2024-04-11_802df3c917fcbd0763d1b4e7049f722f_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-11_802df3c917fcbd0763d1b4e7049f722f_mafia
Size

3.3MB
MD5

802df3c917fcbd0763d1b4e7049f722f
SHA1

17fa91435f59f485808b9eb207d00ed59a044c3a
SHA256

fc2817a348a035627a00bdb0796acd60b00ae63860902fbe0c4f0b37b44e0924
SHA512

fd6cfd202849f7db3ac590918c12cb723531cc44e19e3365125804d94749664ab0a4ba53333f94dc47ffb1bee4c73d33364a69313b3a0b31355980dc27cb9892
SSDEEP

98304:20PGwxirnb5bryVSYi8d5kVMY4FX7TsD5cjzbA4CXFeNOMMEtwX1iMx:jPrxGb5Lyt71XbAOOMMEtwXJ

Score

1^/10

Malware Config

Signatures

Files

2024-04-11_802df3c917fcbd0763d1b4e7049f722f_mafia
.exe windows:5 windows x86 arch:x86

f3cf78d0251fdb5fe1cf068c5066a15b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

71:70:bd:93:cf:3f:18:9a:e6:45:2b:51:4c:49:34:0e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

17/01/2013, 00:00

Not After

16/02/2016, 23:59

Subject

CN=Tencent Technology(Shenzhen) Company Limited,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tencent Technology(Shenzhen) Company Limited,L=shenzhen,ST=guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0f:c2:a7:54:7c:6a:b1:b9:f6:2e:3b:68:ef:12:d1:6f:15:6c:48:81
Signer

Actual PE Digest

0f:c2:a7:54:7c:6a:b1:b9:f6:2e:3b:68:ef:12:d1:6f:15:6c:48:81

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

closesocket
WSACleanup
WSAStartup
WSAGetLastError
htonl
htons
ntohl
WSASocketW
WSAEventSelect
ioctlsocket
WSASetLastError
socket
send
ntohs
connect
getsockname
gethostname
inet_ntoa
accept
getpeername
select
__WSAFDIsSet
listen
recv
gethostbyname
bind
sendto
recvfrom
inet_addr
setsockopt
WSAEnumNetworkEvents
WSACreateEvent
shutdown

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList
CMP_WaitNoPendingInstallEvents
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiGetDeviceInstanceIdW
SetupDiGetClassDevsW

msimg32

AlphaBlend
TransparentBlt

wininet

InternetQueryDataAvailable
InternetQueryOptionA
InternetGetLastResponseInfoW
InternetSetStatusCallbackW
InternetWriteFile
InternetOpenW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
InternetCloseHandle
InternetSetFilePointer
HttpQueryInfoW
InternetReadFile

kernel32

GetCPInfo
HeapAlloc
GetSystemTimeAsFileTime
ExitThread
HeapReAlloc
GetDriveTypeA
FindFirstFileExA
GetConsoleCP
GetConsoleMode
MoveFileA
ExitProcess
HeapSize
HeapQueryInformation
SetStdHandle
EncodePointer
VirtualAlloc
VirtualQuery
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
IsProcessorFeaturePresent
UnhandledExceptionFilter
IsDebuggerPresent
LCMapStringW
GetStringTypeW
GetACP
GetOEMCP
IsValidCodePage
GetFullPathNameA
GetFileInformationByHandle
PeekNamedPipe
SetCurrentDirectoryW
WriteConsoleW
SetConsoleCtrlHandler
GetTimeZoneInformation
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetDriveTypeW
GetProcessHeap
SetEnvironmentVariableA
RtlUnwind
GetStartupInfoW
HeapSetInformation
FindResourceExW
GetUserDefaultLCID
VirtualProtect
SearchPathW
GetProfileIntW
GetNumberFormatW
GetTempPathW
GetTempFileNameW
GetFileTime
GetFileSizeEx
GetFileAttributesW
SetFileTime
LocalFileTimeToFileTime
GetFileAttributesExW
GetFullPathNameW
GetVolumeInformationW
FindClose
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
DeleteFileW
GetCurrentDirectoryW
GlobalFlags
SetErrorMode
SystemTimeToFileTime
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcmpA
GetCurrentThread
GetUserDefaultUILanguage
HeapFree
GetSystemDefaultUILanguage
InterlockedExchange
GlobalSize
FormatMessageW
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
ActivateActCtx
ReleaseActCtx
CreateActCtxW
DeactivateActCtx
CreateEventW
QueryPerformanceFrequency
QueryPerformanceCounter
GetVersionExA
GetNativeSystemInfo
LoadLibraryA
OpenProcess
Process32FirstW
Process32NextW
CreateToolhelp32Snapshot
GetModuleFileNameA
CreateThread
TerminateThread
GetVersionExW
GetSystemInfo
GetLocaleInfoW
GetCommandLineW
CopyFileW
TerminateProcess
GetPrivateProfileIntW
WritePrivateProfileStringW
lstrcpyW
CompareStringW
CreateFileA
CreatePipe
WaitForSingleObject
LocalFree
LocalAlloc
FindFirstFileW
FindNextFileW
MulDiv
lstrcmpW
lstrlenA
GetTickCount
ReadFile
WriteFile
GetCurrentProcessId
WideCharToMultiByte
GetSystemDirectoryW
GetWindowsDirectoryW
OutputDebugStringA
GetModuleFileNameW
LoadLibraryExW
MultiByteToWideChar
FreeLibrary
SetLastError
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
GetModuleHandleW
lstrlenW
CreateMutexW
GetCurrentThreadId
OutputDebugStringW
GetProcAddress
LoadLibraryW
GetCurrentProcess
FlushInstructionCache
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
CreateFileW
GetFileSize
CloseHandle
GetPrivateProfileStringW
CreateDirectoryW
LeaveCriticalSection
EnterCriticalSection
Sleep
InitializeCriticalSection
FindResourceW
LoadResource
LockResource
SizeofResource
RaiseException
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
DeleteFileA
GetFileAttributesA
ConvertDefaultLocale
DecodePointer
InterlockedCompareExchange
InterlockedPushEntrySList
VirtualFree
InterlockedPopEntrySList
DeviceIoControl
GetExitCodeProcess
CreateProcessW
GetTempPathA
GetLocalTime
ResetEvent
WaitForMultipleObjects
CreateDirectoryA
FindFirstFileExW
SetFileAttributesA
GetFileType

