2fdc318fed6b2b8f3b87f260475b5c59_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2fdc318fed6b2b8f3b87f260475b5c59_JaffaCakes118
Size

2.1MB
MD5

2fdc318fed6b2b8f3b87f260475b5c59
SHA1

0e68c8f58d0bb776352fd62a5f6161be491c11f3
SHA256

4db9c897a1458801a5f13e58d660985b9c590f44970a8bc30c71b2bd6cf47b16
SHA512

86618d56cd97561d526cc0ac9dc40bcaa0431059dfef93f99482272ec5785daec18c64d5073c967668691a414d183c262c0bf6e62861b5e9f844114791043648
SSDEEP

49152:VgxiMu4br8+1MXwdxn1eTeYKai4KfrfPDc11YWuxFCBWnQTyKZddKI5FA1Lakl68:Da/v1MAdxnlYyln

Score

1^/10

Malware Config

Signatures

Files

2fdc318fed6b2b8f3b87f260475b5c59_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dd0786ba1d975512ecd51ca2ad9e8d5c

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

75:07:30:67:30:94:f3:8c:a9:f0:7e:06:e5:74:fb:df
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/07/2017, 00:00

Not After

22/06/2019, 23:59

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,ST=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

67:1d:31:6b:f6:0f:35:75:5f:07:23:72:de:ef:8f:e5
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

22/06/2017, 00:00

Not After

22/06/2019, 23:59

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,ST=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d1:ab:09:26:08:46:f5:91:af:fc:ec:aa:65:59:2e:5d:65:f6:4f:cf:73:2a:4f:a8:c9:06:94:c6:5b:0b:4a:dc
Signer

Actual PE Digest

d1:ab:09:26:08:46:f5:91:af:fc:ec:aa:65:59:2e:5d:65:f6:4f:cf:73:2a:4f:a8:c9:06:94:c6:5b:0b:4a:dc

Digest Algorithm

sha256

PE Digest Matches

true

21:02:6d:3b:0a:11:55:29:24:5e:d6:e3:67:c8:20:42:6f:fc:75:9a
Signer

Actual PE Digest

21:02:6d:3b:0a:11:55:29:24:5e:d6:e3:67:c8:20:42:6f:fc:75:9a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\trunk\dllplugin\Doctor\bin\Win32\Release\pdb\Doctor_2345Explorer.pdb

Imports

winhttp

WinHttpGetProxyForUrl
WinHttpOpenRequest
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpCloseHandle
WinHttpConnect
WinHttpSendRequest
WinHttpGetIEProxyConfigForCurrentUser
WinHttpSetTimeouts
WinHttpOpen

mprapi

MprConfigServerConnect
MprConfigGetFriendlyName

iphlpapi

GetInterfaceInfo
GetBestInterface
GetNetworkParams
IpReleaseAddress
SendARP
IpRenewAddress
GetAdaptersInfo

