448964c994ff9f6d10f8af64cab0b65f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

448964c994ff9f6d10f8af64cab0b65f_JaffaCakes118
Size

437KB
MD5

448964c994ff9f6d10f8af64cab0b65f
SHA1

9cf72b2ae303455aafd90efa8f0b6fcd6a8f9fe9
SHA256

7f6f32aec127098fd080f3528af9c48ea6cc956681f439adf8598967c2a877a6
SHA512

03a4956177d493c8b1d07ebc8d365bf8667e80fda231654bd782597bd47d52feed0037fb1f38fb8b84791aef98d6674b59dd69e3a3ccc35b5bb5cdf4b1150583
SSDEEP

12288:89kW21/w7pBQTJsYQVIwedeXlmt08Uz4rV+fjf92aaA:SkW2eBQm8Uz5jf9YA

Score

1^/10

Malware Config

Signatures

Files

448964c994ff9f6d10f8af64cab0b65f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

67cd22a28ed4e01b524711061e01870b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

11:ca:da:f2:9d:a4:c3:cb:11:3b:f1:87:7b:12:01:03
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/01/2013, 00:00

Not After

14/02/2016, 23:59

Subject

CN=IObit Information Technology,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IObit Information Technology,L=Chengdu,ST=Sichuan,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

rtl120.bpl

@System@initialization$qqrv
@System@Finalization$qqrv
@System@LoadResString$qqrp20System@TResStringRec
@System@UTF8Encode$qqrx31System@%AnsiStringT$us$i65535$%
@System@UTF8Encode$qqrx20System@UnicodeString
@System@UTF8Encode$qqrx17System@WideString
@System@FreeMemory$qpv
@System@TInterfacedObject@_Release$qqsv
@System@TInterfacedObject@_AddRef$qqsv
@System@TInterfacedObject@QueryInterface$qqsrx5_GUIDpv
@System@TInterfacedObject@NewInstance$qqrv
@System@TInterfacedObject@BeforeDestruction$qqrv
@System@TInterfacedObject@AfterConstruction$qqrv
@System@@IntfAddRef$qqrx45System@%DelphiInterface$t17System@IInterface%
@System@@IntfCast$qqrr45System@%DelphiInterface$t17System@IInterface%x45System@%DelphiInterface$t17System@IInterface%rx5_GUID
@System@@IntfCopy$qqrr45System@%DelphiInterface$t17System@IInterface%x45System@%DelphiInterface$t17System@IInterface%
@System@@IntfClear$qqrr45System@%DelphiInterface$t17System@IInterface%
@System@RegisterModule$qqrp17System@TLibModule
@System@FindResourceHInstance$qqrui
@System@@DynArrayAddRef$qqrv
@System@@DynArrayAsg$qqrv
@System@@DynArrayClear$qqrrpvpv
@System@@DynArrayCopy$qqrpvt1rpv
@System@@DynArraySetLength$qqrv
@System@@DynArrayHigh$qqrv
@System@@DynArrayLength$qqrv
@System@@_llshl$qqrv
@System@@_llmod$qqrv
@System@@_lldiv$qqrv
@System@@_llmul$qqrv
@System@@Dispose$qqrpvt1
@System@@New$qqripv
@System@@CopyRecord$qqrv
@System@@Finalize$qqrpvt1
@System@@FinalizeArray$qqrpvt1ui
@System@@FinalizeRecord$qqrpvt1
@System@@InitializeRecord$qqrpvt1
@System@Pos$qqrx20System@UnicodeStringt1
@System@@UniqueStringU$qqrr20System@UnicodeString
@System@@UStrDelete$qqrr20System@UnicodeStringii
@System@@UStrCopy$qqrx20System@UnicodeStringii
@System@@UStrEqual$qqrv
@System@@UStrCatN$qqrv
@System@@UStrCat3$qqrr20System@UnicodeStringx20System@UnicodeStringt2
@System@@UStrCat$qqrr20System@UnicodeStringx20System@UnicodeString
@System@@UStrSetLength$qqrr20System@UnicodeStringi
