48581cf78cc4d4e30a09aed9f0d9e941_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

48581cf78cc4d4e30a09aed9f0d9e941_JaffaCakes118
Size

16.0MB
MD5

48581cf78cc4d4e30a09aed9f0d9e941
SHA1

f829b7b37eeb9d5e0e508bc3c348313ae6a58abd
SHA256

05e47f72a96e765ae9ff72fac7beda00134a1b311a12bbd7b622191f32903cf3
SHA512

01faf4ff443f441d05314cc5f579994b93c3751a57915d12bad925a7ecbd382e16e0dd2c474ef862f545b1d96fae0ff138772226513cdb2e570154fb6e79a7e0
SSDEEP

393216:xrMrTCO4i2RWFRUDg0VpE3xk6kfFbFzlZp+GC7zDPHTY:JMrTQjcwD43xk6K9llZpQzo

Score

1^/10

Malware Config

Signatures

Files

48581cf78cc4d4e30a09aed9f0d9e941_JaffaCakes118
.exe windows:5 windows x86 arch:x86

47c5d6a75cc1e7dd26a839adda4f61c1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

2c:2a:cd:9e:52:b3:fc:95:24:22:9d:8d:21:3d:87:58
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

21/01/2019, 00:00

Not After

04/02/2020, 23:59

Subject

CN=上海展盟网络科技有限公司,OU=IT,O=上海展盟网络科技有限公司,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:9d:6a:bc:d0:f9:df:4e:41:ee:cf:e8:d9:0f:a5:0b
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

21/01/2019, 00:00

Not After

04/02/2020, 23:59

Subject

CN=上海展盟网络科技有限公司,OU=IT,O=上海展盟网络科技有限公司,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

80:ed:21:5a:fb:19:52:d2:1e:5e:f1:b5:1c:c6:e0:94:09:50:fd:a7:f4:96:78:9a:55:b4:a1:8b:a7:8d:08:c3
Signer

Actual PE Digest

80:ed:21:5a:fb:19:52:d2:1e:5e:f1:b5:1c:c6:e0:94:09:50:fd:a7:f4:96:78:9a:55:b4:a1:8b:a7:8d:08:c3

Digest Algorithm

sha256

PE Digest Matches

true

07:74:a5:5a:e3:81:0c:51:5d:af:f2:b0:3e:9e:a1:f6:34:0d:34:e2
Signer

Actual PE Digest

07:74:a5:5a:e3:81:0c:51:5d:af:f2:b0:3e:9e:a1:f6:34:0d:34:e2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

getaddrinfo
freeaddrinfo
recvfrom
sendto
accept
listen
gethostname
htonl
ntohl
WSACleanup
ioctlsocket
__WSAFDIsSet
WSAStartup
select
WSASetLastError
recv
send
bind
closesocket
connect
getpeername
getsockname
getsockopt
htons
ntohs
setsockopt
socket
WSAGetLastError
WSAIoctl

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

kernel32

ResetEvent
SetEvent
WaitForMultipleObjects
LoadLibraryW
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
TlsFree
TlsGetValue
TlsAlloc
TlsSetValue
GetModuleHandleExW
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
TryEnterCriticalSection
GetNativeSystemInfo
GetVersionExW
CreateThread
RaiseException
IsDebuggerPresent
Process32FirstW
Process32NextW
CreateToolhelp32Snapshot
GetProcessId
GetCurrentThreadId
QueryPerformanceCounter
GetSystemTimeAsFileTime
SystemTimeToTzSpecificLocalTime
GetModuleHandleW
GetWindowsDirectoryW
GetThreadPriority
QueryPerformanceFrequency
GetCurrentThread
FileTimeToSystemTime
SetThreadPriority
FindClose
FindNextFileW
GetSystemDirectoryW
GetSystemInfo
FindFirstFileExW
FindFirstFileW
FlushFileBuffers
SetFilePointerEx
UnlockFile
SetEndOfFile
LockFile
GetFileSizeEx
CreateEventW
GetModuleHandleA
ExpandEnvironmentStringsW
FreeLibraryAndExitThread
ExitThread
AreFileApisANSI
GetDiskFreeSpaceW
UnlockFileEx
HeapValidate
GetTempPathA
GetDiskFreeSpaceA
GetFileAttributesA
CreateFileA
DeleteFileA
HeapCompact
CreateFileMappingA
LockFileEx
GetSystemTime
PeekNamedPipe
SleepEx
SystemTimeToFileTime
LoadLibraryExA
SizeofResource
HeapFree
HeapSize
GetSystemDirectoryA
LockResource
HeapReAlloc
FindResourceExW
LoadResource
FindResourceW
HeapAlloc
DecodePointer
HeapDestroy
VerSetConditionMask
GetProcessHeap
VerifyVersionInfoW
CreateProcessA
GetSystemWow64DirectoryW
GetLocalTime
GetModuleFileNameA
SetFilePointer
lstrcpynA
FormatMessageW
EncodePointer
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
InitializeSListHead
HeapCreate
InitializeCriticalSection
FlushInstructionCache
MulDiv
GetFullPathNameW
FreeResource
GetVersionExA
IsBadReadPtr
LoadLibraryA
GlobalAlloc
GlobalLock
GlobalUnlock
DosDateTimeToFileTime
lstrcpyA
lstrcpyW
lstrlenA
GetFileSize
lstrcmpiW
SetEnvironmentVariableA
ExpandEnvironmentStringsA
SetEnvironmentVariableW
lstrcpynW
ReleaseMutex
SetThreadAffinityMask
GetComputerNameW
DeviceIoControl
GetFileTime
WriteProcessMemory
CreateRemoteThread
WriteConsoleW
OutputDebugStringW
RtlUnwind
GetFullPathNameA
SetStdHandle
GetFileType
GetConsoleCP
GetConsoleMode
GetACP
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
ReadConsoleW
GetDriveTypeW
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
WaitForSingleObjectEx
GetEnvironmentVariableW
CreateProcessW
ResumeThread
CreatePipe
AssignProcessToJobObject
GetStdHandle
GetExitCodeProcess
OpenProcess
DuplicateHandle
WaitForSingleObject
TerminateProcess
GetDiskFreeSpaceExW
FormatMessageA
GetCurrentProcessId
GetModuleFileNameW
OutputDebugStringA
LocalFree
GetCommandLineW
WideCharToMultiByte
MultiByteToWideChar
MapViewOfFile
CreateFileMappingW
GetTempFileNameW
CopyFileW
MoveFileExW
GetCurrentDirectoryW
DeleteFileW
GetFileAttributesExW
SetFileAttributesW
UnmapViewOfFile
GetFileAttributesW
CreateFileW
GetTempPathW
RemoveDirectoryW
WriteFile
GetCurrentProcess
GetVolumeInformationW
ReadFile
CreateDirectoryW
ExitProcess
CloseHandle
Sleep
CreateMutexW
GetTickCount
LoadLibraryExW
GetProcAddress
FreeLibrary
InitializeCriticalSectionAndSpinCount
SetLastError
GetLastError
TerminateThread

