2024-04-09_2a2e06362350013f55d4fe94be11d2f6_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-09_2a2e06362350013f55d4fe94be11d2f6_mafia
Size

1.9MB
MD5

2a2e06362350013f55d4fe94be11d2f6
SHA1

027906b0f8098c98a8bde552f9a9c6fe53a435df
SHA256

8bd3fa4a38672aa4cecd83e6d0094ce95d60ac787dedb75a0f153d8b82dc019f
SHA512

0db5a605bd6907d2931072edc335cb3ca175e59bb00a224c5d315f73541a18bcb7c641d770824d9a8fe7100c3a9309442f754d06df584e3e9375b7a9d9e5e4d1
SSDEEP

49152:ab1Lss8i/u/vbkjd1Pxbcg9tJWGR2OeGzowKLghcu4KHeWkOj6dsAS0G:HsV/u/vm1Vcg9/WGR2OeGzpZe5Oj6drA

Score

1^/10

Malware Config

Signatures

Files

2024-04-09_2a2e06362350013f55d4fe94be11d2f6_mafia
.exe windows:5 windows x86 arch:x86

473ee1d0d3c2df7f368ee11fc1d2189c

Code Sign

04:e1:b8:bb:15:86:13:90:53:b9:93:94:8a:72:29:a8
Certificate

Issuer

CN=GoGetSSL G4 CS RSA4096 SHA256 2022 CA-1,O=EnVers Group SIA,C=LV

Not Before

03/01/2024, 00:00

Not After

02/01/2027, 23:59

Subject

CN=Component Specialties Inc.,O=Component Specialties Inc.,L=Amityville,ST=New York,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

07:84:3d:ad:01:c1:15:c2:74:ee:41:a7:28:22:46:79
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/06/2022, 00:00

Not After

22/06/2032, 23:59

Subject

CN=GoGetSSL G4 CS RSA4096 SHA256 2022 CA-1,O=EnVers Group SIA,C=LV

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

fe:23:7c:f6:40:b8:33:00:fd:31:f2:18:b8:e6:d9:92:88:6a:30:ae:6e:fb:e5:8c:0a:e3:90:d4:be:f4:63:cf
Signer

Actual PE Digest

fe:23:7c:f6:40:b8:33:00:fd:31:f2:18:b8:e6:d9:92:88:6a:30:ae:6e:fb:e5:8c:0a:e3:90:d4:be:f4:63:cf

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\WorkSpace\Test_English\2.0\src\Projects\OCX\WebClientApp\Release\WebClientApp.pdb

Imports

ws2_32

recvfrom
ntohl
htonl
select
WSAGetLastError
WSAEnumNetworkEvents
htons
WSAAccept
WSAEventSelect
setsockopt
sendto
WSACleanup
recv
WSACreateEvent
WSAStartup
WSAResetEvent
gethostbyname
send
WSAWaitForMultipleEvents
inet_ntoa
connect
ioctlsocket
getpeername
WSASetEvent
WSACloseEvent
inet_pton
ntohs
getsockname
closesocket
listen
bind
socket
WSARecv
shutdown
WSASend
__WSAFDIsSet

kernel32

HeapQueryInformation
HeapSize
GetSystemTimeAsFileTime
VirtualQuery
SetStdHandle
GetFileType
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
QueryPerformanceCounter
HeapAlloc
IsDebuggerPresent
TerminateProcess
IsProcessorFeaturePresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
LCMapStringW
GetStringTypeW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
HeapFree
RtlUnwind
GetFileAttributesA
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
GetUserDefaultLCID
SearchPathW
GetProfileIntW
GetNumberFormatW
ExitThread
GetTempPathW
GetTempFileNameW
GetCurrentDirectoryW
GetSystemDirectoryW
GlobalFlags
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
SetErrorMode
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DeleteFileW
lstrcmpiW
CopyFileW
GlobalSize
FormatMessageW
LocalFree
ReleaseActCtx
CreateActCtxW
lstrcpyW
GlobalFree
GlobalUnlock
MulDiv
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
SetThreadPriority
lstrcmpA
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
HeapReAlloc
GetWindowsDirectoryW
GlobalLock
GlobalAlloc
GetLocaleInfoW
LoadLibraryExW
GetThreadLocale
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
InitializeCriticalSectionAndSpinCount
ActivateActCtx
DeactivateActCtx
FreeLibrary
lstrcmpW
GetFileTime
GetFileAttributesW
lstrlenW
FileTimeToSystemTime
GetFileAttributesExW
GetModuleHandleW
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
GetModuleFileNameW
FileTimeToLocalFileTime
GetLocalTime
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
WideCharToMultiByte
SetUnhandledExceptionFilter
CreateFileW
GetCurrentProcessId
LoadLibraryW
GetProcAddress
VirtualProtect
GetCurrentProcess
WriteProcessMemory
lstrlenA
FindResourceW
LoadResource
LockResource
SizeofResource
RaiseException
MultiByteToWideChar
FindFirstFileA
FindNextFileA
FindClose
VirtualAlloc
GetModuleFileNameA
GetCurrentThreadId
GetTickCount
GetLastError
SetLastError
Sleep
CreateThread
GetSystemInfo
SetFilePointer
SetFilePointerEx
GetFileSizeEx
ReadFile
WriteFile
CreateFileA
DeleteFileA
CreateDirectoryA
ReleaseSemaphore
CreateSemaphoreW
WaitForSingleObject
ResetEvent
SetEvent
CloseHandle
CreateEventW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
InterlockedIncrement
InterlockedDecrement
ExitProcess
EncodePointer
ResumeThread
DecodePointer
UnhandledExceptionFilter