user32

RemoveMenu
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetLastActivePopup
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
ScrollWindow
SetMenu
SetScrollRange
GetScrollRange
MessageBoxW
GetClassInfoW
DeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowsHookExW
CallNextHookEx
ValidateRect
UnhookWindowsHookEx
GetForegroundWindow
GetWindowThreadProcessId
GetWindowRgn
GetKeyState
GetScrollInfo
SetScrollPos
IntersectRect
IsRectEmpty
GetMessagePos
GetAsyncKeyState
GetSystemMetrics
GetScrollPos
RegisterClipboardFormatW
DrawFrameControl
EqualRect
FrameRect
InflateRect
DestroyCursor
SetWindowRgn
SetScrollInfo
EndDialog
ModifyMenuW
GetMenuStringW
GetMenuItemID
GetMenuItemCount
CopyRect
SetForegroundWindow
GetSubMenu
TrackPopupMenu
PostQuitMessage
MonitorFromPoint
DestroyMenu
LoadMenuW
LoadIconW
IsIconic
IsDialogMessageW
ShowScrollBar
SetLayeredWindowAttributes
EnumChildWindows
LoadImageW
SystemParametersInfoW
KillTimer
SetTimer
GetCapture
GetCursorPos
SubtractRect
SetCursor
GetDlgCtrlID
IsWindowEnabled
DrawFocusRect
SetRectEmpty
OffsetRect
DrawIconEx
MonitorFromWindow
GetMonitorInfoW
InsertMenuW
AdjustWindowRectEx
EnableWindow
IsWindowVisible
UpdateWindow
DestroyIcon
DrawTextW
RegisterDeviceNotificationW
RegisterWindowMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CreateAcceleratorTableW
RegisterClassExW
LoadCursorW
GetClassInfoExW
IsWindow
GetFocus
GetWindow
SetFocus
DestroyAcceleratorTable
GetDesktopWindow
BeginPaint
EndPaint
CallWindowProcW
FillRect
MapVirtualKeyExW
GetKeyNameTextW
IsCharLowerW
GetDoubleClickTime
CharUpperBuffW
ReleaseCapture
GetClassNameW
GetDlgItem
GetParent
IsChild
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
ClientToScreen
GetClientRect
SetWindowPos
MoveWindow
GetSysColor
SendMessageW
GetWindowLongW
GetWindowRect
GetActiveWindow
DialogBoxParamW
UnregisterClassW
CheckMenuItem
EnableMenuItem
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ShowOwnedPopups
GetMenuItemInfoW
RealChildWindowFromPoint
TabbedTextOutW
DrawTextExW
GrayStringW
GetWindowDC
CopyImage
GetSysColorBrush
EnumDisplayMonitors
DeleteMenu
WindowFromPoint
RegisterClassW
CreateWindowExW
PostMessageW
wsprintfW
DefWindowProcW
CreateDialogParamW
DestroyWindow
CharNextW
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
ShowWindow
SetWindowLongW
AppendMenuW
GetMenuState
CheckDlgButton
MapWindowPoints
CharUpperW
CopyIcon
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
GetUpdateRect
IsClipboardFormatAvailable
SetMenuDefaultItem
PostThreadMessageW
CreateMenu
IsMenu
UpdateLayeredWindow
UnionRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
CreateDialogIndirectParamW
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
BringWindowToTop
WaitMessage
FindWindowA
UnregisterClassA
TranslateAcceleratorW
GetNextDlgGroupItem
GetIconInfo
GetNextDlgTabItem
DrawIcon
MapDialogRect
GetMenu
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
LockWindowUpdate
SetCursorPos
SetRect
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
CopyAcceleratorTableW
DrawEdge
DrawStateW
MessageBeep
GetSystemMenu
SetClassLongW
NotifyWinEvent
CreatePopupMenu
SetParent
PtInRect
IsZoomed

