForTaskComplete
FtaFinishJob
FtaNotifyAppFilesysChanged
FtaNotifyFormatComplete
FtaUpdateJob
GetSingleLogDevGetConfig
SetFibDebug
faos_RemoveDiskDriverLinks
faos_W2kCtrRemoveLinks

Sections

.text
Size: 624KB - Virtual size: 620KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ar.lng
arpro.lng
bc_vbdll.dll
.dll windows:4 windows x86 arch:x86

Password: hd

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

53:2c:2d:a6:79:aa:9a:86:29:23:26:a1:46:bd:6d:ca:19:c5:d1:d0:2a:7a:22:56:f4:51:c8:f4:ac:68:ba:f0
Signer

Actual PE Digest

53:2c:2d:a6:79:aa:9a:86:29:23:26:a1:46:bd:6d:ca:19:c5:d1:d0:2a:7a:22:56:f4:51:c8:f4:ac:68:ba:f0

Digest Algorithm

sha256

PE Digest Matches

true

8b:0b:b2:19:8a:90:73:d6:4b:d5:f8:bd:db:5a:26:d4:61:4c:52:a3
Signer

Actual PE Digest

8b:0b:b2:19:8a:90:73:d6:4b:d5:f8:bd:db:5a:26:d4:61:4c:52:a3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

RCTL_Alloc
RCTL_Free
RC_APIGetCoreInstances
RC_APIGetSWLStatus
RC_ApiAddFileDevice
RC_ApiArrayToOsDevice
RC_ApiCheckLogicalDevice
RC_ApiCheckLogicalDeviceById
RC_ApiCommitPreviousConfig
RC_ApiCopyLogicalDevice
RC_ApiCreateFileDevice
RC_ApiCreateLogicalDevice
RC_ApiDeleteLogicalDevice
RC_ApiDirectCheckControllerPCIID
RC_ApiDirectManagePhysicalDevice
RC_ApiDriveLetter
RC_ApiDriveLetterById
RC_ApiGenCRC32
RC_ApiGetCoreConfigString
RC_ApiGetCoreConfigStringFromConfigPacket
RC_ApiGetCorePreviousConfigString
RC_ApiGetCreateInfo
RC_ApiGetError
RC_ApiGetTransformInfo
RC_ApiGetUserMessage
RC_ApiInitializePhysicalDevice
RC_ApiInjectError
RC_ApiInjectErrorDisk
RC_ApiManageAttributeLogicalDevice
RC_ApiManageCacheLogicalDevice
RC_ApiManageDevicePrivateLogicalDevice
RC_ApiManagePhysicalDevice
RC_ApiManagePhysicalDeviceBuf
RC_ApiManagePreferElementLogicalDevice
RC_ApiManagePriorityLogicalDevice
RC_ApiManageRecoverLogicalDevice
RC_ApiManageSpare
RC_ApiOfflineLogicalDevice
RC_ApiRCTLStatusToString
RC_ApiReadDiskMetaData
RC_ApiReadFirmware
RC_ApiReadFirmwareFileVersion
RC_ApiRemoveAllSpareLogicalDevice
RC_ApiRescan
RC_ApiSendMessage
RC_ApiServiceControl
RC_ApiSetControllerInfo
RC_ApiSetError
RC_ApiShutdown
RC_ApiSplitLogicalDevice
RC_ApiTaskControlLogicalDevice
RC_ApiTossUnflushLogs
RC_ApiTransformLogicalDevice
RC_ApiUpdateFirmware
RC_ApiUpdateFirmwareFinish
RC_ApiUpdateFirmwareFrame
RC_ApiUpdateFirmwareInit
RC_ApiUpdateFirmwareRegion
RC_ApiWaitLogicalDevice
RC_ApiWaitLogicalDevices
RC_BufferPrintApiGetStats
RC_ConvertBinaryToKey
RC_ConvertKeyToBinary
RC_DLL_ActiviyLed
RC_DLL_ApiArrayToOsDevice
RC_DLL_ApiCheckLogicalDevice
RC_DLL_ApiCheckLogicalDeviceById
RC_DLL_ApiCopyLogicalDevice
RC_DLL_ApiCreateLogicalDevice
RC_DLL_ApiDeleteLogicalDevice
RC_DLL_ApiDriveLetter
RC_DLL_ApiGetCoreConfigString
RC_DLL_ApiGetCoreInstances
RC_DLL_ApiGetCoreInstancesEx
RC_DLL_ApiGetCreateInfo
RC_DLL_ApiGetFileAttributes
RC_DLL_ApiGetLibVersion
RC_DLL_ApiGetPrivLevel
RC_DLL_ApiGetSystemDriveLetter
RC_DLL_ApiGetSystemName
RC_DLL_ApiGetSystemType
RC_DLL_ApiGetTransformInfo
RC_DLL_ApiGetUserMessage
RC_DLL_ApiGrowFileSystem
RC_DLL_ApiInitializePhysicalDevice
RC_DLL_ApiInjectError
RC_DLL_ApiIsArrayLayoutPossible
RC_DLL_ApiManageAttributeLogicalDevice
RC_DLL_ApiManageCacheLogicalDevice
RC_DLL_ApiManageDevicePrivateLogicalDevice
RC_DLL_ApiManagePhysicalDevice
RC_DLL_ApiManagePhysicalDevice2
RC_DLL_ApiManagePreferElementLogicalDevice
RC_DLL_ApiManagePriorityLogicalDevice
RC_DLL_ApiManageRecoverLogicalDevice
RC_DLL_ApiManageSpare
RC_DLL_ApiMapNtDeviceId
RC_DLL_ApiMapNtDriveLetter
RC_DLL_ApiOfflineLogicalDevice
RC_DLL_ApiOpenDriveLetterExclusive
RC_DLL_ApiOutputMessage
RC_DLL_ApiRemoveAllSpareLogicalDevice
RC_DLL_ApiRescan
RC_DLL_ApiSendMessage
RC_DLL_ApiServiceControl
RC_DLL_ApiSetError
RC_DLL_ApiShutdown
RC_DLL_ApiSplitLogicalDevice
RC_DLL_ApiTaskControlLogicalDevice
RC_DLL_ApiTransformLogicalDevice
RC_DLL_ApiUpdateFirmwareFinish
RC_DLL_ApiUpdateFirmwareFrame
RC_DLL_ApiUpdateFirmwareInit
RC_DLL_ApiWaitLogicalDevice
RC_DLL_ApiWriteErrorLog
RC_DLL_BufferPrintApiGetStats
RC_DLL_ConvertBinaryToKey
RC_DLL_CreateFile
RC_DLL_FileSize
RC_DLL_FileSizeInMB
RC_DLL_GenHash
RC_DLL_GetSystemDirectory
RC_DLL_NTApiGetDriveArray
RC_DLL_ReadKey
RC_DLL_SendMail
RC_DLL_UpdateLicense
RC_DLL_ValidateKey
RC_DLL_WriteKey
RC_DebugTrace
RC_DebugTraceGetState
RC_DebugTraceGetTraceItem
RC_FindControllerSerialNumber
RC_GetTokenNumber
RC_MessageLookupTable_1
RC_ValidateKey
flxActAppActivationCreate
flxActAppActivationDelete
flxActAppActivationEntitlementIdSet
flxActAppActivationReqCreate
flxActAppActivationRespProcess
flxActAppActivationSend
flxActAppRepairCreate
flxActAppRepairDelete
flxActAppRepairProdLicSpcSet
flxActAppRepairReqCreate
flxActAppRepairSend
flxActAppReturnCreate
flxActAppReturnDelete
flxActAppReturnProdLicSpcSet
flxActAppReturnReqCreate
flxActAppReturnSend
flxActCommonHandleClose
flxActCommonHandleGetError
flxActCommonHandleGetLastOpsError
flxActCommonHandleGetLastOpsErrorString
flxActCommonHandleOpen
flxActCommonHandleSetCommType
flxActCommonHandleSetRemoteServer
flxActCommonHandleSetStatusCallback
flxActCommonLibraryCleanup
flxActCommonLibraryInit
flxActCommonLicSpcAddASRs
flxActCommonLicSpcCreate
flxActCommonLicSpcDelete
flxActCommonLicSpcGet
flxActCommonLicSpcGetNumberProducts
flxActCommonLicSpcPopulateAllFromTS
flxActCommonLicSpcPopulateFromTS
flxActCommonProdLicSpcActServerChainGet
flxActCommonProdLicSpcEntitlementIdGet
flxActCommonProdLicSpcExpDateGet
flxActCommonProdLicSpcFeatureLineGet
flxActCommonProdLicSpcFulfillmentIdGet
flxActCommonProdLicSpcFulfillmentTypeGet
flxActCommonProdLicSpcIsDisabled
flxActCommonProdLicSpcProductIdGet
flxActCommonProdLicSpcSuiteIdGet
flxActCommonProdLicSpcTrustFlagsGet
flxActCommonRepairLocalTrustedStorage
fnpActSvcGetLastErrorWin
fnpActSvcInstallWin
fnpActSvcUninstallWin
rc_w_to_s_copy

Sections

UPX0
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 574KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 812KB - Virtual size: 809KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textidx
Size: 548KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CONST
Size: 4KB - Virtual size: 80B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fnp_dir
Size: 4KB - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fnp_mar
Size: 4KB - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
be.lng
bepro.lng
bg.lng
bgpro.lng
cn.lng
cnpro.lng
cz.lng
czpro.lng
da.lng
dapro.lng
de.chm
.chm
de.lng
depro.lng
deta.dll
.exe windows:4 windows x86 arch:x86

Password: hd

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c9:ec:82:6d:77:4e:85:69:b1:6e:45:33:61:b6:46:33:7a:41:7b:86:73:c6:2b:08:99:f8:87:12:ab:85:e5:96
Signer

Actual PE Digest

c9:ec:82:6d:77:4e:85:69:b1:6e:45:33:61:b6:46:33:7a:41:7b:86:73:c6:2b:08:99:f8:87:12:ab:85:e5:96

Digest Algorithm

sha256

PE Digest Matches

true

5f:26:1d:60:d9:64:89:be:dc:ab:58:3f:03:44:8e:76:a2:ed:7c:9a
Signer

Actual PE Digest

5f:26:1d:60:d9:64:89:be:dc:ab:58:3f:03:44:8e:76:a2:ed:7c:9a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

??0?$ByRefArray_TC@VStorEvent@@@@QAE@KK@Z
??0?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAE@V?$allocator@VFreeSpace@@@1@@Z
??0?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@ABV01@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@ABV01@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@ABV?$allocator@VFreeSpace@@@1@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@I@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@IABVFreeSpace@@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@IABVFreeSpace@@ABV?$allocator@VFreeSpace@@@1@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@XZ
??0FilterCollection@@QAE@ABV0@@Z
??0FreeSpaceVector@@QAE@ABV0@@Z
??0LogicalDriveSpec@@QAE@ABV0@@Z
??0SASLaneInfo@@QAE@ABV0@@Z
??0Serializable@@QAE@ABV0@@Z
??0SmpCommand@@QAE@ABV0@@Z
??0StorEvent@@QAE@ABV0@@Z
??1?$ByRefArray_TC@VStorEvent@@@@QAE@XZ
??1?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@XZ
??1FreeSpaceVector@@QAE@XZ
??1LogicalDriveSpec@@QAE@XZ
??1StorEvent@@QAE@XZ
??1StorEventCollection@@QAE@XZ
??1XmlAttributeList_C@@QAE@XZ
??4?$ByRefArray_TC@VStorEvent@@@@QAEAAV0@ABV0@@Z
??4?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAV01@ABV01@@Z
??4AdapterFeatures@@QAEAAV0@ABV0@@Z
??4BasicArray@@QAEAAV0@ABV0@@Z
??4BasicLogicalDrive@@QAEAAV0@ABV0@@Z
??4ChunkSpec@@QAEAAV0@ABV0@@Z
??4DynamicBuffer@@QAEAAV0@ABV0@@Z
??4DynamicBufferException@@QAEAAV0@ABV0@@Z
??4Enclosure@@QAEAAV0@ABV0@@Z
??4FilterCollection@@QAEAAV0@ABV0@@Z
??4FreeSpace@@QAEAAV0@ABV0@@Z
??4FreeSpaceVector@@QAEAAV0@ABV0@@Z
??4LogicalDriveSpec@@QAEAAV0@ABV0@@Z
??4PreservedLogicalDrive@@QAEAAV0@ABV0@@Z
??4RefSystem@@QAEAAV0@ABV0@@Z
??4RefSystem@@QAEAAV0@PAVSystem@@@Z
??4SASConnector@@QAEAAV0@ABV0@@Z
??4SASLaneInfo@@QAEAAV0@ABV0@@Z
??4SATACommand@@QAEAAV0@ABV0@@Z
??4SCSICommand@@QAEAAV0@ABV0@@Z
??4SES2EnclosureDevice@@QAEAAV0@ABV0@@Z
??4SESEnclosureDevice@@QAEAAV0@ABV0@@Z
??4SafteConfig@@QAEAAV0@ABV0@@Z
??4Serializable@@QAEAAV0@ABV0@@Z
??4SimpleXmlException@@QAEAAV0@ABV0@@Z
??4SimpleXmlParser@@QAEAAV0@ABV0@@Z
??4SmpCommand@@QAEAAV0@ABV0@@Z
??4StorEvent@@QAEAAV0@ABV0@@Z
??4StorLibInit@@QAEAAV0@ABV0@@Z
??4XmlAttributeList_C@@QAEAAV0@ABV0@@Z
??4osFileLockGrabber@@QAEAAV0@ABV0@@Z
??4osFileWriter@@QAEAAV0@ABV0@@Z
??4osThreadLocker@@QAEAAV0@ABV0@@Z
??4osThreadLockerGrabber@@QAEAAV0@ABV0@@Z
??7RefSystem@@QAE_NXZ
??8Addr2@@QBE_NABV0@@Z
??8Addr2@@QBE_NABVAddr@@@Z
??8Addr@@QBE_NABV0@@Z
??8RaidObject@@QBE_NABVAddr2@@@Z
??8RaidObject@@QBE_NABVAddr@@@Z
??8StorTimeInfo@@QAE_NABV0@@Z
??9Addr2@@QBE_NABV0@@Z
??9Addr2@@QBE_NABVAddr@@@Z
??9Addr@@QBE_NABV0@@Z
??9StorTimeInfo@@QAE_NABV0@@Z
??A?$ByRefArray_TC@VStorEvent@@@@QAEAAVStorEvent@@J@Z
??A?$ByRefArray_TC@VStorEvent@@@@QBEABVStorEvent@@J@Z
??A?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAVFreeSpace@@I@Z
??A?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBEABVFreeSpace@@I@Z
??ABuffer@@QAEAAEK@Z
??ADynamicBuffer@@QBEAADK@Z
??BRefSystem@@QBEPAVSystem@@XZ
??CRefSystem@@QBEPAVSystem@@XZ
??DRefSystem@@QBEAAVSystem@@XZ
??MStorTimeInfo@@QAE_NABV0@@Z
??NStorTimeInfo@@QAE_NABV0@@Z
??OStorTimeInfo@@QAE_NABV0@@Z
??PStorTimeInfo@@QAE_NABV0@@Z
??_7FilterCollection@@6B@
??_7SASLaneInfo@@6B@
??_7Serializable@@6B@
??_F?$ByRefArray_TC@VStorEvent@@@@QAEXXZ
??_F?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEXXZ
??_FDynamicBuffer@@QAEXXZ
??_FStorEventCollection@@QAEXXZ
??_FStorTimeInfo@@QAEXXZ
??_FXmlAttributeList_C@@QAEXXZ
?AllocTo@?$ByRefArray_TC@VStorEvent@@@@QAEKK@Z
?BigFreeNumSectors@FreeSpaceVector@@QBE_KXZ
?BigFreeStartSector@FreeSpaceVector@@QBE_KXZ
?Buffer@DynamicBuffer@@QBEPADXZ
?BufferSize@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?BytesAvailable@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?BytesUsed@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?CPtr@Buffer@@QBEPBEXZ
?Clear@DynamicBuffer@@QAEXXZ
?Clear@XmlAttributeList_C@@QAEXXZ
?DST@StorTimeInfo@@QBE_NXZ
?DayOfMonth@StorTimeInfo@@QBEIXZ
?DayOfWeek@StorTimeInfo@@QBEIXZ
?DaylightSavings@StorTimeInfo@@QBE_NXZ
?Detach@DynamicBuffer@@QAEXXZ
?End@DynamicBuffer@@QBEPADXZ
?GetGMTTime@StorTimeInfo@@QAEXXZ
?GetGmtTime@StorTimeInfo@@QAEXXZ
?GetGrowBy@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?GetLocalTime@StorTimeInfo@@QAEXXZ
?GetSystem@RefSystem@@QBEPAVSystem@@XZ
?GrowBy@?$ByRefArray_TC@VStorEvent@@@@QAEKK@Z
?Hour@StorTimeInfo@@QBEIXZ
?Insert@?$ByRefArray_TC@VStorEvent@@@@QAEHJABVStorEvent@@@Z
?InsertBack@?$ByRefArray_TC@VStorEvent@@@@QAEHABVStorEvent@@@Z
?InsertFront@?$ByRefArray_TC@VStorEvent@@@@QAEHABVStorEvent@@@Z
?IsATAsecuritySupport@HardDrive@@QBE_NXZ
?IsArrayBBSSupportEnabled@Adapter@@QBE_NXZ
?IsAsyncRescanActive@Adapter@@QBE_NXZ
?IsAutoFailoverEnabled@Adapter@@QBE_NXZ
?IsBLBUPresent@Adapter@@QBE_NXZ
?IsBatReconditionRequired@Adapter@@QBE_NXZ
?IsBatTempWarning@Adapter@@QBE_NXZ
?IsClustered@Adapter@@QBE_NXZ
?IsConnectorModeChanged@SASConnector@@QAE_NXZ
?IsCopyBackEnabled@Adapter@@QBE_NXZ
?IsDDRCachePreservationEnabled@Adapter@@QBE_NXZ
?IsDataScrubbingActive@Adapter@@QBE_NXZ
?IsEmpty@?$ByRefArray_TC@VStorEvent@@@@QBEHXZ
?IsMaxCacheAssigned@HardDrive@@QBE_NXZ
?IsMaxCacheCapable@HardDrive@@QBE_NXZ
?IsMaxCacheDirty@Adapter@@QBE_NXZ
?IsNCQSupported@HardDrive@@QBE_NXZ
?IsNonSpinning@HardDrive@@QBE_NXZ
?IsPhysicalDrivesDisplayedDuringPOSTEnabled@Adapter@@QBE_NXZ
?IsRead@SCSICommand@@QAE_NXZ
?IsRuntimeBIOSEnabled@Adapter@@QBE_NXZ
?IsSataNCQEnabled@HardDrive@@QBE_NXZ
?IsValid@?$ByRefArray_TC@VStorEvent@@@@QBEHJ@Z
?IsWrite@SCSICommand@@QAE_NXZ
?LastIndex@?$ByRefArray_TC@VStorEvent@@@@QBEJXZ
?MSec@StorTimeInfo@@QBEIXZ
?MSecs@StorTimeInfo@@QBEIXZ
?Milliseconds@StorTimeInfo@@QBEIXZ
?Minute@StorTimeInfo@@QBEIXZ
?Month@StorTimeInfo@@QBEIXZ
?NumEntries@?$ByRefArray_TC@VStorEvent@@@@QBEJXZ
?NumEntries@XmlAttributeList_C@@QBEKXZ
?NumEvents@StorEventCollection@@QBEKXZ
?Obj_P@?$ByRefArray_TC@VStorEvent@@@@QBEPAVStorEvent@@J@Z
?OptimizeAlloc@?$ByRefArray_TC@VStorEvent@@@@QAEKXZ
?OwnBuffer@DynamicBuffer@@QBEHXZ
?Ptr@Buffer@@QAEPAEXZ
?Reason@DynamicBufferException@@QBEHXZ
?Remove@?$ByRefArray_TC@VStorEvent@@@@QAEHJ@Z
?RemoveAll@?$ByRefArray_TC@VStorEvent@@@@QAEXXZ
?RemoveBack@?$ByRefArray_TC@VStorEvent@@@@QAEHXZ
?RemoveFront@?$ByRefArray_TC@VStorEvent@@@@QAEHXZ
?Replace@?$ByRefArray_TC@VStorEvent@@@@QAEHJABVStorEvent@@@Z
?ReplaceBack@?$ByRefArray_TC@VStorEvent@@@@QAEHABVStorEvent@@@Z
?ReplaceFront@?$ByRefArray_TC@VStorEvent@@@@QAEHABVStorEvent@@@Z
?Second@StorTimeInfo@@QBEIXZ
?Set@DynamicBuffer@@QAEXH@Z
?SetClustered@Adapter@@QAEXXZ
?SetGrowBy@?$ByRefArray_TC@VStorEvent@@@@QAEKK@Z
?Size@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?Size@Buffer@@QBEKXZ
?Size@DynamicBuffer@@QBEKXZ
?TimeZone@StorTimeInfo@@QBEIXZ
?Unlock@osThreadLocker@@QAEXXZ
?Year@StorTimeInfo@@QBEIXZ
?_Assign_n@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAEXIABVFreeSpace@@@Z
?_Buy@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAE_NI@Z
?_Construct_n@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEXIABVFreeSpace@@@Z
?_Destroy@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAEXPAVFreeSpace@@0@Z
?_Insert_n@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAEXV?$_Vector_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@IABVFreeSpace@@@Z
?_Tidy@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAEXXZ
?_Ufill@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAEPAVFreeSpace@@PAV3@IABV3@@Z
?_Xinvarg@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@KAXXZ
?_Xlen@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@KAXXZ
?_Xran@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@KAXXZ
?addChunk@LogicalDriveSpec@@QAEXABVChunkSpec@@@Z
?assign@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEXIABVFreeSpace@@@Z
?at@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAVFreeSpace@@I@Z
?at@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBEABVFreeSpace@@I@Z
?back@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAVFreeSpace@@XZ
?back@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBEABVFreeSpace@@XZ
?begin@?$ByRefArray_TC@VStorEvent@@@@QAE?AV?$ByRefIterator@VStorEvent@@@@XZ
?begin@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE?AV?$_Vector_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@XZ
?begin@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBE?AV?$_Vector_const_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@XZ
?begin@Addr2Collection@@QBE?AV?$_Vector_const_iterator@VAddr2@@V?$allocator@VAddr2@@@std@@@std@@XZ
?begin@AddrCollection@@QBE?AV?$_Vector_const_iterator@VAddr@@V?$allocator@VAddr@@@std@@@std@@XZ
?buf@SimpleXmlParser@@IAEPADXZ
?buildChildrenForSingleAdapter@System@@UAEXPAVStorLib@@KAAVRet@@W4EnumGetSystemConfigType@@@Z
?capacity@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBEIXZ
?ch@SimpleXmlParser@@IAEDXZ
?clear@?$ByRefArray_TC@VStorEvent@@@@QAEXXZ
?clear@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEXXZ
?createAssignedSpare@HardDrive@@QAE?AVRet@@ABVAddrCollection@@W4EnumSpareType@@@Z
?createAssignedSpare@HardDrive@@QAE?AVRet@@PAVLogicalDrive@@@Z
?createDedicatedHotSpare@HardDrive@@QAE?AVRet@@ABVAddrCollection@@W4EnumSpareType@@@Z
?createDedicatedHotSpare@HardDrive@@QAE?AVRet@@PAVLogicalDrive@@@Z
?createDedicatedSpare@HardDrive@@QAE?AVRet@@ABVAddrCollection@@W4EnumSpareType@@@Z
?createDedicatedSpare@HardDrive@@QAE?AVRet@@PAVLogicalDrive@@@Z
?createGlobalSpare@HardDrive@@QAE?AVRet@@XZ
?deleteAssignedHotSpare@HardDrive@@QAE?AVRet@@XZ
?deleteAssignedSpare@HardDrive@@QAE?AVRet@@ABVAddrCollection@@@Z
?deleteAssignedSpare@HardDrive@@QAE?AVRet@@XZ
?deleteDedicatedHotSpare@HardDrive@@QAE?AVRet@@ABVAddrCollection@@@Z
?deleteDedicatedHotSpare@HardDrive@@QAE?AVRet@@XZ
?deleteDedicatedSpare@HardDrive@@QAE?AVRet@@ABVAddrCollection@@@Z
?deleteDedicatedSpare@HardDrive@@QAE?AVRet@@XZ
?deleteSpare@HardDrive@@QAE?AVRet@@XZ
?detach@RaidObject@@QAEXPAVSerializable@@@Z
?empty@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBE_NXZ
?end@?$ByRefArray_TC@VStorEvent@@@@QAE?AV?$ByRefIterator@VStorEvent@@@@XZ
?end@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE?AV?$_Vector_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@XZ
?end@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBE?AV?$_Vector_const_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@XZ
?end@Addr2Collection@@QBE?AV?$_Vector_const_iterator@VAddr2@@V?$allocator@VAddr2@@@std@@@std@@XZ
?end@AddrCollection@@QBE?AV?$_Vector_const_iterator@VAddr@@V?$allocator@VAddr@@@std@@@std@@XZ
?erase@?$ByRefArray_TC@VStorEvent@@@@QAE?AV?$ByRefIterator@VStorEvent@@@@ABV2@@Z
?erase@?$ByRefArray_TC@VStorEvent@@@@QAEJJ@Z
?erase@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE?AV?$_Vector_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@V32@0@Z
?erase@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE?AV?$_Vector_iterator@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@2@V32@@Z
?foundEndTag@SimpleXmlParser@@QBEKXZ
?foundSelfTerm@SimpleXmlParser@@QBEKXZ
?foundStartTag@SimpleXmlParser@@QBEKXZ
?front@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAVFreeSpace@@XZ
?front@?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBEABVFreeSpace@@XZ
?getAPIReturn@Ret@@QAEHXZ
?getAbortedCommands@HardDrive@@QAEIXZ
?getActivePath@HardDrive@@QBEPBDXZ
?getActivePath@SES2EnclosureDevice@@QBEPBDXZ
?getAdapter@PhysicalDevice@@QBEPAVAdapter@@XZ
?getAdapterID@Addr@@QBEKXZ
?getAdapterID@RaidObject@@QBEKXZ
?getAdapters@System@@QBE?AV?$vector@PAVAdapter@@V?$allocator@PAVAdapter@@@std@@@std@@XZ
?getAddr2@RaidObject@@QBEABVAddr2@@XZ
?getAddr@Buffer@@QAEPAEXZ
?getAddr@RaidObject@@QBEABVAddr2@@XZ
?getAlarmState@Adapter@@QBE?AW4EnumAlarmState@@XZ
?getAlignmentSize@Array@@QAEPBDXZ
?getAllHardDrives@Adapter@@QBE?AV?$vector@PAVHardDrive@@V?$allocator@PAVHardDrive@@@std@@@std@@XZ
?getAllLogicalDrives@Adapter@@QBE?AV?$vector@PAVLogicalDrive@@V?$allocator@PAVLogicalDrive@@@std@@@std@@XZ
?getArrayCount@Adapter@@QAEPBDXZ
?getArrayDevice@SES2EnclosureDevice@@QBEPAVSESArrayDevice@@K@Z
?getArrayDeviceSAS@SES2EnclosureDevice@@QBEPAVSESArrayDeviceSAS@@K@Z
?getArrayFreeSpacePercentage@Array@@QAENXZ
?getArrayHasGaps@Array@@QAEPBDXZ
?getArrayID@Addr@@QBEKXZ
?getArrayID@ChunkSpec@@QBEKXZ
?getArrayID@HardDrive@@QBEKXZ
?getArrayID@LogicalDrive@@QBEKXZ
?getArrayID@RaidObject@@QBEKXZ
?getArrayName@Array@@QAEPBDXZ
?getArrayPhysicalDriveSize@Array@@QAE_KXZ
?getArrayType@Array@@QAEPBDXZ
?getArrayUtilizationPercentage@Array@@QAENXZ
?getAssignedArray@HardDrive@@QAEPAVArray@@K@Z
?getAssignedArrayVec@HardDrive@@QBE?AV?$vector@PAVArray@@V?$allocator@PAVArray@@@std@@@std@@XZ
?getAssignedLogical@HardDrive@@QBEPAVLogicalDrive@@K@Z
?getAssignedSpareVector@Array@@QAE?AV?$vector@PAVHardDrive@@V?$allocator@PAVHardDrive@@@std@@@std@@XZ
?getAssociatedSplitMirrorArray@Array@@QAEPBDXZ
?getAttachedDeviceType@SASPhy@@QBE?AW4EnumSASDeviceType@@XZ
?getAttachedInitiatorProtocols@SASPhy@@QBEEXZ
?getAttachedLD@LogicalDrive@@QBEKXZ
?getAttachedPhyID@SASPhy@@QBEKXZ
?getAttachedSASaddress@SASPhy@@QBEPBDXZ
?getAttachedTargetProtocols@SASPhy@@QBEEXZ
?getAttachment@RaidObject@@QBEPAVSerializable@@XZ
?getBLBUStatus@Adapter@@QBE?AW4EnumBLBUStatus@@XZ
?getBackPlaneMode@Adapter@@QBE?AW4EnumBackplaneMode@@XZ
?getBackupCreationTimeStamp@LogicalDrive@@QAEPBDXZ
?getBadBlockCount@LogicalDrive@@QBEHXZ
?getBadTargetErrors@HardDrive@@QAEIXZ
?getBatCurrentDraw@Adapter@@QBEKXZ
?getBatFullCapacity@Adapter@@QBEKXZ
?getBatRemainingCapacity@Adapter@@QBEKXZ
?getBatStatus@Adapter@@QBE?AW4EnumBatteryStatus@@XZ
?getBatteryOrCapacitorCount@Adapter@@QAEPBDXZ
?getBatteryOrCapacitorStatus@Adapter@@QAEPBDXZ
?getBatteryTemperature@Adapter@@QBEKXZ
?getBiosBuildNum@Adapter@@QBEKXZ
?getBiosHaltMissingDriveCount@Adapter@@QBEIXZ
?getBlockSize@Array@@QAEPBDXZ
?getBlockSize@HardDrive@@QAEKXZ
?getBlockSize@LogicalDrive@@QAEKXZ
?getBlockSize@LogicalDriveSpec@@QAEIXZ
?getBootController@Adapter@@QAE_NXZ
?getBootDeviceWWN@Adapter@@QBEPADXZ
?getBootType@HardDrive@@QBE?AW4EnumBootVolumeType@@XZ
?getBootType@LogicalDrive@@QBE?AW4EnumBootVolumeType@@XZ
?getBuErrorCode@Adapter@@QAEGXZ
?getBuFuelChargeLevel@Adapter@@QAEGXZ
?getBuFuelCurrentDraw@Adapter@@QAEFXZ
?getBuFuelLifeTimeEstimate@Adapter@@QAEHXZ
?getBuFuelLifeTimeMaxTemperature@Adapter@@QAEHXZ
?getBuFuelLifeTimeMaxVoltage@Adapter@@QAEGXZ
?getBuFuelLifeTimeMinTemperature@Adapter@@QAEHXZ
?getBuFuelMaxCurrentDraw@Adapter@@QAEGXZ
?getBuFuelMaxVoltage@Adapter@@QAEGXZ
?getBuFuelPresentCapacitance@Adapter@@QBEGXZ
?getBuFuelPresentTemperature@Adapter@@QAEHXZ
?getBuFuelPresentVoltage@Adapter@@QAEGXZ
?getBuFuelSerialNumber@Adapter@@QAEPADXZ
?getBuFuelStatus@Adapter@@QAE?AW4EnumSuperCapBUStatus@@XZ
?getBuFuelTemperatureThreshold@Adapter@@QAEHXZ
?getBuHealth@Adapter@@QAEGXZ
?getBuLearnStatus@Adapter@@QBE?AW4EnumSuperCapLearnStatus@@XZ
?getBuStatus@Adapter@@QAE?AW4EnumSuperCapBUStatus@@XZ
?getBuStorageStatus@Adapter@@QAE?AW4EnumSuperCapBUStatus@@XZ
?getBuTimeToScheduledLearn@Adapter@@QBEGXZ
?getBuffer@SimpleXmlParser@@QAEPADXZ
?getBuildNum@Adapter@@QBEKXZ
?getCacheArrayCount@Adapter@@QAEIXZ
?getCacheBackupPowerSource@Adapter@@QAEPBDXZ
?getCacheHasBatteryBackedWriteCache@Adapter@@QAE_NXZ
?getCacheLineSize@LogicalDrive@@QAEGXZ
?getCacheLineSize@LogicalDriveSpec@@QBEIXZ
?getCacheLogicalDriveCount@Adapter@@QAEIXZ
?getCacheMemory@Adapter@@UBEHXZ
?getCachePhysicalDriveCount@Adapter@@QAEIXZ
?getCacheRatio@Adapter@@QAEPBDXZ
?getCacheSerialNumber@Adapter@@QAEPBDXZ
?getCacheState@Adapter@@QAEPBDXZ
?getCacheStateDisabledReason@Adapter@@QAE?AW4EnumCacheStateDisabledReason@@XZ
?getCacheStatus@Adapter@@QAE?AW4EnumCacheStatus@@XZ
?getCaching@LogicalDrive@@QAE_NXZ
?getCandidateSpare@HardDrive@@QBE_NXZ
?getCapacitorTemperature@Adapter@@QAEPBDXZ
?getChannel@PhysicalDevice@@QBEPAVChannel@@XZ
?getChannelID@Addr@@QBEKXZ
?getChannelID@ChunkSpec@@QBEKXZ
?getChannelID@RaidObject@@QBEKXZ
?getChannelID@SASConnector@@QBEHXZ
?getChannelID@SASLaneInfo@@QBEIXZ
?getCharNum@SimpleXmlException@@QBEKXZ
?getChildCount@RaidObject@@QBEIXZ
?getChunk@LogicalDrive@@QBEPAVChunk@@K@Z
?getChunkID@Addr@@QBE_KXZ
?getChunkID@ChunkSpec@@QBE_KXZ
?getChunkID@RaidObject@@QBE_KXZ
?getChunkType@ChunkSpec@@QBE?AW4EnumChunkType@@XZ
?getConcatenate@Array@@QAEPBDXZ
?getConfiguredDriveWCPolicy@Adapter@@QAE?AW4EnumDriveWCPolicyStatus@@XZ
?getConnectorHasOneMode@Adapter@@QBE_NXZ
?getConnectorID@SASConnector@@QBEHXZ
?getConnectorID@SES2EnclosureDevice@@QBEIXZ
?getConnectorIDVec@HardDrive@@QBE?AV?$vector@HV?$allocator@H@std@@@std@@XZ
?getConnectorIDVec@SES2EnclosureDevice@@QBE?AV?$vector@HV?$allocator@H@std@@@std@@XZ
?getConnectorLocation@SASConnector@@QAEPBDXZ
?getConnectorName@SASConnector@@QBEPADXZ
?getConnectorType@SASConnector@@QBEHXZ
?getConsistencyCheckDelay@Adapter@@QAEIXZ
?getConsistencyCheckInconsistencyNotification@Adapter@@QAE_NXZ
?getConsistencyCheckMode@Adapter@@QAE?AW4EnumConsistencyCheckMode@@XZ
?getControllerConfig@System@@UAEXI@Z
?getControllerFamilyName@Adapter@@QAEPBDXZ
?getControllerNVRAMChecksumStatus@Adapter@@QAE?AW4EnumNVRAMChecksumStatus@@XZ
?getControllerPerformantPowerModeSupport@Adapter@@QAE_NXZ
?getControllerPhyIdentifier@SASPhy@@QBEEXZ
?getControllerPowerConsumption@Adapter@@QAEPBDXZ
?getControllerPowerMode@Adapter@@QAE?AW4EnumPowerMode@@XZ
?getControllerPowerModeOperational@Adapter@@QAE?AW4EnumPowerMode@@XZ
?getControllerSASPhyInfo@Adapter@@QAE?AV?$vector@PAVSASPhy@@V?$allocator@PAVSASPhy@@@std@@@std@@XZ
?getControllerSurvivalMode@Adapter@@QAE?AW4EnumSurvivalMode@@XZ
?getControllerWWN@Adapter@@QBEPADXZ
?getControllerZMRMode@Adapter@@QAEPBDXZ
?getControllerlowAutomatedPowerModeSupport@Adapter@@QAE_NXZ
?getControllerlowPowerModeSupport@Adapter@@QAE_NXZ
?getCpldFlashVersion@Adapter@@QBEIXZ
?getCpldLoadVersion@Adapter@@QBEIXZ
?getCreateTimeStamp@LogicalDrive@@QBE?AUtimestamp_struct_t@@XZ
?getCurrentTemperature@HardDrive@@QAEPBDXZ
?getCylinders@LogicalDrive@@QAEPBDXZ
?getDDRCacheState@Adapter@@QBE?AW4EnumDDRCacheState@@XZ
?getDataHardDriveCount@Array@@UAEHXZ
?getDataHardDriveVector@LogicalDrive@@QBE?AV?$vector@PAVHardDrive@@V?$allocator@PAVHardDrive@@@std@@@std@@XZ
?getDataLogicalDriveCount@Adapter@@QAEPBDXZ
?getDataPhysicalDriveCount@Adapter@@QAEPBDXZ
?getDataScrubRate@Adapter@@QBEKXZ
?getDedicatedHSLogical@HardDrive@@QBEPADXZ
?getDedicatedSpare@LogicalDrive@@QBEPAVHardDrive@@K@Z
?getDefaultLDTaskPriority@Adapter@@QBE?AW4EnumPriorityLevel@@XZ
?getDegradedPerformanceOptimization@Adapter@@QAE_NXZ
?getDevID@SASConnector@@QBEHXZ
?getDevice@Adapter@@QBEPAVPhysicalDevice@@K@Z
?getDevice@Channel@@QBEPAVPhysicalDevice@@K@Z
?getDevice@SES2EnclosureDevice@@QBEPAVSESDevice@@K@Z
?getDeviceConnectorIdVector@PhysicalDevice@@QBE?AV?$vector@IV?$allocator@I@std@@@std@@XZ
?getDeviceControllerPhyIdVector@PhysicalDevice@@QBE?AV?$vector@IV?$allocator@I@std@@@std@@XZ
?getDeviceID@Addr@@QBEKXZ
?getDeviceID@ChunkSpec@@QBEKXZ
?getDeviceID@RaidObject@@QBEKXZ
?getDeviceID@SASLaneInfo@@QBEIXZ
?getDeviceMemberCount@Adapter@@UAEIXZ
?getDeviceMemberCount@System@@UAEIXZ
?getDeviceName@Adapter@@QBEPBDXZ
?getDeviceSAS@SES2EnclosureDevice@@QBEPAVSESDeviceSAS@@K@Z
?getDeviceType@PhysicalDevice@@QBE?AW4EnumPhysicalDeviceType@@XZ
?getDeviceVendor@Adapter@@QBEPBDXZ
?getDirtyPageThresholdValue@Adapter@@QBEKXZ
?getDrive@Adapter@@QBEPAVHardDrive@@K@Z
?getDrive@Channel@@QBEPAVHardDrive@@K@Z
?getDrive@LogicalDrive@@QBEPAVHardDrive@@K@Z
?getDriveAuthenticationStatus@HardDrive@@QAEPBDXZ
?getDriveConfigType@HardDrive@@QBE?AW4EnumPDConfigurationType@@XZ
?getDriveEraseOnHBAMode@Adapter@@QAE_NXZ
?getDriveEraseOnMixedMode@Adapter@@QAE_NXZ
?getDriveEraseOnRaidMode@Adapter@@QAE_NXZ
?getDriveIDBlinking@Adapter@@QAE?AV?$vector@KV?$allocator@K@std@@@std@@XZ
?getDriveLetter@LogicalDrive@@QBEPADXZ
?getDriveType@LogicalDrive@@QAEPBDXZ
?getDriveTypeMixing@Array@@QAEPBDXZ
?getDriveUniqueID@HardDrive@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?getDriverBuildNum@Adapter@@QBEKXZ
?getDriverName@Adapter@@QAEPBDXZ
?getDriverSupportsHPSSDSmartPath@Adapter@@QAE_NXZ
?getDrivesFaultToleranceCount@LogicalDrive@@QAEGXZ
?getEccRecoveredReadErrors@HardDrive@@QAEIXZ
?getElement@SES2EnclosureDevice@@QBEPAVSESElement@@K@Z
?getElevatorSort@Adapter@@QAE_NXZ
?getEnclosureID@SES2EnclosureDevice@@QBEIXZ
?getEnclosureKey@SES2EnclosureDevice@@QBEPBDXZ
?getEnclosureLogicalID@SES2EnclosureDevice@@QBEPBDXZ
?getEnclosureVector@SASConnector@@QAE?AV?$vector@PAVSES2EnclosureDevice@@V?$allocator@PAVSES2EnclosureDevice@@@std@@@std@@XZ
?getEncryptedLogicalDriveCount@Adapter@@QAEIXZ
?getEncryptedPhysicalDriveCount@Adapter@@QAEIXZ
?getEncryption@Adapter@@QAEPBDXZ
?getEncryptionControllerPasswordUnlockAttemptsRemaining@Adapter@@QAEIXZ
?getEncryptionCryptoLockoutSecondsRemaining@Adapter@@QAEIXZ
?getEncryptionCryptoPasswordUnlockAttemptsRemaining@Adapter@@QAEIXZ
?getEncryptionKeyManagamentModeValue@Adapter@@QAE?AW4EnumEncryptionKeyManagementMode@@XZ
?getEncryptionLoginStatus@Adapter@@QAEPBDXZ
?getEncryptionLoginStatusEnumValue@Adapter@@QAE?AW4EnumEncryptionLoginStatus@@XZ
?getEncryptionMixedVolumesSettingValue@Adapter@@QAE?AW4EnumEncryptionMixedVolumesSetting@@XZ
?getEncryptionPasswordRecoveryQuestion@Adapter@@QAEPBDXZ
?getEncryptionRtcSramStatus@Adapter@@QAEPBDXZ
?getEncryptionToggleSettingValue@Adapter@@QAE?AW4EnumEncryptionSetting@@XZ
?getEncryptionUserLockoutSecondsRemaining@Adapter@@QAEIXZ
?getEncryptionUserPasswordUnlockAttemptsRemaining@Adapter@@QAEIXZ
?getEnumeratedNegotiatedSpeed@PhysicalDevice@@QBE?AW4EnumSpeed@@XZ
?getEnumeratedProgrammedMaxSpeed@PhysicalDevice@@QBE?AW4EnumSpeed@@XZ
?getEnumeratedSetSpeed@PhysicalDevice@@QBE?AW4EnumSpeed@@XZ
?getErasePattern@HardDrive@@QBE?AW4EnumErasePattern@@XZ
?getErrorTunableCode1@Ret@@QAEIXZ
?getErrorTunableCode2@Ret@@QAEIXZ
?getErrorTunableCode3@Ret@@QAEIXZ
?getErrorTunableProfileID@Adapter@@QBE?AW4EnumErrorTunableProfile@@XZ
?getEstimatedLifeRemainingBasedOnWorkloadToDate@HardDrive@@QAEPBDXZ
?getExpandDrivesPerParityGroup@Array@@QAE_NXZ
?getExpandNumberOfParityGroups@Array@@QAE_NXZ
?getExpandPriority@Adapter@@QAE?AW4EnumPriorityLevel@@XZ
?getExtendedControllerName@Adapter@@QAEPBDXZ
?getExtendedLimitVersion@Adapter@@QAEGXZ
?getExternalPortCount@Adapter@@QAEPBDXZ
?getFailedReadRecovers@HardDrive@@QAEIXZ
?getFailedWriteRecovers@HardDrive@@QAEIXZ
?getFairnessMode@Adapter@@QBE?AW4EnumFairnessMode@@XZ
?getFairnessParameterDetails@Adapter@@QBE?AUFairnessParamDetails@@XZ
?getFan@Enclosure@@QBEPAVSafteFan@@K@Z
?getFctCustInitStringVersion@Adapter@@QBEIXZ
?getFirmwareLevel@PhysicalDevice@@QBEPBDXZ
?getForceOnlineFlags@LogicalDrive@@QBEKXZ
?getFormatErrors@HardDrive@@QAEIXZ
?getFruNumber@PhysicalDevice@@QBEPBDXZ
?getFullStripeSize@LogicalDrive@@QAE?AW4EnumStripeSize@@XZ
?getFunctionalMode@Adapter@@QBE?AW4EnumFunctionalMode@@XZ
?getFunctionalMode@SASConnector@@QAE?AW4EnumConnFunctionalMode@@XZ
?getFwBootBuildNum@Adapter@@QBEKXZ
?getFwBuildNum@Adapter@@QBEKXZ
?getGlobalMaxSASPhyLinkRate@Adapter@@QBE?AW4EnumGlobalMaxSASPhyLinkRate@@XZ
?getGlobalPhysicalDevicesReadCachePolicy@Adapter@@QBE?AW4EnumGlobalPhysicalDevicesReadCachePolicy@@XZ
?getGlobalPhysicalDevicesWriteCachePolicy@Adapter@@QBE?AW4EnumGlobalPhysicalDevicesWriteCachePolicy@@XZ
?getGreenBackupBatteryGoodCount@Adapter@@QAEIXZ
?getGreenBackupBatteryPackCount@Adapter@@QAEIXZ
?getGreenBackupBatteryStatus@Adapter@@QAE?AW4EnumGreenBackupBatteryStatus@@XZ
?getGreenBackupHardWareError@Adapter@@QAE?AW4EnumGreenBackupHardWareError@@XZ
?getGreenBackupMajorVersion@Adapter@@QAEIXZ
?getGreenBackupMinorVersion@Adapter@@QAEIXZ
?getGreenBackupPowerStatus@Adapter@@QAE?AW4EnumGreenBackupPowerStatus@@XZ
?getGreenBackupPreservationSet@Adapter@@QAE_NXZ
?getGreenBackupPreservationStatus@Adapter@@QAE_NXZ
?getGroupNum@ChunkSpec@@QBEKXZ
?getHBADriveWCPolicy@Adapter@@QAE?AW4EnumDriveWCPolicyStatus@@XZ
?getHDConnectorFunctionalMode@HardDrive@@QAE?AW4EnumConnFunctionalMode@@XZ
?getHSTemperature@Adapter@@QBEJXZ
?getHSThresholdDead@Adapter@@QBEJXZ
?getHSThresholdHi@Adapter@@QBEJXZ
?getHSThresholdLo@Adapter@@QBEJXZ
?getHSThresholdMaxContinous@Adapter@@QBEJXZ
?getHSThresholdWarning@Adapter@@QBEJXZ
?getHardDrives@SASConnector@@QBEXAAV?$vector@PAVHardDrive@@V?$allocator@PAVHardDrive@@@std@@@std@@@Z
?getHardReadErrors@HardDrive@@QAEIXZ
?getHardWriteErrors@HardDrive@@QAEIXZ
?getHardwareErrors@HardDrive@@QAEIXZ
?getHardwareRevision@Adapter@@QAEPBDXZ
?getHasDualDomainPath@HardDrive@@QBE_NXZ
?getHasDualDomainPath@SES2EnclosureDevice@@QBE_NXZ

