49ffb2385de7546a3d0a1133e5b838b45d2bcf83b19571c700a005425c044b69

Sharing

Copy URL Twitter E-mail

General

Target

49ffb2385de7546a3d0a1133e5b838b45d2bcf83b19571c700a005425c044b69
Size

2.9MB
MD5

52614541cd26fb437fd77a215d90e777
SHA1

8633aab23ccbcbbbe146e01cbc6ff4bb2f87bea4
SHA256

49ffb2385de7546a3d0a1133e5b838b45d2bcf83b19571c700a005425c044b69
SHA512

b903ba2f47e1e5e006cf4a422a15c69a1d95ca0269d911e17153a275b6130154b5d89045644970a3a7b1b5711eeacfca36de42050fe74722e12b27e5ba289ea6
SSDEEP

49152:jrFbHuWwMAyEwPJnxdE0xWyaypIaxAADJ5fQT8dd0RyB6eeE5buRS++nUmnCPN:n5HuWwMvEwRlDQT8nhN7cS+ynCl

Score

1^/10

Malware Config

Signatures

Files

49ffb2385de7546a3d0a1133e5b838b45d2bcf83b19571c700a005425c044b69
.exe windows:6 windows x86 arch:x86

3ba08dfe7fbdf323e5aed807b1c8a8f5

Code Sign

47:c3:0f:fe:fc:22:bb:28:0f:96:fe:a7:52:51
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

16/03/2016, 00:00

Not After

16/03/2024, 00:00

Subject

CN=GlobalSign CodeSigning CA - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

5f:f6:58:f6:18:06:8a:e5:00:27:29:4e
Certificate

Issuer

CN=GlobalSign CodeSigning CA - G3,O=GlobalSign nv-sa,C=BE

Not Before

22/10/2019, 04:09

Not After

18/01/2023, 09:08

Subject

CN=湖北盛天网络技术股份有限公司,OU=IT Dept,O=湖北盛天网络技术股份有限公司,L=Wuhan,ST=Hubei,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6a
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

19/09/2018, 00:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

fe:8c:6b:fd:94:0b:ca:31:e5:5a:2b
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

18/10/2019, 09:14

Not After

25/12/2022, 09:15

Subject

SERIALNUMBER=91420100695349435J,CN=湖北盛天网络技术股份有限公司,OU=IT Dept.,O=湖北盛天网络技术股份有限公司,STREET=东湖新技术开发区光谷大道77号金融港B7栋9-11楼,L=WUHAN,ST=HUBEI,C=CN,1.3.6.1.4.1.311.60.2.1.1=#1305575548414e,1.3.6.1.4.1.311.60.2.1.2=#13054855424549,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c4:85:f8:f4:44:7d:fc:02:8e:e8:74:5d:11:ab:62:1a:0b:2c:be:2a:b6:29:48:e7:f4:7e:6e:03:93:4d:ca:e2
Signer

Actual PE Digest

c4:85:f8:f4:44:7d:fc:02:8e:e8:74:5d:11:ab:62:1a:0b:2c:be:2a:b6:29:48:e7:f4:7e:6e:03:93:4d:ca:e2

Digest Algorithm

sha256

PE Digest Matches

true

e3:67:ea:21:74:92:07:5b:82:04:f1:ad:ee:bf:8d:ae:68:da:08:a1
Signer

Actual PE Digest

e3:67:ea:21:74:92:07:5b:82:04:f1:ad:ee:bf:8d:ae:68:da:08:a1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\project_rocket\stnetspeeder_new\pdb\Release\STNetSpeeder.pdb