gdi32

SetMapMode
ExcludeClipRect
IntersectClipRect
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
Escape
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
SelectPalette
GetObjectType
CreateHatchBrush
CreateRectRgnIndirect
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
SetRectRgn
PatBlt
DPtoLP
CreateRoundRectRgn
GetBkColor
GetTextColor
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
GetRgnBox
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
GetTextFaceW
SetPixelV
SetROP2
SetPolyFillMode
CreateBitmap
CreateDCW
CopyMetaFileW
PtInRegion
LineTo
MoveToEx
SetWindowOrgEx
OffsetWindowOrgEx
CreatePen
SetViewportOrgEx
GetClipBox
RestoreDC
SaveDC
CombineRgn
CreatePolygonRgn
CreateRectRgn
SetBkColor
ExtTextOutW
GetTextExtentPoint32W
CreateFontIndirectW
SetTextColor
SetBkMode
GetStockObject
GetObjectW
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
CreateDIBitmap
DeleteDC
CreateDIBSection

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegOpenKeyExW
RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueExW
IsTextUnicode
RegEnumValueA
RegOpenKeyExA
RegOpenKeyW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegCreateKeyExW

shell32

SHGetFolderPathW
SHBrowseForFolderW
SHAppBarMessage
DragQueryFileW
DragFinish
SHGetDesktopFolder
SHGetFileInfoW
CommandLineToArgvW
SHGetSpecialFolderPathA
Shell_NotifyIconW
ShellExecuteW
ShellExecuteExW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteA
SHGetFolderPathA

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Draw
ImageList_Destroy

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
wnsprintfW
PathRemoveFileSpecW

ole32

CoLockObjectExternal
OleGetClipboard
CreateStreamOnHGlobal
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoCreateGuid
IIDFromString
CoCreateInstance
RegisterDragDrop
DoDragDrop
RevokeDragDrop
OleDuplicateData
ReleaseStgMedium
CoTaskMemRealloc
CoTaskMemFree
CoUninitialize
CoInitialize
CoInitializeEx
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
StringFromGUID2
CoLoadLibrary
CoTaskMemAlloc

oleaut32

VariantInit
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VariantChangeType
VariantClear
SysAllocStringLen
VarBstrCmp
SysStringByteLen
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
SysAllocStringByteLen
VarUI4FromStr
SysStringLen
SysFreeString
SysAllocString

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

gdiplus

GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipGetImagePixelFormat
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdipGetImagePalette
GdipLoadImageFromStream
GdipCloneImage
GdipDrawImageRectRectI
GdipDrawImageRectI
GdipCreateFromHDC
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipFree
GdipLoadImageFromFile
GdipDeleteGraphics
GdipAlloc
GdiplusShutdown
GdipGetImagePaletteSize

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

adbwinapi

AdbGetUsbInterfaceDescriptor
AdbEnumInterfaces
AdbNextInterface
AdbGetSerialNumber
AdbReadEndpointSync
AdbWriteEndpointSync
AdbCreateInterfaceByName
AdbOpenDefaultBulkReadEndpoint
AdbOpenDefaultBulkWriteEndpoint
AdbGetInterfaceName
AdbGetUsbDeviceDescriptor
AdbCloseHandle
AdbGetEndpointInformation

Exports

Exports

jceDll_SendTBodyDownloadAppInfoPCReq
jceDll_SendTBodyGameListPCReq
jceDll_SendTBodyHallInfo2PCReq
jceDll_SendTBodyHallRunInfoPCReq
jceDll_SendTBodyInstallFinPCReq
jceDll_SendTBodyInstalledAppPCReq
jceDll_SendTBodyKeepAlivePCReq
jceDll_SendTBodyReportUninstallPCReq
jceDll_SendTBodyStartPCReq
jceDll_decodeMsg

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 525KB - Virtual size: 525KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 245KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3cf78d0251fdb5fe1cf068c5066a15b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

71:70:bd:93:cf:3f:18:9a:e6:45:2b:51:4c:49:34:0eCertificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

0f:c2:a7:54:7c:6a:b1:b9:f6:2e:3b:68:ef:12:d1:6f:15:6c:48:81Signer

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

version

setupapi

msimg32

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oleacc

gdiplus

imm32

winmm

adbwinapi

Exports

Exports

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 525KB - Virtual size: 525KB

.data Size: 60KB - Virtual size: 178KB

.rsrc Size: 184KB - Virtual size: 184KB

.reloc Size: 245KB - Virtual size: 244KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

71:70:bd:93:cf:3f:18:9a:e6:45:2b:51:4c:49:34:0e
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

0f:c2:a7:54:7c:6a:b1:b9:f6:2e:3b:68:ef:12:d1:6f:15:6c:48:81
Signer

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 525KB - Virtual size: 525KB

.data
Size: 60KB - Virtual size: 178KB

.rsrc
Size: 184KB - Virtual size: 184KB

.reloc
Size: 245KB - Virtual size: 244KB