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
deta1.dll
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

99:3c:a0:41:23:93:d5:52:c6:5b:fc:1d:7d:ea:c6:d1:24:1f:a6:f0:40:76:ac:07:14:f8:fc:d5:bf:6b:dd:a4
Signer

Actual PE Digest

99:3c:a0:41:23:93:d5:52:c6:5b:fc:1d:7d:ea:c6:d1:24:1f:a6:f0:40:76:ac:07:14:f8:fc:d5:bf:6b:dd:a4

Digest Algorithm

sha256

PE Digest Matches

true

11:0d:66:3b:32:e8:20:59:bd:23:d0:9a:9e:35:93:68:15:44:58:17
Signer

Actual PE Digest

11:0d:66:3b:32:e8:20:59:bd:23:d0:9a:9e:35:93:68:15:44:58:17

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
deta2.dlz
.zip
detat.dll
.exe windows:5 windows x86 arch:x86

1b111a795614955d9acc0a9aff0c8761

Code Sign

6a:80:cf:0e:7f:07:9b:03:27:f4:23:8d:0a:42:c4:a2
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/01/2015, 00:00

Not After

09/03/2018, 23:59

Subject

CN=ATTO Technology\, Inc.,O=ATTO Technology\, Inc.,L=Amherst,ST=New York,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:b4:55:35:1e:bb:1a:b2:4f:97:ef:07:fe:2a:b3:0b:8a
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for Standard - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

74:ab:89:2e:69:e4:31:23:08:c4:9d:ac:15:ed:03:63:f0:e9:5b:76
Signer

Actual PE Digest

74:ab:89:2e:69:e4:31:23:08:c4:9d:ac:15:ed:03:63:f0:e9:5b:76

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
CloseHandle
CreateFileA
GetCurrentProcess
GetProcAddress
LoadLibraryA
FormatMessageA
GetLastError
SetLastError
Sleep
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
ExitProcess
HeapAlloc
HeapFree
ReadFile
SetConsoleCtrlHandler
GetCurrentThreadId
GetCommandLineA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
WriteFile
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetProcessHeap

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
detect.dat
detect.dll
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

3c:10:fc:8c:7d:92:6c:b4:f6:7c:eb:29:8e:c4:ce:d7:b6:67:5a:84:58:62:e9:0a:35:25:ab:0a:6d:d2:29:76
Signer

Actual PE Digest

3c:10:fc:8c:7d:92:6c:b4:f6:7c:eb:29:8e:c4:ce:d7:b6:67:5a:84:58:62:e9:0a:35:25:ab:0a:6d:d2:29:76

Digest Algorithm

sha256

PE Digest Matches

true

87:af:c9:04:90:09:ec:59:8c:14:bf:d7:6c:2c:98:b3:19:25:90:dd
Signer

Actual PE Digest

87:af:c9:04:90:09:ec:59:8c:14:bf:d7:6c:2c:98:b3:19:25:90:dd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 288KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dethp.dll
.exe windows:5 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

46:ce:f0:2f:4e:dc:aa:2d:d5:96:7a:d6:25:d3:29:e2:0a:04:09:53:e6:6c:8d:12:9c:8f:42:24:81:a5:ca:90
Signer

Actual PE Digest

46:ce:f0:2f:4e:dc:aa:2d:d5:96:7a:d6:25:d3:29:e2:0a:04:09:53:e6:6c:8d:12:9c:8f:42:24:81:a5:ca:90

Digest Algorithm

sha256

PE Digest Matches

true

84:28:07:69:0f:ab:10:79:68:ed:11:f1:9f:01:c6:c7:ac:13:64:7f
Signer

Actual PE Digest

84:28:07:69:0f:ab:10:79:68:ed:11:f1:9f:01:c6:c7:ac:13:64:7f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 5.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dethp2.dll
.exe windows:6 windows x64 arch:x64

fba39fb001f0677766a082b201e3f431

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

40:64:b5:d2:8d:11:50:9e:c8:a7:87:16:6b:5d:46:4e:90:37:92:1c:5a:e5:0c:e6:e4:c6:aa:1e:68:c4:8c:94
Signer

Actual PE Digest

40:64:b5:d2:8d:11:50:9e:c8:a7:87:16:6b:5d:46:4e:90:37:92:1c:5a:e5:0c:e6:e4:c6:aa:1e:68:c4:8c:94

Digest Algorithm

sha256

PE Digest Matches

true

3b:9d:c1:08:09:0a:9f:82:2a:5d:0a:56:b2:1d:44:af:11:d6:c3:f9
Signer

Actual PE Digest

3b:9d:c1:08:09:0a:9f:82:2a:5d:0a:56:b2:1d:44:af:11:d6:c3:f9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\jenkins\workspace\SSAPublisher\bin\hpessacli\windowsX64\bld\ssacli.pdb

Imports

cfgmgr32

CM_Get_Device_Interface_PropertyW
CM_Get_Device_Interface_List_SizeW
CM_Get_Sibling
CM_Get_Parent
CM_Get_Device_Interface_ListW
CM_Locate_DevNodeW
CM_Get_DevNode_PropertyW
CM_Get_Device_ID_Size
CM_Get_Child
CM_Get_Device_IDW

wsock32

gethostname
WSAGetLastError
connect
WSACleanup
htons
ioctlsocket
gethostbyname
WSAStartup
recv
send
__WSAFDIsSet
select
closesocket
socket

kernel32

OpenMutexA
QueryPerformanceFrequency
CloseHandle
GetFileAttributesA
GetComputerNameExA
GetModuleFileNameA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseMutex
WaitForSingleObject
CreateMutexA
FindVolumeClose
HeapAlloc
HeapFree
GetProcessHeap
GetWindowsDirectoryA
LocalAlloc
LocalFree
FindFirstVolumeA
FindNextVolumeA
GetVolumePathNamesForVolumeNameA
WideCharToMultiByte
GetStdHandle
PeekConsoleInputA
GetConsoleScreenBufferInfo
CreateEventA
EncodePointer
DecodePointer
MultiByteToWideChar
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
Sleep
ResetEvent
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RtlPcToFileHeader
RaiseException
RtlUnwindEx
FreeLibrary
LoadLibraryExW
GetConsoleMode
ReadConsoleInputA
SetConsoleMode
ExitProcess
GetModuleHandleExW
ReadFile
CreateThread
ExitThread
ResumeThread
FreeLibraryAndExitThread
HeapReAlloc
WriteFile
GetCommandLineA
GetCommandLineW
GetACP
GetCurrentThread
CreateFileW
WriteConsoleW
GetFileType
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
GetConsoleCP
GetTimeZoneInformation
SetFilePointerEx
ReadConsoleW
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetStdHandle
HeapSize
SetEndOfFile
GetVersionExA
GetLastError
DeviceIoControl
CreateFileA
SetEvent
GetModuleHandleA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

user32

wsprintfA

advapi32

RegOpenKeyExA
OpenThreadToken
RegCloseKey
RegEnumKeyExA
SetSecurityDescriptorDacl
RevertToSelf
AccessCheck
SetSecurityDescriptorOwner
AllocateAndInitializeSid
ImpersonateSelf
IsValidSecurityDescriptor
OpenProcessToken
FreeSid
InitializeSecurityDescriptor
InitializeAcl
GetLengthSid
AddAccessAllowedAce
SetSecurityDescriptorGroup

Sections

.text
Size: 7.7MB - Virtual size: 7.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 185KB - Virtual size: 800KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dethpt.dll
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ef:be:46:4d:04:f7:5e:7c:f4:9c:10:b8:ef:c9:c8:ff:85:ab:82:e9:41:28:89:64:68:9a:27:4c:b3:db:0f:74
Signer

Actual PE Digest

ef:be:46:4d:04:f7:5e:7c:f4:9c:10:b8:ef:c9:c8:ff:85:ab:82:e9:41:28:89:64:68:9a:27:4c:b3:db:0f:74

Digest Algorithm

sha256

PE Digest Matches

true

d2:e7:45:30:66:76:32:17:4e:83:c5:47:82:ec:7a:b5:cc:96:38:e5
Signer

Actual PE Digest

d2:e7:45:30:66:76:32:17:4e:83:c5:47:82:ec:7a:b5:cc:96:38:e5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detjm.dll
.exe windows:4 windows x86 arch:x86

bf3d644c7db35d95757892b7e5bd58bb

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

08:db:13:e8:ec:06:61:fe:8f:e7:12:83:27:64:25:68:aa:6f:19:38:5b:89:1b:36:fc:90:be:8a:24:10:c6:bb
Signer

Actual PE Digest

08:db:13:e8:ec:06:61:fe:8f:e7:12:83:27:64:25:68:aa:6f:19:38:5b:89:1b:36:fc:90:be:8a:24:10:c6:bb

Digest Algorithm

sha256

PE Digest Matches

true

b6:05:c5:d9:ec:7d:0f:6e:8e:f1:5d:c2:b8:a2:dc:46:1d:fa:ac:d9
Signer

Actual PE Digest

b6:05:c5:d9:ec:7d:0f:6e:8e:f1:5d:c2:b8:a2:dc:46:1d:fa:ac:d9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

CloseHandle
CreateFileA
CreateMutexA
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentProcess
GetLastError
GetModuleHandleA
GetProcAddress
GetWindowsDirectoryA
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
OpenMutexA
ReadFile
SetFilePointer
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
_winmajor
abort
atexit
calloc
ctime
free
fwrite
malloc
memcpy
memset
printf
putchar
puts
signal
sprintf
strcat
strncmp
strncpy
time
vfprintf

user32

ExitWindowsEx
FindWindowA
SendMessageA

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 34KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detjm2.dll
.exe windows:4 windows x86 arch:x86

bf3d644c7db35d95757892b7e5bd58bb

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ad:b4:ad:fe:f0:50:24:40:d5:ad:c8:05:86:04:29:c5:53:27:31:f0:b2:59:f2:67:ab:10:f2:e3:84:d7:b7:44
Signer

Actual PE Digest

ad:b4:ad:fe:f0:50:24:40:d5:ad:c8:05:86:04:29:c5:53:27:31:f0:b2:59:f2:67:ab:10:f2:e3:84:d7:b7:44

Digest Algorithm

sha256

PE Digest Matches

true

08:a1:02:19:33:0d:a2:04:91:74:71:64:02:13:34:b2:97:18:0d:f2
Signer

Actual PE Digest

08:a1:02:19:33:0d:a2:04:91:74:71:64:02:13:34:b2:97:18:0d:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