@System@@UStrLen$qqrx20System@UnicodeString
@System@@WStrFromUStr$qqrr17System@WideStringx20System@UnicodeString
@System@@UStrFromWStr$qqrr20System@UnicodeStringx17System@WideString
@System@@LStrFromUStr$qqrr27System@%AnsiStringT$us$i0$%x20System@UnicodeStringus
@System@@UStrFromLStr$qqrr20System@UnicodeStringx27System@%AnsiStringT$us$i0$%
@System@@UStrFromWArray$qqrr20System@UnicodeStringpbi
@System@@UStrFromArray$qqrr20System@UnicodeStringpci
@System@@UStrFromPWChar$qqrr20System@UnicodeStringpb
@System@@UStrFromPChar$qqrr20System@UnicodeStringpc
@System@@UStrFromChar$qqrr20System@UnicodeStringc
@System@@UStrFromPWCharLen$qqrr20System@UnicodeStringpbi
@System@@UStrFromPCharLen$qqrr20System@UnicodeStringpci
@System@@UStrToPWChar$qqrx20System@UnicodeString
@System@@UStrLAsg$qqrr20System@UnicodeStringx20System@UnicodeString
@System@@UStrAsg$qqrr20System@UnicodeStringx20System@UnicodeString
@System@@UStrArrayClr$qqrpvi
@System@@UStrClr$qqrpv
@System@@UStrAddRef$qqrpv
@System@@WStrAddRef$qqrr17System@WideString
@System@@WStrFromPWChar$qqrr17System@WideStringpb
@System@@WStrFromWChar$qqrr17System@WideStringb
@System@@WStrArrayClr$qqrpvi
@System@@WStrClr$qqrpv
@System@@Write0LString$qqrr15System@TTextRecx27System@%AnsiStringT$us$i0$%
@System@@LStrSetLength$qqrv
@System@Pos$qqrx31System@%AnsiStringT$us$i65535$%t1
@System@@LStrInsert$qqrv
@System@@LStrDelete$qqrv
@System@@LStrCopy$qqrv
@System@@UniqueStringA$qqrr27System@%AnsiStringT$us$i0$%
@System@UniqueString$qqrr27System@%AnsiStringT$us$i0$%
@System@@LStrToPChar$qqrx27System@%AnsiStringT$us$i0$%
@System@@LStrAddRef$qqrpv
@System@@LStrEqual$qqrv
@System@@LStrCatN$qqrv
@System@@LStrCat3$qqrv
@System@@LStrCat$qqrv
@System@@PCharLen$qqrpc
@System@@LStrLen$qqrx27System@%AnsiStringT$us$i0$%
@System@@LStrFromArray$qqrr27System@%AnsiStringT$us$i0$%pcius
@System@@LStrFromString$qqrr27System@%AnsiStringT$us$i0$%rx28System@%SmallString$iuc$255%us
@System@@LStrFromPWChar$qqrr27System@%AnsiStringT$us$i0$%pbus
@System@@LStrFromPChar$qqrr27System@%AnsiStringT$us$i0$%pcus
@System@@LStrFromChar$qqrr27System@%AnsiStringT$us$i0$%cus
@System@@EnsureAnsiString$qqrr27System@%AnsiStringT$us$i0$%us
@System@@InternalLStrFromUStr$qqrr27System@%AnsiStringT$us$i0$%x20System@UnicodeStringus
@System@@EnsureUnicodeString$qqrr20System@UnicodeString
@System@@InternalUStrFromLStr$qqrr20System@UnicodeStringx27System@%AnsiStringT$us$i0$%
@System@@LStrFromPCharLen$qqrr27System@%AnsiStringT$us$i0$%pcius
@System@@LStrLAsg$qqrpvpxv
@System@@LStrAsg$qqrpvpxv
@System@@LStrArrayClr$qqrpvi
@System@@LStrClr$qqrpv
@System@BeginThread$qqrpvuipqqrpv$it1uirui
@System@@RunError$qqruc
@System@@Halt0$qqrv
@System@@StartLib$qqrv
@System@@TryFinallyExit$qqrv
@System@@DoneExcept$qqrv
@System@@RaiseAgain$qqrv
@System@@RaiseExcept$qqrv
@System@@HandleAutoException$qqrv
@System@@HandleFinally$qqrv
@System@@HandleOnException$qqrv
@System@@HandleAnyException$qqrv
@System@@BeforeDestruction$qqrp14System@TObjectzc
@System@@AfterConstruction$qqrp14System@TObject
@System@@ClassDestroy$qqrp14System@TObject
