547f21a1a06578c7896e7352f9cbcdc0_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

547f21a1a06578c7896e7352f9cbcdc0_NeikiAnalytics
Size

5.9MB
MD5

547f21a1a06578c7896e7352f9cbcdc0
SHA1

40f8741569b3cd3f6a1683bca195b2ce924dd44d
SHA256

47194450455510cf8e7c2716c59ed153a6e414deb3b1ad656f0fea3c824a0cf1
SHA512

d470c20e9a770d7fcce31481c088cdca4b594794a99fd31de4dd3a91db9c4fcd77bb1cad5897fbd8acbbcac65e32ebef337bb426b5599dc03aac2569b31a0299
SSDEEP

98304:4z7s2aFrU+hkmwmXkpq6Xqysc0SK5Wy2JPIcYUCotLiFpbV8ohxB2r:41m0pqaqysc0SK5SJPIcYUCotgpp8ohm

Score

1^/10

Malware Config

Signatures

Files

547f21a1a06578c7896e7352f9cbcdc0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

a13109a485223bb7dee487f185b6863f

Code Sign

9e:07:1a:1f:63:f0:f8:9c:24:08:a7:f3:56:07:b0:a1
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

15/08/2018, 00:00

Not After

14/08/2021, 23:59

Subject

CN=COMUNIDADE FF GAMES ONLINE LTDA,OU=COMUNIDADE OTP,O=COMUNIDADE FF GAMES ONLINE LTDA,POSTALCODE=36520-000,STREET=RESIDENCIAL CENTENARIO+STREET=R DR. LUCAS LACERDA 76 A,L=VISCONDE DO RIO BRANCO,ST=MG,C=BR,2.5.4.18=#130933363532302d303030

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

9e:07:1a:1f:63:f0:f8:9c:24:08:a7:f3:56:07:b0:a1
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

15/08/2018, 00:00

Not After

14/08/2021, 23:59

Subject

CN=COMUNIDADE FF GAMES ONLINE LTDA,OU=COMUNIDADE OTP,O=COMUNIDADE FF GAMES ONLINE LTDA,POSTALCODE=36520-000,STREET=RESIDENCIAL CENTENARIO+STREET=R DR. LUCAS LACERDA 76 A,L=VISCONDE DO RIO BRANCO,ST=MG,C=BR,2.5.4.18=#130933363532302d303030

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:37:f9:09:0f:2a:77:e5:9a:8b:ad:eb:a7:95:81:32:57:7f:66:13:c1:72:79:5d:27:99:83:e1:9d:18:c4:13
Signer

Actual PE Digest

6a:37:f9:09:0f:2a:77:e5:9a:8b:ad:eb:a7:95:81:32:57:7f:66:13:c1:72:79:5d:27:99:83:e1:9d:18:c4:13

Digest Algorithm

sha256

PE Digest Matches

true

13:a3:a8:ad:2f:47:12:e7:a1:5c:14:65:72:86:b8:6b:b0:8e:34:b9
Signer

Actual PE Digest

13:a3:a8:ad:2f:47:12:e7:a1:5c:14:65:72:86:b8:6b:b0:8e:34:b9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

DeregisterEventSource
GetUserNameA
OpenProcessToken
RegOpenKeyExA
RegQueryValueExA
RegisterEventSourceA
ReportEventA

discord-rpc

Discord_Initialize
Discord_Shutdown
Discord_UpdatePresence

libegl

eglChooseConfig
eglCreateContext
eglCreateWindowSurface
eglDestroyContext
eglDestroySurface
eglGetConfigs
eglGetDisplay
eglGetError
eglInitialize
eglMakeCurrent
eglSwapBuffers
eglSwapInterval
eglTerminate

gdi32

BitBlt
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
DeleteDC
DeleteObject
GetBitmapBits
GetDeviceCaps
GetObjectA
GetStockObject
SelectObject

