2024-04-09_57f44b9e78315c3433b0facfe39f6585_icedid_silence

Sharing

Copy URL

Twitter E-mail

General

Target

2024-04-09_57f44b9e78315c3433b0facfe39f6585_icedid_silence
Size

4.2MB
MD5

57f44b9e78315c3433b0facfe39f6585
SHA1

a05871b82516968b0318c75a6eaa6ea5d73f0c05
SHA256

aecf636c04579c33966d9b818e452c7e746260ee2b81ce611e87465509ef4af5
SHA512

2cac2ecb2fb5b7ba86af131a4fd9805b00a6da556a3002539d86ddfd08d3aadd9dd2ce2fd001141439e2f011e52c47abe5df5634991adeae1ea960380e69eb69
SSDEEP

98304:6ShEW0CrP9tMYzi3iTDyln1cEiHK17bEiP1GP1xP1rP1oP1GP1zFLOAkGkzdnEVf:6EEWiSYmEiHK5lP1GP1xP1rP1oP1GP1X

Score

1^/10

Malware Config

Signatures

Files

2024-04-09_57f44b9e78315c3433b0facfe39f6585_icedid_silence
.exe windows:5 windows x86 arch:x86

bc00b1ffe50b2838a95afd4fb5be59b5

Code Sign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31-12-2015 00:00

Not After

09-07-2019 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c7:9e:13:99:d5:33:77:b1:d9:b7:f5:0b:db:70:8e:e4
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09-03-2015 00:00

Not After

08-03-2018 23:59

Subject

CN=Northwest Performance Software\, Inc.,O=Northwest Performance Software\, Inc.,POSTALCODE=98382,STREET=183 Farmview Rd,L=Sequim,ST=WA,C=US,2.5.4.18=#130b504f20426f782031333735

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09-05-2013 00:00

Not After

08-05-2028 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c7:9e:13:99:d5:33:77:b1:d9:b7:f5:0b:db:70:8e:e4
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09-03-2015 00:00

Not After

08-03-2018 23:59

Subject

CN=Northwest Performance Software\, Inc.,O=Northwest Performance Software\, Inc.,POSTALCODE=98382,STREET=183 Farmview Rd,L=Sequim,ST=WA,C=US,2.5.4.18=#130b504f20426f782031333735

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09-05-2013 00:00

Not After

08-05-2028 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31-12-2015 00:00

Not After

09-07-2019 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ee:53:df:52:a5:14:71:1a:67:d6:e4:04:2c:93:9c:6e:a1:6e:04:6f:8c:b5:18:3e:85:b7:cf:67:6d:18:3d:a7
Signer

Actual PE Digest

ee:53:df:52:a5:14:71:1a:67:d6:e4:04:2c:93:9c:6e:a1:6e:04:6f:8c:b5:18:3e:85:b7:cf:67:6d:18:3d:a7

Digest Algorithm

sha256

PE Digest Matches

true

d9:a2:b0:5d:aa:70:3e:36:87:82:c2:1d:f4:63:70:8c:4f:b8:bd:98
Signer

Actual PE Digest

d9:a2:b0:5d:aa:70:3e:36:87:82:c2:1d:f4:63:70:8c:4f:b8:bd:98

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

sqlite3

sqlite3_open
sqlite3_errmsg
sqlite3_prepare_v2
sqlite3_column_count
sqlite3_column_name
sqlite3_step
sqlite3_column_text
sqlite3_column_type
sqlite3_finalize
sqlite3_snprintf
sqlite3_free
sqlite3_mprintf
sqlite3_busy_timeout
sqlite3_close

