be734db98896948428fa174fc515d0f5602d7e2cc96abc20cb32cdecfcdba0be

Sharing

Copy URL Twitter E-mail

General

Target

be734db98896948428fa174fc515d0f5602d7e2cc96abc20cb32cdecfcdba0be
Size

2.4MB
MD5

49264cff9fb4176b2fd7fdfc19bfd725
SHA1

7de276eefaeedb2ca25eac0e3e36daa48e2cd389
SHA256

be734db98896948428fa174fc515d0f5602d7e2cc96abc20cb32cdecfcdba0be
SHA512

badd6bf47a137296a4e5bc5fa4426dcee15f57eb3c6e9fdefa3673d6e83f4ad3c21fb208c418c0b84d69faa6b55b6150c067ec9226d67731ae81c522293814cf
SSDEEP

49152:e4W13DdtsAAjbU++tDH9p877zhW1c4jTjUDHWNkTvmVX:e4+sA68w7zhWQH

Score

1^/10

Malware Config

Signatures

Files

be734db98896948428fa174fc515d0f5602d7e2cc96abc20cb32cdecfcdba0be
.dll windows:5 windows x86 arch:x86

af52c1bf84082b42cf38330f13501cb4

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:7e:f8:80:11:79:bf:12:a7:46:6f:7d:a5:b3:27:7a
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

28/04/2023, 00:00

Not After

07/07/2026, 23:59

Subject

SERIALNUMBER=913101150729060470,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=上海市,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c0ce6b5a6e4b89ce696b0e58cba,1.3.6.1.4.1.311.60.2.1.2=#0c09e4b88ae6b5b7e5b882,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:7e:f8:80:11:79:bf:12:a7:46:6f:7d:a5:b3:27:7a
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

28/04/2023, 00:00

Not After

07/07/2026, 23:59

Subject

SERIALNUMBER=913101150729060470,CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,ST=上海市,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c0ce6b5a6e4b89ce696b0e58cba,1.3.6.1.4.1.311.60.2.1.2=#0c09e4b88ae6b5b7e5b882,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

11:ad:e1:b9:9c:36:44:ea:c8:00:53:e5:cd:d6:de:74:80:ff:fe:e3:db:da:65:30:c7:84:a5:6e:69:48:1c:4c
Signer

Actual PE Digest

11:ad:e1:b9:9c:36:44:ea:c8:00:53:e5:cd:d6:de:74:80:ff:fe:e3:db:da:65:30:c7:84:a5:6e:69:48:1c:4c

Digest Algorithm

sha256

PE Digest Matches

false

a3:fa:ba:18:b0:4e:7f:2a:18:09:43:4b:ba:af:96:e0:d8:12:61:0a
Signer

Actual PE Digest

a3:fa:ba:18:b0:4e:7f:2a:18:09:43:4b:ba:af:96:e0:d8:12:61:0a

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\SmallTools\helper2345_x\bin\Win32\Release\pdb\AssistMain.pdb