libglesv2

glActiveTexture
glAttachShader
glBindAttribLocation
glBindBuffer
glBindFramebuffer
glBindTexture
glBlendEquation
glBlendFunc
glBlendFuncSeparate
glBufferData
glCheckFramebufferStatus
glClear
glClearColor
glColorMask
glCompileShader
glCopyTexSubImage2D
glCreateProgram
glCreateShader
glDeleteBuffers
glDeleteFramebuffers
glDeleteProgram
glDeleteShader
glDeleteTextures
glDetachShader
glDisable
glDisableVertexAttribArray
glDrawArrays
glEnable
glEnableVertexAttribArray
glFramebufferTexture2D
glGenBuffers
glGenFramebuffers
glGenTextures
glGenerateMipmap
glGetAttribLocation
glGetIntegerv
glGetProgramiv
glGetShaderInfoLog
glGetShaderiv
glGetString
glGetUniformLocation
glLinkProgram
glScissor
glShaderSource
glTexImage2D
glTexParameteri
glUniform1f
glUniform1i
glUniform2f
glUniform4f
glUniformMatrix3fv
glUseProgram
glVertexAttribPointer
glViewport

imagehlp

StackWalk
SymCleanup
SymFunctionTableAccess
SymGetModuleBase
SymGetSymFromAddr
SymInitialize

kernel32

AreFileApisANSI
CloseHandle
CopyFileW
CreateDirectoryA
CreateDirectoryExW
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileW
CreateIoCompletionPort
CreateMutexA
CreateSemaphoreA
CreateThread
CreateToolhelp32Snapshot
CreateWaitableTimerA
DebugBreak
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeviceIoControl
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FlushFileBuffers
FormatMessageA
FreeLibrary
GetCommandLineA
GetCommandLineW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceExW
GetDriveTypeA
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProcessId
GetQueuedCompletionStatus
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetTickCount
GetTimeZoneInformation
GetVersion
GetVersionExA
GetVolumeInformationA
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatus
GlobalMemoryStatusEx
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
IsBadWritePtr
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryA
LocalFree
MoveFileExW
MultiByteToWideChar
OpenEventA
OpenProcess
PostQueuedCompletionStatus
Process32First
Process32Next
QueryPerformanceCounter
QueryPerformanceFrequency
QueueUserAPC
ReadFile
ReleaseMutex
ReleaseSemaphore
RemoveDirectoryA
RemoveDirectoryW
ResetEvent
ResumeThread
SetCurrentDirectoryW
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFilePointerEx
SetFileTime
SetLastError
SetThreadPriority
SetUnhandledExceptionFilter
SetWaitableTimer
Sleep
SleepEx
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VerifyVersionInfoA
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile

msvcrt

_fdopen
_lseek
_read
_strdup
_stricoll
_write
__getmainargs
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_assert
_beginthreadex
_cexit
_controlfp
_errno
_exit
_filbuf
_findclose
_findfirst
_findnext
_flsbuf
_fstat64
_fullpath
_getch
_gmtime64
_iob
_isctype
_localtime64
_onexit
_pclose
_pctype
_popen
_setmode
_snprintf
_stricmp
_strnicmp
_time64
_vsnprintf
_wfopen
abort
acos
asin
atan
atan2
atexit
atof
atoi
atol
bsearch
calloc
ceil
clearerr
clock
cos
cosh
difftime
exit
exp
fclose
fflush
fgetc
fgets
floor
fmod
fopen
fprintf
fputc
fputs
fread
free
freopen
frexp
fscanf
fseek
ftell
fwrite
getenv
getwc
gmtime
isspace
iswctype
ldexp
localeconv
localtime
log
log10
malloc
mbstowcs
memchr
memcmp
memcpy
memmove
memset
mktime
modf
putwc
qsort
raise
rand
realloc
remove
rename
setlocale
setvbuf
signal
sin
sinh
sprintf
sqrt
srand
sscanf
strcat
strchr
strcmp
strcoll
strcpy
strcspn
strerror
strftime
strlen
strncat
strncmp
strncpy
strpbrk
strrchr
strstr
strtod
strtol
strtoul
strxfrm
system
tan
tanh
time
tmpfile
tmpnam
tolower
toupper
towlower
towupper
ungetc
ungetwc
vfprintf
vsprintf
wcscoll
wcsftime
wcslen
wcsstr
wcstombs
wcsxfrm