user32

FrameRect
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
RegisterClipboardFormatW
LoadImageW
GetIconInfo
HideCaret
InvertRect
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
UnregisterClassW
GetNextDlgGroupItem
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
MessageBeep
GetSystemMenu
LoadMenuW
DestroyIcon
WaitMessage
WindowFromPoint
KillTimer
DeleteMenu
ReleaseCapture
SetCapture
InvalidateRgn
IntersectRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
LoadCursorW
GetSysColorBrush
CopyImage
RealChildWindowFromPoint
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
CharUpperW
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
InvalidateRect
DrawStateW
SetWindowContextHelpId
MapDialogRect
GetDesktopWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
EndPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringW
DrawTextExW
TabbedTextOutW
FillRect
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
GetActiveWindow
GetCursorPos
PostQuitMessage
OffsetRect
CharNextW
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
IsWindow
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
ValidateRect
DestroyCursor
SubtractRect
MapVirtualKeyExW
GetKeyNameTextW
IsCharLowerW
GetDoubleClickTime
GetUpdateRect
IsClipboardFormatAvailable
CreateMenu
TranslateMDISysAccel
UpdateWindow
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
PostThreadMessageW
CharUpperBuffW
DrawTextW
CopyIcon
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
GetWindowLongW
SetWindowLongW
SetWindowPos
CopyRect
PtInRect
GetWindow
SetParent
BringWindowToTop
GetWindowThreadProcessId
IsWindowVisible
GetParent
EnumChildWindows
EnumWindows
GetForegroundWindow
GetClassNameA
ClientToScreen
PostMessageW
GetSystemMetrics
LoadIconW
SetTimer
ScreenToClient
GetClientRect
GetWindowRect
GetWindowRgn
SetWindowRgn
IsIconic
SendMessageW
DrawIcon
EnableWindow
BeginPaint

gdi32

CreateSolidBrush
CreateHatchBrush
CopyMetaFileW
CreateDCW
CreateFontIndirectW
GetTextExtentPoint32W
CreateDIBitmap
CreateCompatibleBitmap
SelectObject
CreateRectRgnIndirect
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetRgnBox
SetRectRgn
GetMapMode
PatBlt
DPtoLP
CreateRoundRectRgn
CreateDIBSection
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
CreatePen
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
Escape
ExtTextOutW
TextOutW
SetDIBColorTable
RectVisible
PtVisible
GetObjectType
SelectPalette
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetBkColor
SetTextColor
CombineRgn
CreatePolygonRgn
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
CreateRectRgn
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetTextColor
GetBkColor
GetDeviceCaps
GetStockObject
CreateBitmap
GetObjectW
SetViewportOrgEx

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW

shell32

ShellExecuteW
SHGetFolderPathA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHAppBarMessage
DragQueryFileW
DragFinish
ShellExecuteExW
SHGetFileInfoW
SHBrowseForFolderW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW

ole32

OleInitialize
CoInitializeEx
CreateStreamOnHGlobal
CoCreateGuid
OleFlushClipboard
OleTranslateAccelerator
IsAccelerator
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoCreateInstance
CoFreeUnusedLibraries
CoInitialize
CoUninitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
OleIsCurrentClipboard
DoDragDrop
OleCreateMenuDescriptor
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
OleDestroyMenuDescriptor

oleaut32

VarBstrFromDate
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysAllocString
OleCreateFontIndirect
VariantInit
VariantChangeType
SysFreeString
VariantClear
SysAllocStringLen