user32

SetMenuContextHelpId
SetForegroundWindow
GetMenuItemInfoW
SetMenuInfo
GetMenuInfo
TrackPopupMenu
AppendMenuW
GetMenuItemCount
DestroyMenu
CreatePopupMenu
IsWindowEnabled
IsMenu
CharLowerBuffW
SystemParametersInfoA
DrawTextW
IsWindowVisible
GetSystemMetrics
GetMessageW
LoadImageW
CreateIconFromResource
LoadBitmapW
GetSysColor
ClientToScreen
EnableMenuItem
GetIconInfo
CharNextW
OffsetRect
DestroyIcon
GetClassNameW
ScreenToClient
SetCaretPos
HideCaret
GetCaretBlinkTime
CreateCaret
GetCursorPos
SetWindowTextW
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
ReleaseCapture
SetCapture
GetCapture
IsZoomed
SetLayeredWindowAttributes
TrackMouseEvent
PtInRect
EqualRect
IsRectEmpty
UnionRect
IntersectRect
InflateRect
CopyRect
SetRect
SetCursor
GetKeyState
GetFocus
SetFocus
IsWindow
DestroyCursor
GetMonitorInfoW
MonitorFromWindow
LoadCursorW
GetWindow
GetParent
MapWindowPoints
GetWindowRect
GetClientRect
GetDlgItem
CallWindowProcW
GetWindowThreadProcessId
FillRect
DefWindowProcW
CreateWindowExW
UnregisterClassW
WaitMessage
RegisterClassExW
DispatchMessageW
SetTimer
PeekMessageW
MsgWaitForMultipleObjectsEx
CallMsgFilterW
GetQueueStatus
InvertRect
DrawIconEx
OemToCharBuffW
TranslateMessage
KillTimer
PostQuitMessage
CharLowerA
SendMessageTimeoutW
FindWindowW
GetActiveWindow
PostMessageW
MessageBoxW
SendMessageW
wsprintfW
GetWindowLongW
DestroyWindow
SetWindowPos
ShowWindow
SetWindowLongW
SystemParametersInfoW
CharUpperA
BlockInput
EnumDisplaySettingsW
EnumDisplayDevicesW
WindowFromPoint
IsIconic
CreateIconIndirect

advapi32

CryptDestroyKey
ConvertSidToStringSidA
LookupAccountNameW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
EnumServicesStatusW
CreateServiceW
QueryServiceStatus
CloseServiceHandle
CreateProcessAsUserW
RegQueryInfoKeyW
SystemFunction036
OpenSCManagerW
ChangeServiceConfig2W
CryptEncrypt
CryptImportKey
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGenRandom
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
DeleteService
ControlService
StartServiceW
QueryServiceConfigW
ChangeServiceConfigW
QueryServiceConfig2W
OpenServiceW
GetAclInformation
GetAce
EqualSid
GetSidSubAuthority
GetSidLengthRequired
SetNamedSecurityInfoW
CopySid
GetNamedSecurityInfoW
InitializeSid
IsValidSid
CheckTokenMembership
FreeSid
OpenProcessToken
AllocateAndInitializeSid
GetUserNameW
GetTokenInformation
OpenThreadToken
GetLengthSid
ConvertSidToStringSidW
InitializeAcl
AddAce
RegOpenCurrentUser