mswsock

AcceptEx
GetAcceptExSockaddrs

ole32

CoInitialize
CoTaskMemFree
CoUninitialize
StringFromCLSID

shell32

CommandLineToArgvW
SHGetSpecialFolderPathA
ShellExecuteW

user32

AdjustWindowRectEx
CloseClipboard
CreateCursor
CreateIconIndirect
CreateWindowExA
DefWindowProcA
DestroyCursor
DestroyWindow
DispatchMessageA
EmptyClipboard
EnumWindows
FindWindowA
GetClientRect
GetClipboardData
GetDC
GetDesktopWindow
GetForegroundWindow
GetKeyState
GetMessageA
GetProcessWindowStation
GetSystemMetrics
GetUserObjectInformationW
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextA
LoadCursorA
LoadIconA
MessageBoxA
MessageBoxW
MoveWindow
OpenClipboard
PeekMessageA
PostThreadMessageA
RegisterClassA
ReleaseCapture
ReleaseDC
SendMessageA
SetCapture
SetClipboardData
SetCursor
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowTextW
ShowCursor
ShowWindow
TranslateMessage
UnregisterClassA

winmm

timeGetTime
waveInAddBuffer
waveInClose
waveInGetDevCapsA
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsA
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite

ws2_32

WSAAddressToStringA
WSACleanup
WSAGetLastError
WSARecv
WSASend
WSASetLastError
WSASocketA
WSAStartup
WSAStringToAddressA
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
getpeername
getsockname
getsockopt
htonl
htons
inet_addr
ioctlsocket
listen
ntohl
select
setsockopt
shutdown

Exports

Exports

alAuxiliaryEffectSlotf
alAuxiliaryEffectSlotfv
alAuxiliaryEffectSloti
alAuxiliaryEffectSlotiv
alBuffer3f
alBuffer3i
alBufferData
alBufferSamplesSOFT
alBufferSubDataSOFT
alBufferSubSamplesSOFT
alBufferf
alBufferfv
alBufferi
alBufferiv
alDeferUpdatesSOFT
alDeleteAuxiliaryEffectSlots
alDeleteBuffers
alDeleteEffects
alDeleteFilters
alDeleteSources
alDisable
alDistanceModel
alDopplerFactor
alDopplerVelocity
alEffectf
alEffectfv
alEffecti
alEffectiv
alEnable
alFilterf
alFilterfv
alFilteri
alFilteriv
alGenAuxiliaryEffectSlots
alGenBuffers
alGenEffects
alGenFilters
alGenSources
alGetAuxiliaryEffectSlotf
alGetAuxiliaryEffectSlotfv
alGetAuxiliaryEffectSloti
alGetAuxiliaryEffectSlotiv
alGetBoolean
alGetBooleanv
alGetBuffer3f
alGetBuffer3i
alGetBufferSamplesSOFT
alGetBufferf
alGetBufferfv
alGetBufferi
alGetBufferiv
alGetDouble
alGetDoublev
alGetEffectf
alGetEffectfv
alGetEffecti
alGetEffectiv
alGetEnumValue
alGetError
alGetFilterf
alGetFilterfv
alGetFilteri
alGetFilteriv
alGetFloat
alGetFloatv
alGetInteger
alGetIntegerv
alGetListener3f
alGetListener3i
alGetListenerf
alGetListenerfv
alGetListeneri
alGetListeneriv
alGetProcAddress
alGetSource3f
alGetSource3i
alGetSourcef
alGetSourcefv
alGetSourcei
alGetSourceiv
alGetString
alIsAuxiliaryEffectSlot
alIsBuffer
alIsBufferFormatSupportedSOFT
alIsEffect
alIsEnabled
alIsExtensionPresent
alIsFilter
alIsSource
alListener3f
alListener3i
alListenerf
alListenerfv
alListeneri
alListeneriv
alProcessUpdatesSOFT
alSource3f
alSource3i
alSourcePause
alSourcePausev
alSourcePlay
alSourcePlayv
alSourceQueueBuffers
alSourceRewind
alSourceRewindv
alSourceStop
alSourceStopv
alSourceUnqueueBuffers
alSourcef
alSourcefv
alSourcei
alSourceiv
alSpeedOfSound
alcCaptureCloseDevice
alcCaptureOpenDevice
alcCaptureSamples
alcCaptureStart
alcCaptureStop
alcCloseDevice
alcCreateContext
alcDestroyContext
alcGetContextsDevice
alcGetCurrentContext
alcGetEnumValue
alcGetError
alcGetIntegerv
alcGetProcAddress
alcGetString
alcGetThreadContext
alcIsExtensionPresent
alcIsRenderFormatSupportedSOFT
alcLoopbackOpenDeviceSOFT
alcMakeContextCurrent
alcOpenDevice
alcProcessContext
alcRenderSamplesSOFT
alcSetThreadContext
alcSuspendContext

