6ecf96d722532b81b14488265629a1d0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6ecf96d722532b81b14488265629a1d0_JaffaCakes118
Size

665KB
MD5

6ecf96d722532b81b14488265629a1d0
SHA1

4ffc59eebcb2df2b474e63f481a240df1ee0ab3a
SHA256

d2bcf7d8428714f4c432c56a3368280bd8b69853befe96fa5b33eb7d2cb8afd5
SHA512

5b5421c7345035cbc95cf1bb6ba3c47b28b0c9e73cea96bee248e716e018b9c39ca1cae06ceafcec7f2e3c56894154c4e5b65b12b293b0c311b79395be40dcad
SSDEEP

12288:ldTfSLLCD6b8z4GLmFyffNgjCjtFJUNMF22xPaMPWJfOQuKa/uWR6:jzSb8z4GLuyffe03k2hKamt

Score

1^/10

Malware Config

Signatures

Files

6ecf96d722532b81b14488265629a1d0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

af289034b9e839ea481fbadeaf887cc3

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

02:a7:89:94:e8:04:2b:c5:0c:7a:33:3e:91:f7:4b:3d
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

20/09/2007, 00:00

Not After

14/11/2010, 23:59

Subject

CN=C-NetMedia,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=C-NetMedia,L=Mobile,ST=Alabama,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5b:f4:cd:7f:1f:45:67:26:ca:ec:c8:fd:da:2f:8b:bd:cd:7e:ed:bd
Signer

Actual PE Digest

5b:f4:cd:7f:1f:45:67:26:ca:ec:c8:fd:da:2f:8b:bd:cd:7e:ed:bd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\users\matthew\workcode\pie\trunk\release\TCL.pdb

Imports

kernel32

FreeLibrary
CreateDirectoryA
GetCurrentDirectoryA
CreateProcessW
SetCurrentDirectoryA
GetShortPathNameW
FindFirstFileA
ReadConsoleA
GetVersionExA
GetCurrentDirectoryW
GetProcAddress
CreateDirectoryW
MoveFileW
DeleteFileW
RemoveDirectoryA
GetTempPathA
GetComputerNameW
CopyFileA
SearchPathA
lstrcpyW
SetFileAttributesW
ReadConsoleW
SetFileAttributesA
DeleteFileA
GetVolumeInformationA
DisableThreadLibraryCalls
GetVolumeInformationW
LoadLibraryW
BuildCommDCBW
lstrcpyA
GetTempFileNameA
CopyFileW
LoadLibraryA
GetFullPathNameW
WriteConsoleA
GetComputerNameA
GetFileAttributesA
GetFullPathNameA
GetFileAttributesW
MoveFileA
GetTempFileNameW
SetCurrentDirectoryW
CreateProcessA
RemoveDirectoryW
WriteConsoleW
CreateFileA
SearchPathW
GetModuleFileNameW
CreateFileW
GetModuleFileNameA
FindNextFileA
FindFirstFileW
GetTempPathW
FindNextFileW
GetShortPathNameA
BuildCommDCBA
GetLastError
GetFileType
SetFilePointer
GetCommState
DuplicateHandle
GetCurrentProcess
CloseHandle
WriteFile
GetConsoleMode
ReadFile
FlushFileBuffers
GetDateFormatA
PeekConsoleInputA
WaitForSingleObject
SetEvent
CreateThread
GetConsoleCP
TerminateThread
CreateEventA
SetConsoleMode
SetThreadPriority
ResetEvent
GetExitCodeThread
WaitForMultipleObjects
GetLogicalDriveStringsA
FindClose
HeapFree
GetPrivateProfileStringA
GetCurrentThread
GetProcessHeap
SetFileTime
DeviceIoControl
GetWindowsDirectoryA
lstrlenW
HeapAlloc
WideCharToMultiByte
GetWindowsDirectoryW
SetErrorMode
GetEnvironmentVariableA
GetACP
lstrcmpiA
GetEnvironmentVariableW
GetSystemInfo
DeleteCriticalSection
GetCurrentThreadId
InitializeCriticalSection
Sleep
LeaveCriticalSection
EnterCriticalSection
GetExitCodeProcess
PeekNamedPipe
CreatePipe
EscapeCommFunction
SetCommState
SetCommTimeouts
GetOverlappedResult
SetupComm
GetCommModemStatus
ClearCommError
PurgeComm
SetHandleInformation
lstrcpynA
TlsGetValue
TlsAlloc
TlsFree
TlsSetValue
QueryPerformanceFrequency
QueryPerformanceCounter
WaitForSingleObjectEx
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetCurrentProcessId
GetTickCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
GetStdHandle
GetTimeFormatA

