01063b460a9c8357093ea2c879b4872c9f4901a00ababf050927c20f3cf4b2d3

Sharing

Copy URL Twitter E-mail

General

Target

01063b460a9c8357093ea2c879b4872c9f4901a00ababf050927c20f3cf4b2d3
Size

2.3MB
MD5

bc127091bbe1b674bd43ffcb155e5e86
SHA1

c5a604816b509a8602a97b6bd5f33ec0ded07f0a
SHA256

01063b460a9c8357093ea2c879b4872c9f4901a00ababf050927c20f3cf4b2d3
SHA512

8dbc858c8d74f95090e4d358ba115a42e6c5088a428faab64e336254863a576cdc1163f885483b9dc55c076f3ecf3c61a089bd31ed31c5832ad408e5497f0cf0
SSDEEP

49152:C/mRv38jZ/oX1FiV+YrZDuqn+w4ITndyD4jdj12UBwYPoltt:C/43c/olFP0ZDuKv4EndyD4jdTvol/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/mysqlTools.exe

Files

01063b460a9c8357093ea2c879b4872c9f4901a00ababf050927c20f3cf4b2d3
.zip
libmysql.dll
.dll windows:6 windows x86 arch:x86

168aae3b7192b05902c224d00a4da87a

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:10:58:84:eb:95:9d:3b:c8:b9:94:f9:18:a7:b6:ee
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2020, 00:00

Not After

11/01/2022, 12:00

Subject

CN=Oracle America\, Inc.,OU=Software Engineering,O=Oracle America\, Inc.,L=Redwood City,ST=California,C=US,1.2.840.113549.1.9.1=#0c14706b6961646d5f7573406f7261636c652e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

65:dd:8f:c5:00:38:8a:78:8d:13:45:62:1e:9e:f1:c0:e8:26:03:de:41:75:86:b1:01:f4:f7:66:ba:39:6f:a7
Signer

Actual PE Digest

65:dd:8f:c5:00:38:8a:78:8d:13:45:62:1e:9e:f1:c0:e8:26:03:de:41:75:86:b1:01:f4:f7:66:ba:39:6f:a7

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\build\sb_1-4394188-1631006091.55\release\libmysql\RelWithDebInfo\libmysql.pdb

Imports

msvcr120

_vsnwprintf
_vsnprintf
_exit
raise
_strdup
_wfopen
_gmtime64_s
vfprintf
??_V@YAXPAX@Z
??_U@YAPAXI@Z
_except1
??1type_info@@UAE@XZ
?terminate@@YAXXZ
wcsstr
strspn
feof
_setmode
_stat64i32
__CppXcptFilter
strcmp
sscanf
memchr
_stricmp
strstr
strcspn
puts
fgets
_strtoui64
_strtoi64
putchar
putc
printf
fwrite
ftell
fseek
fread
ferror
toupper
_findnext64i32
_findfirst64i32
_findclose
_endthreadex
_beginthreadex
_stat64
_fstat64
_open_osfhandle
_get_osfhandle
_umask
_close
fputs
fputc
fflush
strrchr
fprintf
strerror_s
strcat_s
signal
_set_abort_behavior
calloc
_tzset
_set_invalid_parameter_handler
__iob_func
strtok_s
strncpy
strncat
_strnicmp
realloc
qsort
strtol
malloc
strnlen
ldiv
__CxxFrameHandler3
_CxxThrowException
fopen
fclose
??3@YAXPAX@Z
??2@YAPAXI@Z
_purecall
_hypot
_time64
_localtime64_s
strtoul
exit
_errno
strncmp
strchr
memset
memcpy
floor
getenv
atoi
sprintf
memmove
_getch
_cputs
iscntrl
isspace
_putenv
_fdopen
_getcwd
_chdir
_dup2
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
_initterm_e
_initterm
_malloc_crt
free
_amsg_exit
_fileno
freopen

kernel32

IsProcessorFeaturePresent
IsDebuggerPresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetEnvironmentVariableW
ReadConsoleW
ReadConsoleA
SetConsoleMode
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetConsoleMode
LoadLibraryW
ConvertThreadToFiber
ConvertFiberToThread
FormatMessageW
GetFileType
GetVersion
GetModuleHandleW
FindClose
MultiByteToWideChar
FindFirstFileW
FindNextFileW
WideCharToMultiByte
CreateFiber
SwitchToFiber
DeleteFiber
InterlockedExchangeAdd
InterlockedCompareExchange
DecodePointer
GetModuleHandleExW
GetSystemTime
SystemTimeToFileTime
GetModuleHandleA
GetModuleFileNameA
GetWindowsDirectoryA
GetSystemDirectoryA
GetLogicalDrives
TerminateThread
GetCurrentProcess
DuplicateHandle
SetFilePointerEx
SetEndOfFile
GetFileSizeEx
GetFileAttributesExA
FlushFileBuffers
GetStdHandle
LoadLibraryA
GetFullPathNameA
GetFileAttributesA
Sleep
GetLocaleInfoA
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
QueryPerformanceFrequency
WaitForMultipleObjects
CancelIo
GetOverlappedResult
PeekNamedPipe
DisconnectNamedPipe
SetLastError
WriteFile
ReadFile
CreateEventA
GetConsoleCP
WaitNamedPipeA
OpenFileMappingA
OpenMutexA
UnmapViewOfFile
MapViewOfFile
OpenEventA
WaitForSingleObject
ReleaseMutex
SetEvent
SetNamedPipeHandleState
CloseHandle
CreateFileA
FormatMessageA
LoadLibraryExA
GetProcAddress
FreeLibrary
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetLastError
EncodePointer
InitializeCriticalSectionAndSpinCount