CloseHandle
CreateFileA
CreateMutexA
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentProcess
GetLastError
GetModuleHandleA
GetProcAddress
GetWindowsDirectoryA
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
OpenMutexA
ReadFile
SetFilePointer
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
_winmajor
abort
atexit
calloc
ctime
free
fwrite
malloc
memcpy
memset
printf
putchar
puts
signal
sprintf
strcat
strncmp
strncpy
time
vfprintf

user32

ExitWindowsEx
FindWindowA
SendMessageA

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 34KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detjmx.dll
.exe windows:5 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1a:88:57:94:53:66:e9:8b:f4:8a:bb:99:03:17:e5:ad:cd:10:82:ca:3c:27:c7:0e:1e:c0:a9:67:7f:40:29:20
Signer

Actual PE Digest

1a:88:57:94:53:66:e9:8b:f4:8a:bb:99:03:17:e5:ad:cd:10:82:ca:3c:27:c7:0e:1e:c0:a9:67:7f:40:29:20

Digest Algorithm

sha256

PE Digest Matches

true

f3:d9:c6:28:1a:de:a7:d0:e3:d5:02:83:8d:8f:50:aa:71:98:0b:c2
Signer

Actual PE Digest

f3:d9:c6:28:1a:de:a7:d0:e3:d5:02:83:8d:8f:50:aa:71:98:0b:c2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detmv.dll
.exe windows:5 windows x86 arch:x86

563a625f6f73377684bce325017e6f3e

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

15:f1:b9:bd:4c:44:f4:08:67:5d:11:97:c5:25:62:6c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

09/03/2012, 00:00

Not After

05/04/2015, 23:59

Subject

CN=Marvell Semiconductor,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Wireless,O=Marvell Semiconductor,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

f6:09:78:b3:57:ad:32:64:71:6b:86:32:47:43:51:75:ea:4c:fa:ea:ad:94:91:84:be:51:fd:9a:68:c7:3d:e6
Signer

Actual PE Digest

f6:09:78:b3:57:ad:32:64:71:6b:86:32:47:43:51:75:ea:4c:fa:ea:ad:94:91:84:be:51:fd:9a:68:c7:3d:e6

Digest Algorithm

sha256

PE Digest Matches

true

b9:cb:f4:91:e8:9a:f0:09:38:30:11:41:aa:6a:f2:ca:30:21:0c:74
Signer

Actual PE Digest

b9:cb:f4:91:e8:9a:f0:09:38:30:11:41:aa:6a:f2:ca:30:21:0c:74

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mv_api

MV_Flash_NVSRAM
MV_LD_LockSystemDisk
MV_LD_UnlockSystemDisk
MV_PD_GetSmartStatus
MV_Download_SSD_Microcode
MV_SSD_SmartReadData
MV_Adapter_Write_Register
MV_PD_FreeHD2GlobalSpare
MV_PD_FreeHD2DGSpare
MV_PD_GET_SMART_INFO
MV_AdapterMute
MV_BBU_ChangePower
MV_PD_SetConfig
MV_PD_SetHDStatus
MV_LD_SetConfig
MV_Adapter_SetConfig
MV_Adapter_Read_Register
MV_HyperDuo_RemoveSegments
MV_HyperDuo_GetSegment
MV_HyperDuo_AddSegment
MV_SSD_Diagnostic
MV_PD_WipeHDMDD
MV_SetDriverMode
MV_PD_StartDataScrub
MV_API_RescanAdapter
MV_API_GetRescanCount
MV_LD_Report
MV_LD_DG_StartRebuild
MV_LD_StartRebuild
MV_PD_RCT_GetCount
MV_PD_GetRCT
MV_LD_PauseAll
MV_API_Initialize
MV_API_Version
MV_API_Finalize
MV_PD_StartMediaPatrol
MV_PD_BGAControl
MV_DG_StartMigration
MV_LD_GetMigratedLdSize
MV_LD_StartMigration
MV_DBG_Map
MV_LocateArrayDevice
MV_LD_StartINIT
MV_Adapter_GetInfo
MV_LD_GetTargetLDInfo
MV_BLK_GetHDBlock
MV_PD_GetFreeSpaceInfo
MV_PD_GetBGAStatus
MV_DiskHasOS
MV_PD_GetPMInfo
MV_PD_GetExpanderInfo
MV_LD_Import
MV_Hypper_GetVDLink
MV_LD_GetMaxSize
MV_PD_GetConfig
MV_LD_GetConfig
MV_Adapter_GetConfig
MV_GetDriverMode
MV_AES_ForcePDOnline
MV_Flash_Bin
MV_Flash_GetVersion
MV_Flash_Erase
MV_EVT_GetEvent
MV_ENC_GetElementConfig
MV_ENC_GetElementInfo
MV_ENC_GetEnclosureInfo
MV_HyperDuo_RemoveEntriesTable
MV_LD_GetCrossInfo
MV_HyperDuo_GetEntriesTableInfo
MV_HyperDuo_AddFSEntries
MV_PassThrough
MV_Hypper_GetVDMagic
MV_LD_Delete
MV_DG_Delete
MV_PD_Spare2FreeHD
MV_DBG_PDWR
MV_DBG_RCT
MV_DBG_ErrorInjection
MV_CreateOrModify_VD
MV_PD_GetHDInfo_Ext
MV_PD_GetHDInfo
MV_CreateOrModify_DG
MV_DG_GetConfig
MV_DG_SetConfig
MV_LD_DG_QuickCreate
MV_BBU_GetInfo
MV_PD_GetHDRaidStatus
MV_PD_GetMBRInfo
MV_LD_Create
MV_DG_GetInfo
MV_DG_BGAControl
MV_BLK_GetInfo
MV_LD_GetInfo
MV_LD_GetStatus
MV_LD_StartConsistencyCheck
MV_LD_BGAControl
MV_AES_GetPortConfig
MV_AES_SetPortConfig
MV_AES_SetLink
MV_AES_ClearLink
MV_AES_ChangePwd
MV_AES_VerifyKey
MV_AES_GetEntryConfig
MV_AES_GetEntryInfo
MV_AES_OnlyGetEntryInfo
MV_AES_OnlyGetPortInfo
MV_AES_SetEntryConfig
MV_Adapter_GetCount

kernel32

InitializeCriticalSection
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetConsoleMode
GetConsoleCP
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
InterlockedExchange
GetTimeZoneInformation
WideCharToMultiByte
GetModuleHandleA
HeapSize
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetModuleFileNameA
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCommandLineA
ExitProcess
GetProcAddress
GetModuleHandleW
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapAlloc
HeapFree
SetConsoleCtrlHandler
DeleteFileA
SetFilePointer
GetFileSize
GetLogicalDrives
WriteFile
SetFilePointerEx
ReadFile
CreateFileA
DeviceIoControl
CloseHandle
GetLastError
Sleep

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsExA

Sections

.text
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
detp.dll
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c4:9a:b9:4b:7e:1a:3d:dc:15:ac:18:55:7f:76:99:04:4f:69:b8:b4:17:81:73:59:09:d0:e2:45:ed:b3:0d:5a
Signer

Actual PE Digest

c4:9a:b9:4b:7e:1a:3d:dc:15:ac:18:55:7f:76:99:04:4f:69:b8:b4:17:81:73:59:09:d0:e2:45:ed:b3:0d:5a

Digest Algorithm

sha256

PE Digest Matches

true

4f:7a:1e:33:19:49:f3:7a:9c:c4:39:3d:34:fc:0d:44:f0:a6:9e:a1
Signer

Actual PE Digest

4f:7a:1e:33:19:49:f3:7a:9c:c4:39:3d:34:fc:0d:44:f0:a6:9e:a1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 348KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detpex.dlz
.zip
detrc.dll
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

35:8a:ba:06:c1:bb:52:2f:7c:36:24:8c:29:5a:e1:e0:0f:de:47:71:fa:2b:df:a3:e2:2f:56:0a:09:b5:ef:cc
Signer

Actual PE Digest

35:8a:ba:06:c1:bb:52:2f:7c:36:24:8c:29:5a:e1:e0:0f:de:47:71:fa:2b:df:a3:e2:2f:56:0a:09:b5:ef:cc

Digest Algorithm

sha256

PE Digest Matches

true

1d:80:66:90:c3:65:fc:cf:9d:ec:ca:4f:6d:ac:a8:e9:ef:8a:26:cd
Signer

Actual PE Digest

1d:80:66:90:c3:65:fc:cf:9d:ec:ca:4f:6d:ac:a8:e9:ef:8a:26:cd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 2.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 129KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detrca.dll
.exe windows:6 windows x86 arch:x86

45e9ae5fbcf125fe3028bd1d6bc8504c

Code Sign

02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2031, 00:00

Subject

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:84:57:2f:52:bf:9f:e1:b5:43:50:93:11:fd:3d:ca
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/07/2018, 00:00

Not After

11/08/2021, 12:00

Subject

SERIALNUMBER=711524,CN=Advanced Micro Devices\, Inc.,OU=FCH EV Cert Token (Vikas Sharma),O=Advanced Micro Devices\, Inc.,L=Sunnyvale,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ca:b6:77:1a:16:38:12:cb:8e:ce:ba:e6:04:f9:8a:53:40:49:a9:8a
Signer

Actual PE Digest

ca:b6:77:1a:16:38:12:cb:8e:ce:ba:e6:04:f9:8a:53:40:49:a9:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

FileTimeToSystemTime
GetLastError
Sleep
CreateFileA
GetDriveTypeA
ReadFileEx
WriteFileEx
DeviceIoControl
LoadLibraryA
EnterCriticalSection
LeaveCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventA
GetExitCodeProcess
WaitForSingleObject
GetProcAddress
FreeLibrary
GetFileAttributesExA
FindNextFileA
FindFirstFileA
FindClose
GetComputerNameA
GetSystemDirectoryA
SleepEx
GetCurrentDirectoryA
GetCurrentProcess
CloseHandle
CreateProcessA
SetEndOfFile
SetEnvironmentVariableA
InitializeCriticalSection
GetSystemTimeAsFileTime
OutputDebugStringW
GetStringTypeW
WriteConsoleW
HeapReAlloc
LoadLibraryExW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
HeapFree
HeapAlloc
MultiByteToWideChar
WideCharToMultiByte
GetFileAttributesExW
RaiseException
RtlUnwind
GetConsoleMode
GetNumberOfConsoleInputEvents
PeekConsoleInputA
ReadConsoleInputA
SetConsoleMode
GetCommandLineA
ExitProcess
GetModuleHandleExW
AreFileApisANSI
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetTickCount
GetModuleHandleW
CreateSemaphoreW
DeleteCriticalSection
FatalAppExitA
FlushFileBuffers
WriteFile
GetConsoleCP
GetStdHandle
GetFileType
ReadFile
ReadConsoleW
SetFilePointerEx
SetStdHandle
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCurrentThread
GetCurrentThreadId
GetProcessHeap
GetModuleFileNameW
GetTimeZoneInformation
CreateFileW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetConsoleCtrlHandler

user32

FindWindowA

advapi32

RegQueryInfoKeyA
RegEnumValueA
RegCreateKeyExA
RegCloseKey
StartServiceA
QueryServiceStatus
OpenServiceA
OpenSCManagerA
DeleteService
CreateServiceA
ControlService
CloseServiceHandle
ChangeServiceConfigA
GetTokenInformation
OpenProcessToken
RegQueryValueExA

wsock32

setsockopt
send
recv
socket
htons
connect
closesocket
gethostbyaddr
gethostbyname
gethostname
WSAStartup
ioctlsocket

Sections

.text
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
detrd.dll
.sys windows:6 windows x86 arch:x86

f4c846df9b59cf3d80de2994bd22c0b7

Code Sign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

33:00:00:00:36:7b:02:ea:cd:06:50:7a:73:00:00:00:00:00:36
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/08/2013, 20:28

Not After

15/08/2023, 20:38

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

4b:3c:fb:a3:fc:82:2e:48:e9:71:5b:fb:b6:9d:82:b9:27:98:db:62
Signer

Actual PE Digest

4b:3c:fb:a3:fc:82:2e:48:e9:71:5b:fb:b6:9d:82:b9:27:98:db:62

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\projects\rawdisk\bin\wxp\fre\i386\rawdsk3.pdb

Imports

ntoskrnl.exe

MmUnlockPages
KeSetEvent
IoDeleteDevice
IoDeleteSymbolicLink
RtlInitUnicodeString
RtlPrefixUnicodeString
ExAllocatePoolWithTag
FsRtlIsNtstatusExpected
MmProbeAndLockPages
ExRaiseStatus
IoAllocateMdl
MmMapLockedPagesSpecifyCache
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
memcpy
ZwClose
ObfDereferenceObject
ObQueryNameString
ObReferenceObjectByHandle
IoFileObjectType
ZwOpenFile
RtlAppendUnicodeStringToString
KeUnstackDetachProcess
MmSystemRangeStart
KeStackAttachProcess
ZwQueryInformationProcess
ObOpenObjectByPointer
PsLookupProcessByProcessId
IoBuildAsynchronousFsdRequest
IoBuildSynchronousFsdRequest
RtlCompareUnicodeString
PsGetCurrentProcessId
KeQuerySystemTime
RtlFreeAnsiString
RtlUnicodeStringToAnsiString
IoFreeMdl
MmGetSystemRoutineAddress
IoCreateSymbolicLink
IoCreateDevice
ObfReferenceObject
_allmul
KeLeaveCriticalRegion
ExReleaseFastMutexUnsafe
IoGetRelatedDeviceObject
ExAcquireFastMutexUnsafe
KeEnterCriticalRegion
ZwWaitForSingleObject
ZwDeviceIoControlFile
IoGetAttachedDevice
memset
KeGetCurrentThread
ZwCreateFile
PsInitialSystemProcess
ExReleaseRundownProtection
ObCloseHandle
ExEnumHandleTable
ExAcquireRundownProtection
IoAllocateIrp
ZwUnmapViewOfSection
ZwMapViewOfSection
ZwCreateSection
ZwReadFile
ZwWriteFile
_allrem
RtlCompareMemory
MmUnmapIoSpace
MmMapIoSpace
PsGetVersion
PsCreateSystemThread
KeTickCount
KeBugCheckEx
ExFreePoolWithTag
IoFreeIrp
RtlGetVersion
IofCompleteRequest
RtlInsertElementGenericTable
RtlDeleteElementGenericTable
RtlGetElementGenericTable
ExAllocateFromPagedLookasideList
ExInitializePagedLookasideList
ExFreeToPagedLookasideList
RtlLookupElementGenericTable
ExDeletePagedLookasideList
ZwQuerySymbolicLinkObject
ZwOpenSymbolicLinkObject
RtlAppendUnicodeToString
FsRtlDissectName
PsTerminateSystemThread
PsSetLoadImageNotifyRoutine
PsSetCreateProcessNotifyRoutine
RtlInitializeGenericTable
KeDelayExecutionThread
PsRemoveLoadImageNotifyRoutine
RtlUnwind

hal

ExReleaseFastMutex
KeGetCurrentIrql
ExAcquireFastMutex

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 896B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
detrd64.dll
.sys windows:6 windows x64 arch:x64

e233f2cdc91faafe1467d9e52f166213

Code Sign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

33:00:00:00:36:7b:02:ea:cd:06:50:7a:73:00:00:00:00:00:36
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/08/2013, 20:28

Not After

15/08/2023, 20:38

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

4f:5b:ab:65:b9:64:5d:50:fd:41:d0:10:94:3b:bb:f6:0a:65:36:d7
Signer

Actual PE Digest

4f:5b:ab:65:b9:64:5d:50:fd:41:d0:10:94:3b:bb:f6:0a:65:36:d7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

c:\projects\rawdisk\bin\wnet\fre\amd64\rawdsk3.pdb

Imports

ntoskrnl.exe

MmSystemRangeStart
ExAllocatePoolWithTag
ExRaiseStatus
IoBuildDeviceIoControlRequest
IoDeleteSymbolicLink
ExFreePoolWithTag
PsLookupProcessByProcessId
IoBuildSynchronousFsdRequest
RtlInitUnicodeString
IoDeleteDevice
KeSetEvent
MmGetSystemRoutineAddress
KeInitializeEvent
RtlUnicodeStringToAnsiString
RtlGetVersion
IoFreeMdl
KeUnstackDetachProcess
IoFileObjectType
MmMapLockedPagesSpecifyCache
IoBuildAsynchronousFsdRequest
RtlPrefixUnicodeString
ZwClose
RtlAppendUnicodeStringToString
IofCompleteRequest
ObReferenceObjectByHandle
KeWaitForSingleObject
IoFreeIrp
RtlFreeAnsiString
MmProbeAndLockPages
RtlCompareUnicodeString
MmUnlockPages
ZwQueryInformationProcess
IoCreateSymbolicLink
PsGetCurrentProcessId
ObfDereferenceObject
IoCreateDevice
ZwOpenFile
FsRtlIsNtstatusExpected
ObOpenObjectByPointer
KeStackAttachProcess
IoAllocateMdl
IofCallDriver
ExReleaseFastMutexUnsafe
KeLeaveCriticalRegion
IoGetAttachedDevice
IoGetRelatedDeviceObject
IoIs32bitProcess
KeEnterCriticalRegion
ExAcquireFastMutexUnsafe
ZwWaitForSingleObject
ZwDeviceIoControlFile
ObfReferenceObject
ExAcquireRundownProtection
ZwReadFile
ZwMapViewOfSection
ExReleaseRundownProtection
ExEnumHandleTable
ZwCreateFile
ZwUnmapViewOfSection
ObCloseHandle
PsInitialSystemProcess
IoAllocateIrp
RtlCompareMemory
ZwCreateSection
ZwWriteFile
MmUnmapIoSpace
MmMapIoSpace
ExReleaseFastMutex
ExAcquireFastMutex
PsCreateSystemThread
PsGetVersion
KeBugCheckEx
RtlGetElementGenericTable
PsSetLoadImageNotifyRoutine
ZwQuerySymbolicLinkObject
ExpInterlockedPushEntrySList
RtlAppendUnicodeToString
ExpInterlockedPopEntrySList
RtlDeleteElementGenericTable
PsSetCreateProcessNotifyRoutine
ZwOpenSymbolicLinkObject
KeDelayExecutionThread
ExDeletePagedLookasideList
PsTerminateSystemThread
RtlLookupElementGenericTable
ExQueryDepthSList
PsRemoveLoadImageNotifyRoutine
FsRtlDissectName
ExInitializePagedLookasideList
RtlInitializeGenericTable
RtlInsertElementGenericTable
__C_specific_handler

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PAGE
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
detre.dll
.exe windows:6 windows x86 arch:x86

72700caeca16be4e47132f3bc4495e6b

Code Sign

56:00:00:01:ae:05:ba:55:41:27:d9:f6:fb:00:00:00:00:01:ae
Certificate

Issuer

CN=Intel External Issuing CA 7B,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Not Before

23/11/2016, 15:15

Not After

23/11/2018, 15:15

Subject

CN=Intel(R) Rapid Storage Technology enterprise,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

06:9b:5e:99:27:72:84:c8:76:7f:13:68:a7:de:b0:f3
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

28/10/2015, 00:00

Not After

17/06/2021, 23:59

Subject

CN=Intel External Issuing CA 7B,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:35:d8:d5:59:5b:06:71:41:2b:00:00:00:00:00:35
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/08/2013, 20:26

Not After

15/08/2023, 20:36

Subject

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

69:b2:d1:cc:f0:2e:20:dc:c9:5c:62:89:4f:7f:9e:5f:5f:c0:57:bf
Certificate

Issuer

CN=QuoVadis Root Certification Authority,OU=Root Certification Authority,O=QuoVadis Limited,C=BM

Not Before

30/05/2014, 16:35

Not After

17/03/2021, 18:33

Subject

CN=QuoVadis Issuing CA G4,O=QuoVadis Limited,C=BM

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:a5:d5:25:1f:75:29:a5:ba:3c:73:b4:49:6f:a2:c1:b0:c5:6c:9f
Certificate

Issuer

CN=QuoVadis Issuing CA G4,O=QuoVadis Limited,C=BM

Not Before

20/04/2018, 16:52

Not After

17/03/2021, 18:33

Subject

CN=timestamp.intel.com,OU=Thales TSS ESN:0E37-9649-08C5,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

b5:60:29:1e:25:65:19:5e:9b:37:ef:f2:74:67:21:ff:23:55:d1:18:ff:fc:f0:c5:ca:74:8e:66:3c:4b:32:7b
Signer

Actual PE Digest

b5:60:29:1e:25:65:19:5e:9b:37:ef:f2:74:67:21:ff:23:55:d1:18:ff:fc:f0:c5:ca:74:8e:66:3c:4b:32:7b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\qba1\workspace\22295\vobs\SSE_Storage_Middleware\ISDI_2\output\ReleaseStatic\Win32\rstcli.pdb

Imports

cfgmgr32

CM_Locate_DevNode_ExA
CM_Reenumerate_DevNode_Ex

kernel32

CloseHandle
GetLastError
DeviceIoControl
Sleep
CreateSemaphoreA
LocalFree
FormatMessageA
ResetEvent
CreateIoCompletionPort
GetQueuedCompletionStatus
CreateFileA
SetEvent
WaitForSingleObject
CreateEventA
CreateThread
GetCurrentThreadId
GetExitCodeThread
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
SetLastError
lstrlenA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
PostQueuedCompletionStatus
SetEndOfFile
CreateFileW
WriteConsoleW
SetStdHandle
OutputDebugStringW
SetFilePointerEx
ReadConsoleW
MoveFileExW
DeleteFileW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
VirtualQuery
FreeEnvironmentStringsW
WideCharToMultiByte
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
HeapFree
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
GetCommandLineA
RaiseException
RtlUnwind
IsDebuggerPresent
LoadLibraryExW
IsProcessorFeaturePresent
HeapAlloc
HeapReAlloc
GetACP
ReadFile
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetProcessHeap
HeapSize
GetStdHandle
WriteFile
GetModuleFileNameW
FreeLibrary
IsValidCodePage
GetOEMCP
GetFileType
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW

user32

GetSystemMetrics

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

ole32

CoInitializeEx
CoInitializeSecurity
CoCreateInstance
CoSetProxyBlanket
CoUninitialize

oleaut32

SysAllocString
VariantClear
SysFreeString

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

Exports

Exports

??0CConsolidatedError@@QAE@ABV0@@Z
??0CConsolidatedError@@QAE@W4ISDI2_ERRORS@0@@Z
??0CConsolidatedError@@QAE@XZ
??1CConsolidatedError@@QAE@XZ
??4CConsolidatedError@@QAEAAV0@AAV0@@Z
?AddDebugInformation@CConsolidatedError@@QAEXPBD@Z
?AddDebugInformation@CConsolidatedError@@QAEXPBDPAX@Z
?AddDebugInformation@CConsolidatedError@@QAEXPB_W@Z
?AddDebugInformation@CConsolidatedError@@QAEXPB_WPAX@Z
?AddErrorMessage@CConsolidatedError@@QAEXPBD@Z
?AddErrorMessage@CConsolidatedError@@QAEXPBDPAX@Z
?AddErrorMessage@CConsolidatedError@@QAEXPB_W@Z
?AddErrorMessage@CConsolidatedError@@QAEXPB_WPAX@Z
?ClearError@CConsolidatedError@@QAEXXZ
?CountDevicesOnTheSameController@@YAEU_SSI_ScsiAddress@@@Z
?FreeStringResources@CConsolidatedError@@AAEXXZ
?GetDebugInformation@CConsolidatedError@@QAEKPADI@Z
?GetDebugInformation@CConsolidatedError@@QAEKPA_WI@Z
?GetErrorCodeString@CConsolidatedError@@QAEKPADI@Z
?GetErrorCodeString@CConsolidatedError@@QAEKPA_WI@Z
?GetErrorMessage@CConsolidatedError@@QAEKPADI@Z
?GetErrorMessage@CConsolidatedError@@QAEKPA_WI@Z
?IsBusy@CConsolidatedError@@QAE_NXZ
?IsError@CConsolidatedError@@QAE_NXZ
?IsPending@CConsolidatedError@@QAE_NXZ
?IsSuccessful@CConsolidatedError@@QAE_NXZ
?MAX_ERROR_STRING_SIZE@CConsolidatedError@@2HB
?MapSsiStatus@CConsolidatedError@@AAE?AW4ISDI2_ERRORS@1@W4_SSI_Status@@@Z
?SMALL_STRING_SIZE@CConsolidatedError@@2HB
?SetError@CConsolidatedError@@QAEXV1@@Z
?SetError@CConsolidatedError@@QAEXW4ISDI2_ERRORS@1@PBD1@Z
?SetError@CConsolidatedError@@QAEXW4ISDI2_ERRORS@1@PBD@Z
?SetError@CConsolidatedError@@QAEXW4ISDI2_ERRORS@1@PB_W1@Z
?SetError@CConsolidatedError@@QAEXW4ISDI2_ERRORS@1@PB_W@Z
?SetError@CConsolidatedError@@QAEXW4ISDI2_ERROR_TYPE@1@KPBD@Z
?SetError@CConsolidatedError@@QAEXW4ISDI2_ERROR_TYPE@1@KPB_W@Z
?SetError@CConsolidatedError@@QAEXW4_SSI_Status@@PBD1@Z
?SetError@CConsolidatedError@@QAEXW4_SSI_Status@@PB_W1@Z
?SetErrorCodeString@CConsolidatedError@@AAEXXZ
?WmiGetDeviceBySerial@@YA_NPBDPAUWmiDiskInfo@@_N@Z
?WmiGetSystemDisksScsiAddress@@YA?AV?$vector@U_SSI_ScsiAddress@@V?$allocator@U_SSI_ScsiAddress@@@std@@@std@@XZ
?__autoclassinit2@CConsolidatedError@@QAEXI@Z
CleanupIsiError
IsiAddDisksToArray
IsiArraySetWriteCacheState
IsiCanExpandVolume
IsiDiskAssignStoragePool
IsiDiskClaim
IsiDiskClearMetadata
IsiDiskMarkAsFailed
IsiDiskMarkAsJournaling
IsiDiskMarkAsNormal
IsiDiskMarkAsSpare
IsiDiskMarkAsUnknown
IsiDiskMarkOffline
IsiDiskMarkOnline
IsiDiskResetSmartEvent
IsiDiskSetClaimable
IsiDiskSetSmartEvent
IsiDiskUnlock
IsiDiskUnmarkAsJournaling
IsiDiskUnmarkAsSpare
IsiExpandVolume
IsiFinalize
IsiGetArrayHandles
IsiGetArrayInfo
IsiGetControllerHandles
IsiGetControllerInfo
IsiGetEndDeviceHandles
IsiGetEndDeviceInfo
IsiGetNvcInfo
IsiGetPhyHandles
IsiGetPhyInfo
IsiGetPortHandles
IsiGetPortInfo
IsiGetRaidInfo
IsiGetRaidInfoHandles
IsiGetRaidLevelInfo
IsiGetSystemInfo
IsiGetVolumeHandles
IsiGetVolumeInfo
IsiInitialize
IsiMarkSystemDisks
IsiPassthroughCommand
IsiPhyLocate
IsiPhyRemove
IsiPortLocate
IsiROHISetState
IsiRaidLevelModify
IsiReadPatrolSetState
IsiReadStorageArea
IsiRefreshPartitionInfo
IsiRescan
IsiSessionClose
IsiSessionOpen
IsiSetVolCacheSize
IsiVolumeCancelVerify
IsiVolumeCreate
IsiVolumeCreateFromDisks
IsiVolumeDelete
IsiVolumeInitialize
IsiVolumeMarkAsNormal
IsiVolumeRebuild
IsiVolumeRename
IsiVolumeSetCachePolicy
IsiVolumeSetRwhPolicy
IsiVolumeVerify
IsiWriteStorageArea
SsiAddDisksToArray
SsiArraySetWriteCacheState
SsiDiskAssignStoragePool
SsiDiskClaim
SsiDiskClearMetadata
SsiDiskMarkAsFailed
SsiDiskMarkAsNormal
SsiDiskMarkAsSpare
SsiDiskMarkOffline
SsiDiskMarkOnline
SsiDiskResetSmartEvent
SsiDiskSetSmartEvent
SsiDiskUnlock
SsiDiskUnmarkAsJournaling
SsiDiskUnmarkAsSpare
SsiExpandVolume
SsiFinalize
SsiGetArrayHandles
SsiGetArrayInfo
SsiGetControllerHandles
SsiGetControllerInfo
SsiGetEndDeviceHandles
SsiGetEndDeviceInfo
SsiGetPhyHandles
SsiGetPhyInfo
SsiGetRaidInfo
SsiGetRaidInfoHandles
SsiGetRaidLevelInfo
SsiGetSystemInfo
SsiGetVolumeHandles
SsiGetVolumeInfo
SsiInitialize
SsiPassthroughCommand
SsiPhyLocate
SsiPhyRemove
SsiPortLocate
SsiROHISetState
SsiRaidLevelModify
SsiReadPatrolSetState
SsiReadStorageArea
SsiRescan
SsiSessionClose
SsiSessionOpen
SsiSetVolCacheSize
SsiVolumeCancelVerify
SsiVolumeCreate
SsiVolumeCreateFromDisks
SsiVolumeDelete
SsiVolumeInitialize
SsiVolumeMarkAsNormal
SsiVolumeRebuild
SsiVolumeRename
SsiVolumeSetCachePolicy
SsiVolumeSetRwhPolicy
SsiVolumeVerify
SsiWriteStorageArea

