17c293ac580a78861d58755843c2cc69_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

17c293ac580a78861d58755843c2cc69_JaffaCakes118
Size

2.2MB
MD5

17c293ac580a78861d58755843c2cc69
SHA1

605759f6e48fb6d6bf0a54a1b0dc07099b3b1dd3
SHA256

0b195a4629e4ec5f16a70b61345119eba3fad71509ab61c98511b1472a9abb63
SHA512

92d03722d2f3e76acbb8cdde4e37b8971ff94a684d843d8ecdef280fcc1b710090b2cf7118de61853417cab2c4808b9c51fa4a226f60ed88fed77a2aaf95ae5a
SSDEEP

49152:j87PgTJ+r2wCHYzyo8MdQSNyj0zm6Cd+luecoEKCiejiufRpdb+3:pFwCHcyTcfNyoi6u+lue9EKCiCpRM

Score

1^/10

Malware Config

Signatures

Files

17c293ac580a78861d58755843c2cc69_JaffaCakes118
.dll windows:6 windows x86 arch:x86

36ccdcbf6a59966ed6955df2cb9dbd22

Code Sign

76:ba:94:23:dd:bc:e7:b1:45:a9:5f:01:ee:01:5f:17
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

28-10-2016 00:00

Not After

19-01-2020 23:59

Subject

CN=Avira Operations GmbH & Co. KG,O=Avira Operations GmbH & Co. KG,L=Tettnang,ST=Baden-Württemberg,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22-02-2011 19:25

Not After

22-02-2021 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2014 00:00

Not After

22-10-2024 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2021 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6a
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

19-09-2018 00:00

Not After

28-01-2028 12:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15-06-2016 00:00

Not After

15-06-2024 00:00

Subject

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:29:15:27:00:00:00:00:00:2a
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-04-2011 19:55

Not After

15-04-2021 20:05

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

23:55:89:5f:17:59:e9:e3:64:80:26:f4
Certificate

Issuer

CN=GlobalSign Extended Validation CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

11-07-2018 11:35

Not After

11-07-2021 11:35

Subject

SERIALNUMBER=HRA 722586,CN=Avira Operations GmbH & Co. KG,OU=Cloud\, Services and Infrastructure,O=Avira Operations GmbH & Co. KG,STREET=Kaplaneiweg 1,L=Tettnang,ST=Baden-Wuerttemberg,C=DE,1.2.840.113549.1.9.1=#0c0c63614061766972612e636f6d,1.3.6.1.4.1.311.60.2.1.1=#1303556c6d,1.3.6.1.4.1.311.60.2.1.2=#1312426164656e2d577565727474656d62657267,1.3.6.1.4.1.311.60.2.1.3=#13024445,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02-05-2019 00:00

Not After

01-08-2030 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02-05-2019 00:00

Not After

18-01-2038 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a2:a4:ca:b9:fb:11:49:af:76:39:60:65:db:87:bf:63:25:37:8f:78:d1:9e:17:7a:0d:0c:3f:b5:97:a4:9b:e9
Signer

Actual PE Digest

a2:a4:ca:b9:fb:11:49:af:76:39:60:65:db:87:bf:63:25:37:8f:78:d1:9e:17:7a:0d:0c:3f:b5:97:a4:9b:e9

Digest Algorithm

sha256

PE Digest Matches

true

cc:ba:f9:81:b9:62:a4:7e:56:70:75:a8:c3:e9:ac:80:bd:e6:95:50
Signer

Actual PE Digest

cc:ba:f9:81:b9:62:a4:7e:56:70:75:a8:c3:e9:ac:80:bd:e6:95:50

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\bamboo-build\WAVUI-WINAV-BARW\AV\BuildOutput\Bin\Release\cchips.dll.pdb