wininet

InternetSetOptionA
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA

kernel32

CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetOEMCP
GetCPInfo
GetACP
GetProfileIntA
SearchPathA
VirtualProtect
GetFileAttributesExA
GetFileSizeEx
GlobalHandle
SetErrorMode
GetWindowsDirectoryA
FindResourceExW
RtlUnwind
RaiseException
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
GetSystemInfo
VirtualAlloc
VirtualQuery
HeapReAlloc
CreateThread
ExitThread
ExitProcess
GetModuleHandleExW
HeapSize
HeapQueryInformation
SetStdHandle
GetFileType
IsValidCodePage
GetStdHandle
GetTimeZoneInformation
GetProcessHeap
GetStringTypeW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
GetDateFormatW
GetTimeFormatW
LCMapStringW
SetEnvironmentVariableA
WriteConsoleW
CreateFileW
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
ReplaceFileA
SetFileTime
GetFileTime
GetDiskFreeSpaceA
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
InterlockedExchange
GetStringTypeExA
GetVolumeInformationA
MoveFileA
LoadLibraryExA
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
GetFullPathNameA
FlushFileBuffers
VerifyVersionInfoA
GlobalFlags
Sleep
ResumeThread
SuspendThread
SetThreadPriority
GetThreadLocale
GetCurrentProcessId
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
LoadLibraryW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
GetSystemDirectoryW
GetVersion
GetCurrentThreadId
DecodePointer
EncodePointer
OutputDebugStringA
GetFileAttributesW
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalSize
FindResourceA
WriteFile
ReadFile
GetTempFileNameA
GetTempPathA
SetFilePointer
SetEndOfFile
GetFileSize
DeleteFileA
CreateFileA
lstrcatA
WinExec
GetVersionExA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetLastError
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
AreFileApisANSI
LoadLibraryA
GetShortPathNameA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleFileNameA
FreeLibrary
GetEnvironmentVariableA
lstrcpyA
lstrcmpiA
lstrcmpA
SystemTimeToFileTime
FileTimeToSystemTime
GetProcAddress
GetSystemTime
FileTimeToLocalFileTime
SetLastError
GetFileAttributesA
FindNextFileA
FindFirstFileA
FindClose
GetCurrentDirectoryA
CreateEventA
WaitForSingleObject
SetEvent
CloseHandle
lstrlenA
QueryPerformanceFrequency
QueryPerformanceCounter
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
LoadResource
LocalReAlloc
VerSetConditionMask
LocalAlloc
LocalFileTimeToFileTime

user32

CharUpperBuffA
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongA
PostQuitMessage
ShowOwnedPopups
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
UnregisterClassA
RealChildWindowFromPoint
CopyAcceleratorTableA
InvalidateRgn
SetMenuDefaultItem
GetDoubleClickTime
CopyIcon
GetMenuDefaultItem
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
GetComboBoxInfo
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
GetUpdateRect
GetNextDlgGroupItem
SubtractRect
EnumChildWindows
HideCaret
InvertRect
CreateMenu
GetWindowRgn
IsCharLowerA
MapVirtualKeyExA
GetTabbedTextExtentW
LoadCursorA
WaitMessage
GetMenuItemInfoA
NotifyWinEvent
DestroyAcceleratorTable
MonitorFromPoint
GetMessageA
GetDesktopWindow
EndDialog
CreateDialogIndirectParamA
IntersectRect
MapVirtualKeyA
GetKeyNameTextA
CharNextA
GetWindowThreadProcessId
SystemParametersInfoA
GetCursorPos
SetWindowRgn
DrawIcon
GetSystemMetrics
IsIconic
IsDialogMessageA
IsWindowEnabled
SendDlgItemMessageA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
RemovePropA
GetPropA
SetPropA
ShowScrollBar
SetScrollRange
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
ModifyMenuA
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
IsWindowVisible
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
GetClassInfoExA
CallWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetWindowTextLengthA
GetWindowTextA
ScreenToClient
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
UnhookWindowsHookEx
RemoveMenu
AppendMenuA
GetMenuItemID
GetMenuState
GetMenuStringA
GetWindow
SetFocus
IsChild
DestroyWindow
CreateWindowExA
PostThreadMessageA
LoadCursorW
SetWindowTextA
IsClipboardFormatAvailable
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
IsWindow
PeekMessageA
DispatchMessageA
TranslateMessage
GetFocus
DeleteMenu
InsertMenuA
GetMenuItemCount
wsprintfA
MessageBoxA
LoadBitmapW
SetWindowLongA
RedrawWindow
LoadMenuW
KillTimer
SetTimer
MessageBeep
GetScrollRange
GetScrollPos
SetScrollPos
IsRectEmpty
SetRectEmpty
ChildWindowFromPoint
ReleaseCapture
SetCapture
GetClassInfoA
RegisterClassA
DefWindowProcA
DrawEdge
SetRect
GetIconInfo
LoadImageA
DestroyIcon
DestroyCursor
GetParent
GetWindowLongA
OffsetRect
InflateRect
CopyRect
FrameRect
FillRect
DrawFocusRect
WindowFromPoint
ClientToScreen
SetCursor
GetWindowRect
InvalidateRect
ReleaseDC
GetDC
DrawStateA
TrackPopupMenuEx
GetSubMenu
SetParent
LockWindowUpdate
UnionRect
EnableScrollBar
UpdateLayeredWindow
LoadImageW
SetCursorPos
BringWindowToTop
CopyImage
GetSystemMenu
GetAsyncKeyState
CharUpperA
IsZoomed
TrackMouseEvent
DrawIconEx
DrawFrameControl
DestroyMenu
LoadMenuA
GetActiveWindow
GetNextDlgTabItem
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
CreatePopupMenu
TranslateAcceleratorA
GetMenu
LoadAcceleratorsA
PostMessageA
GetClientRect
UpdateWindow
SendMessageA
GetSysColorBrush
GetSysColor
EnableWindow
EndDeferWindowPos
IsMenu