crypt32

CertOpenStore
CertDuplicateCertificateContext
CertCloseStore
CertEnumCertificatesInStore
CertFreeCertificateContext
CertGetCertificateContextProperty
CertFindCertificateInStore

secur32

FreeCredentialsHandle
AcquireCredentialsHandleA
DeleteSecurityContext
InitializeSecurityContextW
GetUserNameExW
FreeContextBuffer
CompleteAuthToken

msvcp120

?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ

bcrypt

BCryptGenRandom

user32

MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW

advapi32

CryptDestroyHash
CryptExportKey
CryptGetUserKey
CryptAcquireContextW
CryptGetProvParam
CryptDestroyKey
CryptReleaseContext
CryptEnumProvidersW
RegisterEventSourceW
ReportEventW
DeregisterEventSource
RegOpenKeyExA
RegEnumValueA
RegCloseKey
CryptSignHashW
CryptSetHashParam
CryptCreateHash
EqualSid
GetTokenInformation
IsValidSid
LookupAccountNameW
CryptDecrypt

ws2_32

getsockname
socket
WSAGetLastError
getaddrinfo
freeaddrinfo
__WSAFDIsSet
connect
ioctlsocket
getpeername
closesocket
htonl
recv
select
send
setsockopt
shutdown
WSASetLastError
WSAIoctl
getnameinfo
WSAStartup
WSACleanup
gethostbyname
listen
accept
bind
getservbyname
ntohs
getsockopt

Exports

Exports

get_tty_password
handle_options
my_init
my_load_defaults
my_make_scrambled_password
mysql_affected_rows
mysql_autocommit
mysql_change_user
mysql_character_set_name
mysql_client_find_plugin
mysql_client_register_plugin
mysql_close
mysql_commit
mysql_data_seek
mysql_debug
mysql_dump_debug_info
mysql_eof
mysql_errno
mysql_error
mysql_escape_string
mysql_fetch_field
mysql_fetch_field_direct
mysql_fetch_fields
mysql_fetch_lengths
mysql_fetch_row
mysql_field_count
mysql_field_seek
mysql_field_tell
mysql_free_result
mysql_get_character_set_info
mysql_get_client_info
mysql_get_client_version
mysql_get_host_info
mysql_get_option
mysql_get_proto_info
mysql_get_server_info
mysql_get_server_version
mysql_get_ssl_cipher
mysql_hex_string
mysql_info
mysql_init
mysql_insert_id
mysql_kill
mysql_list_dbs
mysql_list_fields
mysql_list_processes
mysql_list_tables
mysql_load_plugin
mysql_load_plugin_v
mysql_more_results
mysql_next_result
mysql_num_fields
mysql_num_rows
mysql_options
mysql_options4
mysql_ping
mysql_plugin_options
mysql_query
mysql_read_query_result
mysql_real_connect
mysql_real_escape_string
mysql_real_escape_string_quote
mysql_real_query
mysql_refresh
mysql_reset_connection
mysql_rollback
mysql_row_seek
mysql_row_tell
mysql_select_db
mysql_send_query
mysql_server_end
mysql_server_init
mysql_session_track_get_first
mysql_session_track_get_next
mysql_set_character_set
mysql_set_local_infile_default
mysql_set_local_infile_handler
mysql_set_server_option
mysql_shutdown
mysql_sqlstate
mysql_ssl_set
mysql_stat
mysql_stmt_affected_rows
mysql_stmt_attr_get
mysql_stmt_attr_set
mysql_stmt_bind_param
mysql_stmt_bind_result
mysql_stmt_close
mysql_stmt_data_seek
mysql_stmt_errno
mysql_stmt_error
mysql_stmt_execute
mysql_stmt_fetch
mysql_stmt_fetch_column
mysql_stmt_field_count
mysql_stmt_free_result
mysql_stmt_init
mysql_stmt_insert_id
mysql_stmt_next_result
mysql_stmt_num_rows
mysql_stmt_param_count
mysql_stmt_param_metadata
mysql_stmt_prepare
mysql_stmt_reset
mysql_stmt_result_metadata
mysql_stmt_row_seek
mysql_stmt_row_tell
mysql_stmt_send_long_data
mysql_stmt_sqlstate
mysql_stmt_store_result
mysql_store_result
mysql_thread_end
mysql_thread_id
mysql_thread_init
mysql_thread_safe
mysql_use_result
mysql_warning_count