Imports

kernel32

SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetOEMCP
GetACP
IsValidCodePage
GetStringTypeW
GetCPInfo
OpenProcess
GetStdHandle
ExitProcess
GetFileType
SetStdHandle
GetModuleHandleExW
ExitThread
HeapQueryInformation
GetCommandLineW
GetCommandLineA
RtlUnwind
LoadLibraryExA
WriteConsoleW
InterlockedFlushSList
InterlockedPushEntrySList
VirtualAlloc
FreeLibraryAndExitThread
GetThreadTimes
CreateThread
SwitchToThread
QueryPerformanceFrequency
OutputDebugStringW
ExpandEnvironmentStringsA
GetComputerNameW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead
WaitForSingleObjectEx
ResetEvent
SearchPathW
GetProfileIntW
GetTickCount
GetTempFileNameW
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
GetTempPathW
SetFilePointer
SetErrorMode
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
ResumeThread
SetThreadPriority
CreateEventW
SetEvent
GlobalFlags
FileTimeToSystemTime
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
lstrcmpA
GetVersionExW
GetCurrentThread
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
FreeResource
GetCurrentThreadId
EncodePointer
OutputDebugStringA
CopyFileW
LocalFree
GlobalSize
GetModuleFileNameA
GetFileAttributesA
GetCurrentDirectoryA
CreateFileA
LoadLibraryA
VirtualQuery
VirtualProtect
GetSystemInfo
GetCurrentProcessId
SetLastError
MultiByteToWideChar
GetPrivateProfileIntW
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
MulDiv
WideCharToMultiByte
FormatMessageW
LoadLibraryW
GetProcAddress
GetModuleHandleW
FreeLibrary
GetWindowsDirectoryW
GetSystemDirectoryW
ReadFile
GetFileAttributesExW
FindNextFileW
FindFirstFileW
FindClose
GetCurrentDirectoryW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetModuleFileNameW
GetExitCodeProcess
Sleep
WaitForSingleObject
CloseHandle
WriteFile
GetFileAttributesW
CreateFileW
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteFileW
FindResourceW
SizeofResource
LockResource
LoadResource
FindResourceExW
DeleteCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
RaiseException
DecodePointer
LCMapStringW

user32

MapDialogRect
GetAsyncKeyState
TranslateMessage
GetMessageW
CopyImage
GetMenuItemInfoW
DestroyMenu
RealChildWindowFromPoint
SetRect
WindowFromPoint
GetCursorPos
KillTimer
SetTimer
EnumDisplayMonitors
GetSysColorBrush
GetSystemMetrics
SetLayeredWindowAttributes
GetWindowThreadProcessId
IntersectRect
PostQuitMessage
LoadMenuW
GetDesktopWindow
GetActiveWindow
EndDialog
CreateDialogIndirectParamW
ClientToScreen
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
MoveWindow
CreateMenu
GetComboBoxInfo
ShowOwnedPopups
DestroyCursor
UnregisterClassW
SendMessageW
PostMessageW
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
CopyRect
DeleteMenu
DrawEdge
DrawFrameControl
IsRectEmpty
DrawIconEx
ToUnicodeEx
GetKeyboardLayout
CharUpperW
GetKeyboardState
MapVirtualKeyW
LoadAcceleratorsW
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
IsZoomed
SetCapture
ReleaseCapture
GetSystemMenu
MessageBeep
NotifyWinEvent
SetCursorPos
SetParent
EnableWindow
GetWindowRect
OffsetRect
GetWindowInfo
GetForegroundWindow
IsWindow
UpdateWindow
InvalidateRect
RedrawWindow
GetClientRect
GetSysColor
FillRect
InflateRect
GetParent
TrackMouseEvent
GetFocus
GetDC
ReleaseDC
SetCursor
DrawFocusRect
EqualRect
GetWindowLongW
LoadCursorW
LoadIconW
SystemParametersInfoW
DrawStateW
LoadStringW
DestroyIcon
LoadImageW
GetIconInfo
GetNextDlgTabItem
GetWindow
RegisterWindowMessageW
SetWindowPos
IsWindowVisible
GetDlgCtrlID
SetWindowRgn
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
SendDlgItemMessageA
SetRectEmpty
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsMenu
IsChild
DestroyWindow
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsIconic
GetDlgItem
SetFocus
GetKeyState
GetCapture
GetMenu
SetMenu
TrackPopupMenu
SetActiveWindow
SetForegroundWindow
BeginPaint
EndPaint
ValidateRect
ScrollWindow
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
SetClassLongW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
GetNextDlgGroupItem
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
GetKeyNameTextW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
CopyIcon
FrameRect
DrawIcon
MonitorFromPoint
UnionRect
GetDoubleClickTime
SetMenuDefaultItem
ModifyMenuW
IsCharLowerW
MapVirtualKeyExW
RegisterClipboardFormatW
CharUpperBuffW
UpdateLayeredWindow
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
WaitMessage
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropW
GetPropW
RemovePropW
GetWindowTextW
GetWindowTextLengthW
AdjustWindowRectEx
MessageBoxW
ScreenToClient
MapWindowPoints
GetWindowRgn
PostThreadMessageW

gdi32

RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
PatBlt
SetRectRgn
DPtoLP
CreateDIBitmap
LineTo
GetTextCharsetInfo
GetTextMetricsW
GetBkColor
PtVisible
Ellipse
GetTextColor
Polygon
Polyline
CreateDIBSection
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
SetPixel
SetDIBColorTable
LPtoDP
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
ExtFloodFill
SetPaletteEntries
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
SetPixelV
GetTextFaceW
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteDC
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
SetTextColor
SetBkColor
CreateBitmap
CreateDCW
CopyMetaFileW
CreateRoundRectRgn
CreatePen
GetTextExtentPoint32W
Rectangle
RoundRect
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
SelectObject
GetLayout
CreateFontIndirectW
CreateRectRgnIndirect
DeleteObject
FillRgn
GetStockObject
StretchBlt
GetObjectW
CreatePolygonRgn
CreatePalette
CreateSolidBrush
EnumFontFamiliesW
CreatePatternBrush