Sections

.text
Size: 949KB - Virtual size: 949KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
detre6.dll
.exe windows:6 windows x64 arch:x64

5bc9b7b6916fca3447de9e31d2d80b60

Code Sign

56:00:00:09:0b:64:90:da:5a:21:70:e7:ee:00:00:00:00:09:0b
Certificate

Issuer

CN=Intel External Issuing CA 7B,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Not Before

14/12/2018, 13:24

Not After

13/12/2020, 13:24

Subject

CN=Intel(R) Virtual RAID On CPU,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

06:9b:5e:99:27:72:84:c8:76:7f:13:68:a7:de:b0:f3
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

28/10/2015, 00:00

Not After

17/06/2021, 23:59

Subject

CN=Intel External Issuing CA 7B,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:35:d8:d5:59:5b:06:71:41:2b:00:00:00:00:00:35
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/08/2013, 20:26

Not After

15/08/2023, 20:36

Subject

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

69:b2:d1:cc:f0:2e:20:dc:c9:5c:62:89:4f:7f:9e:5f:5f:c0:57:bf
Certificate

Issuer

CN=QuoVadis Root Certification Authority,OU=Root Certification Authority,O=QuoVadis Limited,C=BM

Not Before

30/05/2014, 16:35

Not After

17/03/2021, 18:33

Subject

CN=QuoVadis Issuing CA G4,O=QuoVadis Limited,C=BM

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:a5:d5:25:1f:75:29:a5:ba:3c:73:b4:49:6f:a2:c1:b0:c5:6c:9f
Certificate

Issuer

CN=QuoVadis Issuing CA G4,O=QuoVadis Limited,C=BM

Not Before

20/04/2018, 16:52

Not After

17/03/2021, 18:33

Subject

CN=timestamp.intel.com,OU=Thales TSS ESN:0E37-9649-08C5,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

4c:76:9e:a9:66:64:67:34:3b:64:90:39:1a:03:01:38:c3:85:f0:f3:d7:7a:8f:fa:2b:3a:fd:c4:de:a2:59:aa
Signer

Actual PE Digest

4c:76:9e:a9:66:64:67:34:3b:64:90:39:1a:03:01:38:c3:85:f0:f3:d7:7a:8f:fa:2b:3a:fd:c4:de:a2:59:aa

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\qba1\workspace\26143\vobs\SSE_Storage_Middleware\ISDI_2\output\x64\Release\IntelVROCCli.pdb

Imports

setupapi

SetupDiGetClassDevsA
CM_Reenumerate_DevNode_Ex
CM_Locate_DevNode_ExA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA

kernel32

SetStdHandle
InitializeCriticalSectionAndSpinCount
FormatMessageA
LocalFree
DeviceIoControl
SetLastError
CreateEventA
GetLastError
WaitForSingleObject
SetEvent
GetCurrentThreadId
Sleep
CreateFileW
ResetEvent
CloseHandle
lstrlenA
InitializeCriticalSection
DeleteCriticalSection
CreateSemaphoreA
CreateFileA
EnterCriticalSection
LeaveCriticalSection
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
HeapSize
SetEndOfFile
WriteConsoleW
WaitForSingleObjectEx
GetEnvironmentStringsW
FindNextFileW
FindFirstFileExW
FindClose
GetFileSizeEx
ReadConsoleW
SetFilePointerEx
HeapReAlloc
WideCharToMultiByte
CreateEventW
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
EncodePointer
DecodePointer
MultiByteToWideChar
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
RtlUnwind
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
RaiseException
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
ReadFile
GetModuleFileNameW
GetStdHandle
WriteFile
GetCommandLineA
GetCommandLineW
HeapFree
HeapAlloc
GetFileType
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
DeleteFileW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
MoveFileExW
IsValidCodePage
GetACP
GetOEMCP

user32

GetSystemMetrics

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW

ole32

CoInitializeEx
CoSetProxyBlanket
CoUninitialize
CoCreateInstance
CoInitializeSecurity

oleaut32

VariantClear
SysFreeString
SysAllocString

Exports

Exports

??0CConsolidatedError@@QEAA@AEBV0@@Z
??0CConsolidatedError@@QEAA@W4ISDI2_ERRORS@0@@Z
??0CConsolidatedError@@QEAA@XZ
??1CConsolidatedError@@QEAA@XZ
??4CConsolidatedError@@QEAAAEAV0@AEAV0@@Z
?AddDebugInformation@CConsolidatedError@@QEAAXPEBD@Z
?AddDebugInformation@CConsolidatedError@@QEAAXPEBDPEAX@Z
?AddDebugInformation@CConsolidatedError@@QEAAXPEB_W@Z
?AddDebugInformation@CConsolidatedError@@QEAAXPEB_WPEAX@Z
?AddErrorMessage@CConsolidatedError@@QEAAXPEBD@Z
?AddErrorMessage@CConsolidatedError@@QEAAXPEBDPEAX@Z
?AddErrorMessage@CConsolidatedError@@QEAAXPEB_W@Z
?AddErrorMessage@CConsolidatedError@@QEAAXPEB_WPEAX@Z
?ClearError@CConsolidatedError@@QEAAXXZ
?CountDevicesOnTheSameController@@YAEU_SSI_ScsiAddress@@@Z
?FreeStringResources@CConsolidatedError@@AEAAXXZ
?GetDebugInformation@CConsolidatedError@@QEAAKPEADI@Z
?GetDebugInformation@CConsolidatedError@@QEAAKPEA_WI@Z
?GetErrorCodeString@CConsolidatedError@@QEAAKPEADI@Z
?GetErrorCodeString@CConsolidatedError@@QEAAKPEA_WI@Z
?GetErrorMessage@CConsolidatedError@@QEAAKPEADI@Z
?GetErrorMessage@CConsolidatedError@@QEAAKPEA_WI@Z
?IsBusy@CConsolidatedError@@QEAA_NXZ
?IsError@CConsolidatedError@@QEAA_NXZ
?IsPending@CConsolidatedError@@QEAA_NXZ
?IsSuccessful@CConsolidatedError@@QEAA_NXZ
?MAX_ERROR_STRING_SIZE@CConsolidatedError@@2HB
?MapSsiStatus@CConsolidatedError@@AEAA?AW4ISDI2_ERRORS@1@W4_SSI_Status@@@Z
?SMALL_STRING_SIZE@CConsolidatedError@@2HB
?SetError@CConsolidatedError@@QEAAXV1@@Z
?SetError@CConsolidatedError@@QEAAXW4ISDI2_ERRORS@1@PEBD1@Z
?SetError@CConsolidatedError@@QEAAXW4ISDI2_ERRORS@1@PEBD@Z
?SetError@CConsolidatedError@@QEAAXW4ISDI2_ERRORS@1@PEB_W1@Z
?SetError@CConsolidatedError@@QEAAXW4ISDI2_ERRORS@1@PEB_W@Z
?SetError@CConsolidatedError@@QEAAXW4ISDI2_ERROR_TYPE@1@KPEBD@Z
?SetError@CConsolidatedError@@QEAAXW4ISDI2_ERROR_TYPE@1@KPEB_W@Z
?SetError@CConsolidatedError@@QEAAXW4_SSI_Status@@PEBD1@Z
?SetError@CConsolidatedError@@QEAAXW4_SSI_Status@@PEB_W1@Z
?SetErrorCodeString@CConsolidatedError@@AEAAXXZ
?WmiGetDeviceBySerial@@YA_NPEBDPEAUWmiDiskInfo@@_N@Z
?__autoclassinit2@CConsolidatedError@@QEAAX_K@Z
CleanupIsiError
IsiAddDisksToArray
IsiArraySetWriteCacheState
IsiCanExpandVolume
IsiDiskAssignStoragePool
IsiDiskClaim
IsiDiskClearMetadata
IsiDiskMarkAsFailed
IsiDiskMarkAsJournaling
IsiDiskMarkAsNormal
IsiDiskMarkAsSpare
IsiDiskMarkAsSystem
IsiDiskMarkAsUnknown
IsiDiskMarkOffline
IsiDiskMarkOnline
IsiDiskResetSmartEvent
IsiDiskSetSmartEvent
IsiDiskUnlock
IsiDiskUnmarkAsJournaling
IsiDiskUnmarkAsSpare
IsiExpandVolume
IsiFinalize
IsiGetArrayHandles
IsiGetArrayInfo
IsiGetControllerHandles
IsiGetControllerInfo
IsiGetEndDeviceHandles
IsiGetEndDeviceInfo
IsiGetPhyHandles
IsiGetPhyInfo
IsiGetPortHandles
IsiGetPortInfo
IsiGetRaidInfo
IsiGetRaidInfoHandles
IsiGetRaidLevelInfo
IsiGetStorageFilterInfo
IsiGetSystemInfo
IsiGetVolumeHandles
IsiGetVolumeInfo
IsiInitialize
IsiPassthroughCommand
IsiPhotocopierCreate
IsiPhotocopierDestroy
IsiPhotocopierDestroyBySerial
IsiPhotocopierHwIoDisable
IsiPhotocopierHwIoEnable
IsiPhotocopierInsertCopy
IsiPhotocopierListConfiguration
IsiPhotocopierRemoveCopy
IsiPhyLocate
IsiPhyRemove
IsiPortLocate
IsiROHISetState
IsiRaidLevelModify
IsiReadPatrolSetState
IsiReadStorageArea
IsiRefreshPartitionInfo
IsiRescan
IsiSessionClose
IsiSessionOpen
IsiSetVolCacheSize
IsiVolumeCancelVerify
IsiVolumeCreate
IsiVolumeCreateFromDisks
IsiVolumeDelete
IsiVolumeInitialize
IsiVolumeMarkAsNormal
IsiVolumeRebuild
IsiVolumeRename
IsiVolumeSetCachePolicy
IsiVolumeSetRwhPolicy
IsiVolumeVerify
IsiWriteStorageArea
SsiAddDisksToArray
SsiArraySetWriteCacheState
SsiDiskAssignStoragePool
SsiDiskClaim
SsiDiskClearMetadata
SsiDiskMarkAsFailed
SsiDiskMarkAsNormal
SsiDiskMarkAsSpare
SsiDiskMarkOffline
SsiDiskMarkOnline
SsiDiskResetSmartEvent
SsiDiskSetSmartEvent
SsiDiskUnlock
SsiDiskUnmarkAsJournaling
SsiDiskUnmarkAsSpare
SsiEventWait
SsiExpandVolume
SsiFinalize
SsiFreeEventHandle
SsiGetArrayHandles
SsiGetArrayInfo
SsiGetControllerHandles
SsiGetControllerInfo
SsiGetEndDeviceHandles
SsiGetEndDeviceInfo
SsiGetEventHandle
SsiGetPhyHandles
SsiGetPhyInfo
SsiGetPortHandles
SsiGetPortInfo
SsiGetRaidInfo
SsiGetRaidInfoHandles
SsiGetRaidLevelInfo
SsiGetSystemInfo
SsiGetVolumeHandles
SsiGetVolumeInfo
SsiInitialize
SsiPassthroughCommand
SsiPhyLocate
SsiPhyRemove
SsiPortLocate
SsiROHISetState
SsiRaidLevelModify
SsiReadPatrolSetState
SsiReadStorageArea
SsiRescan
SsiSessionClose
SsiSessionOpen
SsiSetVolCacheSize
SsiVolumeCancelVerify
SsiVolumeCreate
SsiVolumeCreateFromDisks
SsiVolumeDelete
SsiVolumeInitialize
SsiVolumeMarkAsNormal
SsiVolumeRebuild
SsiVolumeRename
SsiVolumeSetCachePolicy
SsiVolumeSetRwhPolicy
SsiVolumeVerify
SsiWriteStorageArea

Sections

.text
Size: 857KB - Virtual size: 857KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
detre7.dll
.exe windows:6 windows x64 arch:x64

2db0d8ccf0a70e07449f1fa97c4455d8

Code Sign

56:00:00:09:0b:64:90:da:5a:21:70:e7:ee:00:00:00:00:09:0b
Certificate

Issuer

CN=Intel External Issuing CA 7B,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Not Before

14/12/2018, 13:24

Not After

13/12/2020, 13:24

Subject

CN=Intel(R) Virtual RAID On CPU,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:18:54:86:00:00:00:00:00:24
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

11/04/2011, 22:06

Not After

11/04/2021, 22:16

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:9b:5e:99:27:72:84:c8:76:7f:13:68:a7:de:b0:f3
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

28/10/2015, 00:00

Not After

17/06/2021, 23:59

Subject

CN=Intel External Issuing CA 7B,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

69:b2:d1:cc:f0:2e:20:dc:c9:5c:62:89:4f:7f:9e:5f:5f:c0:57:bf
Certificate

Issuer

CN=QuoVadis Root Certification Authority,OU=Root Certification Authority,O=QuoVadis Limited,C=BM

Not Before

30/05/2014, 16:35

Not After

17/03/2021, 18:33

Subject

CN=QuoVadis Issuing CA G4,O=QuoVadis Limited,C=BM

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:a5:d5:25:1f:75:29:a5:ba:3c:73:b4:49:6f:a2:c1:b0:c5:6c:9f
Certificate

Issuer

CN=QuoVadis Issuing CA G4,O=QuoVadis Limited,C=BM

Not Before

20/04/2018, 16:52

Not After

17/03/2021, 18:33

Subject

CN=timestamp.intel.com,OU=Thales TSS ESN:0E37-9649-08C5,O=Intel Corporation,L=Santa Clara,ST=CA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

03:bc:4e:16:36:24:2a:72:a2:45:46:a3:ab:f8:74:96:05:0e:d2:15:7d:68:50:90:82:73:c0:db:84:eb:08:37
Signer

Actual PE Digest

03:bc:4e:16:36:24:2a:72:a2:45:46:a3:ab:f8:74:96:05:0e:d2:15:7d:68:50:90:82:73:c0:db:84:eb:08:37

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\qba1\workspace\29608\RSTE\SSE_Storage_Userspace\output\Release\IntelVROCCli.pdb

Imports

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsExW
SetupDiCreateDeviceInfoList
SetupDiDestroyDeviceInfoList
SetupDiGetDevicePropertyW

kernel32

GetCurrentProcessId
WriteConsoleW
CreateFileW
HeapSize
SetStdHandle
GetLastError
CreateFile2
CloseHandle
WideCharToMultiByte
WaitForSingleObject
DeviceIoControl
ReleaseMutex
CreateMutexW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
SetEvent
ResetEvent
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
RtlUnwind
GetCurrentThreadId
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
RaiseException
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
GetStdHandle
WriteFile
GetCommandLineA
GetCommandLineW
HeapFree
HeapAlloc
GetFileType
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadFile
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetProcessHeap

Sections

.text
Size: 567KB - Virtual size: 566KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
detw.dll
.exe windows:5 windows x86 arch:x86

53b90df56addaf29409479e2b09de27c

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e6:b9:01:ae:dd:1a:e9:1a:7a:03:43:a7:6e:7a:16:c4:ed:df:f5:b4:fd:23:49:79:07:4a:70:e5:5f:9e:1a:b9
Signer

Actual PE Digest

e6:b9:01:ae:dd:1a:e9:1a:7a:03:43:a7:6e:7a:16:c4:ed:df:f5:b4:fd:23:49:79:07:4a:70:e5:5f:9e:1a:b9

Digest Algorithm

sha256

PE Digest Matches

true

e6:a4:4d:2d:93:21:75:7b:61:46:59:05:69:c1:13:ca:fd:12:d6:5c
Signer

Actual PE Digest

e6:a4:4d:2d:93:21:75:7b:61:46:59:05:69:c1:13:ca:fd:12:d6:5c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
CM_Get_Parent
SetupDiGetDeviceInstallParamsA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInstanceIdA

advapi32

RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA

kernel32

GetLocaleInfoA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetProcessHeap
UnhandledExceptionFilter
GetStringTypeA
LCMapStringW
LCMapStringA
SetStdHandle
SetFilePointer
FormatMessageA
CreateFileA
GetLastError
DeviceIoControl
Sleep
CloseHandle
GetCurrentProcess
GetProcAddress
GetModuleHandleA
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
HeapFree
HeapAlloc
RtlUnwind
MultiByteToWideChar
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleHandleW
ExitProcess
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
VirtualAlloc
HeapReAlloc
ReadFile
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetConsoleCP
GetConsoleMode
FlushFileBuffers

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 738KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
detw64.dll
.exe windows:5 windows x64 arch:x64

293cf286043bd8291c84d87bc63d7ebc

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c0:ad:fb:8e:ae:50:50:eb:9d:c1:87:9d:61:de:b9:a2:7d:9f:cf:14:fd:6f:93:b9:0d:ac:bc:b7:4e:2c:74:23
Signer

Actual PE Digest

c0:ad:fb:8e:ae:50:50:eb:9d:c1:87:9d:61:de:b9:a2:7d:9f:cf:14:fd:6f:93:b9:0d:ac:bc:b7:4e:2c:74:23

Digest Algorithm

sha256

PE Digest Matches

true

68:47:c8:af:bc:6a:f1:ae:b6:ec:11:d5:c0:70:97:5d:35:5d:39:75
Signer

Actual PE Digest

68:47:c8:af:bc:6a:f1:ae:b6:ec:11:d5:c0:70:97:5d:35:5d:39:75

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA
CM_Get_Parent
SetupDiGetDeviceInstallParamsA
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetClassDevsA

advapi32

RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

kernel32

SetEndOfFile
GetStringTypeW
GetProcessHeap
EncodePointer
FormatMessageA
CreateFileA
GetLastError
DeviceIoControl
Sleep
CloseHandle
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
HeapFree
HeapAlloc
RtlLookupFunctionEntry
RtlUnwindEx
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleHandleW
GetProcAddress
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
GetCurrentThreadId
FlsAlloc
HeapSetInformation
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
MultiByteToWideChar
ReadFile
RaiseException
RtlPcToFileHeader
InitializeCriticalSectionAndSpinCount
HeapReAlloc
LoadLibraryA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetFilePointer
SetStdHandle
LCMapStringA
LCMapStringW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
du.lng
dupro.lng
en.chm
.chm
enpro.lng
fi.chm
.chm
fi.lng
fipro.lng
fnp_act_installer.dll
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

41:f6:0d:a3:c8:14:f2:99:59:6a:28:5f:8c:34:3d:0f:37:2f:47:1a:0f:ee:af:d0:e2:80:d5:11:bf:a9:15:a9
Signer

Actual PE Digest

41:f6:0d:a3:c8:14:f2:99:59:6a:28:5f:8c:34:3d:0f:37:2f:47:1a:0f:ee:af:d0:e2:80:d5:11:bf:a9:15:a9

Digest Algorithm

sha256

PE Digest Matches

true

9e:bc:81:31:0e:cb:9f:c1:b3:1b:32:88:a2:8f:f9:03:dc:95:92:19
Signer

Actual PE Digest

9e:bc:81:31:0e:cb:9f:c1:b3:1b:32:88:a2:8f:f9:03:dc:95:92:19

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

CdaSysGetTrackedErrors
fnpActSvcFullUninstallWin
fnpActSvcGetLastErrorWin
fnpActSvcInstallForMSI
fnpActSvcInstallWin
fnpActSvcUninstallForMSI
fnpActSvcUninstallWin

Sections

UPX0
Size: - Virtual size: 576KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 375KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
fr.lng
frpro.lng
gr.chm
.chm
gr.lng
grpro.lng
harddisksentinelupdate.exe
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

83:24:b4:69:c9:a0:7d:53:05:5a:7e:b4:ab:4f:ce:68:49:5d:f0:41:87:ce:dd:52:73:7e:62:17:cf:16:db:42
Signer

Actual PE Digest

83:24:b4:69:c9:a0:7d:53:05:5a:7e:b4:ab:4f:ce:68:49:5d:f0:41:87:ce:dd:52:73:7e:62:17:cf:16:db:42

Digest Algorithm

sha256

PE Digest Matches

true

11:62:ea:a9:f4:0c:5d:2e:45:9e:d7:16:3e:7c:57:a4:a5:db:e0:8a
Signer

Actual PE Digest

11:62:ea:a9:f4:0c:5d:2e:45:9e:d7:16:3e:7c:57:a4:a5:db:e0:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 7.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
hdd.jpg
.jpg
hds_eula_en.txt
hds_eula_hu.txt
hdsaction.exe
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f7:b4:49:c2:96:36:66:49:77:55:ba:28:ee:54:8c:51:d3:c5:91:06:68:2f:4f:3c:9b:12:b6:bb:5e:c8:39:c4
Signer

Actual PE Digest

f7:b4:49:c2:96:36:66:49:77:55:ba:28:ee:54:8c:51:d3:c5:91:06:68:2f:4f:3c:9b:12:b6:bb:5e:c8:39:c4

Digest Algorithm

sha256

PE Digest Matches

true

f4:fa:d0:1d:35:ca:d4:05:bf:be:c3:45:04:8c:7e:31:cc:ff:3e:6d
Signer

Actual PE Digest

f4:fa:d0:1d:35:ca:d4:05:bf:be:c3:45:04:8c:7e:31:cc:ff:3e:6d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 21.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 973KB - Virtual size: 976KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
hdsctrl.exe
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:2d:a5:e9:2d:dd:0f:6c:ab:6e:f1:29:de:9c:b9:20:f7:f2:6e:06:aa:b4:4a:e5:5b:3e:16:10:6b:75:ec:a2
Signer

Actual PE Digest

27:2d:a5:e9:2d:dd:0f:6c:ab:6e:f1:29:de:9c:b9:20:f7:f2:6e:06:aa:b4:4a:e5:5b:3e:16:10:6b:75:ec:a2

Digest Algorithm

sha256

PE Digest Matches

true

77:f3:8b:d9:32:1d:18:bb:ee:b2:bb:21:db:3c:4a:eb:58:ee:d3:fd
Signer

Actual PE Digest

77:f3:8b:d9:32:1d:18:bb:ee:b2:bb:21:db:3c:4a:eb:58:ee:d3:fd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 7.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 230KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
hdsentinel.sys
.sys windows:5 windows x86 arch:x86

389659594b01690a0b709b955935f807

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7c:ed:27:26:e5:fd:a7:24:00:ac:a3:51:0f:bf:00:1f:e9:88:6b:ca
Signer

Actual PE Digest

7c:ed:27:26:e5:fd:a7:24:00:ac:a3:51:0f:bf:00:1f:e9:88:6b:ca

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IofCompleteRequest
IoCreateSymbolicLink
IoCreateDevice
RtlInitUnicodeString
IoDeleteDevice
MmUnmapIoSpace
MmMapIoSpace
IoDeleteSymbolicLink

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 160B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 256B - Virtual size: 254B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 64B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hdsentinel.vsh
.html .js polyglot
hdsentinel.vsx
.xml
hdsimg.dll
.dll windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5b:86:6c:fb:15:16:0f:dc:bd:d5:c4:72:b1:7b:fe:fa:ee:7e:40:76:cd:78:5b:84:46:9a:49:4d:4d:ee:1e:2c
Signer

Actual PE Digest

5b:86:6c:fb:15:16:0f:dc:bd:d5:c4:72:b1:7b:fe:fa:ee:7e:40:76:cd:78:5b:84:46:9a:49:4d:4d:ee:1e:2c

Digest Algorithm

sha256

PE Digest Matches

true

33:6b:d1:8b:95:a5:18:35:52:b9:4d:64:33:5f:f0:cc:f4:c8:47:44
Signer

Actual PE Digest

33:6b:d1:8b:95:a5:18:35:52:b9:4d:64:33:5f:f0:cc:f4:c8:47:44

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
hdsversion.txt
hptdev.dll
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dd:83:71:ff:86:d6:dd:21:bb:d4:7c:3b:ce:60:6e:93:dc:ce:73:32:9b:f6:e1:9b:41:48:84:d1:90:c3:9f:c7
Signer

Actual PE Digest

dd:83:71:ff:86:d6:dd:21:bb:d4:7c:3b:ce:60:6e:93:dc:ce:73:32:9b:f6:e1:9b:41:48:84:d1:90:c3:9f:c7

Digest Algorithm

sha256

PE Digest Matches

true

9c:22:75:49:a9:69:0f:08:14:e2:e2:91:8b:3a:6a:ed:13:be:6b:4b
Signer

Actual PE Digest

9c:22:75:49:a9:69:0f:08:14:e2:e2:91:8b:3a:6a:ed:13:be:6b:4b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

hpt_access_config_reg
hpt_add_dedicated_spare
hpt_add_disk_to_array
hpt_add_spare_disk
hpt_calc_max_array_capacity
hpt_calc_max_array_capacity_v2
hpt_create_array
hpt_create_array_v2
hpt_create_array_v3
hpt_create_transform
hpt_create_transform_v2
hpt_delete_array
hpt_dev_deinit
hpt_dev_init
hpt_device_io
hpt_device_io_v2
hpt_do_smart
hpt_do_smart_per_device
hpt_flash_read_buf
hpt_flash_write_buf
hpt_flash_write_buf_v2
hpt_get_601_info
hpt_get_DevId_byThyDrv
hpt_get_channel_info
hpt_get_channel_info_v2
hpt_get_controller_count
hpt_get_controller_info
hpt_get_controller_info_v2
hpt_get_controller_info_v3
hpt_get_controller_venid
hpt_get_device_id
hpt_get_device_info
hpt_get_device_info_v2
hpt_get_device_info_v3
hpt_get_device_info_v4
hpt_get_device_info_v5
hpt_get_driver_capabilities
hpt_get_driver_capabilities_v2
hpt_get_driver_info
hpt_get_driver_parameter
hpt_get_enclosure_count
hpt_get_enclosure_element_info
hpt_get_enclosure_info
hpt_get_enclosure_info_v2
hpt_get_enclosure_info_v3
hpt_get_enclosure_info_v4
hpt_get_event
hpt_get_logical_devices
hpt_get_parameter
hpt_get_parameter_list
hpt_get_physical_devices
hpt_get_version
hpt_i2c_transaction
hpt_ide_pass_through
hpt_ide_pass_through_v2
hpt_init_disks
hpt_initialize_data_block
hpt_initialize_data_block_v2
hpt_load_bios
hpt_load_flash
hpt_lock_device
hpt_nvme_passthrough
hpt_query_remove
hpt_rebuild_data_block
hpt_rebuild_data_block_v2
hpt_reenumerate_device
hpt_remove_devices
hpt_remove_spare_disk
hpt_rescan_devices
hpt_scsi_passthrough
hpt_set_601_info
hpt_set_array_info
hpt_set_array_state
hpt_set_boot_mark
hpt_set_device_info
hpt_set_device_info_v2
hpt_set_driver_parameter
hpt_set_ioctl_timeout
hpt_set_parameter
hpt_set_vdev_info
hpt_unlock_device
hpt_verify_data_block
hpt_verify_data_block_v2

Sections

UPX0
Size: - Virtual size: 124KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
hu.chm
.chm
hu.lng
hupro.lng
id.lng
idpro.lng
infomgr.dll
.dll windows:5 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

11:b1:04:3d:a3:d6:a9:f3:a2:61:7c:b8:72:5f:d8:69:bb:83:8f:f6:bd:db:17:67:61:4c:29:61:1e:6e:dc:23
Signer

Actual PE Digest

11:b1:04:3d:a3:d6:a9:f3:a2:61:7c:b8:72:5f:d8:69:bb:83:8f:f6:bd:db:17:67:61:4c:29:61:1e:6e:dc:23

Digest Algorithm

sha256

PE Digest Matches

true

67:1a:cc:77:24:71:c2:e7:9d:53:cb:b2:14:27:41:04:d7:44:7e:e5
Signer

Actual PE Digest

67:1a:cc:77:24:71:c2:e7:9d:53:cb:b2:14:27:41:04:d7:44:7e:e5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

InfoMgrCloseObject
InfoMgrControlObject
InfoMgrEnumObject
InfoMgrGetObjectInfo
InfoMgrGetVersion
InfoMgrInitStatus
InfoMgrLockObject
InfoMgrOpenObject
InfoMgrOption
InfoMgrRegisterObject
InfoMgrSetObjectInfo
InfoMgrSupportsEVs
InfoMgrUnlockObject
InfoMgrUnregisterObject

Sections

UPX0
Size: - Virtual size: 716KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 207KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
it.chm
.chm
it.lng
itpro.lng
jp.lng
jppro.lng
ko.lng
kopro.lng
libeay32.dll
.dll windows:5 windows x86 arch:x86

43b0fe249f8f5a5ce8ac2d967a025119

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5c:ee:a7:06:91:7d:22:b4:ce:a3:38:8a:39:f0:45:c9:cf:be:01:b9:5a:9e:80:55:82:95:5d:33:95:cb:74:78
Signer