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 737KB - Virtual size: 737KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 35KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a13109a485223bb7dee487f185b6863f

Code Sign

9e:07:1a:1f:63:f0:f8:9c:24:08:a7:f3:56:07:b0:a1Certificate

Extended Key Usages

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08Certificate

Extended Key Usages

Key Usages

9e:07:1a:1f:63:f0:f8:9c:24:08:a7:f3:56:07:b0:a1Certificate

Extended Key Usages

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08Certificate

Extended Key Usages

Key Usages

6a:37:f9:09:0f:2a:77:e5:9a:8b:ad:eb:a7:95:81:32:57:7f:66:13:c1:72:79:5d:27:99:83:e1:9d:18:c4:13Signer

13:a3:a8:ad:2f:47:12:e7:a1:5c:14:65:72:86:b8:6b:b0:8e:34:b9Signer

Headers

File Characteristics

Imports

advapi32

discord-rpc

libegl

gdi32

libglesv2

imagehlp

kernel32

msvcrt

mswsock

ole32

shell32

user32

winmm

ws2_32

Exports

Exports

Sections

.text Size: 3.8MB - Virtual size: 3.8MB

.data Size: 46KB - Virtual size: 45KB

.rdata Size: 737KB - Virtual size: 737KB

.eh_fram Size: 1.0MB - Virtual size: 1.0MB

.bss Size: - Virtual size: 35KB

.edata Size: 4KB - Virtual size: 3KB

.idata Size: 14KB - Virtual size: 13KB

.CRT Size: 512B - Virtual size: 28B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 206KB - Virtual size: 205KB

.reloc Size: 153KB - Virtual size: 153KB

9e:07:1a:1f:63:f0:f8:9c:24:08:a7:f3:56:07:b0:a1
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

9e:07:1a:1f:63:f0:f8:9c:24:08:a7:f3:56:07:b0:a1
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

6a:37:f9:09:0f:2a:77:e5:9a:8b:ad:eb:a7:95:81:32:57:7f:66:13:c1:72:79:5d:27:99:83:e1:9d:18:c4:13
Signer

13:a3:a8:ad:2f:47:12:e7:a1:5c:14:65:72:86:b8:6b:b0:8e:34:b9
Signer

.text
Size: 3.8MB - Virtual size: 3.8MB

.data
Size: 46KB - Virtual size: 45KB

.rdata
Size: 737KB - Virtual size: 737KB

.eh_fram
Size: 1.0MB - Virtual size: 1.0MB

.bss
Size: - Virtual size: 35KB

.edata
Size: 4KB - Virtual size: 3KB

.idata
Size: 14KB - Virtual size: 13KB

.CRT
Size: 512B - Virtual size: 28B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 206KB - Virtual size: 205KB

.reloc
Size: 153KB - Virtual size: 153KB