HackBGRT-2[.]4[.]0[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

HackBGRT-2.4.0.zip
Size

2.0MB
MD5

b26d7c75b3eb2523fdc5798f8561a135
SHA1

9cd4c63465eaeecefc1f3cf7bb78c0d521b8d44a
SHA256

da5d3f408ca6659849efa6a2f958e68c9a9bc3b45bde6127fad0c713a3f48576
SHA512

fdc305ff9b8285a4b4eb62e38fe92e8cb2d2065010e30af5561917a0e8df1eafbdfcfdbea15b26dd4b3df0a1acc191ba6c604d822e766cd73d9f9f61354d849e
SSDEEP

49152:NIUQvkSiRLopiu/KLu0m0cvNGxLqkdAqo1/0+I:jSDSMNyFmJlKLqkKVO+I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HackBGRT-2.4.0/setup.exe

Files

HackBGRT-2.4.0.zip
.zip
HackBGRT-2.4.0/CHANGELOG.md
HackBGRT-2.4.0/LICENSE
HackBGRT-2.4.0/README.efilib
.vbs
HackBGRT-2.4.0/README.md
HackBGRT-2.4.0/certificate.cer
HackBGRT-2.4.0/config.txt
.vbs
HackBGRT-2.4.0/efi-signed/bootaa64.efi
HackBGRT-2.4.0/efi-signed/bootarm.efi
HackBGRT-2.4.0/efi-signed/bootia32.efi
.exe windows:6 windows x86 arch:x86

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

Issuer

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Not Before

09/11/2023, 13:43

Not After

19/01/2037, 03:14

Subject

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

9e:07:74:47:01:0d:01:04:23:ff:a8:6b:81:4a:80:03:d5:f3:0f:07:55:a1:12:21:8c:e0:23:bd:ac:d2:89:e1
Signer

Actual PE Digest

9e:07:74:47:01:0d:01:04:23:ff:a8:6b:81:4a:80:03:d5:f3:0f:07:55:a1:12:21:8c:e0:23:bd:ac:d2:89:e1

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sbat
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/efi-signed/bootx64.efi
.exe windows:6 windows x64 arch:x64

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

Issuer

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Not Before

09/11/2023, 13:43

Not After

19/01/2037, 03:14

Subject

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

7c:d9:9a:a9:68:af:fa:b7:e9:f6:4a:d3:8b:ba:cf:80:95:22:df:80:93:16:2a:c2:ea:90:c3:24:66:fd:25:7a
Signer

Actual PE Digest

7c:d9:9a:a9:68:af:fa:b7:e9:f6:4a:d3:8b:ba:cf:80:95:22:df:80:93:16:2a:c2:ea:90:c3:24:66:fd:25:7a

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sbat
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/setup.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/shim-signed/COPYRIGHT
HackBGRT-2.4.0/shim-signed/mmaa64.efi
HackBGRT-2.4.0/shim-signed/mmia32.efi
.exe windows:0 windows x86 arch:x86

Code Sign

32:a0:28:7f:84:1a:03:6f:a3:93:c1:e0:65:c4:3a:e6:b2:42:26:44
Certificate

Issuer

CN=Debian Secure Boot CA

Not Before

18/08/2022, 17:32

Not After

15/08/2032, 17:32

Subject

CN=Debian Secure Boot Signer 2022 - shim

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

bf:bd:9f:01:45:c6:d9:2c:3e:ee:67:ab:57:5a:32:a8:1e:d7:0a:0f:04:d5:95:44:b9:63:e0:f4:03:1e:13:08
Signer

Actual PE Digest

bf:bd:9f:01:45:c6:d9:2c:3e:ee:67:ab:57:5a:32:a8:1e:d7:0a:0f:04:d5:95:44:b9:63:e0:f4:03:1e:13:08

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dynamic
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rel
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/shim-signed/mmx64.efi
.exe windows:0 windows x64 arch:x64

Code Sign

32:a0:28:7f:84:1a:03:6f:a3:93:c1:e0:65:c4:3a:e6:b2:42:26:44
Certificate

Issuer

CN=Debian Secure Boot CA

Not Before

18/08/2022, 17:32

Not After

15/08/2032, 17:32

Subject

CN=Debian Secure Boot Signer 2022 - shim

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

dc:9e:18:2d:ab:1b:bd:ef:e5:d1:8b:51:bd:29:ce:49:ab:d0:2d:49:50:36:94:cb:b6:a4:a7:cb:85:9d:c8:64
Signer

Actual PE Digest

dc:9e:18:2d:ab:1b:bd:ef:e5:d1:8b:51:bd:29:ce:49:ab:d0:2d:49:50:36:94:cb:b6:a4:a7:cb:85:9d:c8:64