Imports

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

iphlpapi

GetAdaptersInfo
IcmpSendEcho
IcmpCreateFile

ws2_32

inet_pton
htons
WSASendTo
WSARecvFrom
bind
WSAIoctl
WSASend
shutdown
listen
ntohs
WSASocketA
WSARecv
setsockopt
WSAGetLastError
WSAStringToAddressA
WSACleanup
closesocket
gethostbyname
WSAStartup
inet_addr
getsockname
connect
socket

dnsapi

DnsFree
DnsQuery_W

kernel32

WriteFile
SetFilePointer
CreateFileW
UnmapViewOfFile
CreateFileA
FreeLibrary
CreateDirectoryA
MapViewOfFile
GetModuleFileNameA
WritePrivateProfileStringW
GetPrivateProfileStringW
WritePrivateProfileStringA
GetPrivateProfileStringA
GetCurrentProcess
TerminateProcess
InitializeCriticalSection
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
SetUnhandledExceptionFilter
SetLastError
Sleep
GetComputerNameA
CreateFileMappingW
DeleteFileW
CreateDirectoryW
SetErrorMode
GetLocalTime
GetErrorMode
GetSystemTimeAsFileTime
FreeResource
GetCurrentDirectoryW
GetACP
MulDiv
CreateWaitableTimerW
SetWaitableTimer
GetVersionExW
DuplicateHandle
SystemTimeToFileTime
GetFileType
DosDateTimeToFileTime
AreFileApisANSI
ReleaseSemaphore
CreateSemaphoreW
DeleteFileA
GetFileSize
GlobalFree
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CreateIoCompletionPort
GetTempPathW
CreateEventA
SetEndOfFile
GetSystemInfo
GetModuleHandleA
LoadLibraryA
GetSystemDirectoryA
GetTempPathA
GetVersionExA
OutputDebugStringW
CancelIo
GetOverlappedResult
Process32First
Process32Next
GetLongPathNameA
HeapCreate
VirtualProtect
Thread32Next
Thread32First
SuspendThread
ResumeThread
GetThreadContext
FlushInstructionCache
SetThreadContext
OpenThread
VirtualFree
VirtualAlloc
VirtualQuery
GetModuleHandleExW
ExitThread
RtlUnwind
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
LoadLibraryExW
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
ReadFile
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
CreateThread
SwitchToThread
SignalObjectAndWait
CreateTimerQueue
InitializeSListHead
GetStartupInfoW
IsProcessorFeaturePresent
UnhandledExceptionFilter
GetLocaleInfoW
LCMapStringW
CompareStringW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
QueryPerformanceCounter
GetCPInfo
EncodePointer
GetExitCodeThread
WaitForSingleObjectEx
TryEnterCriticalSection
GetStringTypeW
IsDebuggerPresent
GetProcessTimes
lstrcmpiW
WideCharToMultiByte
GetModuleHandleW
LoadLibraryW
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
ResetEvent
OutputDebugStringA
SetEvent
CreateEventW
WaitForMultipleObjects
FindResourceW
LoadResource
FindResourceExW
LockResource
MultiByteToWideChar
GetModuleFileNameW
SizeofResource
LocalFree
GetCommandLineW
lstrcmpW
GetTickCount
CreateProcessW
CloseHandle
Process32FirstW
Process32NextW
CreateToolhelp32Snapshot
GetLogicalDriveStringsW
OpenProcess
K32GetProcessImageFileNameW
WaitForSingleObject
QueryDosDeviceW
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
HeapFree
FindClose
FindFirstFileExW
FindNextFileW
SystemTimeToTzSpecificLocalTime
ExitProcess
GetStdHandle
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetTimeZoneInformation
GetFileAttributesExW
FlushFileBuffers
GetProcAddress
GetConsoleCP
GetConsoleMode
SetFilePointerEx
SetStdHandle
ReadConsoleW
FileTimeToLocalFileTime
IsValidCodePage
GetOEMCP
SetThreadAffinityMask
FileTimeToSystemTime
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
DeviceIoControl