ws2_32

WSCDeinstallProvider
gethostbyname
WSACleanup
inet_addr
WSAStartup

kernel32

GetCurrentProcess
GlobalLock
GlobalAlloc
MulDiv
lstrcmpW
GlobalUnlock
FlushInstructionCache
SetLastError
OpenProcess
GetShortPathNameW
LocalAlloc
GetSystemDirectoryW
CreateFileW
DeviceIoControl
GetEnvironmentVariableW
GlobalFree
InterlockedExchange
GetTempPathW
GetLocalTime
HeapAlloc
HeapFree
HeapDestroy
HeapCreate
GetModuleHandleExW
VirtualProtect
lstrcmpiW
GlobalMemoryStatusEx
lstrcpynW
lstrlenW
MoveFileW
FileTimeToSystemTime
GetThreadContext
HeapReAlloc
SetThreadContext
InterlockedCompareExchange
GetModuleHandleW
Thread32First
Thread32Next
OpenThread
CreateToolhelp32Snapshot
SuspendThread
ResumeThread
VirtualQuery
VirtualFree
VirtualAlloc
SwitchToThread
GetFileAttributesW
ExpandEnvironmentStringsW
GetLongPathNameW
GetFileAttributesExW
WideCharToMultiByte
GetACP
MultiByteToWideChar
FindResourceW
LoadResource
GetVersionExW
LockResource
GetSystemInfo
GetFileSize
SetFilePointer
SetEndOfFile
SetFileTime
WriteFile
ReadFile
GetFileTime
QueryDosDeviceW
WaitForMultipleObjects
GetProcessHeap
LoadLibraryExW
SetEvent
CloseHandle
CreateEventW
InterlockedExchangeAdd
lstrcpyW
GetFileSizeEx
GetFullPathNameW
MoveFileExW
CopyFileW
GetCurrentDirectoryW
GetLogicalDriveStringsW
FormatMessageW
SizeofResource
CreateWaitableTimerW
SetWaitableTimer
FreeResource
SetErrorMode
QueryPerformanceCounter
QueryPerformanceFrequency
CreateTimerQueue
WaitForSingleObjectEx
SignalObjectAndWait
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
ExitProcess
HeapSize
GetTimeZoneInformation
FindNextFileW
lstrcatW
RemoveDirectoryW
GetStdHandle
ReadConsoleW
GetFileType
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetOEMCP
IsProcessorFeaturePresent
IsDebuggerPresent
ExitThread
CreateThread
FindClose
GetProcAddress
GetExitCodeProcess
OutputDebugStringW
GetThreadTimes
FreeLibraryAndExitThread
GetModuleHandleA
ReleaseSemaphore
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
SetFilePointerEx
SetStdHandle
WriteConsoleW
SetEnvironmentVariableA
LoadLibraryW
CreateProcessW
FreeLibrary
SetLocalTime
FindFirstFileW
LocalFree
DeleteCriticalSection
DecodePointer
RaiseException
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
GetPrivateProfileStringW
SetUnhandledExceptionFilter
GetCommandLineW
GetCurrentProcessId
ReleaseMutex
RtlUnwind
GetCurrentThreadId
CreateFileMappingW
EnterCriticalSection
GetLastError
LeaveCriticalSection
Sleep
InitializeCriticalSection
GetTickCount
WaitForSingleObject
CreateDirectoryW
UnmapViewOfFile
MapViewOfFile
CreateMutexW
CreateSemaphoreW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetExitCodeThread
TerminateThread
SetFileAttributesW
MapViewOfFileEx
DeleteFileW
UnhandledExceptionFilter
GetCPInfo
GetSystemTimeAsFileTime
EncodePointer
GetCurrentThread
DuplicateHandle
ResetEvent
GetStringTypeW

user32

GetKeyboardState
ToAscii
GetCaretBlinkTime
DrawIconEx
GetIconInfo
SetClipboardData
GetClipboardData
EmptyClipboard
IsClipboardFormatAvailable
GetAsyncKeyState
ValidateRect
SetWindowRgn
EnableWindow
KillTimer
SetTimer
OpenClipboard
IsWindowVisible
ShowWindowAsync
ShowWindow
LoadImageW
GetKeyState
TrackMouseEvent
PtInRect
DialogBoxParamW
PostQuitMessage
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
MonitorFromWindow
GetWindowThreadProcessId
GetPropW
EnumChildWindows
EqualRect
IsRectEmpty
OffsetRect
CopyRect
GetCursorPos
SetCursor
GetWindowRect
GetWindowDC
GetSystemMetrics
IsZoomed
IsIconic
wsprintfW
MessageBoxW
EndPaint
ClientToScreen
GetWindowTextLengthW
DestroyAcceleratorTable
MapWindowPoints
LoadBitmapW
MsgWaitForMultipleObjects
SetCaretPos
SetRect
UpdateLayeredWindow
SetRectEmpty
UnionRect
IntersectRect
SystemParametersInfoW
GetClassLongW
GetMonitorInfoW
ScreenToClient
CharNextW
RegisterWindowMessageW
FillRect
IsChild
SetCapture
GetFocus
GetParent
InvalidateRgn
LoadCursorW
GetClientRect
CreateAcceleratorTableW
SetFocus
BeginPaint
GetClassInfoExW
GetDC
RegisterClassExW
InvalidateRect
GetWindowTextW
GetClassNameW
ReleaseDC
GetDlgItem
RedrawWindow
GetSysColor
SetWindowPos
IsWindow
CreateWindowExW
ReleaseCapture
SetWindowTextW
GetWindow
MoveWindow
GetDesktopWindow
EndDialog
DestroyWindow
LoadIconW
GetWindowLongW
SetWindowLongW
CallWindowProcW
DefWindowProcW
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
UnregisterClassW
PostMessageW
SetForegroundWindow
FindWindowW
SendMessageW
GetForegroundWindow
SetPropW
RemovePropW
CloseClipboard