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Sections

/4
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 334KB - Virtual size: 333KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dynamic
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rela
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/shim-signed/shimaa64.efi
HackBGRT-2.4.0/shim-signed/shimia32.efi
.exe windows:0 windows x86 arch:x86

Code Sign

33:00:00:00:50:2b:3e:b4:0e:a3:b1:21:6f:00:01:00:00:00:50
Certificate

Issuer

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

05/05/2022, 19:24

Not After

04/05/2023, 19:24

Subject

CN=Microsoft Windows UEFI Driver Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:08:d3:c4:00:00:00:00:00:04
Certificate

Issuer

CN=Microsoft Corporation Third Party Marketplace Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27/06/2011, 21:22

Not After

27/06/2026, 21:32

Subject

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b5:6e:21:81:3f:e6:f9:4d:eb:8c:a6:ce:3f:17:31:98:30:9d:75:06:99:f2:c8:cb:29:a3:dc:f1:94:7e:88:b4
Signer

Actual PE Digest

b5:6e:21:81:3f:e6:f9:4d:eb:8c:a6:ce:3f:17:31:98:30:9d:75:06:99:f2:c8:cb:29:a3:dc:f1:94:7e:88:b4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 407KB - Virtual size: 406KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 107B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/16
Size: 512B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/27
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dynamic
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rel
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/shim-signed/shimx64.efi
.exe windows:0 windows x64 arch:x64

Code Sign

33:00:00:00:50:2b:3e:b4:0e:a3:b1:21:6f:00:01:00:00:00:50
Certificate

Issuer

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

05/05/2022, 19:24

Not After

04/05/2023, 19:24

Subject

CN=Microsoft Windows UEFI Driver Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:08:d3:c4:00:00:00:00:00:04
Certificate

Issuer

CN=Microsoft Corporation Third Party Marketplace Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27/06/2011, 21:22

Not After

27/06/2026, 21:32

Subject

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d6:94:fd:3e:74:67:ee:1e:53:64:32:80:98:26:7e:40:73:7f:e4:94:40:6a:43:5d:06:c2:6d:10:a1:f5:aa:5e
Signer

Actual PE Digest

d6:94:fd:3e:74:67:ee:1e:53:64:32:80:98:26:7e:40:73:7f:e4:94:40:6a:43:5d:06:c2:6d:10:a1:f5:aa:5e

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Sections

/4
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 374KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 512B - Virtual size: 107B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/26
Size: 512B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/37
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dynamic
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rela
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.4.0/shim.md
HackBGRT-2.4.0/splash.bmp

Sharing

General

Malware Config

Signatures

Files

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85Certificate

Extended Key Usages

9e:07:74:47:01:0d:01:04:23:ff:a8:6b:81:4a:80:03:d5:f3:0f:07:55:a1:12:21:8c:e0:23:bd:ac:d2:89:e1Signer

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 128KB

.sbat Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 648B

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85Certificate

Extended Key Usages

7c:d9:9a:a9:68:af:fa:b7:e9:f6:4a:d3:8b:ba:cf:80:95:22:df:80:93:16:2a:c2:ea:90:c3:24:66:fd:25:7aSigner

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 128KB

.sbat Size: 512B - Virtual size: 152B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 46KB - Virtual size: 45KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Code Sign

32:a0:28:7f:84:1a:03:6f:a3:93:c1:e0:65:c4:3a:e6:b2:42:26:44Certificate

Extended Key Usages

Key Usages

bf:bd:9f:01:45:c6:d9:2c:3e:ee:67:ab:57:5a:32:a8:1e:d7:0a:0f:04:d5:95:44:b9:63:e0:f4:03:1e:13:08Signer

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 369KB - Virtual size: 369KB

.reloc Size: 512B - Virtual size: 10B

.data Size: 129KB - Virtual size: 128KB

.dynamic Size: 512B - Virtual size: 128B

.rel Size: 37KB - Virtual size: 37KB

.sbat Size: 512B - Virtual size: 198B

Code Sign

32:a0:28:7f:84:1a:03:6f:a3:93:c1:e0:65:c4:3a:e6:b2:42:26:44Certificate

Extended Key Usages

Key Usages

dc:9e:18:2d:ab:1b:bd:ef:e5:d1:8b:51:bd:29:ce:49:ab:d0:2d:49:50:36:94:cb:b6:a4:a7:cb:85:9d:c8:64Signer

