局域网共享精灵[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

局域网共享精灵.exe
Size

4.4MB
MD5

64fa8cf7e6105daedf0a1472d7819ba8
SHA1

25178a573845fc47c47fcd80f60d5237e9d053fb
SHA256

ed277bbdf5f93421300ecb9523993bb61d982b7b329514e7f5b2e670d036635d
SHA512

16ee88b1c1c2bd5860071a172f66ace4bb48ecaf413e273ca88970a476afaf515411a3181b5135a38dcacd4676aeda0e9e7723ecc98272177b6b8b6288301089
SSDEEP

49152:FZscrupwZT3r/EAliZv/hBnJu5E/fwFpF2e2uWzbvu07ovXvhDTzA2cKHqCAbjvY:FZipwZT3rsKizZJwE/u2e2u2rIFWw

Score

1^/10

Malware Config

Signatures

Files

局域网共享精灵.exe
.exe windows:5 windows x86 arch:x86

ca1c58b853994ee84dfcd90a2cb00369

Code Sign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

77:e9:2d:62:fe:eb:0d:78:fe:8e:13:a7
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

26/01/2024, 03:19

Not After

26/01/2025, 03:19

Subject

SERIALNUMBER=91440300MA5HFMKN9N,CN=Shenzhen Guling Jingguai Computer Systems Co.\, Ltd.,O=Shenzhen Guling Jingguai Computer Systems Co.\, Ltd.,L=Shenzhen,ST=Guangdong,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085368656e7a68656e,1.3.6.1.4.1.311.60.2.1.2=#13094775616e67646f6e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:e9:2d:62:fe:eb:0d:78:fe:8e:13:a7
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

26/01/2024, 03:19

Not After

26/01/2025, 03:19

Subject

SERIALNUMBER=91440300MA5HFMKN9N,CN=Shenzhen Guling Jingguai Computer Systems Co.\, Ltd.,O=Shenzhen Guling Jingguai Computer Systems Co.\, Ltd.,L=Shenzhen,ST=Guangdong,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13085368656e7a68656e,1.3.6.1.4.1.311.60.2.1.2=#13094775616e67646f6e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:38:0d:34:c4:fe:91:63:4c:e3:8b:75:c8:91:a7:e4:2b:c6:4e:b1:16:f6:7a:db:12:27:83:89:fa:26:ff:da
Signer

Actual PE Digest

05:38:0d:34:c4:fe:91:63:4c:e3:8b:75:c8:91:a7:e4:2b:c6:4e:b1:16:f6:7a:db:12:27:83:89:fa:26:ff:da