gdi32

GetClipBox
PtInRegion
CreateDIBSection
CreateDCW
GetDIBits
ExtTextOutW
EnumFontsW
SetTextColor
SetBkColor
CreateFontIndirectW
CreatePolygonRgn
CreateRectRgnIndirect
SetWorldTransform
SetGraphicsMode
SetViewportOrgEx
SelectClipRgn
CreateRectRgn
BitBlt
GetDeviceCaps
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectW
GetStockObject
CreateSolidBrush
CreateRoundRectRgn
DeleteDC

advapi32

RegQueryInfoKeyW
OpenSCManagerW
OpenServiceW
StartServiceW
QueryServiceStatus
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW
AdjustTokenPrivileges
DuplicateTokenEx
RegSetValueExW
QueryServiceConfigW
RegOpenKeyExW
ChangeServiceConfigW
CloseServiceHandle

shell32

DragFinish
DragQueryFileW
ord155
ord190
SHGetSpecialFolderPathW
ShellExecuteExW
CommandLineToArgvW
ShellExecuteW

ole32

CoTaskMemFree
OleUninitialize
StringFromGUID2
CreateStreamOnHGlobal
CLSIDFromString
CLSIDFromProgID
OleLockRunning
OleInitialize
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
StringFromCLSID
CoInitializeSecurity
PropVariantClear
CoInitializeEx
CoTaskMemRealloc
CoGetClassObject

oleaut32

VarUI4FromStr
VariantChangeType
LoadRegTypeLi
OleCreateFontIndirect
SysAllocStringLen
VariantInit
LoadTypeLi
VariantClear
SysStringLen
DispCallFunc
SysAllocString
SysFreeString

shlwapi

StrToIntA
ord12
SHStrDupW
SHSetValueW
PathAppendW
PathFileExistsW
StrStrIW
PathStripPathW
PathRemoveFileSpecW
SHCopyKeyW
PathFindFileNameW

comctl32

_TrackMouseEvent
InitCommonControlsEx

msimg32

AlphaBlend

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

wininet

FindCloseUrlCache
FindFirstUrlCacheEntryW
FindNextUrlCacheEntryW
DeleteUrlCacheEntryW