Actual PE Digest

5c:ee:a7:06:91:7d:22:b4:ce:a3:38:8a:39:f0:45:c9:cf:be:01:b9:5a:9e:80:55:82:95:5d:33:95:cb:74:78

Digest Algorithm

sha256

PE Digest Matches

true

d4:08:ab:b2:ef:59:9e:d0:07:ff:12:43:47:56:4f:d5:de:7f:9b:82
Signer

Actual PE Digest

d4:08:ab:b2:ef:59:9e:d0:07:ff:12:43:47:56:4f:d5:de:7f:9b:82

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\OpenSSL\Temp\openssl-1.0.2s-x32\out32dll\libeay32.pdb

Imports

ws2_32

sendto
recvfrom
bind
listen
accept
ntohl
ioctlsocket
WSACleanup
WSAStartup
gethostbyname
getsockopt
getservbyname
ntohs
htons
htonl
socket
setsockopt
connect
send
WSASetLastError
recv
WSAGetLastError
shutdown
closesocket

gdi32

CreateCompatibleBitmap
GetObjectA
GetDIBits
DeleteObject
GetDeviceCaps

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

user32

GetDC
ReleaseDC
MessageBoxA
GetProcessWindowStation
GetUserObjectInformationW

kernel32

GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetLocaleInfoA
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
GetProcessHeap
SetEndOfFile
GetCurrentDirectoryA
CompareStringA
CompareStringW
HeapSize
SetEnvironmentVariableA
CreateFileW
GetEnvironmentStrings
WideCharToMultiByte
GetFullPathNameA
FlushFileBuffers
RtlUnwind
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
ExitProcess
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
GetLastError
GetVersion
WriteFile
GetFileType
GetStdHandle
FindNextFileA
FindFirstFileA
FindClose
FreeLibrary
LoadLibraryA
CloseHandle
SetLastError
MultiByteToWideChar
SystemTimeToFileTime
GetSystemTime
GetTickCount
QueryPerformanceCounter
GetCurrentProcessId
GlobalMemoryStatus
FlushConsoleInputBuffer
GetModuleHandleW
Sleep
SetConsoleCtrlHandler
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapReAlloc
HeapAlloc
GetSystemTimeAsFileTime
ReadFile
GetConsoleCP
GetConsoleMode
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
SetFileAttributesA
GetFileAttributesA
CreateFileA
ReadConsoleInputA
SetConsoleMode
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
DeleteCriticalSection
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetStartupInfoA
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
GetTimeZoneInformation
SetFilePointer
SetStdHandle

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_clear_free
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_diff
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_to_generalizedtime
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_bn_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_callback_ctrl
BIO_clear_flags
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_hex_string
BIO_indent
BIO_int_ctrl
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_PKCS7
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_ex_data
BIO_set_flags
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_test_flags
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_X931_derive_prime_ex
BN_X931_generate_Xpq
BN_X931_generate_prime_ex
BN_add
BN_add_word
BN_asc2bn
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_consttime_swap
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one

Sections

.text
Size: 928KB - Virtual size: 927KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 342KB - Virtual size: 342KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libxml2.dll
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

0d:2e:46:e4:47:e5:1b:a7:cd:94:2f:60:51:67:cc:0d:09:7a:30:e7:8e:7e:85:22:26:cb:80:26:aa:c7:7c:fd
Signer

Actual PE Digest

0d:2e:46:e4:47:e5:1b:a7:cd:94:2f:60:51:67:cc:0d:09:7a:30:e7:8e:7e:85:22:26:cb:80:26:aa:c7:7c:fd

Digest Algorithm

sha256

PE Digest Matches

true

89:9f:fb:2c:7d:c3:ae:c2:a4:e2:5b:1d:16:71:d1:48:0f:50:50:03
Signer

Actual PE Digest

89:9f:fb:2c:7d:c3:ae:c2:a4:e2:5b:1d:16:71:d1:48:0f:50:50:03

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

UTF8Toisolat1
__oldXMLWDcompatibility
__xmlBufferAllocScheme
__xmlDefaultBufferSize
__xmlDefaultSAXHandler
__xmlDefaultSAXLocator
__xmlDeregisterNodeDefaultValue
__xmlDoValidityCheckingDefaultValue
__xmlErrEncoding
__xmlGenericError
__xmlGenericErrorContext
__xmlGetWarningsDefaultValue
__xmlIndentTreeOutput
__xmlKeepBlanksDefaultValue
__xmlLastError
__xmlLineNumbersDefaultValue
__xmlLoadExtDtdDefaultValue
__xmlParserDebugEntities
__xmlParserVersion
__xmlPedanticParserDefaultValue
__xmlRaiseError
__xmlRegisterNodeDefaultValue
__xmlSaveNoEmptyTags
__xmlSimpleError
__xmlStructuredError
__xmlSubstituteEntitiesDefaultValue
__xmlTreeIndentString
initGenericErrorDefaultFunc
initxmlDefaultSAXHandler
inputPop
inputPush
isolat1ToUTF8
namePop
namePush
nodePop
nodePush
xmlAddAttributeDecl
xmlAddChild
xmlAddChildList
xmlAddDocEntity
xmlAddDtdEntity
xmlAddElementDecl
xmlAddEncodingAlias
xmlAddID
xmlAddNextSibling
xmlAddNotationDecl
xmlAddPrevSibling
xmlAddRef
xmlAddSibling
xmlAllocOutputBuffer
xmlAllocParserInputBuffer
xmlAutomataCompile
xmlAutomataGetInitState
xmlAutomataIsDeterminist
xmlAutomataNewAllTrans
xmlAutomataNewCountTrans
xmlAutomataNewCountedTrans
xmlAutomataNewCounter
xmlAutomataNewCounterTrans
xmlAutomataNewEpsilon
xmlAutomataNewOnceTrans
xmlAutomataNewState
xmlAutomataNewTransition
xmlAutomataNewTransition2
xmlAutomataSetFinalState
xmlBufferAdd
xmlBufferAddHead
xmlBufferCCat
xmlBufferCat
xmlBufferContent
xmlBufferCreate
xmlBufferCreateSize
xmlBufferCreateStatic
xmlBufferDump
xmlBufferEmpty
xmlBufferFree
xmlBufferGrow
xmlBufferLength
xmlBufferResize
xmlBufferSetAllocationScheme
xmlBufferShrink
xmlBufferWriteCHAR
xmlBufferWriteChar
xmlBufferWriteQuotedString
xmlBuildQName
xmlBuildURI
xmlCanonicPath
xmlCharEncCloseFunc
xmlCharEncFirstLine
xmlCharEncInFunc
xmlCharEncOutFunc
xmlCharInRange
xmlCharStrdup
xmlCharStrndup
xmlCheckFilename
xmlCheckHTTPInput
xmlCheckLanguageID
xmlCheckUTF8
xmlCheckVersion
xmlCleanupCharEncodingHandlers
xmlCleanupEncodingAliases
xmlCleanupGlobals
xmlCleanupInputCallbacks
xmlCleanupOutputCallbacks
xmlCleanupParser
xmlCleanupThreads
xmlClearNodeInfoSeq
xmlClearParserCtxt
xmlCopyAttributeTable
xmlCopyChar
xmlCopyCharMultiByte
xmlCopyDoc
xmlCopyDtd
xmlCopyElementContent
xmlCopyElementTable
xmlCopyEntitiesTable
xmlCopyEnumeration
xmlCopyError
xmlCopyNamespace
xmlCopyNamespaceList
xmlCopyNode
xmlCopyNodeList
xmlCopyNotationTable
xmlCopyProp
xmlCopyPropList
xmlCreateDocParserCtxt
xmlCreateEntitiesTable
xmlCreateEntityParserCtxt
xmlCreateEnumeration
xmlCreateFileParserCtxt
xmlCreateIOParserCtxt
xmlCreateIntSubset
xmlCreateMemoryParserCtxt
xmlCreateURI
xmlCreateURLParserCtxt
xmlCtxtGetLastError
xmlCtxtReadDoc
xmlCtxtReadFd
xmlCtxtReadFile
xmlCtxtReadIO
xmlCtxtReadMemory
xmlCtxtReset
xmlCtxtResetLastError
xmlCtxtResetPush
xmlCtxtUseOptions
xmlCurrentChar
xmlDefaultSAXHandlerInit
xmlDelEncodingAlias
xmlDeregisterNodeDefault
xmlDetectCharEncoding
xmlDictCreate
xmlDictFree
xmlDictLookup
xmlDictOwns
xmlDictQLookup
xmlDictReference
xmlDictSize
xmlDocCopyNode
xmlDocDump
xmlDocDumpFormatMemory
xmlDocDumpFormatMemoryEnc
xmlDocDumpMemory
xmlDocDumpMemoryEnc
xmlDocFormatDump
xmlDocGetRootElement
xmlDocSetRootElement
xmlDumpAttributeDecl
xmlDumpAttributeTable
xmlDumpElementDecl
xmlDumpElementTable
xmlDumpEntitiesTable
xmlDumpEntityDecl
xmlDumpNotationDecl
xmlDumpNotationTable
xmlElemDump
xmlEncodeEntitiesReentrant
xmlEncodeSpecialChars
xmlErrMemory
xmlFileClose
xmlFileMatch
xmlFileOpen
xmlFileRead
xmlFindCharEncodingHandler
xmlFree
xmlFreeAttributeTable
xmlFreeAutomata
xmlFreeDoc
xmlFreeDtd
xmlFreeElementContent
xmlFreeElementTable
xmlFreeEntitiesTable
xmlFreeEnumeration
xmlFreeIDTable
xmlFreeInputStream
xmlFreeMutex
xmlFreeNode
xmlFreeNodeList
xmlFreeNotationTable
xmlFreeNs
xmlFreeNsList
xmlFreeParserCtxt
xmlFreeParserInputBuffer
xmlFreeProp
xmlFreePropList
xmlFreeRMutex
xmlFreeRefTable
xmlFreeURI
xmlFreeValidCtxt
xmlGcMemGet
xmlGcMemSetup
xmlGetBufferAllocationScheme
xmlGetCharEncodingHandler
xmlGetCharEncodingName
xmlGetCompressMode
xmlGetDocCompressMode
xmlGetDocEntity
xmlGetDtdAttrDesc
xmlGetDtdElementDesc
xmlGetDtdEntity
xmlGetDtdNotationDesc
xmlGetDtdQAttrDesc
xmlGetDtdQElementDesc
xmlGetEncodingAlias
xmlGetExternalEntityLoader
xmlGetGlobalState
xmlGetID
xmlGetIntSubset
xmlGetLastChild
xmlGetLastError
xmlGetLineNo
xmlGetNoNsProp
xmlGetNodePath
xmlGetNsList
xmlGetNsProp
xmlGetParameterEntity
xmlGetPredefinedEntity
xmlGetProp
xmlGetRefs
xmlGetThreadId
xmlGetUTF8Char
xmlHasNsProp
xmlHasProp
xmlHashAddEntry
xmlHashAddEntry2
xmlHashAddEntry3
xmlHashCopy
xmlHashCreate
xmlHashFree
xmlHashLookup
xmlHashLookup2
xmlHashLookup3
xmlHashQLookup
xmlHashQLookup2
xmlHashQLookup3
xmlHashRemoveEntry
xmlHashRemoveEntry2
xmlHashRemoveEntry3
xmlHashScan
xmlHashScan3
xmlHashScanFull
xmlHashScanFull3
xmlHashSize
xmlHashUpdateEntry
xmlHashUpdateEntry2
xmlHashUpdateEntry3
xmlIOParseDTD
xmlInitCharEncodingHandlers
xmlInitGlobals
xmlInitMemory
xmlInitNodeInfoSeq
xmlInitParser
xmlInitParserCtxt
xmlInitThreads
xmlInitializeGlobalState
xmlIsBaseChar
xmlIsBaseCharGroup
xmlIsBlank
xmlIsBlankNode
xmlIsChar
xmlIsCharGroup
xmlIsCombining
xmlIsCombiningGroup
xmlIsDigit
xmlIsDigitGroup
xmlIsExtender
xmlIsExtenderGroup
xmlIsID
xmlIsIdeographic
xmlIsIdeographicGroup
xmlIsLetter
xmlIsMainThread
xmlIsMixedElement
xmlIsPubidChar
xmlIsPubidChar_tab
xmlIsRef
xmlKeepBlanksDefault
xmlLineNumbersDefault
xmlLinkGetData
xmlListAppend
xmlListClear
xmlListCopy
xmlListCreate
xmlListDelete
xmlListDup
xmlListEmpty
xmlListEnd
xmlListFront
xmlListInsert
xmlListMerge
xmlListPopBack
xmlListPopFront
xmlListPushBack
xmlListPushFront
xmlListRemoveAll
xmlListRemoveFirst
xmlListRemoveLast
xmlListReverse
xmlListReverseSearch
xmlListReverseWalk
xmlListSearch
xmlListSize
xmlListSort
xmlListWalk
xmlLoadExternalEntity
xmlLockLibrary
xmlMalloc
xmlMallocAtomic
xmlMallocAtomicLoc
xmlMallocLoc
xmlMemDisplay
xmlMemFree
xmlMemGet
xmlMemMalloc
xmlMemRealloc
xmlMemSetup
xmlMemShow
xmlMemStrdup
xmlMemStrdupLoc
xmlMemUsed
xmlMemoryDump
xmlMemoryStrdup
xmlMutexLock
xmlMutexUnlock
xmlNewAutomata
xmlNewCDataBlock
xmlNewCharEncodingHandler
xmlNewCharRef
xmlNewChild
xmlNewComment
xmlNewDoc
xmlNewDocComment
xmlNewDocFragment
xmlNewDocNode
xmlNewDocNodeEatName
xmlNewDocProp
xmlNewDocRawNode
xmlNewDocText
xmlNewDocTextLen
xmlNewDtd
xmlNewElementContent
xmlNewEntityInputStream
xmlNewIOInputStream
xmlNewInputFromFile
xmlNewInputStream
xmlNewMutex
xmlNewNode
xmlNewNodeEatName
xmlNewNs
xmlNewNsProp
xmlNewNsPropEatName
xmlNewPI
xmlNewParserCtxt
xmlNewProp
xmlNewRMutex
xmlNewReference
xmlNewStringInputStream
xmlNewText
xmlNewTextChild
xmlNewTextLen
xmlNewValidCtxt
xmlNextChar
xmlNoNetExternalEntityLoader
xmlNodeAddContent
xmlNodeAddContentLen
xmlNodeBufGetContent
xmlNodeDump
xmlNodeDumpOutput
xmlNodeGetBase
xmlNodeGetContent
xmlNodeGetLang
xmlNodeGetSpacePreserve
xmlNodeIsText
xmlNodeListGetRawString
xmlNodeListGetString
xmlNodeSetBase
xmlNodeSetContent
xmlNodeSetContentLen
xmlNodeSetLang
xmlNodeSetName
xmlNodeSetSpacePreserve
xmlNormalizeURIPath
xmlNormalizeWindowsPath
xmlOutputBufferClose
xmlOutputBufferCreateFd
xmlOutputBufferCreateFile
xmlOutputBufferCreateFilename
xmlOutputBufferCreateIO
xmlOutputBufferFlush
xmlOutputBufferWrite
xmlOutputBufferWriteString
xmlParseAttValue
xmlParseAttribute
xmlParseAttributeListDecl
xmlParseAttributeType
xmlParseBalancedChunkMemory
xmlParseBalancedChunkMemoryRecover
xmlParseCDSect
xmlParseCharData
xmlParseCharEncoding
xmlParseCharRef
xmlParseComment
xmlParseContent
xmlParseCtxtExternalEntity
xmlParseDTD
xmlParseDefaultDecl
xmlParseDoc
xmlParseDocTypeDecl
xmlParseDocument
xmlParseElement
xmlParseElementChildrenContentDecl
xmlParseElementContentDecl
xmlParseElementDecl
xmlParseElementMixedContentDecl
xmlParseEncName
xmlParseEncodingDecl
xmlParseEndTag
xmlParseEntity
xmlParseEntityDecl
xmlParseEntityRef
xmlParseEntityValue
xmlParseEnumeratedType
xmlParseEnumerationType
xmlParseExtParsedEnt
xmlParseExternalEntity
xmlParseExternalID
xmlParseExternalSubset
xmlParseFile
xmlParseMarkupDecl
xmlParseMemory
xmlParseMisc
xmlParseName
xmlParseNmtoken
xmlParseNotationDecl
xmlParseNotationType
xmlParsePEReference
xmlParsePI
xmlParsePITarget
xmlParsePubidLiteral
xmlParseReference
xmlParseSDDecl
xmlParseStartTag
xmlParseSystemLiteral
xmlParseTextDecl
xmlParseURI
xmlParseURIReference
xmlParseVersionInfo
xmlParseVersionNum
xmlParseXMLDecl
xmlParserAddNodeInfo
xmlParserError
xmlParserFindNodeInfo
xmlParserFindNodeInfoIndex
xmlParserGetDirectory
xmlParserHandlePEReference
xmlParserInputBufferCreateFd
xmlParserInputBufferCreateFile
xmlParserInputBufferCreateFilename
xmlParserInputBufferCreateIO
xmlParserInputBufferCreateMem
xmlParserInputBufferCreateStatic
xmlParserInputBufferGrow
xmlParserInputBufferPush
xmlParserInputBufferRead
xmlParserInputGrow
xmlParserInputRead
xmlParserInputShrink
xmlParserMaxDepth
xmlParserPrintFileContext
xmlParserPrintFileInfo
xmlParserValidityError
xmlParserValidityWarning
xmlParserWarning
xmlPedanticParserDefault
xmlPopInput
xmlPrintURI
xmlPushInput
xmlRMutexLock
xmlRMutexUnlock
xmlReadDoc
xmlReadFd

Sections

UPX0
Size: - Virtual size: 328KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 194KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
mk.lng
mkpro.lng
mv_api.dll
.dll windows:5 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

f7:aa:3d:56:7a:11:33:6f:42:b4:a7:bf:36:6a:b1:b0:54:7e:e3:b9:72:6e:15:fc:e2:7b:26:db:b0:a5:5b:6b
Signer

Actual PE Digest

f7:aa:3d:56:7a:11:33:6f:42:b4:a7:bf:36:6a:b1:b0:54:7e:e3:b9:72:6e:15:fc:e2:7b:26:db:b0:a5:5b:6b

Digest Algorithm

sha256

PE Digest Matches

true

78:e4:99:d5:4c:31:a5:15:45:6b:61:fc:15:18:2e:e4:9c:6e:dd:52
Signer

Actual PE Digest

78:e4:99:d5:4c:31:a5:15:45:6b:61:fc:15:18:2e:e4:9c:6e:dd:52

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

MV_AES_ChangePwd
MV_AES_ClearLink
MV_AES_ForcePDOnline
MV_AES_GetEntryConfig
MV_AES_GetEntryInfo
MV_AES_GetPortConfig
MV_AES_OnlyGetEntryInfo
MV_AES_OnlyGetPortInfo
MV_AES_SetEntryConfig
MV_AES_SetLink
MV_AES_SetPortConfig
MV_AES_VerifyKey
MV_API_Finalize
MV_API_GetRescanCount
MV_API_Initialize
MV_API_RescanAdapter
MV_API_Version
MV_AdapterMute
MV_Adapter_GetConfig
MV_Adapter_GetCount
MV_Adapter_GetInfo
MV_Adapter_Read_Register
MV_Adapter_SetConfig
MV_Adapter_Write_Register
MV_BBU_ChangePower
MV_BBU_GetInfo
MV_BBU_SetStatus
MV_BBU_SetThreshold
MV_BLK_GetHDBlock
MV_BLK_GetInfo
MV_CreateOrModify_DG
MV_CreateOrModify_VD
MV_DBG_ErrorInjection
MV_DBG_LDWR
MV_DBG_Map
MV_DBG_PDWR
MV_DBG_RCT
MV_DG_BGAControl
MV_DG_Delete
MV_DG_GetConfig
MV_DG_GetInfo
MV_DG_SetConfig
MV_DG_StartMigration
MV_DiskHasOS
MV_Download_SSD_Microcode
MV_ENC_GetElementConfig
MV_ENC_GetElementInfo
MV_ENC_GetEnclosureInfo
MV_EVT_FlushEvent
MV_EVT_GetEvent
MV_Extern_GetInfo
MV_Flash_Bin
MV_Flash_Byte
MV_Flash_Erase
MV_Flash_GetVersion
MV_Flash_NVSRAM
MV_GetDriverMode
MV_HyperDuo_AddFSEntries
MV_HyperDuo_AddSegment
MV_HyperDuo_GetEntriesTableInfo
MV_HyperDuo_GetSegment
MV_HyperDuo_RemoveEntriesTable
MV_HyperDuo_RemoveSegments
MV_Hypper_GetFreeSize
MV_Hypper_GetHDLink
MV_Hypper_GetHDMagic
MV_Hypper_GetLinkInfo
MV_Hypper_GetVDLink
MV_Hypper_GetVDMagic
MV_LD_BGAControl
MV_LD_Create
MV_LD_DG_QuickCreate
MV_LD_DG_StartRebuild
MV_LD_Delete
MV_LD_GetConfig
MV_LD_GetCrossInfo
MV_LD_GetInfo
MV_LD_GetMaxSize
MV_LD_GetMigratedLdSize
MV_LD_GetStatus
MV_LD_GetTargetLDInfo
MV_LD_Import
MV_LD_LockSystemDisk
MV_LD_PauseAll
MV_LD_Report
MV_LD_SetConfig
MV_LD_StartConsistencyCheck
MV_LD_StartINIT
MV_LD_StartMigration
MV_LD_StartRebuild
MV_LD_UnlockSystemDisk
MV_LocateArrayDevice
MV_PD_BGAControl
MV_PD_FreeHD2DGSpare
MV_PD_FreeHD2GlobalSpare
MV_PD_GET_SMART_INFO
MV_PD_GetBGAStatus
MV_PD_GetConfig
MV_PD_GetExpanderInfo
MV_PD_GetFreeSpaceInfo
MV_PD_GetHDInfo
MV_PD_GetHDInfo_Ext
MV_PD_GetHDRaidStatus
MV_PD_GetMBRInfo
MV_PD_GetPMInfo
MV_PD_GetRCT
MV_PD_GetSmartStatus
MV_PD_RCT_GetCount
MV_PD_SMARTControl
MV_PD_SetConfig
MV_PD_SetHDStatus
MV_PD_Spare2FreeHD
MV_PD_StartDataScrub
MV_PD_StartMediaPatrol
MV_PD_WipeHDMDD
MV_PHY_Config
MV_PHY_GetConfig
MV_PHY_SetConfig
MV_PHY_Status
MV_PHY_Test
MV_PassThrough
MV_PassThrough_ATA
MV_SSD_Diagnostic
MV_SSD_SmartReadData
MV_SetDriverMode

Sections

UPX0
Size: - Virtual size: 180KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 91KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pl.chm
.chm
pl.lng
plpro.lng
prdecode.dll
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

38:5b:e8:4a:a2:6c:75:16:f0:27:2e:1d:2e:3a:d2:17:e7:b1:58:9b:8f:49:d7:02:17:fa:d4:2a:a3:cd:b9:d1
Signer

Actual PE Digest

38:5b:e8:4a:a2:6c:75:16:f0:27:2e:1d:2e:3a:d2:17:e7:b1:58:9b:8f:49:d7:02:17:fa:d4:2a:a3:cd:b9:d1

Digest Algorithm

sha256

PE Digest Matches

true

b1:7c:53:4c:01:fd:cc:82:2a:04:1e:8a:e0:9c:74:8c:9f:85:cc:a0
Signer

Actual PE Digest

b1:7c:53:4c:01:fd:cc:82:2a:04:1e:8a:e0:9c:74:8c:9f:85:cc:a0

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

decod_convertLogSizeToPartitionSize
decod_convertLogSizeToPhySize
decod_convertPartitionSizeToLogSize
decod_convertPhySizeToLogSize
decod_getAutoAxle
decod_getAutoRaidLevelAndAxle
decod_getBgaRate
decod_getBinaryFromString
decod_getBufferCountArrayIDs
decod_getBufferCountCtrlInfo
decod_getBufferCountDiskArrayCfg
decod_getBufferCountEventInfo
decod_getBufferCountLdiProgress
decod_getBufferCountLogDrvInfo
decod_getBufferCountMigrationProg
decod_getBufferCountPhyDrvInfo
decod_getBufferCountRCProgress
decod_getBufferCountRebuildProgress
decod_getBufferCountSpareInfo
decod_getBufferCountStats
decod_getBufferCountSynchProgress
decod_getChapFlagType
decod_getChapNumOfRecords
decod_getControllerDebugLevel
decod_getCtrlCoercionMethod
decod_getDANumOfTransitionPD
decod_getDiskArrayAvailableSize
decod_getDiskArrayConfigurableSize
decod_getDiskArrayFreeFragments
decod_getDiskArrayMaxSupportedSize
decod_getDiskArrayOpStatus
decod_getDiskArrayPhyDrvFreeSize
decod_getDiskArrayPhysicalSize
decod_getEnclCtrlTemp
decod_getEnclCtrlTempThCritical
decod_getEnclCtrlTempThWarning
decod_getEnclFanSpeed
decod_getEnclFanStatus
decod_getEnclPollInterval
decod_getEnclPsuStatus
decod_getEnclSlotLocation
decod_getEnclTempThCritical
decod_getEnclTempThWarning
decod_getEnclTemperature
decod_getEnclVoltage
decod_getISCSINumOfISNSPort
decod_getISCSINumOfPortSettings
decod_getISCSINumOfPorts
decod_getISCSINumOfSLPPort
decod_getISCSINumOfSessions
decod_getISCSINumOfTcpIpPorts
decod_getISCSINumOfTcpIpSettings
decod_getLogDrvOpStatus
decod_getLogDrvReadPolicy
decod_getLogDrvWritePolicy
decod_getNodeInfoNumOfNode
decod_getNumOfInitiator
decod_getNumOfLMMEntry
decod_getNumOfMissingPD
decod_getPDTransferMode
decod_getPartitionConfigurableSize
decod_getPhyDrvOpStatus
decod_getRAIDLevel
decod_getSize
decod_getStringActiveMode
decod_getStringBGAState
decod_getStringBatteryDate
decod_getStringBatteryStatus
decod_getStringBgaRate
decod_getStringBlowerStatus
decod_getStringChapFlagType
decod_getStringControllerDebugLevel
decod_getStringCtrlCacheLineSize
decod_getStringCtrlCmdProtocol
decod_getStringCtrlCoercionMethod
decod_getStringCustModel
decod_getStringCustName
decod_getStringCustPartNo
decod_getStringCustRev
decod_getStringCustSerialNo
decod_getStringDate
decod_getStringDiskArrayOpStatus
decod_getStringDiskArrayOpStatusEx
decod_getStringEventDeviceId
decod_getStringEventTimeStamp
decod_getStringFanStatus
decod_getStringFeatureEnable
decod_getStringFeatureSupport
decod_getStringFlashType
decod_getStringFruType
decod_getStringFwRevision
decod_getStringIPAddress
decod_getStringISCSINodeStatus
decod_getStringISCSIPortDigestMethod
decod_getStringISCSISessionDeviceType
decod_getStringISCSISessionISID
decod_getStringISCSISessionState
decod_getStringLogDrvCachePolicy
decod_getStringLogDrvInitStatus
decod_getStringLogDrvOpStatus
decod_getStringLogDrvOpStatusEx
decod_getStringLogDrvReadPolicy
decod_getStringLogDrvSerialNo
decod_getStringLogDrvSyncStatus
decod_getStringLogDrvUserName
decod_getStringLogDrvWritePolicy
decod_getStringMACAddress
decod_getStringMasterMode
decod_getStringMemoryECCType
decod_getStringMemoryType
decod_getStringNotApplicable
decod_getStringNotSupported
decod_getStringNvramType
decod_getStringOpStatus
decod_getStringPDMultiDMAMode
decod_getStringPDUltraDMAMode
decod_getStringPhyDrvConfigStatus
decod_getStringPhyDrvFirmwareRev
decod_getStringPhyDrvLocation
decod_getStringPhyDrvModel
decod_getStringPhyDrvOpStatus
decod_getStringPhyDrvOpStatusEx
decod_getStringPhyDrvProtocolVersion
decod_getStringPhyDrvSerialNo
decod_getStringPhyDrvType
decod_getStringPortLinkStatus
decod_getStringPsuStatus
decod_getStringRAIDLevel
decod_getStringRebuildType
decod_getStringSATAFRUInfo
decod_getStringSize
decod_getStringSpareType
decod_getStringSubsysInterConnectType
decod_getStringSupportedRAIDLevels
decod_getStringTemperature
decod_getStringTime
decod_getStringTimePeriod
decod_getStringUserPrivilege
decod_getStringVoltage
decod_getStringWWN
decod_getSupportedRAIDLevels
decod_isDiskArrayMPEnabled
decod_isDiskArrayMPRunning
decod_isHybridRAIDLevel
decod_isISNSAutoIP
decod_isISNSEnabled
decod_isISNSEsiEnabled
decod_isLogDrvCritical
decod_isLogDrvInitialized
decod_isLogDrvInitializing
decod_isLogDrvOffline
decod_isLogDrvOnline
decod_isLogDrvRebuilding
decod_isLogDrvSynchronized
decod_isPhyDrvUnconfigured
decod_isSLPAutoDAIP
decod_isSLPSAEnabled
decod_isSLPUseDA
decod_isSpareDedicated
decod_isSpareTemporary
decod_isSupportedRAIDLevel
decod_isSupportedStripeSize
decod_isValidAxle
decod_isiSCSIDeviceAccessControlEnabled
decod_isiSCSINodeAccessControlEnabled
decod_isiSCSINodeBiChapAuthEnabled
decod_isiSCSINodeDataDigestEnabled
decod_isiSCSINodeDataPDUInorderEnabled
decod_isiSCSINodeDataSeqInorderEnabled
decod_isiSCSINodeEnabled
decod_isiSCSINodeHeaderDigestEnabled
decod_isiSCSINodeImmediateDataEnabled
decod_isiSCSINodeInitialR2TEnabled
decod_isiSCSINodeUniChapAuthEnabled
decod_isiSCSIPortMarkerEnabled
decod_locateBufferAxleInLogDrv
decod_locateBufferCtrlInfo
decod_locateBufferCtrlInfoPrecise
decod_locateBufferDiskArraySettings
decod_locateBufferInitiator
decod_locateBufferLMMEntry
decod_locateBufferLogDrvInDaPrecise
decod_locateBufferLogDrvInfo
decod_locateBufferLogDrvSettings
decod_locateBufferMigrationProg
decod_locateBufferNextArrayInfo
decod_locateBufferNextDiskArrayCfg
decod_locateBufferNextLogDrvInDiskArray
decod_locateBufferNextPhyDrvInDiskArray
decod_locateBufferNextSpareInfo
decod_locateBufferNextSpareInfoOfArray
decod_locateBufferPhyDrvInfo
decod_locateBufferPhyDrvInfoPrecise
decod_locateBufferPhyDrvSettingsPrecise
decod_locateBufferStatistics
decod_locateChapRecord
decod_locateDATransitionPD
decod_locateFruInfo
decod_locateISCSIISNSData
decod_locateISCSINodeInfoSetting
decod_locateISCSIPortData
decod_locateISCSIPortSetting
decod_locateISCSIPortStats
decod_locateISCSISLPData
decod_locateISCSISessStats
decod_locateISCSISessionData
decod_locateISCSITcpIpData
decod_locateISCSITcpIpSettings
decod_locateNetworkSettings
decod_locateNodeInfoData
decod_locatePDPage0Settings
decod_locatePDPage1Settings
decod_logSizeToPartitionSizeNoRounding
decod_removeFragment
decod_retrieveDate
decod_retrieveIPAddress
decod_retrieveTime
decod_stringCompareNoCase
decod_validateBgaRate
decod_validateEventLocation