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegQueryValueExA
RegOpenKeyExA
OpenProcessToken
CreateProcessAsUserW
GetSecurityDescriptorDacl
GetTokenInformation
LookupAccountSidW
GetUserNameW
SetEntriesInAclW
GetSecurityInfo
SetSecurityInfo
BuildExplicitAccessWithNameW
RegEnumKeyExW
RegEnumValueW
RegSetValueExW
RegDeleteValueW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
TraceMessage

shell32

ShellExecuteW
ShellExecuteExW
SHGetSpecialFolderPathW
DragQueryFileW
DragFinish
SHGetFileInfoW
SHGetPathFromIDListW
SHBrowseForFolderW
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation

shlwapi

PathFindExtensionW
PathFindFileNameW
PathIsRelativeA
PathStripToRootW
StrFormatKBSizeW
PathRemoveFileSpecW
PathIsUNCW
PathFileExistsW

uxtheme

IsAppThemed
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
DrawThemeText
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
DrawThemeBackground
CloseThemeData
OpenThemeData

ole32

RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CoInitialize
CoCreateInstance
CoDisconnectObject
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CreateStreamOnHGlobal
CoTaskMemFree
CoInitializeEx

oleaut32

VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
SysStringLen
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString

gdiplus

GdipGetImagePixelFormat
GdiplusShutdown
GdiplusStartup
GdipDrawImageRectRectI
GdipDeleteGraphics
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipDrawImageI
GdipCreateBitmapFromResource
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdipGetImagePaletteSize
GdipSetInterpolationMode
GdipGetImagePalette
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromHICON
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdipCreateFromHDC

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

comctl32

_TrackMouseEvent

Exports

Exports

execCCPluginCmdA
execCCPluginCmdW
getCCPlugin

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 352KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

36ccdcbf6a59966ed6955df2cb9dbd22

Code Sign

76:ba:94:23:dd:bc:e7:b1:45:a9:5f:01:ee:01:5f:17Certificate

Extended Key Usages

Key Usages

61:19:93:e4:00:00:00:00:00:1cCertificate

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66Certificate

Extended Key Usages

Key Usages

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1bCertificate

Extended Key Usages

Key Usages

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6aCertificate

Key Usages

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0fCertificate

Extended Key Usages

Key Usages

61:29:15:27:00:00:00:00:00:2aCertificate

Key Usages

23:55:89:5f:17:59:e9:e3:64:80:26:f4Certificate

Extended Key Usages

Key Usages

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

a2:a4:ca:b9:fb:11:49:af:76:39:60:65:db:87:bf:63:25:37:8f:78:d1:9e:17:7a:0d:0c:3f:b5:97:a4:9b:e9Signer

cc:ba:f9:81:b9:62:a4:7e:56:70:75:a8:c3:e9:ac:80:bd:e6:95:50Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

comctl32

Exports

Exports

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 352KB - Virtual size: 352KB

.data Size: 42KB - Virtual size: 61KB

.rsrc Size: 19KB - Virtual size: 18KB

.reloc Size: 154KB - Virtual size: 154KB

76:ba:94:23:dd:bc:e7:b1:45:a9:5f:01:ee:01:5f:17
Certificate

61:19:93:e4:00:00:00:00:00:1c
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

01:ee:5f:16:9d:ff:97:35:2b:64:65:d6:6a
Certificate

48:1b:6a:07:a9:42:4c:1e:aa:fe:f3:cd:f1:0f
Certificate

61:29:15:27:00:00:00:00:00:2a
Certificate

23:55:89:5f:17:59:e9:e3:64:80:26:f4
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

a2:a4:ca:b9:fb:11:49:af:76:39:60:65:db:87:bf:63:25:37:8f:78:d1:9e:17:7a:0d:0c:3f:b5:97:a4:9b:e9
Signer

cc:ba:f9:81:b9:62:a4:7e:56:70:75:a8:c3:e9:ac:80:bd:e6:95:50
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 352KB - Virtual size: 352KB

.data
Size: 42KB - Virtual size: 61KB

.rsrc
Size: 19KB - Virtual size: 18KB

.reloc
Size: 154KB - Virtual size: 154KB