@System@@ClassCreate$qqrp17System@TMetaClasso
@System@TObject@Dispatch$qqrpv
@System@TObject@BeforeDestruction$qqrv
@System@TObject@AfterConstruction$qqrv
@System@TObject@DefaultHandler$qqrpv
@System@TObject@ToString$qqrv
@System@TObject@SafeCallException$qqrp14System@TObjectpv
@System@@IsClass$qqrp14System@TObjectp17System@TMetaClass
@System@TObject@GetHashCode$qqrv
@System@TObject@Equals$qqrp14System@TObject
@System@TObject@Free$qqrv
@System@TObject@$bdtr$qqrv
@System@TObject@$bctr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrv
@System@TObject@ClassParent$qqrv
@System@TObject@ClassName$qqrv
@System@TObject@ClassType$qqrv
@System@@SetSub$qqrv
@System@@_CToPasStr$qqrp28System@%SmallString$iuc$255%pxc
@System@@WriteLn$qqrr15System@TTextRec
@System@@FillChar$qqrpvib
@System@@AStrCmp$qqrv
@System@@TRUNC$qqrv
@System@@ROUND$qqrv
@System@Get8087CW$qqrv
@System@Set8087CW$qqrus
@System@ParamCount$qqrv
@System@Move$qqrpxvpvi
@System@@_IOTest$qqrv
@System@RaiseList$qqrv
@System@AcquireExceptionObject$qqrv
@System@ExceptObject$qqrv
@System@@FreeMem$qqrpv
@System@@GetMem$qqri
@System@DebugHook
@System@HeapAllocFlags
@System@Output
@System@IsMultiThread
@System@IsConsole
@System@ErrorAddr
@System@MainThreadID
@System@ExceptionClass
@System@ExceptObjProc
@$xp$17System@UTF8String
@System@TInterfacedObject@
@$xp$17System@IInterface
@System@TObject@
@$xp$17System@AnsiString
@$xp$13System@string
@$xp$8Cardinal
@$xp$7Integer
@$xp$8SmallInt
@Sysconst@_SModuleAccessViolation
@Sysconst@_SExternalException
@Sysconst@_SWriteAccess
@Sysconst@_SReadAccess
@Sysconst@_SPrivilege
@Sysconst@_SControlC
@Sysconst@_SStackOverflow
@Sysconst@_SUnderflow
@Sysconst@_SOverflow
@Sysconst@_SZeroDivide
@Sysconst@_SInvalidOp
@Sysconst@_SIntOverflow
@Sysconst@_SRangeError
@Sysconst@_SDivByZero
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Sysutils@Exception@ToString$qqrv
@Sysutils@Exception@RaisingException$qqrp25Sysutils@TExceptionRecord
@Sysutils@Exception@GetBaseException$qqrv
@Sysutils@Exception@$bdtr$qqrv
@Sysutils@Exception@$bctr$qqrx20System@UnicodeStringpx14System@TVarRecxi
@Sysutils@Exception@$bctr$qqrx20System@UnicodeString
@Sysutils@StrToFloat$qqrx20System@UnicodeString
@Sysutils@FloatToStr$qqrg
@Sysutils@StrDispose$qqrpc
@Sysutils@AnsiStrAlloc$qqrui
@Sysutils@StrLen$qqrpxc
@Sysutils@FileExists$qqrx20System@UnicodeString
@Sysutils@IntToStr$qqrj
@Sysutils@IntToStr$qqri
@Sysutils@AnsiUpperCase$qqrx20System@UnicodeString
@Sysutils@LowerCase$qqrx20System@UnicodeString
@Sysutils@Exception@
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TStream@WriteBuffer$qqrpxvi
@Classes@TStream@ReadBuffer$qqrpvi
@Classes@TStream@SetPosition$qqrxj
@Classes@TStream@GetPosition$qqrv
@Classes@TStringList@$bctr$qqrv
@Classes@TList@Get$qqri
@Classes@TList@Add$qqrpv
@Classes@TMemoryStream@
@Classes@TCustomMemoryStream@
@Classes@TStream@
@Classes@TStringList@
@Classes@TList@
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Variants@initialization$qqrv
@Variants@Finalization$qqrv
@Varutils@initialization$qqrv
@Varutils@Finalization$qqrv