Sections

UPX0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
prerrlog.dll
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

13:21:31:b5:89:4f:85:26:31:fb:90:3f:83:8c:b0:29:8f:ed:ab:94:7b:5b:66:40:b3:6c:5b:d2:98:8c:cf:5e
Signer

Actual PE Digest

13:21:31:b5:89:4f:85:26:31:fb:90:3f:83:8c:b0:29:8f:ed:ab:94:7b:5b:66:40:b3:6c:5b:d2:98:8c:cf:5e

Digest Algorithm

sha256

PE Digest Matches

true

b8:b4:93:2f:0c:b3:27:e6:f8:36:1c:2c:08:03:9e:2f:6a:8b:d5:77
Signer

Actual PE Digest

b8:b4:93:2f:0c:b3:27:e6:f8:36:1c:2c:08:03:9e:2f:6a:8b:d5:77

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

createErrorHandler
destroyErrorHandler
formPMICErrorCode
getErrorDescription
getPMICErrorAsc
getPMICErrorAscq
getPMICErrorDescription
getPMICErrorSenseKey
getPMICErrorStatus
isPMICErrorCode
logDataMsg
logErrMsg
logInfoMsg
logSysErrMsg
modifyErrorHandler

Sections

UPX0
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pri2plgnnapa.dll
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:c7:06:59:23:eb:ef:61:65:f8:bc:31:d1:8e:6a:bb
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/09/2012, 00:00

Not After

20/09/2014, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gyorgy,L=Urhida,ST=-,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e5:3a:98:be:5e:2d:e1:10:85:e8:3e:0b:8c:aa:54:96:97:1b:c1:12:27:92:a5:3a:10:f4:eb:6c:e7:ec:9d:62
Signer

Actual PE Digest

e5:3a:98:be:5e:2d:e1:10:85:e8:3e:0b:8c:aa:54:96:97:1b:c1:12:27:92:a5:3a:10:f4:eb:6c:e7:ec:9d:62

Digest Algorithm

sha256

PE Digest Matches

true

0d:ec:12:97:f7:9c:42:0a:f1:b1:7a:b6:32:74:7f:97:db:e9:86:06
Signer

Actual PE Digest

0d:ec:12:97:f7:9c:42:0a:f1:b1:7a:b6:32:74:7f:97:db:e9:86:06

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

i2_ATAPassThru
i2_ATAPassThruGetResult
i2_FlashUpload
i2_GetCAMSetting
i2_PauseMigration
i2_ResumeMigration
i2_SetCAMSetting
i2_activateLogDrv
i2_addBGASchedule
i2_addDiskArray
i2_addHBAArray
i2_addHBAExtentToArray
i2_addIgnoreEvent
i2_addLogDrv
i2_addSpare
i2_delAllDiskArray
i2_delDiskArray
i2_delLogDrv
i2_delSpare
i2_deleteBGASchedule
i2_deleteHBAExtent
i2_discover
i2_discoverByProductAndCommPath
i2_finalize
i2_freeHBAExtent
i2_getAllSpareInfo
i2_getAryLostDisk
i2_getBGASchedule
i2_getBatteryInfo
i2_getBuzzerStatus
i2_getControllerInfo
i2_getControllerSettings
i2_getDataTransferSpeed
i2_getDataTransferSpeedTX
i2_getDiscoverPath
i2_getDiskArrayConfig
i2_getDiskArrayInfo
i2_getDiskArraySettings
i2_getDriverInfo
i2_getEnclosureInfo
i2_getEnclosureStatus
i2_getErrorTable
i2_getEvents
i2_getHBABSL
i2_getHBAEvents
i2_getHBAMediaPatrolProgress
i2_getHostInfo
i2_getIgnoreEventList
i2_getLogDrvInfo
i2_getLogDrvInitProgress
i2_getLogDrvSettings
i2_getLogDrvSynchProgress
i2_getMigrationProgress
i2_getMissingPhyDrvInfo
i2_getNumberOfHBA
i2_getNumberOfSubsystem
i2_getPhyDrvInfo
i2_getPhyDrvLocateStatus
i2_getPhyDrvSettings
i2_getPlugInAPITable
i2_getPortALPE
i2_getPortHotPlug
i2_getPortInfo
i2_getRebuildProgress
i2_getRedundancyCheckProgress
i2_getSpareInfo
i2_getSubsystemInfo
i2_getSubsystemSettings
i2_initialize
i2_locateDiskArray
i2_locateLogDrv
i2_locatePhyDrv
i2_migrateDiskArray
i2_migrateHBAArray
i2_modifyBGASchedule
i2_pauseHBAMediaPatrol
i2_pauseLogDrvInit
i2_pauseRebuild
i2_pauseRedundancyCheck
i2_processIncompleteArray
i2_removeHBADiskMDD
i2_removeIgnoreEvent
i2_restartRebuild
i2_resumeHBAMediaPatrol
i2_resumeLogDrvInit
i2_resumeRebuild
i2_resumeRedundancyCheck
i2_sendBypassCommand
i2_setControllerSettings
i2_setDataTransferSpeed
i2_setDataTransferSpeedTX
i2_setDiskArraySettings
i2_setEnclosureSetting
i2_setLogDrvSettings
i2_setPhyDrvSettings
i2_setPortALPE
i2_setPortHotPlug
i2_setSpareDriveSettings
i2_setSubsystemSettings
i2_spareHBAExtent
i2_splitHBAExtent
i2_splitHBAExtentEx
i2_startHBAMediaPatrol
i2_startHBARebuildExtent
i2_startLogDrvInit
i2_startRebuild
i2_startRedundancyCheck
i2_stopHBAMediaPatrol
i2_stopLocateLogDrv
i2_stopLocatePhyDrv
i2_stopLogDrvInit
i2_stopRebuild
i2_stopRedundancyCheck
i2_turnOffBuzzer
i2_turnOnBuzzer

Sections

UPX0
Size: - Virtual size: 140KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 79KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ptbr.lng
ptbrpro.lng
removehds7.vbs
.vbs
ro.lng
ropro.lng
ru.chm
.chm
ru.lng
rupro.lng
sk.lng
skpro.lng
sp.lng
sppro.lng
ssleay32.dll
.dll windows:5 windows x86 arch:x86

2b319a838751e6765694bcafaad52919

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

28:e8:dc:d8:f2:fa:24:0c:51:1e:db:9b:34:91:a9:1f:e1:e8:64:d7:16:7c:d4:81:b1:d4:4f:55:80:ec:eb:0b
Signer

Actual PE Digest

28:e8:dc:d8:f2:fa:24:0c:51:1e:db:9b:34:91:a9:1f:e1:e8:64:d7:16:7c:d4:81:b1:d4:4f:55:80:ec:eb:0b

Digest Algorithm

sha256

PE Digest Matches

true

a1:0e:4d:4d:ac:bb:f7:fd:f0:5b:eb:fc:b6:51:7c:ea:6e:28:e6:0e
Signer

Actual PE Digest

a1:0e:4d:4d:ac:bb:f7:fd:f0:5b:eb:fc:b6:51:7c:ea:6e:28:e6:0e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\OpenSSL\Temp\openssl-1.0.2s-x32\out32dll\ssleay32.pdb

Imports

libeay32

ord2894
ord2927
ord2784
ord256
ord168
ord2747
ord961
ord167
ord169
ord3844
ord3837
ord3896
ord2201
ord904
ord176
ord282
ord572
ord3165
ord3489
ord1071
ord2925
ord268
ord316
ord363
ord2712
ord4164
ord493
ord4262
ord3719
ord216
ord333
ord4125
ord4470
ord1010
ord4046
ord3682
ord2877
ord3711
ord129
ord124
ord1000
ord125
ord150
ord205
ord486
ord484
ord577
ord763
ord907
ord87
ord3450
ord2107
ord2063
ord283
ord3418
ord481
ord323
ord2915
ord3836
ord3873
ord1096
ord1097
ord3244
ord3874
ord3816
ord3888
ord109
ord2589
ord78
ord95
ord3891
ord89
ord1145
ord1144
ord3906
ord1081
ord2292
ord3823
ord3846
ord187
ord3857
ord267
ord3675
ord3737
ord3633
ord3631
ord3664
ord3479
ord1011
ord341
ord1012
ord503
ord359
ord365
ord4684
ord3192
ord3388
ord3528
ord2568
ord3312
ord3922
ord2898
ord264
ord266
ord3067
ord3313
ord3314
ord4210
ord3566
ord4188
ord3332
ord4701
ord653
ord4692
ord3925
ord541
ord2702
ord3124
ord4372
ord4144
ord4174
ord2400
ord3782
ord1202
ord193
ord3866
ord3704
ord3758
ord3767
ord3647
ord3766
ord3365
ord4114
ord3460
ord3783
ord3454
ord3754
ord3394
ord897
ord3414
ord3495
ord3610
ord67
ord65
ord3315
ord98
ord3826
ord3559
ord3399
ord636
ord2257
ord914
ord2478
ord626
ord890
ord1004
ord3527
ord4513
ord364
ord2051
ord206
ord497
ord85
ord58
ord630
ord628
ord1041
ord1007
ord1005
ord4331
ord1027
ord3437
ord629
ord892
ord74
ord248
ord3378
ord1655
ord575
ord1025
ord246
ord1100
ord4693
ord2135
ord622
ord679
ord2524
ord3505
ord3595
ord1023
ord2451
ord623
ord657
ord401
ord93
ord911
ord3396
ord3657
ord857
ord908
ord680
ord1016
ord2204
ord3205
ord624
ord128
ord4045
ord2475
ord368
ord367
ord370
ord369
ord887
ord889
ord891
ord4320
ord4383
ord315
ord1671
ord1147
ord189
ord314
ord956
ord280
ord2181
ord399
ord748
ord279
ord400
ord751
ord750
ord394
ord774
ord1959
ord37
ord35
ord824
ord822
ord8
ord1091
ord3700
ord3623
ord718
ord7
ord716
ord703
ord2426
ord86
ord88
ord3724
ord313
ord1101
ord293
ord3914
ord3807
ord3795
ord4740
ord4731
ord4656
ord4637
ord4615
ord4601
ord2996
ord3155
ord959
ord325
ord329
ord318
ord304
ord292
ord299
ord395
ord955
ord2252
ord91
ord247
ord225
ord4578
ord4572
ord4576
ord4570
ord4573
ord4582
ord4575
ord4577
ord4584
ord4580
ord4581
ord2572
ord3899
ord276
ord274
ord964
ord965
ord2411
ord754
ord910
ord641
ord912
ord909
ord635
ord52
ord290
ord498
ord219
ord3666
ord4474
ord4369
ord66
ord464
ord490
ord3245
ord654
ord967
ord2128
ord281
ord118
ord201
ord123
ord202
ord3663
ord3512
ord3459
ord2924
ord3010
ord2578
ord3644
ord2929
ord3422
ord3513
ord170
ord165
ord4119
ord4245
ord4488
ord222
ord32
ord1070
ord4233
ord4430
ord866
ord2630
ord2760
ord4540
ord203
ord3353
ord3729
ord3480
ord3608
ord3550
ord3575
ord3570
ord3695
ord3178
ord188
ord111
ord110
ord151
ord285
ord3239
ord120
ord181
ord3883
ord3109
ord269
ord2936
ord495
ord2821
ord289
ord252
ord1654
ord1653
ord905
ord53
ord903

kernel32

CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CloseHandle
HeapSize
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryA
VirtualAlloc
HeapReAlloc
HeapAlloc
RtlUnwind
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapDestroy
HeapCreate
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
WriteFile
InterlockedDecrement
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
ExitProcess
GetModuleHandleW
HeapFree
Sleep
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetModuleHandleA
GetProcAddress
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
GetCommandLineA
GetCurrentThreadId
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LeaveCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
GetLastError
GetSystemTime
SystemTimeToFileTime
SetLastError

Exports

Exports

BIO_f_ssl
BIO_new_buffer_ssl_connect
BIO_new_ssl
BIO_new_ssl_connect
BIO_ssl_copy_session_id
BIO_ssl_shutdown
DTLS_client_method
DTLS_method
DTLS_server_method
DTLSv1_2_client_method
DTLSv1_2_method
DTLSv1_2_server_method
DTLSv1_client_method
DTLSv1_method
DTLSv1_server_method
ERR_load_SSL_strings
PEM_read_SSL_SESSION
PEM_read_bio_SSL_SESSION
PEM_write_SSL_SESSION
PEM_write_bio_SSL_SESSION
SRP_Calc_A_param
SRP_generate_client_master_secret
SRP_generate_server_master_secret
SSL_CIPHER_description
SSL_CIPHER_find
SSL_CIPHER_get_bits
SSL_CIPHER_get_id
SSL_CIPHER_get_name
SSL_CIPHER_get_version
SSL_COMP_add_compression_method
SSL_COMP_free_compression_methods
SSL_COMP_get_compression_methods
SSL_COMP_get_name
SSL_COMP_set0_compression_methods
SSL_CONF_CTX_clear_flags
SSL_CONF_CTX_finish
SSL_CONF_CTX_free
SSL_CONF_CTX_new
SSL_CONF_CTX_set1_prefix
SSL_CONF_CTX_set_flags
SSL_CONF_CTX_set_ssl
SSL_CONF_CTX_set_ssl_ctx
SSL_CONF_cmd
SSL_CONF_cmd_argv
SSL_CONF_cmd_value_type
SSL_CTX_SRP_CTX_free
SSL_CTX_SRP_CTX_init
SSL_CTX_add_client_CA
SSL_CTX_add_client_custom_ext
SSL_CTX_add_server_custom_ext
SSL_CTX_add_session
SSL_CTX_callback_ctrl
SSL_CTX_check_private_key
SSL_CTX_ctrl
SSL_CTX_flush_sessions
SSL_CTX_free
SSL_CTX_get0_certificate
SSL_CTX_get0_param
SSL_CTX_get0_privatekey
SSL_CTX_get_cert_store
SSL_CTX_get_client_CA_list
SSL_CTX_get_client_cert_cb
SSL_CTX_get_ex_data
SSL_CTX_get_ex_new_index
SSL_CTX_get_info_callback
SSL_CTX_get_quiet_shutdown
SSL_CTX_get_ssl_method
SSL_CTX_get_timeout
SSL_CTX_get_verify_callback
SSL_CTX_get_verify_depth
SSL_CTX_get_verify_mode
SSL_CTX_load_verify_locations
SSL_CTX_new
SSL_CTX_remove_session
SSL_CTX_sess_get_get_cb
SSL_CTX_sess_get_new_cb
SSL_CTX_sess_get_remove_cb
SSL_CTX_sess_set_get_cb
SSL_CTX_sess_set_new_cb
SSL_CTX_sess_set_remove_cb
SSL_CTX_sessions
SSL_CTX_set1_param
SSL_CTX_set_alpn_protos
SSL_CTX_set_alpn_select_cb
SSL_CTX_set_cert_cb
SSL_CTX_set_cert_store
SSL_CTX_set_cert_verify_callback
SSL_CTX_set_cipher_list
SSL_CTX_set_client_CA_list
SSL_CTX_set_client_cert_cb
SSL_CTX_set_client_cert_engine
SSL_CTX_set_cookie_generate_cb
SSL_CTX_set_cookie_verify_cb
SSL_CTX_set_default_passwd_cb
SSL_CTX_set_default_passwd_cb_userdata
SSL_CTX_set_default_verify_paths
SSL_CTX_set_ex_data
SSL_CTX_set_generate_session_id
SSL_CTX_set_info_callback
SSL_CTX_set_msg_callback
SSL_CTX_set_next_proto_select_cb
SSL_CTX_set_next_protos_advertised_cb
SSL_CTX_set_psk_client_callback
SSL_CTX_set_psk_server_callback
SSL_CTX_set_purpose
SSL_CTX_set_quiet_shutdown
SSL_CTX_set_session_id_context
SSL_CTX_set_srp_cb_arg
SSL_CTX_set_srp_client_pwd_callback
SSL_CTX_set_srp_password
SSL_CTX_set_srp_strength
SSL_CTX_set_srp_username
SSL_CTX_set_srp_username_callback
SSL_CTX_set_srp_verify_param_callback
SSL_CTX_set_ssl_version
SSL_CTX_set_timeout
SSL_CTX_set_tlsext_use_srtp
SSL_CTX_set_tmp_dh_callback
SSL_CTX_set_tmp_ecdh_callback
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_trust
SSL_CTX_set_verify
SSL_CTX_set_verify_depth
SSL_CTX_use_PrivateKey
SSL_CTX_use_PrivateKey_ASN1
SSL_CTX_use_PrivateKey_file
SSL_CTX_use_RSAPrivateKey
SSL_CTX_use_RSAPrivateKey_ASN1
SSL_CTX_use_RSAPrivateKey_file
SSL_CTX_use_certificate
SSL_CTX_use_certificate_ASN1
SSL_CTX_use_certificate_chain_file
SSL_CTX_use_certificate_file
SSL_CTX_use_psk_identity_hint
SSL_CTX_use_serverinfo
SSL_CTX_use_serverinfo_file
SSL_SESSION_free
SSL_SESSION_get0_peer
SSL_SESSION_get_compress_id
SSL_SESSION_get_ex_data
SSL_SESSION_get_ex_new_index
SSL_SESSION_get_id
SSL_SESSION_get_time
SSL_SESSION_get_timeout
SSL_SESSION_new
SSL_SESSION_print
SSL_SESSION_print_fp
SSL_SESSION_set1_id_context
SSL_SESSION_set_ex_data
SSL_SESSION_set_time
SSL_SESSION_set_timeout
SSL_SRP_CTX_free
SSL_SRP_CTX_init
SSL_accept
SSL_add_client_CA
SSL_add_dir_cert_subjects_to_stack
SSL_add_file_cert_subjects_to_stack
SSL_alert_desc_string
SSL_alert_desc_string_long
SSL_alert_type_string
SSL_alert_type_string_long
SSL_cache_hit
SSL_callback_ctrl
SSL_certs_clear
SSL_check_chain
SSL_check_private_key
SSL_clear
SSL_connect
SSL_copy_session_id
SSL_ctrl
SSL_do_handshake
SSL_dup
SSL_dup_CA_list
SSL_export_keying_material
SSL_extension_supported
SSL_free
SSL_get0_alpn_selected
SSL_get0_next_proto_negotiated
SSL_get0_param
SSL_get1_session
SSL_get_SSL_CTX
SSL_get_certificate
SSL_get_cipher_list
SSL_get_ciphers
SSL_get_client_CA_list
SSL_get_current_cipher
SSL_get_current_compression
SSL_get_current_expansion
SSL_get_default_timeout
SSL_get_error
SSL_get_ex_data
SSL_get_ex_data_X509_STORE_CTX_idx
SSL_get_ex_new_index
SSL_get_fd
SSL_get_finished
SSL_get_info_callback
SSL_get_peer_cert_chain
SSL_get_peer_certificate
SSL_get_peer_finished
SSL_get_privatekey
SSL_get_psk_identity
SSL_get_psk_identity_hint
SSL_get_quiet_shutdown
SSL_get_rbio
SSL_get_read_ahead
SSL_get_rfd
SSL_get_selected_srtp_profile
SSL_get_servername
SSL_get_servername_type
SSL_get_session
SSL_get_shared_ciphers
SSL_get_shared_sigalgs
SSL_get_shutdown
SSL_get_sigalgs
SSL_get_srp_N
SSL_get_srp_g
SSL_get_srp_userinfo
SSL_get_srp_username
SSL_get_srtp_profiles
SSL_get_ssl_method
SSL_get_verify_callback
SSL_get_verify_depth
SSL_get_verify_mode
SSL_get_verify_result
SSL_get_version
SSL_get_wbio
SSL_get_wfd
SSL_has_matching_session_id
SSL_is_server
SSL_library_init
SSL_load_client_CA_file
SSL_load_error_strings
SSL_new
SSL_peek
SSL_pending
SSL_read
SSL_renegotiate
SSL_renegotiate_abbreviated
SSL_renegotiate_pending
SSL_rstate_string
SSL_rstate_string_long
SSL_select_next_proto
SSL_set1_param
SSL_set_SSL_CTX
SSL_set_accept_state
SSL_set_alpn_protos
SSL_set_bio
SSL_set_cert_cb
SSL_set_cipher_list
SSL_set_client_CA_list
SSL_set_connect_state
SSL_set_debug
SSL_set_ex_data
SSL_set_fd
SSL_set_generate_session_id
SSL_set_info_callback
SSL_set_msg_callback
SSL_set_psk_client_callback
SSL_set_psk_server_callback
SSL_set_purpose
SSL_set_quiet_shutdown
SSL_set_read_ahead
SSL_set_rfd
SSL_set_session
SSL_set_session_id_context
SSL_set_session_secret_cb
SSL_set_session_ticket_ext
SSL_set_session_ticket_ext_cb
SSL_set_shutdown
SSL_set_srp_server_param
SSL_set_srp_server_param_pw
SSL_set_ssl_method
SSL_set_state
SSL_set_tlsext_use_srtp
SSL_set_tmp_dh_callback
SSL_set_tmp_ecdh_callback
SSL_set_tmp_rsa_callback
SSL_set_trust
SSL_set_verify
SSL_set_verify_depth
SSL_set_verify_result
SSL_set_wfd
SSL_shutdown
SSL_srp_server_param_with_username
SSL_state
SSL_state_string
SSL_state_string_long
SSL_use_PrivateKey
SSL_use_PrivateKey_ASN1
SSL_use_PrivateKey_file
SSL_use_RSAPrivateKey
SSL_use_RSAPrivateKey_ASN1
SSL_use_RSAPrivateKey_file
SSL_use_certificate
SSL_use_certificate_ASN1
SSL_use_certificate_file
SSL_use_psk_identity_hint
SSL_version
SSL_want
SSL_write
SSLv23_client_method
SSLv23_method
SSLv23_server_method
SSLv2_client_method
SSLv2_method
SSLv2_server_method
SSLv3_client_method
SSLv3_method
SSLv3_server_method
TLSv1_1_client_method
TLSv1_1_method
TLSv1_1_server_method
TLSv1_2_client_method
TLSv1_2_method
TLSv1_2_server_method
TLSv1_client_method
TLSv1_method
TLSv1_server_method
d2i_SSL_SESSION
i2d_SSL_SESSION
ssl3_ciphers

Sections

.text
Size: 245KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
status.icd
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

11:75:51:08:e7:9e:90:66:48:8f:ff:8b:fe:44:05:b4:48:00:9e:e7:d2:05:a9:f3:05:cd:e4:f9:95:9e:f4:5d
Signer

Actual PE Digest

11:75:51:08:e7:9e:90:66:48:8f:ff:8b:fe:44:05:b4:48:00:9e:e7:d2:05:a9:f3:05:cd:e4:f9:95:9e:f4:5d

Digest Algorithm

sha256

PE Digest Matches

true

ee:9a:c3:a3:64:a7:3a:71:58:14:79:18:45:b5:02:4a:38:33:2d:8e
Signer

Actual PE Digest

ee:9a:c3:a3:64:a7:3a:71:58:14:79:18:45:b5:02:4a:38:33:2d:8e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
statusb.icd
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ff:39:39:b7:1f:75:b9:9f:62:1c:5f:ed:0d:5b:11:ba:84:f7:da:38:90:d9:1d:c6:5a:a3:1b:fc:61:5a:88:2c
Signer

Actual PE Digest

ff:39:39:b7:1f:75:b9:9f:62:1c:5f:ed:0d:5b:11:ba:84:f7:da:38:90:d9:1d:c6:5a:a3:1b:fc:61:5a:88:2c

Digest Algorithm

sha256

PE Digest Matches

true

12:90:df:a0:e2:bd:3e:5b:6b:31:72:7a:04:0f:90:69:81:6f:96:5b
Signer

Actual PE Digest

12:90:df:a0:e2:bd:3e:5b:6b:31:72:7a:04:0f:90:69:81:6f:96:5b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
statusg.icd
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

d0:c3:71:a0:1b:bf:48:c1:00:c7:5c:e0:e6:89:f3:13:a5:40:e6:80:b9:cd:5e:fe:91:10:d3:ee:fa:c1:d2:2e
Signer

Actual PE Digest

d0:c3:71:a0:1b:bf:48:c1:00:c7:5c:e0:e6:89:f3:13:a5:40:e6:80:b9:cd:5e:fe:91:10:d3:ee:fa:c1:d2:2e

Digest Algorithm

sha256

PE Digest Matches

true

93:3a:5d:d6:02:5e:e8:b0:17:4c:35:52:69:71:77:86:fd:f9:b6:19
Signer

Actual PE Digest

93:3a:5d:d6:02:5e:e8:b0:17:4c:35:52:69:71:77:86:fd:f9:b6:19

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
statusn.icd
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

66:ce:9f:6f:be:65:28:f6:e2:93:98:60:c3:b5:ed:e1:94:3d:cf:b1:0a:ae:ab:d0:50:26:2d:46:3e:4f:22:57
Signer

Actual PE Digest

66:ce:9f:6f:be:65:28:f6:e2:93:98:60:c3:b5:ed:e1:94:3d:cf:b1:0a:ae:ab:d0:50:26:2d:46:3e:4f:22:57

Digest Algorithm

sha256

PE Digest Matches

true

6f:92:85:44:46:a0:13:01:7d:7b:05:4f:80:2e:06:9f:a6:54:52:90
Signer

Actual PE Digest

6f:92:85:44:46:a0:13:01:7d:7b:05:4f:80:2e:06:9f:a6:54:52:90

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
statusw.icd
.dll windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:8c:a7:e0:db:f6:c1:9b:bb:2f:54:43:11:fd:39:4a:a3:cb:eb:db:89:d5:2a:29:da:a4:a8:02:a9:10:54:fc
Signer

Actual PE Digest

61:8c:a7:e0:db:f6:c1:9b:bb:2f:54:43:11:fd:39:4a:a3:cb:eb:db:89:d5:2a:29:da:a4:a8:02:a9:10:54:fc