ole32

CoUninitialize
CoInitializeEx
CoTaskMemFree
CoCreateInstance
CreateStreamOnHGlobal
CoCreateGuid
StringFromCLSID
CoInitializeSecurity
CoSetProxyBlanket
PropVariantClear
StringFromGUID2
CoTaskMemAlloc

shlwapi

PathAppendW
PathFileExistsW
PathStripPathW
wnsprintfW
StrCmpIW
PathRemoveFileSpecW
PathCombineW
PathAddExtensionW
StrIsIntlEqualW
StrToIntExW
PathFileExistsA

userenv

UnloadUserProfile
DestroyEnvironmentBlock
CreateEnvironmentBlock

winmm

timeBeginPeriod
timeGetTime
timeEndPeriod

imm32

ImmAssociateContext
ImmReleaseContext
ImmGetContext

msimg32

GradientFill
AlphaBlend

gdiplus

GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipGraphicsClear
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipGetImageWidth
GdipDrawImageRectI

iphlpapi

GetAdaptersInfo

gdi32

SetROP2
SetRectRgn
CreateRectRgn
ExtSelectClipRgn
SaveDC
RoundRect
RestoreDC
RectInRegion
PtInRegion
Pie
BitBlt
OffsetRgn
SetTextColor
CreatePatternBrush
CreatePen
CreateEllipticRgnIndirect
CombineRgn
Arc
GetViewportOrgEx
GetCurrentObject
GetWorldTransform
SetWorldTransform
CreateDIBSection
ExtCreatePen
GetTextExtentPoint32W
GetTextColor
Polyline
CreateDIBitmap
CreateDCW
StretchDIBits
GetRgnBox
GetClipRgn
ExcludeClipRect
Ellipse
IntersectClipRect
GetDeviceCaps
CreateRoundRectRgn
DeleteObject
SetViewportOrgEx
CreateCompatibleBitmap
StretchBlt
GetObjectW
SetBkMode
Rectangle
GetStockObject
GetClipBox
CreateSolidBrush
CreateFontIndirectW
SelectObject
DeleteDC
CreateCompatibleDC
CreateBitmap
EnumFontsW
SetGraphicsMode
CreateRectRgnIndirect

oleaut32

VariantClear
SysAllocString
SysFreeString
VariantInit

crypt32

CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringW
CertAddCertificateContextToStore
CryptStringToBinaryW
CertFreeCertificateContext
CertFindCertificateInStore
CertEnumCertificatesInStore
CertCloseStore
CertOpenStore

wldap32

ord145
ord41
ord118
ord26
ord27
ord46
ord14
ord216
ord73
ord127
ord167
ord142
ord79
ord133
ord147
ord301
ord219
ord208

Exports

Exports

GetHandleVerifier

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 357KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.9MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.ress
Size: 9.4MB - Virtual size: 9.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

47c5d6a75cc1e7dd26a839adda4f61c1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78Certificate

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

2c:2a:cd:9e:52:b3:fc:95:24:22:9d:8d:21:3d:87:58Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78Certificate

Key Usages

0d:9d:6a:bc:d0:f9:df:4e:41:ee:cf:e8:d9:0f:a5:0bCertificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

80:ed:21:5a:fb:19:52:d2:1e:5e:f1:b5:1c:c6:e0:94:09:50:fd:a7:f4:96:78:9a:55:b4:a1:8b:a7:8d:08:c3Signer

07:74:a5:5a:e3:81:0c:51:5d:af:f2:b0:3e:9e:a1:f6:34:0d:34:e2Signer

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

version

kernel32

user32

advapi32

ole32

shlwapi

userenv

winmm

imm32

msimg32

gdiplus

iphlpapi

gdi32

oleaut32

crypt32

wldap32

Exports

Exports

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 357KB - Virtual size: 357KB

.data Size: 3.9MB - Virtual size: 4.0MB

.gfids Size: 1KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 384KB - Virtual size: 384KB

.reloc Size: 81KB - Virtual size: 81KB

.ress Size: 9.4MB - Virtual size: 9.4MB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

2c:2a:cd:9e:52:b3:fc:95:24:22:9d:8d:21:3d:87:58
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

0d:9d:6a:bc:d0:f9:df:4e:41:ee:cf:e8:d9:0f:a5:0b
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

80:ed:21:5a:fb:19:52:d2:1e:5e:f1:b5:1c:c6:e0:94:09:50:fd:a7:f4:96:78:9a:55:b4:a1:8b:a7:8d:08:c3
Signer

07:74:a5:5a:e3:81:0c:51:5d:af:f2:b0:3e:9e:a1:f6:34:0d:34:e2
Signer

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 357KB - Virtual size: 357KB

.data
Size: 3.9MB - Virtual size: 4.0MB

.gfids
Size: 1KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 384KB - Virtual size: 384KB

.reloc
Size: 81KB - Virtual size: 81KB

.ress
Size: 9.4MB - Virtual size: 9.4MB