kernel32

TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LocalFree
LocalAlloc
lstrlenW
lstrcmpA
WriteFile
WaitForSingleObject
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnmapViewOfFile
TerminateThread
TerminateProcess
SystemTimeToFileTime
SuspendThread
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetThreadPriority
SetLastError
SetFilePointer
SetFileAttributesA
SetEvent
SetEndOfFile
ResumeThread
ResetEvent
RemoveDirectoryA
ReleaseMutex
ReadProcessMemory
ReadFile
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
OutputDebugStringW
OpenProcess
OpenFileMappingA
OpenFileMappingW
MapViewOfFile
LockResource
LocalSize
LocalFree
LocalAlloc
LoadResource
LoadLibraryExA
LoadLibraryW
LeaveCriticalSection
IsBadReadPtr
InitializeCriticalSection
GlobalUnlock
GlobalReAlloc
GlobalMemoryStatus
GlobalHandle
GlobalLock
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVersionExA
GetVersionExW
GetVersion
GetTickCount
GetThreadPriority
GetThreadLocale
GetThreadContext
GetTempPathA
GetSystemTime
GetSystemDirectoryW
GetProcAddress
GetPriorityClass
GetModuleHandleA
GetModuleHandleW
GetModuleFileNameA
GetModuleFileNameW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileTime
GetFileSize
GetFileAttributesA
GetFileAttributesW
GetDiskFreeSpaceA
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetComputerNameA
GetCommandLineA
GetCommandLineW
FreeResource
InterlockedIncrement
InterlockedDecrement
FreeLibrary
FormatMessageA
FindResourceA
FindResourceW
FindNextFileA
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnterCriticalSection
DuplicateHandle
DeleteFileA
DeleteFileW
DeleteCriticalSection
CreateThread
CreateRemoteThread
CreateProcessA
CreateProcessW
CreatePipe
CreateMutexA
CreateMutexW
CreateFileMappingA
CreateFileMappingW
CreateFileA
CreateFileW
CreateEventW
CreateDirectoryA
CopyFileA
CloseHandle
Beep
RtlUnwind

user32

CreateWindowExA
CreateWindowExW
WindowFromPoint
TranslateMessage
SystemParametersInfoW
ShowWindow
SetWindowTextA
SetWindowPos
SetWindowLongA
SetTimer
SetRect
SetForegroundWindow
SetFocus
SetCursor
SetClipboardData
SetCapture
SetActiveWindow
SendMessageTimeoutA
SendMessageA
SendMessageW
ScreenToClient
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClassA
PostThreadMessageA
PostThreadMessageW
PostQuitMessage
PostMessageA
PostMessageW
PeekMessageA
PeekMessageW
OpenClipboard
OffsetRect
MessageBoxA
MessageBeep
LoadImageA
LoadCursorW
KillTimer
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsIconic
IsDialogMessageW
InvalidateRect
InflateRect
GetWindowThreadProcessId
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetWindow
GetMessageA
GetMessageW
GetKeyState
GetIconInfo
GetFocus
GetDC
GetCursorPos
GetCursor
GetClientRect
GetClassNameA
GetCapture
FrameRect
FindWindowW
FillRect
EnumWindows
EndPaint
EnableWindow
EmptyClipboard
DrawTextA
DrawIconEx
DrawFrameControl
DrawFocusRect
DispatchMessageW
DestroyWindow
DefWindowProcA
DefWindowProcW
CloseClipboard
CallWindowProcW
BringWindowToTop
BeginPaint
AttachThreadInput