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 398KB - Virtual size: 711KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mysqlTools.exe
.exe windows:4 windows x86 arch:x86

f8560d4459c79234878cbf6ecf1eda17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
GetACP
HeapSize
TerminateProcess
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
RtlUnwind
GetStartupInfoA
GetOEMCP
GetCPInfo
GetProcessVersion
SetErrorMode
GlobalFlags
FreeEnvironmentStringsA
GetCurrentThread
GetFileTime
GetFileSize
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
lstrcmpA
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpiA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
lstrcpynA
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
LocalFree
InterlockedDecrement
InterlockedIncrement
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
SetEnvironmentVariableA
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
CompareStringA
CompareStringW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CreateSemaphoreA
ResumeThread
ReleaseSemaphore
EnterCriticalSection
LeaveCriticalSection
GetProfileStringA
WriteFile
WaitForMultipleObjects
CreateFileA
SetEvent
FindResourceA
LoadResource
LockResource
ReadFile
lstrlenW
GetModuleFileNameA
GetCurrentProcessId
GetCurrentThreadId
ExitProcess
GlobalSize
GlobalFree
DeleteCriticalSection
InitializeCriticalSection
lstrcatA
lstrlenA
WinExec
lstrcpyA
FindNextFileA
GlobalReAlloc
CloseHandle
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
GetUserDefaultLCID
MultiByteToWideChar
WideCharToMultiByte
GetFullPathNameA
FreeLibrary
LoadLibraryA
GetLastError
GetVersionExA
WritePrivateProfileStringA
GetPrivateProfileStringA
CreateThread
CreateEventA
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
FindFirstFileA
FindClose
GetFileAttributesA
MoveFileA
DeleteFileA
SetCurrentDirectoryA
GetVolumeInformationA
GetModuleHandleA
GetProcAddress
MulDiv
GetCommandLineA
GetTickCount
CreateProcessA
WaitForSingleObject

user32

LoadIconA
TranslateMessage
DrawFrameControl
DrawEdge
DrawFocusRect
WindowFromPoint
GetMessageA
DispatchMessageA
SetRectEmpty
RegisterClipboardFormatA
CreateIconFromResourceEx
CreateIconFromResource
DrawIconEx
CreatePopupMenu
AppendMenuA
ModifyMenuA
CreateMenu
CreateAcceleratorTableA
GetDlgCtrlID
GetSubMenu
EnableMenuItem
ClientToScreen
EnumDisplaySettingsA
LoadImageA
SystemParametersInfoA
ShowWindow
TranslateAcceleratorA
GetKeyState
CopyAcceleratorTableA
PostQuitMessage
GetWindowThreadProcessId
IsWindowEnabled
EnumWindows
IsZoomed
GetClassInfoA
DefWindowProcA
GetSystemMenu
DeleteMenu
GetMenu
SetMenu
PeekMessageA
IsIconic
SetFocus
GetActiveWindow
GetWindow
DestroyAcceleratorTable
SetWindowRgn
GetMessagePos
ScreenToClient
ChildWindowFromPointEx
CopyRect
LoadBitmapA
WinHelpA
KillTimer
SetTimer
GetCapture
SetCapture
GetScrollRange
SetScrollRange
SetScrollPos
SetRect
InflateRect
IntersectRect
DestroyIcon
PtInRect
OffsetRect
IsWindowVisible
EnableWindow
UnregisterClassA
GetWindowLongA
SetWindowLongA
GetSysColor
SetActiveWindow
SetCursorPos
LoadCursorA
SetCursor
GetDC
FillRect
IsRectEmpty
ReleaseDC
IsChild
DestroyMenu
SetForegroundWindow
GetWindowRect
EqualRect
UpdateWindow
ValidateRect
InvalidateRect
GetClientRect
GetFocus
GetParent
GetTopWindow
PostMessageA
IsWindow
SetParent
DestroyCursor
GetWindowTextA
GetWindowTextLengthA
CharUpperA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
GetDlgItem
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetWindowPlacement
RegisterWindowMessageA
GetForegroundWindow
GetLastActivePopup
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
UnhookWindowsHookEx
SetPropA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
GetMenuItemID
GetMenuItemCount
RegisterClassA
GetScrollPos
AdjustWindowRectEx
MapWindowPoints
SendDlgItemMessageA
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
GetMenuCheckMarkDimensions
GetClassNameA
GetDesktopWindow
LoadStringA
GetSysColorBrush
SendMessageA
SetWindowPos
MessageBoxA
ReleaseCapture
GetCursorPos
GetSystemMetrics
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CloseClipboard
wsprintfA
WaitForInputIdle
RedrawWindow