iphlpapi

GetExtendedTcpTable

oledlg

OleUIBusyW

gdiplus

GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCreateBitmapFromStream

dbghelp

MiniDumpWriteDump

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Exports

Exports

?NET_SOCKET_AddConnect@@YAHIPBDG@Z
?NET_SOCKET_AddConnectByP2P2@@YAIIPBD0G0@Z
?NET_SOCKET_AddConnectByP2P@@YAHIPBD0G@Z
?NET_SOCKET_CheckConnectState@@YA_NH@Z
?NET_SOCKET_CreateUDPNetCommunication@@YAHPBDI_N@Z
?NET_SOCKET_DelConnect@@YAXH@Z
?NET_SOCKET_DestroyHNetCommunication@@YAXH@Z
?NET_SOCKET_DestroyUDPNetCommunication@@YAXH@Z
?NET_SOCKET_GetLastError@@YAIXZ
?NET_SOCKET_GetLocalIP@@YA_NHAAUsockaddr_in@@@Z
?NET_SOCKET_GetRemoteIP@@YA_NHAAUsockaddr_in@@@Z
?NET_SOCKET_Inet_ntoa@@YA_NIPAD@Z
?NET_SOCKET_Initial@@YA_NHHH@Z
?NET_SOCKET_PopConnectResult@@YA_NHAAHI@Z
?NET_SOCKET_Quit@@YAXXZ
?NET_SOCKET_Recv_Immediate@@YAHHPADHPA_N@Z
?NET_SOCKET_Recv_Immediate@@YAHHPADH_NI@Z
?NET_SOCKET_RegisterNode@@YA_NHPAVCSocketDataObserver@@PAXHH@Z
?NET_SOCKET_Send@@YAHHPBDI0IPAV?$CChildPairContainer@PAEH@@I@Z
?NET_SOCKET_Send_Immediate@@YAHHPBDHAA_N@Z
?NET_SOCKET_Send_Immediate@@YAHHPBDHI@Z
?NET_SOCKET_SimpleClientComm@@YAHPBDG0IPADI0I@Z
?NET_SOCKET_SimpleClientComm@@YAHPBDG0IPADIPAPBDII@Z
?NET_SOCKET_Start@@YA_NH@Z
?NET_SOCKET_StartAcceptConnect@@YA_NXZ
?NET_SOCKET_StartHttpServerListen@@YA_NGPAVCSocketDataObserver@@I@Z
?NET_SOCKET_StartListen@@YA_NGPAVCListenSocketObserver@@I_N@Z
?NET_SOCKET_StartListenByP2P@@YA_NGPAVCListenSocketObserver@@I_NPBD2GI22@Z
?NET_SOCKET_Stop@@YAXH@Z
?NET_SOCKET_StopHttpServerListen@@YAXG@Z
?NET_SOCKET_StopListen@@YAXG@Z
?NET_SOCKET_UDPRecv@@YAIHAAIAAGPAXII@Z
?NET_SOCKET_UDPRecvSelect@@YAIPAHHIPA_N@Z
?NET_SOCKET_UDPSend@@YA_NHIGPBXII@Z
?NET_SOCKET_UnRegisterNode@@YAXH@Z

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

473ee1d0d3c2df7f368ee11fc1d2189c

Code Sign

04:e1:b8:bb:15:86:13:90:53:b9:93:94:8a:72:29:a8Certificate

Extended Key Usages

Key Usages

07:84:3d:ad:01:c1:15:c2:74:ee:41:a7:28:22:46:79Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

fe:23:7c:f6:40:b8:33:00:fd:31:f2:18:b8:e6:d9:92:88:6a:30:ae:6e:fb:e5:8c:0a:e3:90:d4:be:f4:63:cfSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

iphlpapi

oledlg

gdiplus

dbghelp

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 304KB - Virtual size: 303KB

.data Size: 30KB - Virtual size: 62KB

.rsrc Size: 91KB - Virtual size: 91KB

.reloc Size: 174KB - Virtual size: 173KB

04:e1:b8:bb:15:86:13:90:53:b9:93:94:8a:72:29:a8
Certificate

07:84:3d:ad:01:c1:15:c2:74:ee:41:a7:28:22:46:79
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

fe:23:7c:f6:40:b8:33:00:fd:31:f2:18:b8:e6:d9:92:88:6a:30:ae:6e:fb:e5:8c:0a:e3:90:d4:be:f4:63:cf
Signer

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 304KB - Virtual size: 303KB

.data
Size: 30KB - Virtual size: 62KB

.rsrc
Size: 91KB - Virtual size: 91KB

.reloc
Size: 174KB - Virtual size: 173KB