Imports

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

kernel32

ExpandEnvironmentStringsW
GetFileAttributesW
GetVersionExW
LockResource
GetSystemInfo
LoadResource
FindResourceW
GetLogicalDriveStringsW
CreateEventW
SetEvent
ResetEvent
FindFirstFileW
GetLongPathNameW
GetFileAttributesExW
GetEnvironmentVariableW
HeapFree
GlobalAlloc
GlobalFree
HeapAlloc
GetProcessHeap
lstrlenW
lstrcatW
lstrcpyW
ReadFile
WriteFile
SetFileTime
SetFilePointer
SetEndOfFile
GetFileSize
GetFileTime
InterlockedExchangeAdd
FindNextFileW
FindClose
DeleteFileW
GetFileSizeEx
GetFullPathNameW
SetFileAttributesW
GetCurrentDirectoryW
GetWindowsDirectoryW
MoveFileExW
GetTempFileNameW
MoveFileW
FormatMessageW
LoadLibraryExW
SizeofResource
FreeResource
GlobalLock
GlobalUnlock
IsBadWritePtr
IsBadReadPtr
IsBadStringPtrW
SetLastError
InterlockedExchange
SetWaitableTimer
CreateWaitableTimerW
QueryPerformanceFrequency
QueryPerformanceCounter
MapViewOfFileEx
TlsSetValue
GetModuleHandleA
DisableThreadLibraryCalls
TlsAlloc
CreateThread
TlsGetValue
VirtualProtect
GetModuleHandleExW
OutputDebugStringA
HeapCreate
HeapDestroy
FlushInstructionCache
GetPrivateProfileStringA
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GlobalMemoryStatusEx
GetThreadContext
SetThreadContext
VirtualAlloc
VirtualFree
VirtualQuery
LoadLibraryExA
EncodePointer
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
UnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
InitializeSListHead
OutputDebugStringW
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedCompareExchange
Thread32Next
Thread32First
CreateToolhelp32Snapshot
HeapReAlloc
RtlUnwind
InterlockedFlushSList
ExitThread
FreeLibraryAndExitThread
ExitProcess
GetModuleFileNameA
GetStdHandle
GetFileType
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
HeapSize
FindFirstFileExA
DecodePointer
RaiseException
FindNextFileA
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetStdHandle
SetFilePointerEx
WriteConsoleW
ReadConsoleW
DeviceIoControl
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
WaitForSingleObject
CloseHandle
OpenEventW
GetModuleFileNameW
Sleep
LocalFree
GetCurrentProcessId
SetUnhandledExceptionFilter
GetCurrentThreadId
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
ReleaseMutex
GetTickCount
MapViewOfFile
UnmapViewOfFile
CreateMutexW
CreateFileMappingW
GetCommandLineW
CreateDirectoryW
SetErrorMode
GetModuleHandleW
WritePrivateProfileStringW
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
lstrcmpW
GetCommandLineA
GetPrivateProfileStringW
OpenFileMappingW
GetProcAddress
GetCurrentProcess
GetLocalTime
LoadLibraryW
GetTempPathW
CreateFileW
FreeLibrary
MulDiv
LocalAlloc
GetStartupInfoW
ResumeThread
SuspendThread
GetExitCodeThread
TerminateThread
SwitchToThread
OpenThread
WaitForMultipleObjects
CreateProcessW
GetExitCodeProcess
GetACP
MultiByteToWideChar
WideCharToMultiByte
QueryDosDeviceW
OpenProcess

user32

SetCursor
EnumChildWindows
GetClassInfoExW
PostQuitMessage
GetMessageW
CharNextW
LoadImageW
LoadBitmapW
AttachThreadInput
GetClassLongW
SetCaretPos
MsgWaitForMultipleObjects
SetForegroundWindow
ToAscii
GetKeyboardState
GetIconInfo
GetSysColor
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
SetClipboardData
EmptyClipboard
GetAncestor
RegisterWindowMessageW
EnumThreadWindows
CreateAcceleratorTableW
DestroyAcceleratorTable
LoadStringW
GetAsyncKeyState
SetParent
GetWindowDC
GetDlgItem
GetDCEx
EnableWindow
EqualRect
GetKeyState
WaitMessage
WindowFromPoint
GetCapture
DispatchMessageW
PeekMessageW
TranslateMessage
SetCapture
ReleaseCapture
MonitorFromPoint
MonitorFromRect
FillRect
MapVirtualKeyExW
DrawTextW
DrawIconEx
GetKeyNameTextW
CopyRect
GetMenuItemInfoW
LoadMenuW
GetFocus
TrackMouseEvent
GetMenuItemCount
DeleteMenu
RemovePropW
CreatePopupMenu
RegisterClassExW
GetSubMenu
UnionRect
OffsetRect
GetWindowTextLengthW
AdjustWindowRectEx
ShowWindowAsync
SetTimer
IsMenu
ClientToScreen
SetMenuItemInfoW
IsWindowEnabled
DestroyMenu
IsRectEmpty
SetFocus
GetMenuStringW
SetPropW
GetUpdateRect
LoadCursorW
InsertMenuW
SetRectEmpty
GetClientRect
AppendMenuW
UpdateLayeredWindow
SetRect
KillTimer
InvalidateRgn
OpenClipboard
RedrawWindow
IsChild
MessageBoxW
SetWindowRgn
SetWindowTextW
UpdateWindow
InvalidateRect
GetPropW
MapWindowPoints
IsIconic
BeginPaint
EndPaint
SystemParametersInfoW
PtInRect
IntersectRect
GetDesktopWindow
ReleaseDC
GetDC
wsprintfW
GetShellWindow
GetWindowTextW
GetMonitorInfoW
MonitorFromWindow
SetWindowLongW
ScreenToClient
GetCursorPos
GetSystemMetrics
SetWindowPos
MoveWindow
ShowWindow
DestroyWindow
IsWindow
CreateWindowExW
CallWindowProcW
DefWindowProcW
PostMessageW
SendMessageW
GetWindow
GetWindowThreadProcessId
GetClassNameW
GetParent
GetWindowLongW
GetWindowRect
GetForegroundWindow
IsZoomed
IsWindowVisible
UnregisterClassW
ValidateRect
InflateRect
GetKeyboardLayout
GetCaretBlinkTime

