6369d283cab0ad530173bc2bf4fd7110_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

6369d283cab0ad530173bc2bf4fd7110_NeikiAnalytics
Size

4.4MB
MD5

6369d283cab0ad530173bc2bf4fd7110
SHA1

364a6d9da1ef35a059135c1f6ec72ec8a6d40979
SHA256

aac15a0a5d7ac0045bec3fcbbd3ba8fe054cf5005f43a642c72a0940e8f1d85a
SHA512

101aa6f76c9ce46817bbc64c956985d0b0605aab54e04badd17e81e8e0d889b825a99d802201941bc58e1a77799e1b51a14ced4bf95690c9d702621790fa15c0
SSDEEP

49152:1h0tyvofTmzxQ0oDeI+C5ifM7EYYviPGujFF:LKMG025iUZr7

Score

1^/10

Malware Config

Signatures

Files

6369d283cab0ad530173bc2bf4fd7110_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

a8a72d9175b451db3f4231c2aba88787

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6d
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

17-11-2006 00:00

Not After

16-07-2036 23:59

Subject

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

16:de:1d:f4:32:61:4c:26:96:49:ae:39:80:02:fb:00
Certificate

Issuer

CN=thawte SHA256 Code Signing CA,O=thawte\, Inc.,C=US

Not Before

29-03-2016 00:00

Not After

28-04-2018 23:59

Subject

CN=BYTO,O=BYTO,L=Seongdong-gu,ST=SEOUL,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

71:a0:b7:36:95:dd:b1:af:c2:3b:2b:9a:18:ee:54:cb
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=thawte SHA256 Code Signing CA,O=thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Project\10_KT\KT_Biz_20\Binary\BIZ_KTC_20\Release\KTPC.pdb

Imports

iphlpapi

GetAdaptersInfo

gdiplus

GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipDrawString
GdipDrawImageI
GdipDrawImagePointRectI
GdipCreatePen1
GdipDeletePen
GdipDrawLineI
GdipDrawImageRectI
GdiplusStartup
GdiplusShutdown
GdipCreateStringFormat
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCloneImage
GdipDeleteFont
GdipDrawRectangleI
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorKeys
GdipDrawImageRectRectI
GdipDeleteGraphics
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImageGraphicsContext
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipSetPixelOffsetMode
GdipSetCompositingQuality
GdipCreateFromHDC
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFont
GdipFillRectangleI
GdipFillPolygonI
GdipFillRectangle
GdipSaveImageToFile
GdipResetPath
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdipSetPenMode
GdipCreatePath
GdipDeletePath
GdipFillPath
GdipDrawPath
GdipGetDpiX
GdipSetStringFormatTrimming
GdipCreateHBITMAPFromBitmap
GdipSetStringFormatTabStops
GdipDisposeImage
GdipMeasureString
GdipCreateSolidFill
GdipGraphicsClear
GdipCloneBrush
GdipAlloc
GdipFree
GdipGetImageHeight
GdipDeleteBrush

ktpsock

ord8
ord7
ord9
ord2
ord5
ord1
ord3

ollehapi

BizSvcContactFindByNumber
BizTableLong
BizSvcCallInsertCID
BizSvcCallUpdateCID
BizSvcTelInfoData
BizSvcSyncReSetTL
BizSvcSmsData
BizSvcMmsRecv
BizSvcSyncTLM
BizSvcSmsRecv
BizSvcSyncMT
BizSvcSyncHook
BizSvcSyncAD
BizSvcSyncCGO
BizSvcSyncTL
BizSvcSyncTS
BizSvcSyncTSM
BizSvcSyncMemoGroup
BizSvcShowNoti
BizSvcCallCount
BizSvcCallDelete
BizSvcMemoList
BizSvcMemoCount
BizSvcSmsList
BizSvcCallData
BizSvcSmsCount
BizSvcSmsDelete
BizSvcMmsFile
BizSvcToDoList
BizSvcToDoData
BizSvcTelInfoCallMain
BizSvcTelInfoSmsSentable
BizSvcSmsReserveSend
BizSvcSmsSend
BizSvcMmsSend
BizSvcContactGroupPath
BizSvcContactLinkList
BizSvcEnableContactL
BizSvcEnableContactR
BizSvcContactUpdate
BizSvcContactPhoneUpdate
BizSvcContactPhoneDelete
BizSvcMemoUpdate
BizSvcMemoInsert
BizSvcContactGroupList
BizTableChar
BizSvcCallList
BizSvcSmsReserveDelete
BizSvcSmsReserveUpdate
BizSvcSmsReserveInfo
BizSvcToDoDelete
BizSvcToDoUpdate
BizSvcToDoInsert
BizSvcToDoUpdateShow
BizSvcMemoData
BizSvcContactLinkDelete
BizSvcContactPhoneInsert
BizSvcContactPhoneData
BizSvcContactUpdateExt
BizSvcContactInsert
BizSvcContactLinkInsert
BizSvcContactGroupDelete
BizSvcContactDelete
BizSvcPhoneDataRow
BizSvcContactGroupInsert
BizSvcContactLinkUpateNumber
BizSvcContactGroupUpdate
BizSvcContactGroupExpand
BizSvcMemoDelete
BizSvcContactData
BizSvcCtcSend
BizSvcEnableContactM
BizSvcContactList
BizSvcMemoListByCaller
BizSvcCallListByCaller
BizSvcSmsListByCaller
BizTableLength
BizSvcShowConfig
BizSvcInit
BizSvcDeveloperMode
BizSvcClose
BizSvcScSeqno
BizSvcMiSeqno
BizSvcShowAlert
BizSvcShowConfirm
BizSvcCgSeqno
BizSvcMiRight
BizSvcLogout
BizSvcEnvGet
BizSvcShowJoin
BizSvcShowSearchPwd
BizSvcShowFAQ
BizSvcInitSession
BizSvcLogin
BizSvcPoiService
BizSvcEnvSet
BizSvcShowAgreement
BizSvcShowLoginFail
BizSvcTelInfoList
BizTableString
BizTableInt
BizSvcHost
BizTableFree
BizSvcSession