user32

GetPropW
SetPropW
CallWindowProcW
RegisterClassExW
GetClassInfoExW
LoadCursorW
LoadImageW
GetMessageW
EnableWindow
GetDesktopWindow
DefWindowProcW
ReleaseCapture
SetCapture
GetFocus
DispatchMessageW
TranslateMessage
PeekMessageW
MsgWaitForMultipleObjects
ReleaseDC
CreateCaret
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
MessageBoxA
EnumThreadWindows
EnumChildWindows
GetGUIThreadInfo
MoveWindow
GetWindowRgn
FillRect
SetRect
CharPrevW
EndPaint
BeginPaint
SetFocus
GetWindow
GetKeyState
KillTimer
EqualRect
SetWindowTextW
GetWindowTextLengthW
InvalidateRgn
EnumDisplayDevicesW
EnumDisplaySettingsW
GetCaretBlinkTime
OffsetRect
IntersectRect
wvsprintfW
SetCursor
CharNextW
GetSysColor
SetTimer
PostMessageW
GetCursorPos
ScreenToClient
IsIconic
ShowWindow
SendMessageW
PtInRect
InflateRect
CreateWindowExW
MapWindowPoints
GetDC
IsRectEmpty
GetUpdateRect
UpdateLayeredWindow
DrawTextW
MonitorFromPoint
LoadStringA
IsWindowVisible
InvalidateRect
SetForegroundWindow
PostQuitMessage
AppendMenuW
DestroyMenu
ClientToScreen
TrackPopupMenu
CreatePopupMenu
GetWindowRect
wsprintfW
IsWindow
LoadIconW
GetForegroundWindow
AttachThreadInput
SetWindowPos
GetWindowThreadProcessId
GetWindowLongW
GetWindowTextW
SystemParametersInfoW
GetClassNameW
EnumWindows
RegisterClassW
GetMonitorInfoW
LoadStringW
GetSystemMetrics
MonitorFromWindow
GetParent
GetClientRect
IsZoomed
SetWindowRgn
IsWindowEnabled
SetWindowLongW
MessageBoxW
DestroyWindow

gdi32

GetClipBox
SetWorldTransform
CreateRectRgnIndirect
SetGraphicsMode
ExtSelectClipRgn
StretchBlt
SetStretchBltMode
CreatePenIndirect
MoveToEx
LineTo
TextOutW
GetTextExtentPoint32W
GetCharABCWidthsW
SetBkColor
SetTextColor
SetBkMode
GetObjectA
SetPixel
PtInRegion
CombineRgn
GetPixel
DeleteObject
CreateRoundRectRgn
CreateSolidBrush
CreateRectRgn
CreatePen
SelectObject
GetStockObject
Rectangle
SaveDC
BitBlt
SetWindowOrgEx
RestoreDC
GetTextMetricsW
GetObjectW
GetDeviceCaps
GetCurrentObject
DeleteDC
CreateCompatibleDC
SelectClipRgn
CreateFontIndirectW
CreateDIBSection

advapi32

RegQueryValueExA
RegSetValueExA
QueryServiceStatus
OpenServiceA
StartServiceA
CloseServiceHandle
CreateServiceA
OpenSCManagerA
LookupPrivilegeValueA
RegCreateKeyW
RegOpenKeyExA
RegCreateKeyExW
RegSetValueExW
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
OpenThreadToken
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW
SHCreateDirectoryExA
SHGetSpecialFolderPathW
ShellExecuteA
SHGetSpecialFolderPathA
SHCreateDirectoryExW
Shell_NotifyIconW
CommandLineToArgvW
DragAcceptFiles
DragQueryFileW
ShellExecuteExW

ole32

CLSIDFromString
OleLockRunning
OleInitialize
CoInitialize
OleUninitialize
CoInitializeEx
CoTaskMemFree
CoCreateInstance
CoUninitialize
CLSIDFromProgID

oleaut32

VariantInit
VariantChangeType
SysFreeString
SysAllocString
VariantClear
VariantCopy

shlwapi

ord12
PathFindFileNameW
PathFindFileNameA
PathRemoveFileSpecA
PathRemoveFileSpecW
PathFileExistsA
PathFileExistsW
PathAppendW

winmm

timeSetEvent
timeBeginPeriod
timeGetDevCaps
timeEndPeriod
timeGetTime
timeKillEvent

comctl32

ord17
_TrackMouseEvent

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

psapi

GetModuleFileNameExA

winhttp

WinHttpReceiveResponse
WinHttpAddRequestHeaders
WinHttpQueryHeaders
WinHttpReadData
WinHttpOpenRequest
WinHttpWriteData
WinHttpSendRequest
WinHttpQueryDataAvailable
WinHttpSetOption
WinHttpCloseHandle
WinHttpOpen
WinHttpSetTimeouts
WinHttpConnect
WinHttpGetIEProxyConfigForCurrentUser
WinHttpGetProxyForUrl
WinHttpCrackUrl