gdi32

DeleteObject
CreateRoundRectRgn
GetDeviceCaps
DeleteDC
ExtTextOutW
CreateDCW
GetDIBits
GetClipBox
CreateFontIndirectW
PtInRegion
SetBkColor
SetGraphicsMode
SetWorldTransform
CreateRectRgnIndirect
CreatePolygonRgn
EnumFontsW
GetStockObject
SetViewportOrgEx
GetRgnBox
CreateDIBSection
GetTextExtentPointW
SetTextColor
SetBkMode
CreatePen
GetObjectW
CreateSolidBrush
BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
CreateRectRgn
LineTo
ExtCreatePen
SelectClipRgn
MoveToEx

advapi32

QueryServiceConfigW
RegOpenKeyExW
RegQueryValueExW
SystemFunction036
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
GetUserNameW
RegCloseKey
OpenServiceW
OpenSCManagerW
CloseServiceHandle
RegQueryInfoKeyW
RegDeleteKeyW
RegCreateKeyExW

shell32

SHGetFolderPathW
ord680
SHGetSpecialFolderPathW
DragQueryFileW
DragFinish
ShellExecuteW
CommandLineToArgvW

ole32

CoTaskMemFree
CreateStreamOnHGlobal
OleLockRunning
CLSIDFromString
OleInitialize
CLSIDFromProgID
StringFromGUID2
OleUninitialize
CoGetClassObject
CoTaskMemRealloc
CoCreateInstance
CoTaskMemAlloc
RevokeDragDrop
RegisterDragDrop

oleaut32

LoadTypeLi
SysStringLen
LoadRegTypeLi
VariantInit
SysFreeString
OleCreateFontIndirect
DispCallFunc
SysAllocStringLen
VariantClear
VarUI4FromStr
SysAllocString