kernel32

GetCommandLineA
OpenProcess
ResetEvent
AreFileApisANSI
GetSystemTime
DeleteFileW
OutputDebugStringA
GetFileAttributesExW
CreateFileMappingW
GetDiskFreeSpaceW
LockFileEx
GetTempPathW
CreateFileW
GetFileAttributesW
HeapValidate
GetVersionExW
FormatMessageW
UnlockFileEx
OutputDebugStringW
WaitForSingleObjectEx
FlushViewOfFile
TryEnterCriticalSection
HeapCompact
CreateMutexW
GetFullPathNameW
InterlockedCompareExchange
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
InitializeCriticalSectionAndSpinCount
PeekNamedPipe
GetFileInformationByHandle
GetConsoleMode
GetConsoleCP
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
LCMapStringW
LCMapStringA
VirtualFree
HeapDestroy
CreateMutexA
GetLastError
CloseHandle
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
LoadLibraryA
GetProcAddress
FreeLibrary
LoadLibraryExA
MultiByteToWideChar
CreateFileMappingA
OpenFileMappingA
MapViewOfFile
UnmapViewOfFile
SetLastError
GetModuleHandleA
GetTempPathA
GetTempFileNameA
lstrlenA
GetTickCount
GetModuleFileNameA
SleepEx
ResumeThread
WaitForSingleObject
GetExitCodeThread
Sleep
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GlobalAlloc
GlobalLock
GlobalUnlock
FreeResource
GlobalReAlloc
GlobalFree
GetCurrentThreadId
GetVersionExA
GetExitCodeProcess
CreateToolhelp32Snapshot
Process32First
Process32Next
Module32First
Module32Next
FormatMessageA
LocalFree
MulDiv
lstrcpynA
GetCurrentProcessId
GetVersion
SwitchToThread
lstrcmpW
CompareStringA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetModuleFileNameW
InterlockedDecrement
SetThreadPriority
SetEvent
SuspendThread
CreateEventA
lstrcmpA
InterlockedExchange
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
lstrlenW
GlobalSize
CopyFileA
WritePrivateProfileStringA
FileTimeToSystemTime
SystemTimeToFileTime
GetProfileIntA
MoveFileA
DeleteFileA
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
CreateFileA
InterlockedIncrement
RaiseException
GetFileAttributesA
SetFileTime
GetFileTime
GetDiskFreeSpaceA
LocalAlloc
TlsGetValue
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
GetModuleHandleW
FileTimeToLocalFileTime
GetFileAttributesExA
LocalFileTimeToFileTime
GetFileSizeEx
SetErrorMode
LoadLibraryW
GetSystemTimeAsFileTime
HeapFree
GetTimeFormatA
GetDateFormatA
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapCreate
GetStartupInfoA
CreateDirectoryA
GetDriveTypeA
HeapReAlloc
GetTimeZoneInformation
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
ExitThread
CreateThread
ExitProcess
HeapSize
GetACP
IsValidCodePage
GetStringTypeA
GetStringTypeW

