76d008d9955509d3db6e190acfa58fdf12fc64253884ac6981187a3e5ffdeb20

Sharing

Copy URL

Twitter E-mail

General

Target

76d008d9955509d3db6e190acfa58fdf12fc64253884ac6981187a3e5ffdeb20
Size

380KB
MD5

a5da3d47e6a3e4e4f0b84e208316831d
SHA1

f1292d10075e6ad82118a6119ac39a8718eba771
SHA256

76d008d9955509d3db6e190acfa58fdf12fc64253884ac6981187a3e5ffdeb20
SHA512

52652d8581c4960cd119598a7de51c14fa5848a078ae57127848895429633341cde102d8f4e6ad406460a53fb9be5b6f5989ffef60ba430e64d3c90498b5d97c
SSDEEP

6144:9jixP2mr0YK1CvwIaOZzYmffv9n+ugWfbbyzxZOXPny69h4EKfA2I:VixvrzK1mwIaO7f1nAWbmzxcPp4I

Score

1^/10

Malware Config

Signatures

Files

76d008d9955509d3db6e190acfa58fdf12fc64253884ac6981187a3e5ffdeb20
.7z
update/USOPrivate.dat
update/USOPrivate.exe
.exe windows:6 windows x64 arch:x64

3414cc03f06274508830a4fda02b2309

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:09:12:80:3c:c1:89:44:65:87:4f:1a:f1:22:63:cb
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11-04-2018 00:00

Not After

16-04-2019 12:00

Subject

CN=Bitdefender SRL,OU=DEVSUP CL,O=Bitdefender SRL,L=Bucharest,C=RO

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-04-2011 19:41

Not After

15-04-2021 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11-02-2011 12:00

Not After

10-02-2026 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:a8:b3:e2:48:f7:a1:6b:4f:9e:5a:6c:b6:7e:76:d6
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11-04-2018 00:00

Not After

16-04-2019 12:00

Subject

CN=Bitdefender SRL,OU=DEVSUP CL,O=Bitdefender SRL,L=Bucharest,C=RO

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-04-2011 19:41

Not After

15-04-2021 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12-01-2016 00:00

Not After

11-01-2031 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23-12-2017 00:00

Not After

22-03-2029 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

ab:4b:26:3e:5f:b8:df:c7:58:07:a6:f3:f6:c1:f9:4d:d5:98:96:2f:87:1c:42:f9:47:7a:f8:79:e8:09:21:f1
Signer

Actual PE Digest

ab:4b:26:3e:5f:b8:df:c7:58:07:a6:f3:f6:c1:f9:4d:d5:98:96:2f:87:1c:42:f9:47:7a:f8:79:e8:09:21:f1

Digest Algorithm

sha256

PE Digest Matches

true

eb:42:8a:18:53:b8:6a:51:7f:8c:ea:02:23:7d:ff:5d:9f:45:1a:13
Signer

Actual PE Digest

eb:42:8a:18:53:b8:6a:51:7f:8c:ea:02:23:7d:ff:5d:9f:45:1a:13

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\bamboo\home\xml-data\build-dir\CODRU-CM-SOURCES\bin\x64\Release\BdServiceHost.pdb

Imports

kernel32

AllocConsole
FreeConsole
GetTickCount
CreateFileW
MultiByteToWideChar
FormatMessageA
SetEvent
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
IsValidCodePage
CreateEventW
LocalFree
SetCurrentDirectoryW
GetCommandLineW
CreateThread
DecodePointer
GetModuleHandleW
InitializeCriticalSectionEx
GetLastError
RaiseException
FreeLibrary
GetProcAddress
LoadLibraryW
GetModuleFileNameW
DeleteCriticalSection
CloseHandle
SetStdHandle
Sleep
HeapSize
ReadFile
GetConsoleCP
FlushFileBuffers
WideCharToMultiByte
GetStringTypeW
FormatMessageW
FindClose
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
SetEndOfFile
SetFilePointerEx
EnterCriticalSection
LeaveCriticalSection
EncodePointer
SetLastError
InitializeCriticalSectionAndSpinCount
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
LCMapStringW
GetLocaleInfoW
GetCPInfo
IsDebuggerPresent
OutputDebugStringW
ResetEvent
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetStdHandle
WriteFile
GetACP
HeapFree
HeapAlloc
HeapReAlloc
GetFileType
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetConsoleMode
GetNumberOfConsoleInputEvents
PeekConsoleInputA
ReadConsoleW
ReadConsoleInputW
SetConsoleMode
WriteConsoleW

user32

MsgWaitForMultipleObjectsEx
GetMessageW
UnregisterPowerSettingNotification
RegisterPowerSettingNotification
DispatchMessageW

advapi32

RegDeleteKeyW
ChangeServiceConfig2W
ChangeServiceConfigW
StartServiceW
ControlService
QueryServiceStatus
DeleteService
CreateServiceW
OpenServiceW
OpenSCManagerW
CloseServiceHandle
RegisterServiceCtrlHandlerExW
SetServiceStatus
StartServiceCtrlDispatcherW
RegCloseKey
RegOpenKeyExW

shell32

CommandLineToArgvW
SHGetKnownFolderPath

ole32

CoTaskMemFree

winmm

timeGetTime

Sections

.text
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
update/log.dll
.dll windows:5 windows x64 arch:x64

66cabd1fd8b764726db49384b65097d4

Code Sign

0c:7d:17:b3:ec:02:9e:c0:44:7e:36:89:60:a0:41:17
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