Digest Algorithm

sha256

PE Digest Matches

true

08:ce:03:fd:c5:7c:97:da:68:f9:5f:d1:23:ee:2e:9b:53:8c:77:33
Signer

Actual PE Digest

08:ce:03:fd:c5:7c:97:da:68:f9:5f:d1:23:ee:2e:9b:53:8c:77:33

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetExitCodeProcess
CreateEventW
SetEvent
GetComputerNameW
ResetEvent
WritePrivateProfileStringW
InitializeCriticalSection
WaitForMultipleObjects
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
GetSystemInfo
CreateProcessW
GetTempPathW
FindNextFileW
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpyW
FindFirstFileW
FindClose
RemoveDirectoryW
LoadLibraryW
SetLastError
GetLogicalDriveStringsW
GetDriveTypeW
CreateThread
FormatMessageW
LocalFree
WaitForSingleObject
MoveFileExW
CopyFileW
lstrlenW
CreateDirectoryW
GetLocalTime
DeviceIoControl
GetSystemDirectoryW
GetPrivateProfileStringW
GetCurrentThreadId
IsBadWritePtr
FileTimeToSystemTime
TerminateProcess
ReadFile
GetTickCount
Sleep
DeleteFileW
GetFileSize
CreateFileMappingW
MapViewOfFile
GetModuleFileNameW
IsDebuggerPresent
RaiseException
GetCurrentProcessId
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
GetFullPathNameA
GetProcessHeap
SetEndOfFile
SetStdHandle
FlushFileBuffers
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetCommandLineW
GetEnvironmentStringsW
FreeLibrary
ExitProcess
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
SetFileAttributesW
CreateFileW
WriteFile
GetModuleHandleW
GetProcAddress
GetNativeSystemInfo
GetCurrentProcess
CloseHandle
ExpandEnvironmentStringsW
MultiByteToWideChar
IsBadReadPtr
WideCharToMultiByte
FreeEnvironmentStringsW
GetStartupInfoA
SetHandleCount
GetConsoleCP
GetCurrentDirectoryA
HeapDestroy
HeapCreate
VirtualAlloc
VirtualFree
GetTimeZoneInformation
HeapSize
IsValidCodePage
GetOEMCP
GetModuleFileNameA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetConsoleMode
SetConsoleMode
ReadConsoleInputA
SetConsoleCtrlHandler
GetDateFormatA
GetTimeFormatA
GetFileInformationByHandle
GetFileAttributesA
GetDriveTypeA
CreateFileA
ExitThread
GetCPInfo
LCMapStringW
LCMapStringA
GetStartupInfoW
FileTimeToLocalFileTime
HeapReAlloc
HeapFree
HeapAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
lstrcpynW
lstrcmpiW
FreeResource
LocalFileTimeToFileTime
MulDiv
GetACP
GlobalMemoryStatus
FindFirstFileA
GetVersion
FlushConsoleInputBuffer
GetSystemTime
SystemTimeToFileTime
MoveFileExA
GetStdHandle
GetFileType
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
GetSystemDirectoryA
LoadLibraryA
GetModuleHandleA
QueryPerformanceFrequency
SleepEx
QueryPerformanceCounter
VerifyVersionInfoW
VerSetConditionMask
CompareFileTime
GetSystemTimeAsFileTime
GetEnvironmentVariableA
PeekNamedPipe

user32

CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
IsWindowVisible
GetClientRect
SendMessageW
MessageBoxA
GetCursorPos
SetForegroundWindow
ShowWindow
FindWindowW
MessageBoxW
PostMessageW
GetSystemMetrics
GetUserObjectInformationW
GetProcessWindowStation
DefWindowProcW
CreateWindowExW
SetWindowLongW
EnableWindow
GetMessageW
SetFocus
TranslateMessage
DispatchMessageW
LoadImageW
LoadCursorW
RegisterClassW
GetClassInfoExW
RegisterClassExW
GetWindowLongW
CallWindowProcW
SetWindowTextW
GetPropW
AdjustWindowRectEx
GetMenu
OffsetRect
InflateRect
UnionRect
SetCursor
ScreenToClient
GetKeyState
CharNextW
DestroyWindow
GetActiveWindow
BeginPaint
EndPaint
GetUpdateRect
IsRectEmpty
IntersectRect
MapWindowPoints
PtInRect
ReleaseCapture
GetSysColor
InvalidateRect
IsZoomed
GetFocus
SetCapture
SetWindowRgn
GetWindowTextLengthW
GetWindowTextW
IsWindowEnabled
MoveWindow
UpdateLayeredWindow
GetWindowRgn
FillRect
DrawTextW
SetRect
CharPrevW
CreateCaret
ShowCaret
HideCaret
GetCaretPos
SetCaretPos
ClientToScreen
GetCaretBlinkTime
CreatePopupMenu
AppendMenuW
EnableMenuItem
TrackPopupMenu
DestroyMenu
UpdateWindow
EqualRect
InvalidateRgn
CreateAcceleratorTableW
GetGUIThreadInfo
wsprintfA
DrawTextA
MapVirtualKeyExW
GetKeyboardLayout
GetKeyNameTextW
ReleaseDC
GetDC
SetTimer
SetPropW
KillTimer
PostQuitMessage
GetWindowRect
GetParent
GetWindow
MonitorFromWindow
GetMonitorInfoW
IsIconic
IsWindow
SetWindowPos