Digest Algorithm

sha256

PE Digest Matches

true

75:7c:90:44:e8:54:49:15:4a:c9:0d:4a:35:da:8c:94:3c:b4:e1:9e
Signer

Actual PE Digest

75:7c:90:44:e8:54:49:15:4a:c9:0d:4a:35:da:8c:94:3c:b4:e1:9e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
storarc.dll
.dll windows:4 windows x86 arch:x86

3011d179ff36dd6b41e97d979b321d9b

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

02:43:a3:a2:2f:ef:30:2e:51:68:c7:05:c0:df:db:5e:ef:aa:c7:70:42:52:bb:96:38:88:8a:fc:08:ef:ec:c8
Signer

Actual PE Digest

02:43:a3:a2:2f:ef:30:2e:51:68:c7:05:c0:df:db:5e:ef:aa:c7:70:42:52:bb:96:38:88:8a:fc:08:ef:ec:c8

Digest Algorithm

sha256

PE Digest Matches

true

0a:bd:e8:b6:2b:01:5e:43:ac:e2:4b:36:26:a6:6f:ae:4f:80:fd:48
Signer

Actual PE Digest

0a:bd:e8:b6:2b:01:5e:43:ac:e2:4b:36:26:a6:6f:ae:4f:80:fd:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

S:\manager\raiddll\Build\Arc\win32\release\storarc.pdb

Imports

kernel32

LeaveCriticalSection
DeleteCriticalSection
LockFile
UnlockFile
GetFileSize
GetFileAttributesExA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
Sleep
TryEnterCriticalSection
ReadFile
CreateFileA
WaitForSingleObject
ReleaseMutex
WaitForSingleObjectEx
ReleaseSemaphore
GetLastError
OpenMutexA
CreateSemaphoreA
EnterCriticalSection
InitializeCriticalSection
CloseHandle
GetCurrentThreadId
CompareStringW
CompareStringA
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FreeLibrary
GetLocaleInfoW
LoadLibraryA
SetConsoleCtrlHandler
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
SetFilePointer
GetOEMCP
GetACP
GetStartupInfoA
SetHandleCount
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ExitProcess
HeapReAlloc
VirtualAlloc
FatalAppExitA
VirtualFree
HeapCreate
HeapDestroy
GetModuleFileNameA
GetStdHandle
WriteFile
GetCurrentThread
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
GetProcAddress
GetCPInfo
LCMapStringW
LCMapStringA
GetProcessHeap
GetVersionExA
GetCommandLineA
GetDateFormatA
GetTimeFormatA
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
MultiByteToWideChar
InterlockedExchange
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
SetEnvironmentVariableA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

afaapi

FsaSetDirtyPageThresholdValue
FsaSetMaxCacheRWFactor
FsaMaxCacheWriteCacheDisableAll
FsaGetMaxCacheIndexList
FsaGetMaxCacheFeatures
FsaGetSPMParameters
FsaSetSPMParameters
FsaGetBusTargetLunFromDevHandle
FsaGetConnectorMap
FsaGetConnectorMapSize
FsaSetControllerStats
FsaResetControllerStatsCounters
FsaHasDirtyData
FsaSetFunctionalMode
FsaSetConnectorFunctionalMode
FsaGetExpanderCount
FsaSendSMPCommand
FsaGetPCISerdesInfo
FsaSetPCISerdesInfo
FsaGetHardwareLog
FsaGetRaid6Options
FsaGetAutomaticFailover
FsaGetContainerOptions
FsaGetPCIIds
FsaVerifyContainerGetInfo
FsaVerifyContainerGetInfo2
FsaSetMaxCacheFlushAndFetchRate
FsaGetGeneralInformation2Ex
FsaOpenAdapter2A
FsaClearAdapterSasPhyInfo
FsaGetNvramEventLog
FsaGetControllerStats
FsaUpdateFlashImages
FsaCreateUFIfromFile
FsaGetSASAddress
FsaPollForEvent
FsaGetSmartHistoryDictionary
FsaGetSmartHistoryDescriptor
FsaGetSmartHistoryModuleCount
FsaGetSmartHistoryBufferData
FsaGetSmartHistoryBufferStatus
FsaTask
FsaCreateRAID60
FsaCreatePrimaryContainer
FsaCreateRAID50
FsaCreateLogicalDrive
FsaCreateSecondaryContainer
FsaDeleteMultipleContainer
FsaGetErrorTunableProfileID
FsaGetPreservedLogicalDriveInfo
FsaFailoverSpace
FsaGetStorageDeviceInfo
FsaEnclosureMgt
FsaEnumChannels
FsaStartGetConfig
FsaRefreshSupportedRAIDFeatures
FsaHasDirtyDataContainer
FsaMorphContainer
FsaContainerSetCacheParams
FsaReleaseContainerCache
FsaContainerSwapDrives
FsaSnapshot
FsaContainerSetPowerManagement
FsaContainerSetITPCacheSettings
FsaContainerSetMaxCacheWriteCacheSettings
FsaContainerForceOnline
FsaGetFsaPartitionInfo
FsaStorageDevice2
FsaCreateJBOD
FsaDeleteJBOD
FsaOnlineDiskDiagnostic
FSASetWearOutParams
FsaFailPartition
FsaSendScsiCommand
FsaSendATACommand
FsaGetDiskSasPhyInfo
FsaGetPhySASDfeInfo
FsaDisableDebugLogs
FsaEnumAdaptersA
FsaClearPreservedLogicalDriveCache
FsaSetSataNCQ
FsaClearMaxCachePool
FsaInitStorageDeviceForFsa
FsaStorageDeviceSetCachePool
FsaProtectStorageDeviceSet
FsaInitStorageDeviceSetForFsa
FsaClearControllerNvsRam
FsaSetPMUTCToLocalTimeDiff
FsaSetPMSpinupLimits
FsaSetPMStayAwakePeriod
FsaSetPerformanceMode
FsaSetDefaultLDTaskPriority
FsaInstallFeatureKey
FsaOnlineControllerDiagnostic
FsaStartMaxCacheBgCheck
FsaSetMaxCacheBgCheck
FsaSetMaxCacheWrite
FsaSetCopyback
FsaIsAdapterPausedEx
FsaVerifyContainer2
FsaGetControllerInternalLogData
FsaGetControllerInternalLogInfo
FsaInvokeSetBootDevice
FsaInvokeSetBiosParamsCommand
FsaInvokeCpldCommand
FsaClearDeadDriveLog
FsaClearDriveErrorTable
FsaResetNvramEventLog
FsaGetDriveErrorTableSize
FsaGetDriveErrorTable2
FsaGetDriveErrorTable
FsaGetDeadDriveLog2
FsaDiagnostic
FsaGetTaskDetails
FsaContainer
FsaNvram
FsaResetController
FsaSetAutomaticFailover
FsaPauseResumeIo
FsaGetTaskList
FsaSetControllerDeviceCachePolicy
FsaGetAdapterSasPhyInfo
FsaBattery
FsaAlarm
GetSingleLogDevGetConfig
FsaGetContainerInfo2
FsaContainerGetCacheParams
FsaContainerGetCacheMode
FsaGetPhysicalDeviceInfo
FsaGetSmartDeviceInfo
FsaSetSmartPollSetting
FsaExecuteArcUartCommand
FsaApplyCustomDefaults
FsaSetSaveCustomDefaults
FsaGetRuntimeArcConsoleParams
FsaGetCurrentArcConsoleParams
FsaReadArcConsoleData
FsaUpdateBackupUnitFlash
FsaUpdateControllerMfgSector
FsaSetVerifyWrite
FsaExecuteBackupUnitOperation
FsaGetPhysicalDeviceCount
FsaGetLogicalDeviceCount
FsaSetFairnessMode
FsaSetFairnessParameters
FsaSetPbsiConfiguration
FsaGetPbsiConfiguration
FsaGetPhyPCIDfeInfo
FsaRunHardwareDiagnosticTest
FsaSetErrorTunableProfile
FsaSetErrorTunableParams
FsaGetErrorTunableParamList
FsaSetGlobalMaxSASPhyLinkRate
FsaSetMonitorLogSeverityLevel
FsaSetGlobalPhysicalDevicesWriteCachePolicy
FsaSetDDRCachePreservation
FsaCloseAdapter
FsaGetCopyback

Exports

Exports

??0?$ByRefArray_TC@VStorEvent@@@@QAE@KK@Z
??0?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@IAE@V?$allocator@VFreeSpace@@@1@@Z
??0?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@ABV01@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@ABV01@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@ABV?$allocator@VFreeSpace@@@1@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@I@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@IABVFreeSpace@@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@IABVFreeSpace@@ABV?$allocator@VFreeSpace@@@1@@Z
??0?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@XZ
??0Adapter@@QAE@AAVSimpleXmlParser@@@Z
??0Adapter@@QAE@ABV0@@Z
??0Adapter@@QAE@HKW4EnumControllerStatus@@PAD111H_NHHHHHHH@Z
??0Adapter@@QAE@XZ
??0AdapterFeatures@@QAE@ABV0@@Z
??0AdapterFeatures@@QAE@XZ
??0Addr2@@QAE@ABV0@@Z
??0Addr2@@QAE@W4EnumStorLibType@@ABUaddress@@@Z
??0Addr2@@QAE@W4EnumStorLibType@@KKKKK_KKK@Z
??0Addr2@@QAE@XZ
??0Addr2Collection@@QAE@ABV0@@Z
??0Addr2Collection@@QAE@XZ
??0Addr@@QAE@ABUaddress@@@Z
??0Addr@@QAE@ABV0@@Z
??0Addr@@QAE@K@Z
??0Addr@@QAE@KKKKK_KKK@Z
??0Addr@@QAE@XZ
??0AddrCollection@@QAE@ABV0@@Z
??0AddrCollection@@QAE@XZ
??0ArcChunk@@QAE@ABV0@@Z
??0ArcChunk@@QAE@PAUFSA_PARTITION_INFO@@PAVRaidObject@@PAVArray@@PAVLogicalDrive@@_K4W4EnumChunkType@@KW4EnumChunkState@@KKK@Z
??0ArcChunk@@QAE@PAUFSA_PARTITION_INFO@@PAVRaidObject@@PAVLogicalDrive@@_K3W4EnumChunkType@@KW4EnumChunkState@@KK@Z
??0ArcChunk@@QAE@PAVArcAdapter@@PAV0@PAVArcBasicLogicalDrive@@PAVArcHardDrive@@@Z
??0ArcLib@@QAE@ABV0@@Z
??0ArcLib@@QAE@XZ
??0Array@@QAE@ABV0@@Z
??0Array@@QAE@PAVAdapter@@K_K1H@Z
??0Array@@QAE@XZ
??0BasicLogicalDrive@@QAE@ABV0@@Z
??0BasicLogicalDrive@@QAE@PAVAdapter@@AAVSimpleXmlParser@@@Z
??0BasicLogicalDrive@@QAE@PAVAdapter@@PAVArray@@KW4EnumLogicalDeviceState@@W4EnumRaidLevel@@_K4_NW4EnumLogicalDriveCacheMode@@55@Z
??0BasicLogicalDrive@@QAE@XZ
??0Buffer@@QAE@ABV0@@Z
??0Buffer@@QAE@K@Z
??0Buffer@@QAE@KPAE@Z
??0Buffer@@QAE@XZ
??0Channel@@QAE@ABV0@@Z
??0Channel@@QAE@PAVAdapter@@ABV0@@Z
??0Channel@@QAE@PAVAdapter@@KW4EnumChannelType@@W4EnumSpeed@@@Z
??0Channel@@QAE@XZ
??0Chunk@@QAE@ABV0@@Z
??0Chunk@@QAE@KK_K0KKW4EnumChunkType@@W4EnumChunkState@@KK@Z
??0Chunk@@QAE@PAVRaidObject@@PAVArray@@PAVLogicalDrive@@_K3W4EnumChunkType@@KW4EnumChunkState@@KK@Z
??0Chunk@@QAE@PAVRaidObject@@PAVLogicalDrive@@AAVSimpleXmlParser@@@Z
??0Chunk@@QAE@PAVRaidObject@@PAVLogicalDrive@@_K2W4EnumChunkType@@KW4EnumChunkState@@KK@Z
??0Chunk@@QAE@XZ
??0ChunkSpec@@QAE@KK_K0KW4EnumChunkType@@K@Z
??0ChunkSpec@@QAE@Uchunkspec@@@Z
??0ChunkSpec@@QAE@XZ
??0DynamicBuffer@@QAE@K@Z
??0DynamicBuffer@@QAE@PAXK@Z
??0DynamicBufferException@@QAE@H@Z
??0Enclosure@@QAE@ABV0@@Z
??0Enclosure@@QAE@PAVAdapter@@PAVChannel@@AAVSimpleXmlParser@@@Z
??0Enclosure@@QAE@PAVAdapter@@PAVChannel@@KPAD222W4EnumPhysicalDeviceState@@2@Z
??0Enclosure@@QAE@XZ
??0FilterCollection@@QAE@ABV0@@Z
??0FilterCollection@@QAE@PAVRaidObject@@@Z
??0FreeSpace@@QAE@XZ
??0FreeSpace@@QAE@_K0@Z
??0FreeSpaceVector@@QAE@ABV0@@Z
??0FreeSpaceVector@@QAE@XZ
??0HardDrive@@QAE@ABV0@@Z
??0HardDrive@@QAE@PAVAdapter@@PAVChannel@@AAVSimpleXmlParser@@@Z
??0HardDrive@@QAE@PAVAdapter@@PAVChannel@@ABV0@@Z
??0HardDrive@@QAE@PAVAdapter@@PAVChannel@@K_KW4EnumPhysicalDeviceState@@PAD444_NW4EnumHardDriveCacheMode@@55545@Z
??0HardDrive@@QAE@XZ
??0LogicalDrive@@QAE@ABV0@@Z
??0LogicalDrive@@QAE@PAVAdapter@@K@Z
??0LogicalDrive@@QAE@PAVAdapter@@PAVArray@@KW4EnumLogicalDeviceState@@W4EnumRaidLevel@@_K4_NW4EnumLogicalDriveCacheMode@@55@Z
??0LogicalDrive@@QAE@XZ
??0LogicalDriveSpec@@QAE@ABV0@@Z
??0LogicalDriveSpec@@QAE@W4EnumRaidLevel@@W4EnumStripeSize@@PBD@Z
??0LogicalDriveSpec@@QAE@XZ
??0PhysicalDevice@@QAE@ABV0@@Z
??0PhysicalDevice@@QAE@PAVAdapter@@PAVChannel@@KW4EnumPhysicalDeviceType@@PBD333W4EnumPhysicalDeviceState@@3@Z
??0PhysicalDevice@@QAE@XZ
??0PreservedLogicalDrive@@QAE@ABV0@@Z
??0PreservedLogicalDrive@@QAE@III_K@Z
??0PreservedLogicalDrive@@QAE@XZ
??0Progress@@QAE@ABV0@@Z
??0Progress@@QAE@W4EnumTaskType@@KW4EnumTaskState@@K@Z
??0Progress@@QAE@W4EnumTaskType@@VAddr@@W4EnumTaskState@@K@Z
??0Progress@@QAE@XZ
??0ProgressCollection@@QAE@ABV0@@Z
??0ProgressCollection@@QAE@XZ
??0RaidObject@@QAE@ABV0@@Z
??0RaidObject@@QAE@XZ
??0RefSystem@@QAE@ABV0@@Z
??0RefSystem@@QAE@PAVSystem@@@Z
??0RefSystem@@QAE@XZ
??0Ret@@QAE@H@Z
??0Ret@@QAE@XZ
??0SASChannel@@QAE@ABV0@@Z
??0SASChannel@@QAE@PAVAdapter@@AAVSimpleXmlParser@@@Z
??0SASChannel@@QAE@PAVAdapter@@ABV0@@Z
??0SASChannel@@QAE@PAVAdapter@@KW4EnumSpeed@@@Z
??0SASChannel@@QAE@XZ
??0SASConnector@@QAE@AAVSimpleXmlParser@@@Z
??0SASConnector@@QAE@XZ
??0SASLaneInfo@@QAE@AAVSimpleXmlParser@@@Z
??0SASLaneInfo@@QAE@ABV0@@Z
??0SASLaneInfo@@QAE@XZ
??0SASPhy@@QAE@AAVSimpleXmlParser@@@Z
??0SASPhy@@QAE@ABV0@@Z
??0SASPhy@@QAE@KPBDEEK0EEW4EnumSASDeviceType@@W4EnumSASNegotiatedLinkRate@@2W4EnumSASProgrammedLinkRate@@3W4EnumSASHardwareLinkRate@@4E_NEW4EnumSASRoutingType@@EIIII@Z
??0SASPhy@@QAE@XZ
??0SATAChannel@@QAE@ABV0@@Z
??0SATAChannel@@QAE@PAVAdapter@@AAVSimpleXmlParser@@@Z
??0SATAChannel@@QAE@PAVAdapter@@ABV0@@Z
??0SATAChannel@@QAE@PAVAdapter@@KW4EnumSpeed@@K@Z
??0SATAChannel@@QAE@XZ
??0SATACommand@@QAE@AAU_ATARegistersExtended@@@Z
??0SATACommand@@QAE@AAU_ATARegistersNonExtended@@@Z
??0SATACommand@@QAE@ABV0@@Z
??0SATACommand@@QAE@XZ
??0SCSIChannel@@QAE@ABV0@@Z
??0SCSIChannel@@QAE@PAVAdapter@@AAVSimpleXmlParser@@@Z
??0SCSIChannel@@QAE@PAVAdapter@@ABV0@@Z
??0SCSIChannel@@QAE@PAVAdapter@@KKW4EnumSpeed@@@Z
??0SCSIChannel@@QAE@XZ
??0SCSICommand@@QAE@AAVBuffer@@W4EnumDirection@@@Z
??0SCSICommand@@QAE@ABV0@@Z
??0SCSICommand@@QAE@XZ
??0SES2EnclosureDevice@@QAE@ABV0@@Z
??0SES2EnclosureDevice@@QAE@PAVAdapter@@PAVChannel@@AAVSimpleXmlParser@@@Z
??0SES2EnclosureDevice@@QAE@PAVAdapter@@PAVChannel@@KPAD222W4EnumPhysicalDeviceState@@2@Z
??0SES2EnclosureDevice@@QAE@XZ
??0SafteConfig@@QAE@AAV0@@Z
??0SafteConfig@@QAE@PAVEnclosure@@AAVSimpleXmlParser@@@Z
??0SafteConfig@@QAE@XZ
??0Serializable@@QAE@ABV0@@Z
??0Serializable@@QAE@XZ
??0SimpleXmlException@@QAE@DK@Z
??0SimpleXmlParser@@QAE@PADK@Z
??0SimpleXmlParser@@QAE@XZ
??0SmpCommand@@QAE@ABV0@@Z
??0SmpCommand@@QAE@XZ
??0StorEvent@@QAE@ABV0@@Z
??0StorEvent@@QAE@XZ
??0StorEventCollection@@QAE@KKK@Z
??0StorLib@@QAE@ABV0@@Z
??0StorLib@@QAE@W4EnumStorLibType@@@Z
??0StorLibInit@@QAE@XZ
??0StorLibPlugin@@QAE@ABV0@@Z
??0StorLibPlugin@@QAE@W4EnumStorLibType@@@Z
??0StorLibSDK@arcSDK@@QAE@XZ
??0StorTimeInfo@@QAE@ABV0@@Z
??0StorTimeInfo@@QAE@_N@Z
??0System@@QAE@W4EnumStorLibType@@@Z
??0TimeOutObserver@@QAE@ABV0@@Z
??0TimeOutObserver@@QAE@HW4EnumCodeCovered@@@Z
??0WinLocker@@QAE@ABV0@@Z
??0WinLocker@@QAE@W4EnumAdapterType@@PAD@Z
??0XmlAttributeList_C@@QAE@KK@Z
??0osFileLockGrabber@@QAE@AAVosFileWriter@@@Z
??0osFileLockGrabber@@QAE@H@Z
??0osFileLockGrabber@@QAE@PAU_iobuf@@@Z
??0osFileLockGrabber@@QAE@PAVosFileWriter@@@Z
??0osFileWriter@@QAE@PBD0@Z
??0osFileWriter@@QAE@XZ
??0osThreadLocker@@QAE@XZ
??0osThreadLockerGrabber@@QAE@AAVosThreadLocker@@@Z
??0osThreadLockerGrabber@@QAE@PAVosThreadLocker@@@Z
??1?$ByRefArray_TC@VStorEvent@@@@QAE@XZ
??1?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAE@XZ
??1Adapter@@UAE@XZ
??1AdapterFeatures@@UAE@XZ
??1Addr2Collection@@QAE@XZ
??1AddrCollection@@QAE@XZ
??1ArcChunk@@UAE@XZ
??1ArcLib@@UAE@XZ
??1Array@@UAE@XZ
??1BasicLogicalDrive@@UAE@XZ
??1Buffer@@QAE@XZ
??1Channel@@UAE@XZ
??1Chunk@@UAE@XZ
??1ChunkSpec@@QAE@XZ
??1DynamicBuffer@@QAE@XZ
??1Enclosure@@UAE@XZ
??1FilterCollection@@UAE@XZ
??1FreeSpaceVector@@QAE@XZ
??1HardDrive@@UAE@XZ
??1LogicalDrive@@UAE@XZ
??1LogicalDriveSpec@@QAE@XZ
??1PhysicalDevice@@UAE@XZ
??1PreservedLogicalDrive@@UAE@XZ
??1ProgressCollection@@QAE@XZ
??1RaidObject@@UAE@XZ
??1RefSystem@@QAE@XZ
??1SASChannel@@UAE@XZ
??1SASConnector@@UAE@XZ
??1SASLaneInfo@@UAE@XZ
??1SASPhy@@UAE@XZ
??1SATAChannel@@UAE@XZ
??1SATACommand@@UAE@XZ
??1SCSIChannel@@UAE@XZ
??1SCSICommand@@QAE@XZ
??1SES2EnclosureDevice@@UAE@XZ
??1SafteConfig@@UAE@XZ
??1Serializable@@UAE@XZ
??1SmpCommand@@QAE@XZ
??1StorEvent@@QAE@XZ
??1StorEventCollection@@QAE@XZ
??1StorLib@@UAE@XZ
??1StorLibInit@@QAE@XZ
??1StorLibPlugin@@UAE@XZ
??1StorLibSDK@arcSDK@@QAE@XZ
??1System@@UAE@XZ
??1WinLocker@@QAE@XZ
??1XmlAttributeList_C@@QAE@XZ
??1osFileLockGrabber@@QAE@XZ
??1osFileWriter@@QAE@XZ
??1osThreadLocker@@QAE@XZ
??1osThreadLockerGrabber@@QAE@XZ
??4?$ByRefArray_TC@VStorEvent@@@@QAEAAV0@ABV0@@Z
??4?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAV01@ABV01@@Z
??4Adapter@@QAEAAV0@ABV0@@Z
??4AdapterFeatures@@QAEAAV0@ABV0@@Z
??4Addr2@@QAEAAV0@ABV0@@Z
??4Addr2@@QAEAAV0@ABVAddr@@@Z
??4Addr2Collection@@QAEAAV0@ABV0@@Z
??4Addr@@QAEAAV0@ABV0@@Z
??4AddrCollection@@QAEAAV0@ABV0@@Z
??4ArcChunk@@QAEAAV0@ABV0@@Z
??4ArcLib@@QAEAAV0@ABV0@@Z
??4Array@@QAEAAV0@ABV0@@Z
??4BasicArray@@QAEAAV0@ABV0@@Z
??4BasicLogicalDrive@@QAEAAV0@ABV0@@Z
??4Buffer@@QAEAAV0@ABV0@@Z
??4Channel@@QAEAAV0@ABV0@@Z
??4Chunk@@QAEAAV0@ABV0@@Z
??4ChunkSpec@@QAEAAV0@ABV0@@Z
??4DynamicBuffer@@QAEAAV0@ABV0@@Z
??4DynamicBufferException@@QAEAAV0@ABV0@@Z
??4Enclosure@@QAEAAV0@ABV0@@Z
??4FilterCollection@@QAEAAV0@ABV0@@Z
??4FreeSpace@@QAEAAV0@ABV0@@Z
??4FreeSpaceVector@@QAEAAV0@ABV0@@Z
??4HardDrive@@QAEAAV0@ABV0@@Z
??4LogicalDrive@@QAEAAV0@ABV0@@Z
??4LogicalDriveSpec@@QAEAAV0@ABV0@@Z
??4PhysicalDevice@@QAEAAV0@ABV0@@Z
??4PreservedLogicalDrive@@QAEAAV0@ABV0@@Z
??4Progress@@QAEAAV0@ABV0@@Z
??4ProgressCollection@@QAEAAV0@ABV0@@Z
??4RaidObject@@QAEAAV0@ABV0@@Z
??4RefSystem@@QAEAAV0@ABV0@@Z
??4RefSystem@@QAEAAV0@PAVSystem@@@Z
??4Ret@@QAEAAV0@ABV0@@Z
??4SASChannel@@QAEAAV0@ABV0@@Z
??4SASConnector@@QAEAAV0@ABV0@@Z
??4SASLaneInfo@@QAEAAV0@ABV0@@Z
??4SASPhy@@QAEAAV0@ABV0@@Z
??4SATAChannel@@QAEAAV0@ABV0@@Z
??4SATACommand@@QAEAAV0@ABV0@@Z
??4SCSIChannel@@QAEAAV0@ABV0@@Z
??4SCSICommand@@QAEAAV0@ABV0@@Z
??4SES2EnclosureDevice@@QAEAAV0@ABV0@@Z
??4SESEnclosureDevice@@QAEAAV0@ABV0@@Z
??4SafteConfig@@QAEAAV0@ABV0@@Z
??4Serializable@@QAEAAV0@ABV0@@Z
??4SimpleXmlException@@QAEAAV0@ABV0@@Z
??4SimpleXmlParser@@QAEAAV0@ABV0@@Z
??4SmpCommand@@QAEAAV0@ABV0@@Z
??4StorEvent@@QAEAAV0@ABV0@@Z
??4StorLib@@QAEAAV0@ABV0@@Z
??4StorLibInit@@QAEAAV0@ABV0@@Z
??4StorLibPlugin@@QAEAAV0@ABV0@@Z
??4StorLibSDK@arcSDK@@QAEAAV01@ABV01@@Z
??4StorTimeInfo@@QAEAAV0@ABV0@@Z
??4TimeOutObserver@@QAEAAV0@ABV0@@Z
??4WinLocker@@QAEAAV0@ABV0@@Z
??4XmlAttributeList_C@@QAEAAV0@ABV0@@Z
??4osFileLockGrabber@@QAEAAV0@ABV0@@Z
??4osFileWriter@@QAEAAV0@ABV0@@Z
??4osThreadLocker@@QAEAAV0@ABV0@@Z
??4osThreadLockerGrabber@@QAEAAV0@ABV0@@Z
??7RefSystem@@QAE_NXZ
??8Adapter@@UBE_NABV0@@Z
??8Addr2@@QBE_NABV0@@Z
??8Addr2@@QBE_NABVAddr@@@Z
??8Addr2Collection@@QBE_NABV0@@Z
??8Addr@@QBE_NABV0@@Z
??8AddrCollection@@QBE_NABV0@@Z
??8Array@@QBE_NABV0@@Z
??8Buffer@@QBE_NABV0@@Z
??8Channel@@QBE_NABV0@@Z
??8Chunk@@QBE_NABV0@@Z
??8HardDrive@@QBE_NABV0@@Z
??8LogicalDrive@@QBE_NABV0@@Z
??8PhysicalDevice@@QBE_NABV0@@Z
??8Progress@@QBE_NABV0@@Z
??8ProgressCollection@@QBE_NABV0@@Z
??8RaidObject@@QBE_NABV0@@Z
??8RaidObject@@QBE_NABVAddr2@@@Z
??8RaidObject@@QBE_NABVAddr@@@Z
??8Ret@@QBE_NABV0@@Z
??8SASChannel@@QBE_NABV0@@Z
??8SASPhy@@QBE_NABV0@@Z
??8SATAChannel@@QBE_NABV0@@Z
??8SCSIChannel@@QBE_NABV0@@Z
??8StorTimeInfo@@QAE_NABV0@@Z
??8System@@QBE_NABV0@@Z
??9Adapter@@QBE_NABV0@@Z
??9Addr2@@QBE_NABV0@@Z
??9Addr2@@QBE_NABVAddr@@@Z
??9Addr2Collection@@QBE_NABV0@@Z
??9Addr@@QBE_NABV0@@Z
??9AddrCollection@@QBE_NABV0@@Z
??9Array@@QBE_NABV0@@Z
??9Buffer@@QBE_NABV0@@Z
??9Channel@@QBE_NABV0@@Z
??9Chunk@@QBE_NABV0@@Z
??9HardDrive@@QBE_NABV0@@Z
??9LogicalDrive@@QBE_NABV0@@Z
??9PhysicalDevice@@QBE_NABV0@@Z
??9Progress@@QBE_NABV0@@Z
??9ProgressCollection@@QBE_NABV0@@Z
??9RaidObject@@QBE_NABV0@@Z
??9Ret@@QBE_NABV0@@Z
??9SASChannel@@QBE_NABV0@@Z
??9SASPhy@@QBE_NABV0@@Z
??9SATAChannel@@QBE_NABV0@@Z
??9SCSIChannel@@QBE_NABV0@@Z
??9StorTimeInfo@@QAE_NABV0@@Z
??9System@@QBE_NABV0@@Z
??A?$ByRefArray_TC@VStorEvent@@@@QAEAAVStorEvent@@J@Z
??A?$ByRefArray_TC@VStorEvent@@@@QBEABVStorEvent@@J@Z
??A?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEAAVFreeSpace@@I@Z
??A?$vector@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QBEABVFreeSpace@@I@Z
??ABuffer@@QAEAAEK@Z
??ADynamicBuffer@@QBEAADK@Z
??BRefSystem@@QBEPAVSystem@@XZ
??CRefSystem@@QBEPAVSystem@@XZ
??DRefSystem@@QBEAAVSystem@@XZ
??MStorTimeInfo@@QAE_NABV0@@Z
??NStorTimeInfo@@QAE_NABV0@@Z
??OStorTimeInfo@@QAE_NABV0@@Z
??PStorTimeInfo@@QAE_NABV0@@Z
??_7Adapter@@6B@
??_7AdapterFeatures@@6B@
??_7ArcChunk@@6B@
??_7ArcLib@@6B@
??_7Array@@6B@
??_7BasicLogicalDrive@@6B@
??_7Channel@@6B@
??_7Chunk@@6B@
??_7Enclosure@@6B@
??_7FilterCollection@@6B@
??_7HardDrive@@6B@
??_7LogicalDrive@@6B@
??_7PhysicalDevice@@6B@
??_7PreservedLogicalDrive@@6B@
??_7RaidObject@@6B@
??_7SASChannel@@6B@
??_7SASConnector@@6B@
??_7SASLaneInfo@@6B@
??_7SASPhy@@6B@
??_7SATAChannel@@6B@
??_7SATACommand@@6B@
??_7SCSIChannel@@6B@
??_7SES2EnclosureDevice@@6B@
??_7SafteConfig@@6B@
??_7Serializable@@6B@
??_7StorLib@@6B@
??_7StorLibPlugin@@6B@
??_7System@@6B@
??_7TimeOutObserver@@6B@
??_7WinLocker@@6B@
??_F?$ByRefArray_TC@VStorEvent@@@@QAEXXZ
??_F?$_Vector_val@VFreeSpace@@V?$allocator@VFreeSpace@@@std@@@std@@QAEXXZ
??_FDynamicBuffer@@QAEXXZ
??_FStorEventCollection@@QAEXXZ
??_FStorTimeInfo@@QAEXXZ
??_FXmlAttributeList_C@@QAEXXZ
?Alloc@Buffer@@QAEPAEK_N@Z
?Alloc@DynamicBuffer@@QAEPADK@Z
?AllocAndPreserve@DynamicBuffer@@QAEPADKK@Z
?AllocTo@?$ByRefArray_TC@VStorEvent@@@@QAEKK@Z
?Append@XmlAttributeList_C@@QAEXPBD0@Z
?Attach@DynamicBuffer@@QAEPADPAXK@Z
?Attach@StorLib@@QAEXPAVTimeOutObserver@@@Z
?AttachAndPreserve@DynamicBuffer@@QAEPADPAXKK@Z
?BigFreeNumSectors@FreeSpaceVector@@QBE_KXZ
?BigFreeStartSector@FreeSpaceVector@@QBE_KXZ
?BigTime@StorTimeInfo@@QBE_KXZ
?Buffer@DynamicBuffer@@QBEPADXZ
?BufferSize@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?BytesAvailable@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?BytesUsed@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?CPtr@Buffer@@QBEPBEXZ
?Clear@Buffer@@QAEXXZ
?Clear@DynamicBuffer@@QAEXXZ
?Clear@XmlAttributeList_C@@QAEXXZ
?Close@osFileWriter@@QAEXXZ
?DST@StorTimeInfo@@QBE_NXZ
?DayOfMonth@StorTimeInfo@@QBEIXZ
?DayOfWeek@StorTimeInfo@@QBEIXZ
?DayOfWeekAbbrev@StorTimeInfo@@QBEPBDXZ
?DayOfWeekStr@StorTimeInfo@@QBEPBDXZ
?DaylightSavings@StorTimeInfo@@QBE_NXZ
?DecrementRefCount@RefSystem@@IAEXXZ
?DeleteAdapters@System@@QAEXW4EnumStorLibType@@@Z
?Detach@DynamicBuffer@@QAEXXZ
?Detach@StorLib@@QAEXPAVTimeOutObserver@@@Z
?End@DynamicBuffer@@QBEPADXZ
?Exists@XmlAttributeList_C@@QAE_NPBD@Z
?Exists@osFileWriter@@SA_NPBD@Z
?Exists@osFileWriter@@SA_NPBDPA_K@Z
?FindAdequate@FreeSpaceVector@@QAEXAA_K0@Z
?Finish@StorLib@@SAXXZ
?Flush@osFileWriter@@QAEXXZ
?Free@DynamicBuffer@@QAEXXZ
?GetBool@XmlAttributeList_C@@QAE_NK@Z
?GetBool@XmlAttributeList_C@@QAE_NPBD@Z
?GetGMTTime@StorTimeInfo@@QAEXXZ
?GetGmtTime@StorTimeInfo@@QAEXXZ
?GetGrowBy@?$ByRefArray_TC@VStorEvent@@@@QBEKXZ
?GetI64@XmlAttributeList_C@@QAE_JK@Z
?GetI64@XmlAttributeList_C@@QAE_JPBD@Z
?GetLocalTime@StorTimeInfo@@QAEXXZ
?GetLong@XmlAttributeList_C@@QAEJK@Z
?GetLong@XmlAttributeList_C@@QAEJPBD@Z
?GetName@XmlAttributeList_C@@QAEPBDK@Z
?GetPerfModeParameters@Adapter@@UAE?AVRet@@W4EnumPerformanceMode@@AAUPERF_MODE_PARAMS@@@Z
?GetPerfModeParameters@StorLibPlugin@@UAE?AVRet@@ABVAddr@@W4EnumPerformanceMode@@AAUPERF_MODE_PARAMS@@@Z
?GetSataIdentifyWord@HardDrive@@UAE?AVRet@@KPAK@Z
?GetSystem@RefSystem@@QBEPAVSystem@@XZ
?GetTime@StorTimeInfo@@IAEX_N@Z
?GetU64@XmlAttributeList_C@@QAE_KK@Z
?GetU64@XmlAttributeList_C@@QAE_KPBD@Z
?GetULong@XmlAttributeList_C@@QAEKK@Z
?GetULong@XmlAttributeList_C@@QAEKPBD@Z
?GetValue@XmlAttributeList_C@@QAEPBDK@Z
?GetValue@XmlAttributeList_C@@QAEPBDPBD@Z
?GrowBy@?$ByRefArray_TC@VStorEvent@@@@QAEKK@Z
?Hour@StorTimeInfo@@QBEIXZ
?Init@StorLib@@SAXXZ
?InitFreeSpace@HardDrive@@QAEX_K@Z
?Insert@?$ByRefArray_TC@VStorEvent@@@@QAEHJABVStorEvent@@@Z
?InsertBack@?$ByRefArray_TC@VStorEvent@@@@QAEHABVStorEvent@@@Z
?InsertFront@?$ByRefArray_TC@VStorEvent@@@@QAEHABVStorEvent@@@Z
?IsATAsecuritySupport@HardDrive@@QBE_NXZ
?IsArrayBBSSupportEnabled@Adapter@@QBE_NXZ
?IsAsyncRescanActive@Adapter@@QBE_NXZ
?IsAutoFailoverEnabled@Adapter@@QBE_NXZ
?IsBLBUPresent@Adapter@@QBE_NXZ
?IsBatReconditionRequired@Adapter@@QBE_NXZ
?IsBatTempWarning@Adapter@@QBE_NXZ
?IsClustered@Adapter@@QBE_NXZ
?IsConnectorModeChanged@SASConnector@@QAE_NXZ
?IsCopyBackEnabled@Adapter@@QBE_NXZ
?IsDDRCachePreservationEnabled@Adapter@@QBE_NXZ
?IsDataScrubbingActive@Adapter@@QBE_NXZ
?IsEmpty@?$ByRefArray_TC@VStorEvent@@@@QBEHXZ
?IsEqual2@Addr2@@IBE_NABV1@@Z
?IsEqual@Addr@@IBE_NABV1@@Z
?IsMaxCacheAssigned@HardDrive@@QBE_NXZ
?IsMaxCacheCapable@HardDrive@@QBE_NXZ
?IsMaxCacheDirty@Adapter@@QBE_NXZ
?IsNCQSupported@HardDrive@@QBE_NXZ
?IsNonSpinning@HardDrive@@QBE_NXZ
?IsOpen@osFileWriter@@QBE_NXZ
?IsPhysicalDrivesDisplayedDuringPOSTEnabled@Adapter@@QBE_NXZ
?IsRead@SCSICommand@@QAE_NXZ
?IsRuntimeBIOSEnabled@Adapter@@QBE_NXZ
?IsSataNCQEnabled@HardDrive@@QBE_NXZ
?IsValid@?$ByRefArray_TC@VStorEvent@@@@QBEHJ@Z
?IsWrite@SCSICommand@@QAE_NXZ
?LastIndex@?$ByRefArray_TC@VStorEvent@@@@QBEJXZ
?Lock@osFileLockGrabber@@IAEXXZ
?Lock@osFileWriter@@QAEXXZ
?Lock@osThreadLocker@@QAEXXZ
?MSec@StorTimeInfo@@QBEIXZ
?MSecs@StorTimeInfo@@QBEIXZ
?Milliseconds@StorTimeInfo@@QBEIXZ
?Minute@StorTimeInfo@@QBEIXZ
?Month@StorTimeInfo@@QBEIXZ
?MonthAbbrev@StorTimeInfo@@QBEPBDXZ
?MonthStr@StorTimeInfo@@QBEPBDXZ
?Notify@StorLib@@QAEXHW4EnumCodeCovered@@@Z
?NumEntries@?$ByRefArray_TC@VStorEvent@@@@QBEJXZ
?NumEntries@XmlAttributeList_C@@QBEKXZ
?NumEvents@StorEventCollection@@QBEKXZ
?Obj_P@?$ByRefArray_TC@VStorEvent@@@@QBEPAVStorEvent@@J@Z
?Open@osFileWriter@@QAE_NPBD0@Z
?OptimizeAlloc@?$ByRefArray_TC@VStorEvent@@@@QAEKXZ
?OwnBuffer@DynamicBuffer@@QBEHXZ
?Print@Buffer@@QAEXPAU_iobuf@@@Z