Headers

DLL Characteristics

File Characteristics

Sections

/4 Size: 105KB - Virtual size: 104KB

.text Size: 334KB - Virtual size: 333KB

.reloc Size: 512B - Virtual size: 10B

.data Size: 163KB - Virtual size: 163KB

.dynamic Size: 512B - Virtual size: 256B

.rela Size: 108KB - Virtual size: 107KB

.sbat Size: 512B - Virtual size: 198B

Code Sign

33:00:00:00:50:2b:3e:b4:0e:a3:b1:21:6f:00:01:00:00:00:50Certificate

Extended Key Usages

61:08:d3:c4:00:00:00:00:00:04Certificate

Key Usages

b5:6e:21:81:3f:e6:f9:4d:eb:8c:a6:ce:3f:17:31:98:30:9d:75:06:99:f2:c8:cb:29:a3:dc:f1:94:7e:88:b4Signer

Headers

DLL Characteristics

File Characteristics

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

9e:07:74:47:01:0d:01:04:23:ff:a8:6b:81:4a:80:03:d5:f3:0f:07:55:a1:12:21:8c:e0:23:bd:ac:d2:89:e1
Signer

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 128KB

.sbat
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 648B

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

7c:d9:9a:a9:68:af:fa:b7:e9:f6:4a:d3:8b:ba:cf:80:95:22:df:80:93:16:2a:c2:ea:90:c3:24:66:fd:25:7a
Signer

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 128KB

.sbat
Size: 512B - Virtual size: 152B

.text
Size: 46KB - Virtual size: 45KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

32:a0:28:7f:84:1a:03:6f:a3:93:c1:e0:65:c4:3a:e6:b2:42:26:44
Certificate

bf:bd:9f:01:45:c6:d9:2c:3e:ee:67:ab:57:5a:32:a8:1e:d7:0a:0f:04:d5:95:44:b9:63:e0:f4:03:1e:13:08
Signer

.text
Size: 369KB - Virtual size: 369KB

.reloc
Size: 512B - Virtual size: 10B

.data
Size: 129KB - Virtual size: 128KB

.dynamic
Size: 512B - Virtual size: 128B

.rel
Size: 37KB - Virtual size: 37KB

.sbat
Size: 512B - Virtual size: 198B

32:a0:28:7f:84:1a:03:6f:a3:93:c1:e0:65:c4:3a:e6:b2:42:26:44
Certificate

dc:9e:18:2d:ab:1b:bd:ef:e5:d1:8b:51:bd:29:ce:49:ab:d0:2d:49:50:36:94:cb:b6:a4:a7:cb:85:9d:c8:64
Signer

/4
Size: 105KB - Virtual size: 104KB

.text
Size: 334KB - Virtual size: 333KB

.reloc
Size: 512B - Virtual size: 10B

.data
Size: 163KB - Virtual size: 163KB

.dynamic
Size: 512B - Virtual size: 256B

.rela
Size: 108KB - Virtual size: 107KB

.sbat
Size: 512B - Virtual size: 198B

33:00:00:00:50:2b:3e:b4:0e:a3:b1:21:6f:00:01:00:00:00:50
Certificate

61:08:d3:c4:00:00:00:00:00:04
Certificate

b5:6e:21:81:3f:e6:f9:4d:eb:8c:a6:ce:3f:17:31:98:30:9d:75:06:99:f2:c8:cb:29:a3:dc:f1:94:7e:88:b4
Signer

.text
Size: 407KB - Virtual size: 406KB

.reloc
Size: 512B - Virtual size: 10B

/4
Size: 512B - Virtual size: 107B

/16
Size: 512B - Virtual size: 85B

.data
Size: 144KB - Virtual size: 144KB

/27
Size: 9KB - Virtual size: 9KB

.dynamic
Size: 512B - Virtual size: 128B

.rel
Size: 38KB - Virtual size: 37KB

.sbat
Size: 512B - Virtual size: 198B

33:00:00:00:50:2b:3e:b4:0e:a3:b1:21:6f:00:01:00:00:00:50
Certificate

61:08:d3:c4:00:00:00:00:00:04
Certificate

d6:94:fd:3e:74:67:ee:1e:53:64:32:80:98:26:7e:40:73:7f:e4:94:40:6a:43:5d:06:c2:6d:10:a1:f5:aa:5e
Signer

/4
Size: 118KB - Virtual size: 117KB

.text
Size: 374KB - Virtual size: 374KB

.reloc
Size: 512B - Virtual size: 10B

/14
Size: 512B - Virtual size: 107B

/26
Size: 512B - Virtual size: 85B

.data
Size: 179KB - Virtual size: 179KB

/37
Size: 9KB - Virtual size: 9KB

.dynamic
Size: 512B - Virtual size: 256B

.rela
Size: 109KB - Virtual size: 109KB

.sbat
Size: 512B - Virtual size: 198B