gdi32

TextOutA
StartPage
StartDocA
SetTextColor
SetMapMode
SetBkMode
SetBkColor
SelectObject
SelectClipRgn
MoveToEx
LineTo
GetTextMetricsW
GetTextFaceA
GetTextExtentPoint32A
GetStockObject
GetRgnBox
GetObjectW
GetDeviceCaps
GdiFlush
EndPage
EndDoc
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreatePen
CreateFontA
CreateFontW
CreateDIBSection
CreateDCW
CreateCompatibleDC
CombineRgn
BitBlt

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoW

advapi32

SetSecurityDescriptorDacl
RegSetValueExA
RegQueryValueExA
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExA
RegOpenKeyExW
RegEnumKeyA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
InitializeSecurityDescriptor
GetUserNameA
FreeSid
AllocateAndInitializeSid

wsock32

WSACleanup
WSAStartup
gethostbyname
socket
setsockopt
sendto
send
select
recvfrom
recv
inet_addr
htons
connect
closesocket
bind

shell32

ShellExecuteExA
ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc

comdlg32

PrintDlgW
GetSaveFileNameA

comctl32

ImageList_Destroy
ImageList_Create
InitCommonControls

sqlite3

sqlite3_bind_parameter_index
sqlite3_bind_null
sqlite3_bind_int64
sqlite3_bind_int
sqlite3_bind_double
sqlite3_bind_text
sqlite3_bind_blob
sqlite3_reset
sqlite3_finalize
sqlite3_column_int64
sqlite3_column_type
sqlite3_column_text
sqlite3_column_double
sqlite3_column_bytes
sqlite3_column_blob
sqlite3_step
sqlite3_column_decltype
sqlite3_column_name
sqlite3_column_count
sqlite3_prepare_v2
sqlite3_free
sqlite3_errcode
sqlite3_errmsg
sqlite3_close
sqlite3_open

Exports

Exports

RepairChromeCk
RepairChromeDown
RepairChromeFill
RepairChromeHis
RepairMozCk
RepairMozHis
ScanChromeCk
ScanMozCk
madTraceProcess

Sections

.text
Size: 338KB - Virtual size: 338KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 271B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67cd22a28ed4e01b524711061e01870b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

11:ca:da:f2:9d:a4:c3:cb:11:3b:f1:87:7b:12:01:03Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

Signer

Headers

File Characteristics

Imports

rtl120.bpl

kernel32

user32

gdi32

version

advapi32

wsock32

shell32

comdlg32

comctl32

sqlite3

Exports

Exports

Sections

.text Size: 338KB - Virtual size: 338KB

.itext Size: 1024B - Virtual size: 620B

.data Size: 13KB - Virtual size: 13KB

.bss Size: - Virtual size: 4KB

.idata Size: 19KB - Virtual size: 18KB

.edata Size: 512B - Virtual size: 271B

.reloc Size: 15KB - Virtual size: 14KB

.rsrc Size: 42KB - Virtual size: 42KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

11:ca:da:f2:9d:a4:c3:cb:11:3b:f1:87:7b:12:01:03
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

.text
Size: 338KB - Virtual size: 338KB

.itext
Size: 1024B - Virtual size: 620B

.data
Size: 13KB - Virtual size: 13KB

.bss
Size: - Virtual size: 4KB

.idata
Size: 19KB - Virtual size: 18KB

.edata
Size: 512B - Virtual size: 271B

.reloc
Size: 15KB - Virtual size: 14KB

.rsrc
Size: 42KB - Virtual size: 42KB