2024-03-05_ea0be00df87f821eff9ff4f8311e23b7_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-05_ea0be00df87f821eff9ff4f8311e23b7_mafia
Size

3.3MB
MD5

ea0be00df87f821eff9ff4f8311e23b7
SHA1

044c8bfdb213519c6ce414615fb2e638f01d0dab
SHA256

f733d60f25f4023c0a4ae54fa72681d92fc8aa2f3514236baddddd3e8b1e42b3
SHA512

2ec6e88b81ea56681f101e90277cbe6590a998fd26e270133bc3b7da75d0996e1d0a99322367718501bbb23057f2896f39b9a2b427149fc8378aff8b647ef7f7
SSDEEP

98304:Xu+CHaSIZNlH7J7sQAe++qcdPZxtUatw8keZE3+nxA0:++CHapk+XZIatw8HZ2+xP

Score

1^/10

Malware Config

Signatures

Files

2024-03-05_ea0be00df87f821eff9ff4f8311e23b7_mafia
.exe windows:5 windows x86 arch:x86

55894f7df92b5eea8e0fe377bdeffeff

Code Sign

cc:fa:19:89:21:24:1d:1a:00:09:81:e9:87:db:5b:a0
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

27/01/2016, 00:00

Not After

26/01/2019, 23:59

Subject

CN=gamigo AG,O=gamigo AG,POSTALCODE=22265,STREET=Behringstr. 16b,L=Hamburg,ST=Hamburg,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

cc:fa:19:89:21:24:1d:1a:00:09:81:e9:87:db:5b:a0
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

27/01/2016, 00:00

Not After

26/01/2019, 23:59

Subject

CN=gamigo AG,O=gamigo AG,POSTALCODE=22265,STREET=Behringstr. 16b,L=Hamburg,ST=Hamburg,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

c6:3e:bd:82:d9:bb:90:22:be:23:54:48:25:30:67:bb:b2:44:ee:b7:fd:8b:97:5f:d4:8f:ad:ff:9d:35:61:0a
Signer

Actual PE Digest

c6:3e:bd:82:d9:bb:90:22:be:23:54:48:25:30:67:bb:b2:44:ee:b7:fd:8b:97:5f:d4:8f:ad:ff:9d:35:61:0a

Digest Algorithm

sha256

PE Digest Matches

true

4c:4f:6d:a3:b9:fa:01:f1:7f:a9:71:5e:43:f2:23:07:04:af:b6:31
Signer

Actual PE Digest

4c:4f:6d:a3:b9:fa:01:f1:7f:a9:71:5e:43:f2:23:07:04:af:b6:31

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

d3d8

Direct3DCreate8

winmm

PlaySoundA

kernel32

IsValidCodePage
GetLocaleInfoW
GetStringTypeW
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTimeZoneInformation
CompareStringW
GetProcessHeap
EnumSystemLocalesA
IsValidLocale
SetEnvironmentVariableA
SizeofResource
LockResource
LoadResource
FindResourceW
WideCharToMultiByte
CloseHandle
SetFileTime
LocalFileTimeToFileTime
WriteConsoleW
QueryPerformanceCounter
MultiByteToWideChar
HeapCreate
WaitForSingleObject
Sleep
DeleteFileA
CopyFileA
CreateDirectoryA
GetModuleFileNameA
SetFilePointer
SystemTimeToFileTime
GetFileAttributesA
ReadFile
GetCurrentDirectoryA
WriteFile
FileTimeToSystemTime
GetFileSize
GetTickCount
GlobalFree
GlobalUnlock
GlobalLock
SetHandleCount
CreateFileW
CreateFileA
GetStdHandle
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
HeapSize
HeapQueryInformation
GetFileType
SetStdHandle
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetSystemTimeAsFileTime
CreateThread
ExitThread
RaiseException
EncodePointer
DecodePointer
ExitProcess
GetConsoleMode
GetConsoleCP
HeapFree
HeapAlloc
RtlUnwind
GlobalAlloc
lstrlenA
MulDiv
FindResourceExW
VirtualProtect
SearchPathA
GetProfileIntA
GetTempPathA
GetNumberFormatA
GetWindowsDirectoryA
lstrcpyA
GetTempFileNameA
GetUserDefaultLCID
GetACP
GetOEMCP
GetCPInfo
GlobalFlags
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
TlsGetValue
InterlockedIncrement
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
ResumeThread
SetThreadPriority
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GetModuleHandleW
InterlockedDecrement
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
FindResourceA
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
CompareStringA
lstrcmpW
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
lstrlenW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
LoadLibraryA
GetModuleHandleA
GetProcAddress
lstrcmpiA
GetThreadLocale
GetCurrentProcessId
LocalAlloc
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
ActivateActCtx
LoadLibraryW
DeactivateActCtx
FileTimeToLocalFileTime
GetLastError
SetLastError
GlobalSize
FormatMessageA
LocalFree