gdi32

CreateFontA
CreateSolidBrush
GetDeviceCaps
StartDocA
EndDoc
StartPage
EndPage
AbortDoc
CreatePen
ExtCreatePen
Ellipse
Rectangle
Polygon
CreateHatchBrush
GetMapMode
DPtoLP
CopyMetaFileA
CreateDCA
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
RectVisible
MoveToEx
TextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateEllipticRgn
CreateDIBSection
LPtoDP
GetBkColor
GetTextColor
CreateFontIndirectA
PatBlt
CombineRgn
SetRectRgn
SetAbortProc
CreateRoundRectRgn
CreatePolygonRgn
Polyline
GetTextMetricsA
RoundRect
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetRgnBox
GetCharWidthA
GetDIBits
RealizePalette
StretchBlt
SetDIBColorTable
OffsetRgn
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
GetNearestPaletteIndex
GetSystemPaletteEntries
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
EnumFontFamiliesExA
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
SetPixelV
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetObjectType
GetCurrentPositionEx
ExtTextOutA
GetTextExtentPoint32A
GetObjectA
SetTextColor
SetPixel
SetBkColor
SelectObject
GetStockObject
GetPixel
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
CreateBitmap
CreateRectRgnIndirect
BitBlt
GetClipBox
ExcludeClipRect
Escape
CreateRectRgn
CreatePatternBrush
RestoreDC

msimg32

GradientFill
AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesA
GetJobA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA
GetFileSecurityA
SetFileSecurityA
RegEnumKeyA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExW
RegSetValueA

shell32

SHBrowseForFolderA
SHGetFolderPathA
ShellExecuteA
DragQueryFileA
DragFinish
SHAppBarMessage
ExtractIconA
SHAddToRecentDocs
SHGetDesktopFolder
ShellExecuteExA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA

comctl32

ImageList_AddMasked
_TrackMouseEvent
ImageList_GetIcon

shlwapi

PathStripToRootA
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
StrFormatKBSizeA

uxtheme

IsThemeBackgroundPartiallyTransparent
GetThemePartSize
IsAppThemed
DrawThemeParentBackground
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText

ole32

CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleGetClipboard
CoRegisterMessageFilter
CoRevokeClassObject
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleLockRunning
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitializeEx

oleaut32

VariantChangeType
OleCreateFontIndirect
SysStringLen
SysAllocString
VariantInit
SysAllocStringByteLen
SysFreeString
SysAllocStringLen
VarUdateFromDate
SafeArrayDestroy
VariantCopy
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantClear

oledlg

ord8

wsock32

ntohl
ioctlsocket
shutdown
gethostbyaddr
gethostbyname
gethostname
WSAStartup
WSAGetLastError
htonl
accept
bind
connect
closesocket
htons
listen
ntohs
recvfrom
sendto
setsockopt
socket
WSACleanup
inet_ntoa
inet_addr
recv
getsockname
send
select

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc00b1ffe50b2838a95afd4fb5be59b5

Code Sign

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0bCertificate

Extended Key Usages

Key Usages

c7:9e:13:99:d5:33:77:b1:d9:b7:f5:0b:db:70:8e:e4Certificate

Extended Key Usages

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

c7:9e:13:99:d5:33:77:b1:d9:b7:f5:0b:db:70:8e:e4Certificate

Extended Key Usages

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

ee:53:df:52:a5:14:71:1a:67:d6:e4:04:2c:93:9c:6e:a1:6e:04:6f:8c:b5:18:3e:85:b7:cf:67:6d:18:3d:a7Signer

d9:a2:b0:5d:aa:70:3e:36:87:82:c2:1d:f4:63:70:8c:4f:b8:bd:98Signer

Headers

DLL Characteristics

File Characteristics

Imports

sqlite3

wininet

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

wsock32

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 416KB - Virtual size: 416KB

.data Size: 33KB - Virtual size: 3.8MB

.rsrc Size: 2.1MB - Virtual size: 2.1MB

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

c7:9e:13:99:d5:33:77:b1:d9:b7:f5:0b:db:70:8e:e4
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

c7:9e:13:99:d5:33:77:b1:d9:b7:f5:0b:db:70:8e:e4
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

ee:53:df:52:a5:14:71:1a:67:d6:e4:04:2c:93:9c:6e:a1:6e:04:6f:8c:b5:18:3e:85:b7:cf:67:6d:18:3d:a7
Signer

d9:a2:b0:5d:aa:70:3e:36:87:82:c2:1d:f4:63:70:8c:4f:b8:bd:98
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 416KB - Virtual size: 416KB

.data
Size: 33KB - Virtual size: 3.8MB

.rsrc
Size: 2.1MB - Virtual size: 2.1MB