gdi32

CreateEnhMetaFileW
SetWindowOrgEx
Rectangle
RestoreDC
BitBlt
SaveDC
RemoveFontMemResourceEx
CreatePen
CloseEnhMetaFile
GetStockObject
GetObjectW
GetDeviceCaps
GetObjectA
DeleteObject
GetTextMetricsW
AddFontMemResourceEx
CreateDIBitmap
GetEnhMetaFileHeader
PlayEnhMetaFile
CreateRoundRectRgn
SetBkMode
SetTextColor
CreatePenIndirect
CreatePatternBrush
CreateSolidBrush
MoveToEx
LineTo
CreateRectRgn
PtInRegion
SelectClipRgn
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
CombineRgn
StretchBlt
SetStretchBltMode
CreateFontIndirectW
SetBkColor
GetCharABCWidthsW
GetTextExtentPoint32W
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
TextOutW
SetBitmapBits
GetBitmapBits
GetTextExtentPointA
GdiFlush
SelectObject

winspool.drv

ConnectToPrinterDlg

comdlg32

GetSaveFileNameW

advapi32

AddAccessAllowedAceEx
LookupPrivilegeValueW
AdjustTokenPrivileges
DeregisterEventSource
ReportEventA
RegisterEventSourceA
CryptEnumProvidersA
CryptReleaseContext
CryptDestroyKey
CryptGetProvParam
CryptAcquireContextA
CryptGetUserKey
CryptExportKey
CryptDestroyHash
CryptSignHashA
CryptSetHashParam
CryptCreateHash
CryptDecrypt
CloseServiceHandle
OpenServiceW
OpenSCManagerW
StartServiceW
ControlService
RegCloseKey
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
LookupAccountSidW
GetAce
GetSecurityDescriptorDacl
IsValidSecurityDescriptor
AddAce
InitializeAcl
SetNamedSecurityInfoW
SetSecurityDescriptorDacl
AddAccessDeniedAceEx
OpenProcessToken
EqualSid
GetLengthSid
GetAclInformation
InitializeSecurityDescriptor
LookupAccountNameW
SetEntriesInAclW
GetNamedSecurityInfoW
IsValidSid
CopySid
RegCreateKeyExW
RegDeleteValueW
LogonUserW
RegDeleteKeyW
QueryServiceStatus
ChangeServiceConfigW
DeleteAce
BuildExplicitAccessWithNameW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW
DragQueryFileW
SHGetSpecialFolderPathW

ole32

DoDragDrop
OleDuplicateData
CoCreateInstance
CoTaskMemFree
StringFromCLSID
CLSIDFromString
ReleaseStgMedium
CreateStreamOnHGlobal
OleLockRunning
CLSIDFromProgID

imagehlp

CheckSumMappedFile
MapFileAndCheckSumW

gdiplus

GdipCreateFontFromDC
GdipAddPathLine
GdipDeleteFont
GdipSetTextRenderingHint
GdipSetInterpolationMode
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipDrawPath
GdipMeasureString
GdipDrawString
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipDrawImageRectI
GdipImageSelectActiveFrame
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipSetStringFormatLineAlign
GdipAddPathArc
GdipDeletePath
GdipCreatePath
GdipSetSmoothingMode
GdipDrawRectangleI
GdipSetPenMode
GdipDeletePen
GdipCreatePen1
GdipFillRectangleI
GdipBitmapUnlockBits
GdipDeleteBrush
GdipCreateSolidFill
GdipCreateFromHDC
GdipLoadImageFromStream
GdiplusShutdown
GdiplusStartup
GdipBitmapSetPixel
GdipGetImageGraphicsContext
GdipGraphicsClear
GdipCloneImage
GdipCreateFontFromLogfontA
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree

ws2_32

select
ntohl
WSAStartup
connect
ioctlsocket
recv
send
inet_addr
WSAAsyncSelect
WSACleanup
recvfrom
WSAGetLastError
socket
setsockopt
htons
htonl
sendto
closesocket
inet_ntoa
ntohs
getservbyname
shutdown
gethostname
listen
accept
getaddrinfo
freeaddrinfo
__WSAFDIsSet
WSASetLastError
getpeername
getsockopt
bind
getsockname
WSAIoctl
WSACloseEvent
WSAEventSelect
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
WSAResetEvent
WSACreateEvent
gethostbyname

crypt32

CertFindCertificateInStore
CertGetEnhancedKeyUsage
CertFreeCertificateContext
CertGetIntendedKeyUsage
CertEnumCertificatesInStore
CertOpenSystemStoreA
CertGetCertificateContextProperty
CertOpenStore
CertDuplicateCertificateContext
CertCloseStore

iphlpapi

IcmpCreateFile
IcmpSendEcho
CreateIpNetEntry
DeleteIpNetEntry
SendARP
IcmpCloseHandle
GetAdaptersAddresses
GetAdaptersInfo
GetPerAdapterInfo

netapi32

NetUserDel
NetApiBufferFree
NetUserEnum
NetShareEnum
NetShareGetInfo
NetUserAdd
NetSessionEnum
NetSessionDel
NetGetJoinInformation
NetShareAdd
NetShareSetInfo
NetShareDel
NetLocalGroupAddMembers
NetUserSetInfo
NetUserGetInfo
NetConnectionEnum

mpr

WNetAddConnection2W
WNetConnectionDialog
WNetDisconnectDialog
WNetOpenEnumW
WNetEnumResourceW
WNetCloseEnum
WNetCancelConnection2W

shlwapi

PathIsNetworkPathW
PathFileExistsW

oleaut32

VariantClear
VariantInit
SysAllocString
SysFreeString

comctl32

_TrackMouseEvent
InitCommonControlsEx
ord17

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

wldap32

ord79
ord22
ord60
ord46
ord41
ord27
ord301
ord33
ord32
ord200
ord30
ord26
ord50
ord143
ord217
ord211
ord35

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 490KB - Virtual size: 489KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca1c58b853994ee84dfcd90a2cb00369

Code Sign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

77:e9:2d:62:fe:eb:0d:78:fe:8e:13:a7Certificate

Extended Key Usages

Key Usages

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate

Extended Key Usages

Key Usages

77:e9:2d:62:fe:eb:0d:78:fe:8e:13:a7Certificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

05:38:0d:34:c4:fe:91:63:4c:e3:8b:75:c8:91:a7:e4:2b:c6:4e:b1:16:f6:7a:db:12:27:83:89:fa:26:ff:daSigner

08:ce:03:fd:c5:7c:97:da:68:f9:5f:d1:23:ee:2e:9b:53:8c:77:33Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

imagehlp

gdiplus

ws2_32

crypt32

iphlpapi

netapi32

mpr

shlwapi

oleaut32

comctl32

imm32

wldap32

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 490KB - Virtual size: 489KB

.data Size: 57KB - Virtual size: 340KB

.tls Size: 512B - Virtual size: 17B

.rsrc Size: 1.9MB - Virtual size: 1.9MB

.reloc Size: 125KB - Virtual size: 124KB

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

77:e9:2d:62:fe:eb:0d:78:fe:8e:13:a7
Certificate

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

77:e9:2d:62:fe:eb:0d:78:fe:8e:13:a7
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

05:38:0d:34:c4:fe:91:63:4c:e3:8b:75:c8:91:a7:e4:2b:c6:4e:b1:16:f6:7a:db:12:27:83:89:fa:26:ff:da
Signer

08:ce:03:fd:c5:7c:97:da:68:f9:5f:d1:23:ee:2e:9b:53:8c:77:33
Signer

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 490KB - Virtual size: 489KB

.data
Size: 57KB - Virtual size: 340KB

.tls
Size: 512B - Virtual size: 17B

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

.reloc
Size: 125KB - Virtual size: 124KB