14-01-2021 00:00

Not After

18-01-2022 23:59

Subject

CN=GRAVITY Co.\, Ltd.,O=GRAVITY Co.\, Ltd.,L=Mapo-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-04-2011 19:41

Not After

15-04-2021 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:7d:17:b3:ec:02:9e:c0:44:7e:36:89:60:a0:41:17
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

14-01-2021 00:00

Not After

18-01-2022 23:59

Subject

CN=GRAVITY Co.\, Ltd.,O=GRAVITY Co.\, Ltd.,L=Mapo-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-04-2011 19:41

Not After

15-04-2021 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

14:28:9f:79:58:d2:01:1d:90:e3:bb:0d:8c:62:a8:12:90:9f:7a:6e:d7:5a:53:c5:e1:81:5e:d0:9c:a0:18:7b
Signer

Actual PE Digest

14:28:9f:79:58:d2:01:1d:90:e3:bb:0d:8c:62:a8:12:90:9f:7a:6e:d7:5a:53:c5:e1:81:5e:d0:9c:a0:18:7b

Digest Algorithm

sha256

PE Digest Matches

true

f8:b7:dc:39:84:80:b7:68:60:a9:ca:7a:28:0c:19:9d:0e:2a:7b:80
Signer

Actual PE Digest

f8:b7:dc:39:84:80:b7:68:60:a9:ca:7a:28:0c:19:9d:0e:2a:7b:80

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Administrator\Desktop\Plug7.0(Logger)\logexts\x64\Release\logexts.pdb

Imports

kernel32

FreeLibrary
GetCurrentProcess
WaitForSingleObject
Sleep
lstrlenW
GetLastError
GetProcAddress
DisableThreadLibraryCalls
LoadLibraryA
CloseHandle
CreateThread
GetThreadContext
HeapReAlloc
SetThreadContext
HeapAlloc
HeapFree
GetModuleHandleW
Thread32First
HeapDestroy
HeapCreate
Thread32Next
FlushInstructionCache
OpenThread
VirtualProtect
CreateToolhelp32Snapshot
GetCurrentThreadId
GetCurrentProcessId
SuspendThread
ResumeThread
VirtualQuery
VirtualFree
VirtualAlloc
GetSystemInfo
FlsSetValue
GetCommandLineA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlUnwindEx
EncodePointer
FlsGetValue
FlsFree
SetLastError
FlsAlloc
ExitProcess
DecodePointer
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
GetVersion
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryW
WriteFile
GetModuleFileNameW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
HeapSize

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 474B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3414cc03f06274508830a4fda02b2309

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

07:09:12:80:3c:c1:89:44:65:87:4f:1a:f1:22:63:cbCertificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

07:a8:b3:e2:48:f7:a1:6b:4f:9e:5a:6c:b6:7e:76:d6Certificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

ab:4b:26:3e:5f:b8:df:c7:58:07:a6:f3:f6:c1:f9:4d:d5:98:96:2f:87:1c:42:f9:47:7a:f8:79:e8:09:21:f1Signer

eb:42:8a:18:53:b8:6a:51:7f:8c:ea:02:23:7d:ff:5d:9f:45:1a:13Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

shell32

ole32

winmm

Sections

.text Size: 272KB - Virtual size: 272KB

.rdata Size: 122KB - Virtual size: 121KB

.data Size: 7KB - Virtual size: 13KB

.pdata Size: 14KB - Virtual size: 13KB

.rsrc Size: 313KB - Virtual size: 313KB

.reloc Size: 4KB - Virtual size: 3KB

66cabd1fd8b764726db49384b65097d4

Code Sign

0c:7d:17:b3:ec:02:9e:c0:44:7e:36:89:60:a0:41:17Certificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

0c:7d:17:b3:ec:02:9e:c0:44:7e:36:89:60:a0:41:17Certificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

14:28:9f:79:58:d2:01:1d:90:e3:bb:0d:8c:62:a8:12:90:9f:7a:6e:d7:5a:53:c5:e1:81:5e:d0:9c:a0:18:7bSigner

f8:b7:dc:39:84:80:b7:68:60:a9:ca:7a:28:0c:19:9d:0e:2a:7b:80Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

07:09:12:80:3c:c1:89:44:65:87:4f:1a:f1:22:63:cb
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

07:a8:b3:e2:48:f7:a1:6b:4f:9e:5a:6c:b6:7e:76:d6
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

ab:4b:26:3e:5f:b8:df:c7:58:07:a6:f3:f6:c1:f9:4d:d5:98:96:2f:87:1c:42:f9:47:7a:f8:79:e8:09:21:f1
Signer

eb:42:8a:18:53:b8:6a:51:7f:8c:ea:02:23:7d:ff:5d:9f:45:1a:13
Signer

.text
Size: 272KB - Virtual size: 272KB

.rdata
Size: 122KB - Virtual size: 121KB

.data
Size: 7KB - Virtual size: 13KB

.pdata
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 313KB - Virtual size: 313KB

.reloc
Size: 4KB - Virtual size: 3KB

0c:7d:17:b3:ec:02:9e:c0:44:7e:36:89:60:a0:41:17
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

0c:7d:17:b3:ec:02:9e:c0:44:7e:36:89:60:a0:41:17
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

14:28:9f:79:58:d2:01:1d:90:e3:bb:0d:8c:62:a8:12:90:9f:7a:6e:d7:5a:53:c5:e1:81:5e:d0:9c:a0:18:7b
Signer

f8:b7:dc:39:84:80:b7:68:60:a9:ca:7a:28:0c:19:9d:0e:2a:7b:80
Signer

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 16KB

.pdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 512B - Virtual size: 474B