shlwapi

StrCmpIW
StrToIntA
ord12
PathFindFileNameW
PathAppendW
StrDupW

comctl32

_TrackMouseEvent
InitCommonControlsEx

msimg32

AlphaBlend

urlmon

CoInternetCreateZoneManager
CoInternetCreateSecurityManager

gdiplus

GdipGetTextureTransform
GdipCreateTexture
GdipBeginContainer2
GdipFillEllipse
GdipGetClipBoundsI
GdipSetImageAttributesWrapMode
GdipDrawString
GdipDrawPath
GdipSetClipRegion
GdipDrawArcI
GdipGetSmoothingMode
GdipClosePathFigure
GdipSetClipRectI
GdipScaleWorldTransform
GdipSetPixelOffsetMode
GdipDrawRectangle
GdipDrawLine
GdipSetPenDashStyle
GdipGraphicsClear
GdipMultiplyWorldTransform
GdipGetPathWorldBounds
GdipFillPath
GdipTransformRegion
GdipSetStringFormatTrimming
GdipGetFontStyle
GdipCloneBitmapArea
GdipGetCellDescent
GdipSetInterpolationMode
GdipSetLinePresetBlend
GdipCreateFont
GdipSetStringFormatLineAlign
GdipCreatePath
GdipEndContainer
GdipCreateMatrix
GdipGetStringFormatAlign
GdipDeletePath
GdipCreateMatrix2
GdipGetLineSpacing
GdipGetMatrixElements
GdipCreateLineBrushI
GdipDrawImageRectRect
GdipSaveGraphics
GdipCreateFontFamilyFromName
GdipGetEmHeight
GdipGetStringFormatLineAlign
GdipAddPathString
GdipGetTextRenderingHint
GdipGetFamily
GdipSetCompositingQuality
GdipSetImageAttributesColorMatrix
GdipGetLineTransform
GdipDeleteFontFamily
GdipGetInterpolationMode
GdipCreateRegionPath
GdipAddPathLineI
GdipAddPathBezierI
GdipCombineRegionPath
GdipAddPathEllipseI
GdipAddPathArcI
GdipAddPathRectangleI
GdipCombineRegionRegion
GdipGetBrushType
GdipSetLineTransform
GdipSetTextureTransform
GdiplusStartup
GdiplusShutdown
GdipRestoreGraphics
GdipDeleteRegion
ord1
GdipDeleteStringFormat
GdipDeleteFont
GdipGetFontSize
GdipTranslateWorldTransform
GdipDeletePen
GdipCloneStringFormat
GdipSetTextRenderingHint
GdipCreatePen1
GdipSetStringFormatAlign
GdipDeleteMatrix
GdipGetFamilyName
GdipGetCellAscent
GdipRotateWorldTransform
GdipStringFormatGetGenericTypographic
GdipSetLineWrapMode
GdipMeasureString
GdipCloneRegion
GdipSetStringFormatFlags
GdipGetImagePixelFormat
GdipCloneBitmapAreaI
GdipCreateBitmapFromFile
GdipImageGetFrameDimensionsCount
GdipBitmapUnlockBits
GdipGetPropertyItem
GdipImageSelectActiveFrame
GdipBitmapLockBits
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipSetImageAttributesColorKeys
GdipDeleteBrush
GdipCreateBitmapFromHBITMAP
GdipDisposeImageAttributes
GdipSetSmoothingMode
GdipCreateSolidFill
GdipCreateHBITMAPFromBitmap
GdipCreateImageAttributes
GdipCreateFromHDC
GdipCloneBrush
GdipGetImageGraphicsContext
GdipFillRectangleI
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipDrawImageRectRectI
GdipLoadImageFromFile
GdipGetImageHeight
GdipCreateBitmapFromResource
GdipCloneImage
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipFree
GdipGetImageWidth
GdipSetCompositingMode

imm32

ImmAssociateContextEx
ImmNotifyIME
ImmGetCompositionStringW
ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

winmm

timeGetTime

psapi

GetMappedFileNameW

netapi32

NetLocalGroupGetMembers

wininet

InternetGetConnectedState

sensapi

IsNetworkAlive

Exports

Exports

AssistMain

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 359KB - Virtual size: 359KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.detourd
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af52c1bf84082b42cf38330f13501cb4

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

0d:7e:f8:80:11:79:bf:12:a7:46:6f:7d:a5:b3:27:7aCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0d:7e:f8:80:11:79:bf:12:a7:46:6f:7d:a5:b3:27:7aCertificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

11:ad:e1:b9:9c:36:44:ea:c8:00:53:e5:cd:d6:de:74:80:ff:fe:e3:db:da:65:30:c7:84:a5:6e:69:48:1c:4cSigner

a3:fa:ba:18:b0:4e:7f:2a:18:09:43:4b:ba:af:96:e0:d8:12:61:0aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

urlmon

gdiplus

imm32

winmm

psapi

netapi32

wininet

sensapi

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 359KB - Virtual size: 359KB

.data Size: 19KB - Virtual size: 29KB

.detourc Size: 4KB - Virtual size: 4KB

.detourd Size: 512B - Virtual size: 12B

_RDATA Size: 2KB - Virtual size: 1KB

.rsrc Size: 168KB - Virtual size: 168KB

.reloc Size: 90KB - Virtual size: 90KB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

0d:7e:f8:80:11:79:bf:12:a7:46:6f:7d:a5:b3:27:7a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0d:7e:f8:80:11:79:bf:12:a7:46:6f:7d:a5:b3:27:7a
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

11:ad:e1:b9:9c:36:44:ea:c8:00:53:e5:cd:d6:de:74:80:ff:fe:e3:db:da:65:30:c7:84:a5:6e:69:48:1c:4c
Signer

a3:fa:ba:18:b0:4e:7f:2a:18:09:43:4b:ba:af:96:e0:d8:12:61:0a
Signer

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 359KB - Virtual size: 359KB

.data
Size: 19KB - Virtual size: 29KB

.detourc
Size: 4KB - Virtual size: 4KB

.detourd
Size: 512B - Virtual size: 12B

_RDATA
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 168KB - Virtual size: 168KB

.reloc
Size: 90KB - Virtual size: 90KB