Sections

.text
Size: 972KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 488KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
storectrl.dll
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2014, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:0b:b2:4d:b4:98:a4:c7:71:58:cd:a1:09:31:63:c1:3c:87:e2:67:16:e5:cf:ea:02:e8:4b:4c:87:cc:22:51
Signer

Actual PE Digest

48:0b:b2:4d:b4:98:a4:c7:71:58:cd:a1:09:31:63:c1:3c:87:e2:67:16:e5:cf:ea:02:e8:4b:4c:87:cc:22:51

Digest Algorithm

sha256

PE Digest Matches

true

50:2b:45:2e:e9:a4:c1:14:84:0b:a6:29:42:ca:f0:1c:66:d0:b1:1b
Signer

Actual PE Digest

50:2b:45:2e:e9:a4:c1:14:84:0b:a6:29:42:ca:f0:1c:66:d0:b1:1b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 274KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
storelib.dll
.dll windows:4 windows x86 arch:x86

a5b1753793824040e6865e42e9a89a63

Code Sign

03:25:47:ed:ba:ec:c2:5d:92:6e:cd:a3:73:9a:4a:82
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

05/03/2010, 00:00

Not After

05/03/2011, 23:59

Subject

CN=LSI Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=LSI Corporation,L=Colorado Springs,ST=colorado,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21/05/2009, 00:00

Not After

20/05/2019, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c9:1e:f4:54:77:49:61:0d:d5:ac:6c:d6:42:6b:8d:dd:58:40:0d:6d:ca:50:28:0c:22:a0:52:89:82:ad:6d:e9
Signer

Actual PE Digest

c9:1e:f4:54:77:49:61:0d:d5:ac:6c:d6:42:6b:8d:dd:58:40:0d:6d:ca:50:28:0c:22:a0:52:89:82:ad:6d:e9

Digest Algorithm

sha256

PE Digest Matches

true

05:c4:ad:fc:e6:9e:ad:ca:3e:11:b1:c8:8e:a0:e5:ca:b1:d5:fa:e0
Signer

Actual PE Digest

05:c4:ad:fc:e6:9e:ad:ca:3e:11:b1:c8:8e:a0:e5:ca:b1:d5:fa:e0

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Storelib_Build_Views\10M09\raghub_Common_StoreLib_10M09_int_3.62\util_fre\COMMON_StoreLib\SourceCode\Application\Common_StoreLib\src\project\windows\Release\storelib.pdb

Imports

kernel32

Sleep
GetCurrentThread
FreeLibrary
GetProcAddress
LoadLibraryA
GetLastError
GetCurrentDirectoryA
CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
GetCurrentThreadId
GetModuleHandleA
CreateFileA
SetPriorityClass
SetThreadPriority
DeviceIoControl
GetPriorityClass
GetCurrentProcess
GetThreadPriority
ReadFile
GetWindowsDirectoryA
CompareStringW
CompareStringA
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
HeapFree
HeapAlloc
RtlUnwind
MoveFileA
DeleteFileA
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetFileAttributesA
ExitThread
ResumeThread
CreateThread
GetCommandLineA
GetVersionExA
GetProcessHeap
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
VirtualAlloc
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapSize
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
WideCharToMultiByte
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
SetConsoleCtrlHandler
InterlockedExchange
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
MultiByteToWideChar
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetEnvironmentVariableA

ole32

CoSetProxyBlanket
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoCreateInstance

oleaut32

VariantInit
VariantClear
SysFreeString
SysAllocString

Exports

Exports

ProcessLibCommand

Sections

.text
Size: 204KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
storelib2.dlz
.zip
storelib3.dlz
.zip
storelibir-2.dll
.dll windows:4 windows x86 arch:x86

Code Sign

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

b7:3a:2b:fd:4b:e9:70:53:7a:83:57:ee:d2:10:ce:ad:51:4e:86:ed:23:61:aa:ad:ba:72:79:ee:d3:4a:3f:b7
Signer

Actual PE Digest

b7:3a:2b:fd:4b:e9:70:53:7a:83:57:ee:d2:10:ce:ad:51:4e:86:ed:23:61:aa:ad:ba:72:79:ee:d3:4a:3f:b7

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ProcessLibCommandIR2

Sections

UPX0
Size: - Virtual size: 300KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 156KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
storelibir.dll
.dll windows:4 windows x86 arch:x86

Code Sign

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

b1:30:4d:a4:df:5c:72:cc:18:8a:e5:ac:2d:c0:27:ce:6c:58:4d:8b:2e:4e:30:df:c0:b3:3e:72:03:e0:ee:e8
Signer

Actual PE Digest

b1:30:4d:a4:df:5c:72:cc:18:8a:e5:ac:2d:c0:27:ce:6c:58:4d:8b:2e:4e:30:df:c0:b3:3e:72:03:e0:ee:e8

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ProcessLibCommandIR

Sections

UPX0
Size: - Virtual size: 284KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 150KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
sw.lng
swpro.lng
tr.lng
trpro.lng
tw.lng
twpro.lng
uk.lng
ukpro.lng
vista_status.icd
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ab:4f:3f:64:7e:38:17:27:82:c0:4f:11:ac:92:58:55:40:80:dc:6e:e9:51:60:7d:f8:18:02:16:3c:07:1f:c0
Signer

Actual PE Digest

ab:4f:3f:64:7e:38:17:27:82:c0:4f:11:ac:92:58:55:40:80:dc:6e:e9:51:60:7d:f8:18:02:16:3c:07:1f:c0

Digest Algorithm

sha256

PE Digest Matches

true

19:f2:a8:ba:24:94:51:c6:fe:c5:ea:a1:82:32:b2:a6:96:13:c8:f8
Signer

Actual PE Digest

19:f2:a8:ba:24:94:51:c6:fe:c5:ea:a1:82:32:b2:a6:96:13:c8:f8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
vista_statusb.icd
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

97:ed:24:1d:cb:dd:bd:ac:b3:5a:4e:15:9e:fc:2e:62:27:11:50:37:d8:58:8a:5b:ae:3f:a4:e2:61:55:1a:4b
Signer

Actual PE Digest

97:ed:24:1d:cb:dd:bd:ac:b3:5a:4e:15:9e:fc:2e:62:27:11:50:37:d8:58:8a:5b:ae:3f:a4:e2:61:55:1a:4b

Digest Algorithm

sha256

PE Digest Matches

true

f3:93:bf:77:40:d5:98:14:c2:d7:94:9a:41:e1:b3:b8:3f:de:e9:80
Signer

Actual PE Digest

f3:93:bf:77:40:d5:98:14:c2:d7:94:9a:41:e1:b3:b8:3f:de:e9:80

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
vista_statusg.icd
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

91:6f:f4:13:c8:0a:76:f0:df:13:fc:eb:03:a5:4a:8b:55:9a:10:e1:c7:f2:39:74:00:15:7e:e4:00:1b:26:ee
Signer

Actual PE Digest

91:6f:f4:13:c8:0a:76:f0:df:13:fc:eb:03:a5:4a:8b:55:9a:10:e1:c7:f2:39:74:00:15:7e:e4:00:1b:26:ee

Digest Algorithm

sha256

PE Digest Matches

true

8a:93:95:fd:58:a4:0b:4a:63:36:e3:02:3f:52:8b:61:2c:bf:5c:25
Signer

Actual PE Digest

8a:93:95:fd:58:a4:0b:4a:63:36:e3:02:3f:52:8b:61:2c:bf:5c:25

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
vista_statusn.icd
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

68:c2:f3:d5:09:fd:dc:f3:ba:64:be:c7:19:6a:38:d2:13:ea:c6:59:90:db:30:e8:13:f9:64:45:44:c0:90:2a
Signer

Actual PE Digest

68:c2:f3:d5:09:fd:dc:f3:ba:64:be:c7:19:6a:38:d2:13:ea:c6:59:90:db:30:e8:13:f9:64:45:44:c0:90:2a

Digest Algorithm

sha256

PE Digest Matches

true

8c:37:08:c7:97:aa:de:96:7a:51:82:46:ea:86:53:57:5d:35:17:36
Signer

Actual PE Digest

8c:37:08:c7:97:aa:de:96:7a:51:82:46:ea:86:53:57:5d:35:17:36

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
vista_statusw.icd
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10/05/2010, 00:00

Not After

10/05/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:09:16:67:23:e6:a1:47:75:cc:ac:33:2e:9e:02:c9
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

18/10/2011, 00:00

Not After

17/10/2012, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

22/06/2016, 00:00

Not After

12/09/2019, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa Gy. str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

f0:aa:2f:14:b8:04:6f:13:71:db:28:38:ce:f7:e8:ff:c6:6e:c2:ab:50:d5:8b:f8:44:41:db:6d:59:91:a8:58
Signer

Actual PE Digest

f0:aa:2f:14:b8:04:6f:13:71:db:28:38:ce:f7:e8:ff:c6:6e:c2:ab:50:d5:8b:f8:44:41:db:6d:59:91:a8:58

Digest Algorithm

sha256

PE Digest Matches

true

96:7c:b8:61:1a:a0:b2:4c:a2:0d:7f:c2:9d:1c:35:35:c2:58:4a:ed
Signer

Actual PE Digest

96:7c:b8:61:1a:a0:b2:4c:a2:0d:7f:c2:9d:1c:35:35:c2:58:4a:ed

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
win11_status.icd
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:90:5f:de:cc:8c:45:6b:92:5a:ba:4d:d6:fe:46:b6:f0:02:ea:53:2e:46:a9:22:7e:cd:2e:6f:6f:c9:da:57
Signer

Actual PE Digest

39:90:5f:de:cc:8c:45:6b:92:5a:ba:4d:d6:fe:46:b6:f0:02:ea:53:2e:46:a9:22:7e:cd:2e:6f:6f:c9:da:57

Digest Algorithm

sha256

PE Digest Matches

true

b8:82:88:2e:b3:de:8e:c7:34:46:23:69:49:f8:d3:5f:d6:84:98:78
Signer

Actual PE Digest

b8:82:88:2e:b3:de:8e:c7:34:46:23:69:49:f8:d3:5f:d6:84:98:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.rsrc
Size: 435KB - Virtual size: 435KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
win11_statusb.icd
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f4:90:5c:7f:ce:ac:1e:2c:9c:c6:4c:90:d1:a2:94:ad:6f:88:75:23:3f:45:de:35:b4:80:b3:f5:58:17:79:82
Signer

Actual PE Digest

f4:90:5c:7f:ce:ac:1e:2c:9c:c6:4c:90:d1:a2:94:ad:6f:88:75:23:3f:45:de:35:b4:80:b3:f5:58:17:79:82

Digest Algorithm

sha256

PE Digest Matches

true

9d:42:ac:a7:b1:08:d7:ad:96:30:85:74:4f:cf:da:16:25:66:0c:dd
Signer

Actual PE Digest

9d:42:ac:a7:b1:08:d7:ad:96:30:85:74:4f:cf:da:16:25:66:0c:dd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.rsrc
Size: 468KB - Virtual size: 468KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
win11_statusg.icd
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

91:1f:18:18:cf:9d:dd:c2:ab:81:2a:36:dc:5d:6f:44:c5:20:7f:3a:33:ab:1e:ef:41:15:fe:10:72:e7:1b:0f
Signer

Actual PE Digest

91:1f:18:18:cf:9d:dd:c2:ab:81:2a:36:dc:5d:6f:44:c5:20:7f:3a:33:ab:1e:ef:41:15:fe:10:72:e7:1b:0f

Digest Algorithm

sha256

PE Digest Matches

true

6c:26:e1:24:88:c0:c0:f2:15:32:a8:30:d2:4f:87:4a:d7:4a:25:0b
Signer

Actual PE Digest

6c:26:e1:24:88:c0:c0:f2:15:32:a8:30:d2:4f:87:4a:d7:4a:25:0b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.rsrc
Size: 494KB - Virtual size: 494KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
win11_statusn.icd
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1f:32:81:2c:b1:4b:a0:20:fa:8f:e1:09:f0:b5:8c:c4:bd:22:5c:23:d8:49:9e:2b:b0:a1:f1:da:62:eb:e3:dc
Signer

Actual PE Digest

1f:32:81:2c:b1:4b:a0:20:fa:8f:e1:09:f0:b5:8c:c4:bd:22:5c:23:d8:49:9e:2b:b0:a1:f1:da:62:eb:e3:dc

Digest Algorithm

sha256

PE Digest Matches

true

1d:52:86:40:5f:4d:da:d8:f2:ea:45:8c:d9:1a:9f:46:f5:91:c8:aa
Signer

Actual PE Digest

1d:52:86:40:5f:4d:da:d8:f2:ea:45:8c:d9:1a:9f:46:f5:91:c8:aa

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.rsrc
Size: 576KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
win11_statusw.icd
.exe windows:4 windows x86 arch:x86

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/09/2019, 00:00

Not After

12/09/2023, 23:59

Subject

CN=Janos Mathe,O=Janos Mathe,POSTALCODE=8142,STREET=34 Dozsa str.,L=Urhida,ST=Fejer,C=HU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

57:48:84:bb:c2:76:20:bf:ba:fc:1e:94:c9:7a:a9:b9:b1:21:2c:67:ec:26:9f:97:a4:5d:51:fa:a0:f4:31:23
Signer

Actual PE Digest

57:48:84:bb:c2:76:20:bf:ba:fc:1e:94:c9:7a:a9:b9:b1:21:2c:67:ec:26:9f:97:a4:5d:51:fa:a0:f4:31:23

Digest Algorithm

sha256

PE Digest Matches

true

d6:e5:59:a6:76:c6:1d:c3:f5:bb:03:f8:11:4c:88:1e:e6:93:32:40
Signer

Actual PE Digest

d6:e5:59:a6:76:c6:1d:c3:f5:bb:03:f8:11:4c:88:1e:e6:93:32:40

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.rsrc
Size: 451KB - Virtual size: 451KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: hd

Password: hd

f3289d313f3096f14e6df44e93cc4d4f

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

07:91:f9:6a:e1:94:cf:37:c4:57:f1:d3:2b:c4:8c:5eCertificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

61:19:93:e4:00:00:00:00:00:1cCertificate

Key Usages

05:87:b8:6b:ea:1f:bf:3c:9a:57:40:41:46:8d:6c:42:03:d6:81:2fSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

advapi32

Exports

Exports

Sections

.textbss Size: - Virtual size: 191KB

.text Size: 408KB - Virtual size: 408KB

.rdata Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 15KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 17KB - Virtual size: 16KB

Password: hd

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4bCertificate

Key Usages

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0bCertificate

Extended Key Usages

Key Usages

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bbCertificate

Extended Key Usages

Key Usages

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4Certificate

Extended Key Usages

Key Usages

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84Certificate

Extended Key Usages

Key Usages

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22Certificate

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

53:23:57:b6:cf:e1:67:52:32:28:63:87:20:e3:0f:4b:01:a3:57:4a:35:90:62:5f:b2:80:29:19:d0:8f:d6:e1Signer

11:93:61:6e:b0:79:55:f2:0e:bc:b6:53:ab:3b:16:d7:d8:2e:10:60Signer

Headers

File Characteristics

Sections

CODE Size: 9KB - Virtual size: 9KB

DATA Size: 512B - Virtual size: 176B

BSS Size: - Virtual size: 1KB

.idata Size: 1024B - Virtual size: 834B

.reloc Size: 1024B - Virtual size: 752B

.rsrc Size: 512B - Virtual size: 512B

Password: hd

Code Sign

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:ccCertificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

07:91:f9:6a:e1:94:cf:37:c4:57:f1:d3:2b:c4:8c:5e
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

61:19:93:e4:00:00:00:00:00:1c
Certificate

05:87:b8:6b:ea:1f:bf:3c:9a:57:40:41:46:8d:6c:42:03:d6:81:2f
Signer

.textbss
Size: - Virtual size: 191KB

.text
Size: 408KB - Virtual size: 408KB

.rdata
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 15KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 17KB - Virtual size: 16KB

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

e2:97:48:58:a0:a4:bc:98:0d:95:7b:51:15:9a:a7:b4
Certificate

15:1d:2e:cb:a6:88:c7:0f:63:bc:21:78:61:0a:3a:84
Certificate

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

53:23:57:b6:cf:e1:67:52:32:28:63:87:20:e3:0f:4b:01:a3:57:4a:35:90:62:5f:b2:80:29:19:d0:8f:d6:e1
Signer

11:93:61:6e:b0:79:55:f2:0e:bc:b6:53:ab:3b:16:d7:d8:2e:10:60
Signer

CODE
Size: 9KB - Virtual size: 9KB

DATA
Size: 512B - Virtual size: 176B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1024B - Virtual size: 834B

.reloc
Size: 1024B - Virtual size: 752B

.rsrc
Size: 512B - Virtual size: 512B

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

09:14:8e:65:43:15:7b:14:8c:f1:6b:84:47:69:c6:69:be:ce:c0:d2:5a:71:60:32:41:22:a2:4c:3e:1d:b7:8a
Signer

14:d8:a4:8b:e2:28:0d:0e:b4:b1:ea:12:6f:57:51:f6:6c:1c:fe:de
Signer

CODE
Size: 4.4MB - Virtual size: 4.4MB

DATA
Size: 63KB - Virtual size: 62KB

BSS
Size: - Virtual size: 13.0MB

.idata
Size: 16KB - Virtual size: 16KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 240KB - Virtual size: 239KB

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

d3:dc:c1:14:35:e0:25:2f:9e:0a:53:20:39:fe:0c:cc
Certificate

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

00:9c:c0:72:13:81:f7:2b:30:1a:6e:e6:c0:6c:45:5f:d8:bd:6f:ba:98:1a:5b:17:3c:35:51:11:89:67:57:9d
Signer

a3:97:89:18:79:b9:87:f2:bd:ff:7a:8d:0c:13:94:a2:24:87:ad:91
Signer

UPX0
Size: - Virtual size: 756KB

UPX1
Size: 255KB - Virtual size: 256KB

.rsrc
Size: 25KB - Virtual size: 28KB

CODE
Size: 456KB - Virtual size: 456KB

DATA
Size: 8KB - Virtual size: 7KB

BSS
Size: - Virtual size: 214KB

.idata
Size: 10KB - Virtual size: 9KB

.tls
Size: - Virtual size: 16B