d3d9

Direct3DCreate9

gdiplus

GdipDrawLineI
GdipDrawRectangle
GdipDrawPath
GdipLoadImageFromFile
GdipDrawImageI
GdipSetClipRectI
GdiplusStartup
GdiplusShutdown
GdipCreateFontFamilyFromName
GdipDeleteBrush
GdipCreateRegionHrgn
GdipSetPenDashStyle
GdipCreateFont
GdipCreateSolidFill
GdipGetGenericFontFamilySansSerif
GdipFree
GdipDrawString
GdipCreateFromHDC
GdipFillRegion
GdipSetTextRenderingHint
GdipCloneBrush
GdipMeasureString
GdipDeleteRegion
GdipDeleteGraphics
GdipDeleteFont
GdipCreatePen1
GdipDeletePen
GdipCreateLineBrushI
GdipFillRectangleI
GdipAddPathLine
GdipStartPathFigure
GdipSetLineGammaCorrection
GdipCreateLineBrush
GdipSetPixelOffsetMode
GdipGetFamily
GdipFillPath
GdipDeletePath
GdipCreatePath
GdipGraphicsClear
GdipDrawImageRectI
GdipSetInterpolationMode
GdipClosePathFigure
GdipAddPathArc
GdipImageSelectActiveFrame
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipReleaseDC
GdipGetDC
GdipSetSmoothingMode
GdipSetStringFormatFlags
GdipSetStringFormatTrimming
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipCreateHBITMAPFromBitmap
GdipGetImageHeight
GdipGetImageWidth
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipDisposeImage
GdipLoadImageFromStream
GdipAlloc
GdipCloneImage
GdipDeleteFontFamily

normaliz

IdnToAscii

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 573KB - Virtual size: 601KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 468KB - Virtual size: 467KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ba08dfe7fbdf323e5aed807b1c8a8f5

Code Sign

47:c3:0f:fe:fc:22:bb:28:0f:96:fe:a7:52:51Certificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

5f:f6:58:f6:18:06:8a:e5:00:27:29:4eCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6aCertificate

Key Usages

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0fCertificate

Extended Key Usages

Key Usages

fe:8c:6b:fd:94:0b:ca:31:e5:5a:2bCertificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

c4:85:f8:f4:44:7d:fc:02:8e:e8:74:5d:11:ab:62:1a:0b:2c:be:2a:b6:29:48:e7:f4:7e:6e:03:93:4d:ca:e2Signer

e3:67:ea:21:74:92:07:5b:82:04:f1:ad:ee:bf:8d:ae:68:da:08:a1Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

iphlpapi

ws2_32

dnsapi

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

winmm

comctl32

imm32

psapi

winhttp

d3d9

gdiplus

normaliz

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 298KB - Virtual size: 298KB

.data Size: 573KB - Virtual size: 601KB

.gfids Size: 4KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 468KB - Virtual size: 467KB

.reloc Size: 90KB - Virtual size: 89KB

47:c3:0f:fe:fc:22:bb:28:0f:96:fe:a7:52:51
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

5f:f6:58:f6:18:06:8a:e5:00:27:29:4e
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6a
Certificate

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

fe:8c:6b:fd:94:0b:ca:31:e5:5a:2b
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

c4:85:f8:f4:44:7d:fc:02:8e:e8:74:5d:11:ab:62:1a:0b:2c:be:2a:b6:29:48:e7:f4:7e:6e:03:93:4d:ca:e2
Signer

e3:67:ea:21:74:92:07:5b:82:04:f1:ad:ee:bf:8d:ae:68:da:08:a1
Signer

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 298KB - Virtual size: 298KB

.data
Size: 573KB - Virtual size: 601KB

.gfids
Size: 4KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 468KB - Virtual size: 467KB

.reloc
Size: 90KB - Virtual size: 89KB