gdi32

Escape
ExtTextOutA
GetTextMetricsA
TextOutA
RectVisible
PtVisible
GetViewportExtEx
ExtSelectClipRgn
SetBkColor
CreateRectRgnIndirect
SetStretchBltMode
GetClipRgn
CreatePolygonRgn
SelectClipRgn
DeleteObject
CreateDIBitmap
GetSystemPaletteEntries
CreatePalette
StretchBlt
SelectPalette
RealizePalette
GetDIBits
GetWindowExtEx
GetViewportOrgEx
GetWindowOrgEx
BeginPath
EndPath
PathToRegion
CreateEllipticRgn
CreateRoundRectRgn
GetTextColor
GetBkMode
GetBkColor
GetROP2
GetStretchBltMode
GetPolyFillMode
CreateCompatibleBitmap
CreateDCA
FillRgn
CreateBitmap
SelectObject
CreatePen
PatBlt
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateRectRgn
CombineRgn
CreateSolidBrush
CreateFontIndirectA
GetStockObject
GetObjectA
EndPage
EndDoc
DeleteDC
StartDocA
StartPage
BitBlt
CreateCompatibleDC
Ellipse
Rectangle
LPtoDP
DPtoLP
GetCurrentObject
RoundRect
GetTextExtentPoint32A
GetDeviceCaps
LineTo
MoveToEx
ExcludeClipRect
GetClipBox

winmm

waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
waveOutPause
waveOutReset
waveOutClose
waveOutGetNumDevs
waveOutOpen
midiOutUnprepareHeader
midiStreamOpen
midiStreamProperty
midiOutPrepareHeader
midiStreamOut
midiStreamStop
midiOutReset
midiStreamClose
midiStreamRestart

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA

shell32

ShellExecuteA
Shell_NotifyIconA

ole32

CLSIDFromProgID
OleRun
CoCreateInstance
CLSIDFromString
OleUninitialize
OleInitialize

oleaut32

SafeArrayAccessData
SafeArrayGetElement
VariantCopyInd
VariantInit
SysAllocString
SafeArrayDestroy
SafeArrayCreate
SafeArrayPutElement
RegisterTypeLi
LHashValOfNameSys
LoadTypeLi
UnRegisterTypeLi
SafeArrayUnaccessData
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
VariantChangeType
VariantClear
VariantCopy

comctl32

ord17
ImageList_Destroy

ws2_32

inet_ntoa
accept
getpeername
recv
ioctlsocket
recvfrom
WSACleanup
closesocket
WSAAsyncSelect

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

Sections

.text
Size: 628KB - Virtual size: 625KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Ƶ̳̼.txt

Sharing

General

Malware Config

Signatures

Files

168aae3b7192b05902c224d00a4da87a

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

09:10:58:84:eb:95:9d:3b:c8:b9:94:f9:18:a7:b6:eeCertificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

65:dd:8f:c5:00:38:8a:78:8d:13:45:62:1e:9e:f1:c0:e8:26:03:de:41:75:86:b1:01:f4:f7:66:ba:39:6f:a7Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcr120

kernel32

crypt32

secur32

msvcp120

bcrypt

user32

advapi32

ws2_32

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 3.1MB - Virtual size: 3.1MB

.data Size: 398KB - Virtual size: 711KB

.rsrc Size: 1024B - Virtual size: 872B

.reloc Size: 75KB - Virtual size: 75KB

f8560d4459c79234878cbf6ecf1eda17

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

ws2_32

comdlg32

Sections

.text Size: 628KB - Virtual size: 625KB

.rdata Size: 100KB - Virtual size: 96KB

.data Size: 72KB - Virtual size: 134KB

.rsrc Size: 40KB - Virtual size: 36KB

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

09:10:58:84:eb:95:9d:3b:c8:b9:94:f9:18:a7:b6:ee
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

65:dd:8f:c5:00:38:8a:78:8d:13:45:62:1e:9e:f1:c0:e8:26:03:de:41:75:86:b1:01:f4:f7:66:ba:39:6f:a7
Signer

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 3.1MB - Virtual size: 3.1MB

.data
Size: 398KB - Virtual size: 711KB

.rsrc
Size: 1024B - Virtual size: 872B

.reloc
Size: 75KB - Virtual size: 75KB

.text
Size: 628KB - Virtual size: 625KB

.rdata
Size: 100KB - Virtual size: 96KB

.data
Size: 72KB - Virtual size: 134KB

.rsrc
Size: 40KB - Virtual size: 36KB