dsound

ord11
ord1

winmm

waveOutWrite
timeGetTime
midiStreamClose
midiStreamOut

gdiplus

GdipDrawArcI
GdipDrawRectangle
GdipDrawPath
GdipGraphicsClear
GdipFillRectangleI
GdipFillEllipse
GdipFillPath
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipSetClipRectI
GdipSetClipRegion
GdipGetClipBoundsI
GdipSaveGraphics
GdipRestoreGraphics
GdipBeginContainer2
GdipEndContainer
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetFamilyName
GdipGetEmHeight
GdipGetCellAscent
GdipGetCellDescent
GdipGetLineSpacing
GdipCreateFont
GdipDeleteFont
GdipGetFamily
GdipGetFontStyle
GdipGetFontSize
GdipDrawString
GdipMeasureString
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipCloneStringFormat
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipGetStringFormatAlign
GdipSetStringFormatLineAlign
GdipGetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipAddPathLineI
GdipAddPathArcI
GdipAddPathBezierI
GdipAddPathRectangleI
GdipAddPathEllipseI
GdipCreateRegionPath
GdipCombineRegionPath
GdipCombineRegionRegion
GdipGetBrushType
GdipSetTextureTransform
GdipSetLineTransform
GdipDrawLine
GdipCloneBitmapArea
GdipGetImageGraphicsContext
GdipSetPenDashStyle
GdipDeletePen
GdipCreatePen1
GdipGetLineTransform
GdipSetLineWrapMode
GdipSetLinePresetBlend
GdipCreateLineBrushI
GdipCreateSolidFill
GdipGetTextureTransform
GdipCreateTexture
GdipDeleteBrush
GdipCloneBrush
GdipTransformRegion
GdipDeleteRegion
GdipCloneRegion
GdipGetMatrixElements
GdipDeleteMatrix
GdipCreateMatrix2
GdipCreateMatrix
GdipGetPathWorldBounds
GdipAddPathString
ord1
GdipClosePathFigure
GdipDeletePath
GdipCreatePath
GdipCloneBitmapAreaI
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdiplusStartup
GdiplusShutdown
GdipRotateWorldTransform
GdipScaleWorldTransform
GdipTranslateWorldTransform
GdipMultiplyWorldTransform
GdipGetInterpolationMode
GdipSetInterpolationMode
GdipGetTextRenderingHint
GdipSetTextRenderingHint
GdipSetPixelOffsetMode
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipSetCompositingQuality
GdipSetCompositingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetImageAttributesWrapMode
GdipSetImageAttributesColorMatrix
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipCreateHBITMAPFromBitmap

imm32

ImmNotifyIME
ImmGetCompositionStringW
ImmAssociateContextEx
ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 361KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd0786ba1d975512ecd51ca2ad9e8d5c

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78Certificate

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

75:07:30:67:30:94:f3:8c:a9:f0:7e:06:e5:74:fb:dfCertificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78Certificate

Key Usages

67:1d:31:6b:f6:0f:35:75:5f:07:23:72:de:ef:8f:e5Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

d1:ab:09:26:08:46:f5:91:af:fc:ec:aa:65:59:2e:5d:65:f6:4f:cf:73:2a:4f:a8:c9:06:94:c6:5b:0b:4a:dcSigner

21:02:6d:3b:0a:11:55:29:24:5e:d6:e3:67:c8:20:42:6f:fc:75:9aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winhttp

mprapi

iphlpapi

ws2_32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

version

wininet

dsound

winmm

gdiplus

imm32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 361KB - Virtual size: 360KB

.data Size: 35KB - Virtual size: 58KB

.rsrc Size: 82KB - Virtual size: 81KB

.reloc Size: 90KB - Virtual size: 89KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

75:07:30:67:30:94:f3:8c:a9:f0:7e:06:e5:74:fb:df
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

67:1d:31:6b:f6:0f:35:75:5f:07:23:72:de:ef:8f:e5
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

d1:ab:09:26:08:46:f5:91:af:fc:ec:aa:65:59:2e:5d:65:f6:4f:cf:73:2a:4f:a8:c9:06:94:c6:5b:0b:4a:dc
Signer

21:02:6d:3b:0a:11:55:29:24:5e:d6:e3:67:c8:20:42:6f:fc:75:9a
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 361KB - Virtual size: 360KB

.data
Size: 35KB - Virtual size: 58KB

.rsrc
Size: 82KB - Virtual size: 81KB

.reloc
Size: 90KB - Virtual size: 89KB