user32

IsDialogMessageA
SetWindowTextA
IsWindowEnabled
ValidateRect
GetActiveWindow
PostQuitMessage
CheckMenuItem
ModifyMenuA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetMenuStringA
SetWindowContextHelpId
ShowOwnedPopups
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetMenuItemInfoA
DestroyMenu
SetRectEmpty
GetDCEx
CharUpperA
CopyAcceleratorTableA
InvalidateRgn
UnregisterClassA
CharNextA
GetNextDlgGroupItem
MessageBeep
TranslateAcceleratorA
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
EndPaint
BeginPaint
GetWindowDC
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
GetMessageTime
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
IsWindowVisible
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
CallWindowProcA
GetMenu
IntersectRect
GetWindowPlacement
TranslateMessage
GetSysColorBrush
GetClassInfoA
RegisterClipboardFormatA
GrayStringA
LoadStringA
DrawTextExA
TabbedTextOutA
DrawTextA
DestroyIcon
GetWindowRgn
MoveWindow
DestroyWindow
SetWindowLongA
CreateWindowExA
RegisterClassExA
DefWindowProcA
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetAsyncKeyState
GetFocus
UpdateWindow
GetSysColor
GetScrollBarInfo
InflateRect
ReleaseCapture
SetCapture
AppendMenuA
LoadMenuA
GetMenuState
GetMenuItemID
GetMenuItemCount
FillRect
WindowFromPoint
OffsetRect
DrawIcon
GetSystemMetrics
IsIconic
MonitorFromPoint
GetWindowRgnBox
LoadIconA
MonitorFromRect
SetWindowRgn
MapWindowPoints
CopyRect
GetMonitorInfoA
MessageBoxA
GetWindow
FindWindowA
BringWindowToTop
AttachThreadInput
GetWindowThreadProcessId
GetWindowLongA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
IsRectEmpty
SetRect
PostThreadMessageA
DispatchMessageA
GetMessageA
GetForegroundWindow
GetMessagePos
SetCursor
ReleaseDC
MapDialogRect
GetDC
ScreenToClient
PtInRect
RedrawWindow
LoadBitmapA
GetClientRect
ClientToScreen
EnableMenuItem
SystemParametersInfoA
SetActiveWindow
ShowWindow
SetWindowPos
GetParent
CreatePopupMenu
GetWindowRect
GetCursorPos
InvalidateRect
SetForegroundWindow
GetLastActivePopup
GetDesktopWindow
PostMessageA
RegisterWindowMessageA
EnableWindow
KillTimer
SendMessageA
IsWindow
PeekMessageA
SetTimer
LoadCursorA
GetClassNameA
GetSubMenu

gdi32

GetObjectA
GetTextColor
GetRgnBox
Ellipse
CreateEllipticRgn
SetRectRgn
PatBlt
CreateRectRgnIndirect
CopyMetaFileA
CreateBitmap
CreatePatternBrush
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetPixel
SelectClipRgn
MoveToEx
LineTo
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
GetBkMode
GetBkColor
DPtoLP
GetViewportExtEx
GetWindowExtEx
GetMapMode
PtInRegion
StretchBlt
CreateFontIndirectA
Rectangle
RoundRect
CreatePen
GetCurrentObject
CreateRoundRectRgn
CreateRectRgn
LPtoDP
CreateCompatibleBitmap
GetDeviceCaps
DeleteDC
CombineRgn
ExtCreateRegion
BitBlt
DeleteObject
SelectObject
CreateDIBSection
CreateCompatibleDC
CreateFontA
GetTextMetricsA
CreateSolidBrush
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegEnumKeyA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegOpenKeyA
RegCreateKeyExA

shell32

ShellExecuteA
DragAcceptFiles
SHGetFolderPathA
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExA
SHGetSpecialFolderPathA
Shell_NotifyIconA
DragFinish
DragQueryFileA

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA

oledlg

ord8

ole32

CoRegisterMessageFilter
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoInitializeEx
CoUninitialize
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize

oleaut32

OleCreateFontIndirect
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
VariantChangeType
VarBstrCat
VariantInit
VariantCopy
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VariantClear
VarDateFromStr
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString
SysStringLen
SysAllocStringLen
VarUdateFromDate

wsock32

__WSAFDIsSet
inet_ntoa
getsockopt
WSAStartup
WSACleanup
closesocket
socket
select
gethostbyname
htons
ioctlsocket
WSAGetLastError
WSASetLastError
connect
send
recv
shutdown
setsockopt

wininet

HttpSendRequestExA
HttpAddRequestHeadersA
HttpSendRequestA
InternetSetOptionA
HttpOpenRequestA
InternetReadFile
HttpQueryInfoA
InternetConnectA
InternetOpenA
InternetWriteFile
HttpEndRequestA
InternetCloseHandle

wintrust

WinVerifyTrust
WTHelperProvDataFromStateData
WTHelperGetProvSignerFromChain
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminAcquireContext
CryptCATAdminReleaseContext

crypt32

CryptVerifyCertificateSignatureEx
CertGetNameStringA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8a72d9175b451db3f4231c2aba88787

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6dCertificate

Key Usages

16:de:1d:f4:32:61:4c:26:96:49:ae:39:80:02:fb:00Certificate

Extended Key Usages

Key Usages

71:a0:b7:36:95:dd:b1:af:c2:3b:2b:9a:18:ee:54:cbCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

iphlpapi

gdiplus

ktpsock

ollehapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wsock32

wininet

wintrust

crypt32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 253KB - Virtual size: 252KB

.data Size: 25KB - Virtual size: 45KB

.rsrc Size: 2.7MB - Virtual size: 2.7MB

.reloc Size: 121KB - Virtual size: 120KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6d
Certificate

16:de:1d:f4:32:61:4c:26:96:49:ae:39:80:02:fb:00
Certificate

71:a0:b7:36:95:dd:b1:af:c2:3b:2b:9a:18:ee:54:cb
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 253KB - Virtual size: 252KB

.data
Size: 25KB - Virtual size: 45KB

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

.reloc
Size: 121KB - Virtual size: 120KB