user32

IsMenu
MonitorFromPoint
UpdateLayeredWindow
MapVirtualKeyExA
IsCharLowerA
LoadImageW
EmptyClipboard
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableA
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
DrawFrameControl
DrawEdge
DrawStateA
SetClassLongA
DestroyAcceleratorTable
IsZoomed
UnionRect
SetParent
LoadMenuW
LoadAcceleratorsW
DrawIconEx
CopyImage
GetIconInfo
NotifyWinEvent
EnableScrollBar
HideCaret
DrawFocusRect
InvertRect
GetAsyncKeyState
GetMenuDefaultItem
MessageBeep
GetNextDlgGroupItem
WindowFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
DeleteMenu
CharNextA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadImageA
DestroyIcon
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorA
InvalidateRgn
CopyAcceleratorTableA
SetRectEmpty
UnregisterClassA
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
IntersectRect
MapVirtualKeyA
GetKeyNameTextA
LoadBitmapA
DestroyMenu
GetMenuItemInfoA
InflateRect
WaitMessage
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
GetCursorPos
ReleaseCapture
SetCursor
LoadCursorW
SetCapture
KillTimer
SystemParametersInfoA
OffsetRect
IsRectEmpty
ShowWindow
MoveWindow
SetWindowTextA
PostThreadMessageA
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
FillRect
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
IsWindowVisible
UpdateWindow
PostMessageA
CreateWindowExA
GetClassInfoExA
AdjustWindowRectEx
GetWindowRect
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
CreateMenu
SetMenuDefaultItem
IsClipboardFormatAvailable
GetWindowRgn
DestroyCursor
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
GetWindow
SubtractRect
GetDoubleClickTime
CharUpperBuffA
CopyIcon
GetUpdateRect
FrameRect
IsDialogMessageA
CharUpperA
GetWindowThreadProcessId
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
RegisterClipboardFormatA
OpenClipboard
SetClipboardData
CloseClipboard
GetDesktopWindow
GetSysColor
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
IsWindow
RedrawWindow
SetRect
GetSystemMetrics
LoadIconW
SetTimer
InvalidateRect
ReleaseDC
GetDC
SetWindowRgn
GetSystemMenu
SendMessageA
AppendMenuA
DrawIcon
GetClassInfoA
RegisterClassA
SetForegroundWindow
FindWindowA
IsIconic
EnableWindow
GetClientRect
LoadBitmapW
ShowOwnedPopups

gdi32

SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateEllipticRgn
DPtoLP
LPtoDP
Ellipse
CreateDIBSection
CreateFontIndirectA
GetTextExtentPoint32A
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
GetTextMetricsA
GetRgnBox
GetBkColor
GetTextColor
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
CreateRoundRectRgn
CreatePolygonRgn
Polyline
Polygon
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
OffsetRgn
EnumFontFamiliesExA
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
SetPixelV
GetTextFaceA
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
CreateDCA
CopyMetaFileA
GetDeviceCaps
DeleteObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateCompatibleBitmap
CreateRectRgn
CreateICA
GetDIBits
DeleteDC
ExtCreateRegion
BitBlt
CreateCompatibleDC
PatBlt
GetStockObject
GetObjectA

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegCloseKey
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA

shell32

SHBrowseForFolderA
SHGetFileInfoA
DragFinish
DragQueryFileA
SHGetDesktopFolder
SHGetPathFromIDListA
SHAppBarMessage
ShellExecuteA
SHGetSpecialFolderLocation

comctl32

ImageList_GetIconSize

shlwapi

UrlUnescapeA
PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA
PathFileExistsA
PathRemoveFileSpecW

ole32

OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
OleFlushClipboard
CoRevokeClassObject
CoInitializeEx
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoInitialize
CoUninitialize
CreateILockBytesOnHGlobal
OleTranslateAccelerator
StgOpenStorageOnILockBytes
CoGetClassObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CreateStreamOnHGlobal
OleDraw
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
IsAccelerator
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
DoDragDrop
StgCreateDocfileOnILockBytes
OleLockRunning
CoTaskMemFree
OleIsCurrentClipboard

oleaut32

OleCreateFontIndirect
SysStringLen
SysAllocString
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysFreeString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate

oledlg

ord8

wsock32

send
WSAStartup
WSACleanup
WSASetLastError
socket
inet_ntoa
htons
ioctlsocket
gethostbyname
connect
WSAGetLastError
setsockopt
closesocket
recv

wininet

HttpQueryInfoA
InternetOpenUrlA
InternetOpenA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetQueryDataAvailable
InternetGetLastResponseInfoA
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetReadFile
InternetCloseHandle

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdiplusShutdown
GdipDrawImageI

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 311KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55894f7df92b5eea8e0fe377bdeffeff

Code Sign

cc:fa:19:89:21:24:1d:1a:00:09:81:e9:87:db:5b:a0Certificate

Extended Key Usages

Key Usages

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22Certificate

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0bCertificate

Extended Key Usages

Key Usages

cc:fa:19:89:21:24:1d:1a:00:09:81:e9:87:db:5b:a0Certificate

Extended Key Usages

Key Usages

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22Certificate

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

c6:3e:bd:82:d9:bb:90:22:be:23:54:48:25:30:67:bb:b2:44:ee:b7:fd:8b:97:5f:d4:8f:ad:ff:9d:35:61:0aSigner

4c:4f:6d:a3:b9:fa:01:f1:7f:a9:71:5e:43:f2:23:07:04:af:b6:31Signer

Headers

DLL Characteristics

File Characteristics

Imports

d3d8

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

wsock32

wininet

oleacc

gdiplus

imm32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 311KB - Virtual size: 310KB

.data Size: 37KB - Virtual size: 135KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 181KB - Virtual size: 180KB

cc:fa:19:89:21:24:1d:1a:00:09:81:e9:87:db:5b:a0
Certificate

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

cc:fa:19:89:21:24:1d:1a:00:09:81:e9:87:db:5b:a0
Certificate

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

c6:3e:bd:82:d9:bb:90:22:be:23:54:48:25:30:67:bb:b2:44:ee:b7:fd:8b:97:5f:d4:8f:ad:ff:9d:35:61:0a
Signer

4c:4f:6d:a3:b9:fa:01:f1:7f:a9:71:5e:43:f2:23:07:04:af:b6:31
Signer

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 311KB - Virtual size: 310KB

.data
Size: 37KB - Virtual size: 135KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 181KB - Virtual size: 180KB