user32

SetTimer
DefWindowProcA
SendMessageA
SetWindowLongA
GetWindowLongA
PostMessageA
DispatchMessageA
PostQuitMessage
KillTimer
MsgWaitForMultipleObjects
wsprintfA
CharLowerA
CharLowerW
WaitForInputIdle
RegisterClassA
TranslateMessage
UnregisterClassA
DestroyWindow
CreateWindowExA
PeekMessageA
GetMessageA

advapi32

GetUserNameA

msvcr80

strerror
memcpy
_strnicmp
_getpid
_stricmp
_isatty
_putenv
_tzset
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
sprintf
_mktime64
isspace
_errno
fflush
fprintf
strncmp
free
__iob_func
strncpy
atoi
strstr
isdigit
strtoul
isxdigit
strtol
strtod
memcmp
strpbrk
strchr
isalpha
malloc
realloc
strlen
_environ
exit
modf
strrchr
_HUGE
memmove
islower
abort
isalnum
memset
calloc
tolower
_wutime64
_utime64
_wcsicmp
wcsncmp
_endthreadex
_beginthreadex
_localtime64
getenv
_ftime64
__timezone
strspn
_gmtime64
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook

Exports

Exports

TclAccessDeleteProc
TclAccessInsertProc
TclAddLiteralObj
TclAllocateFreeObjects
TclArraySet
TclChannelEventScriptInvoker
TclChannelTransform
TclCheckBadOctal
TclCheckExecutionTraces
TclCheckInterpTraces
TclCleanupByteCode
TclCleanupChildren
TclCleanupCommand
TclCompEvalObj
TclCompileAppendCmd
TclCompileBreakCmd
TclCompileCatchCmd
TclCompileCmdWord
TclCompileContinueCmd
TclCompileExpr
TclCompileExprCmd
TclCompileExprWords
TclCompileForCmd
TclCompileForeachCmd
TclCompileIfCmd
TclCompileIncrCmd
TclCompileLappendCmd
TclCompileLindexCmd
TclCompileListCmd
TclCompileLlengthCmd
TclCompileLsetCmd
TclCompileRegexpCmd
TclCompileReturnCmd
TclCompileScript
TclCompileSetCmd
TclCompileStringCmd
TclCompileTokens
TclCompileVariableCmd
TclCompileWhileCmd
TclCopyAndCollapse
TclCopyChannel
TclCreateAuxData
TclCreateExceptRange
TclCreateExecEnv
TclCreatePipeline
TclCreateProc
TclCrossFilesystemCopy
TclDeleteCompiledLocalVars
TclDeleteExecEnv
TclDeleteLiteralTable
TclDeleteNamespaceVars
TclDeleteVars
TclDoGlob
TclDumpMemoryInfo
TclEmitForwardJump
TclEvalObjvInternal
TclExpandCodeArray
TclExpandJumpFixupArray
TclExpandTokenArray
TclExprFloatError
TclFileAttrsCmd
TclFileCopyCmd
TclFileDeleteCmd
TclFileDirname
TclFileMakeDirsCmd
TclFileRenameCmd
TclFinalizeAsync
TclFinalizeAuxDataTypeTable
TclFinalizeCompilation
TclFinalizeEncodingSubsystem
TclFinalizeEnvironment
TclFinalizeExecution
TclFinalizeFilesystem
TclFinalizeIOSubsystem
TclFinalizeLoad
TclFinalizeLock
TclFinalizeMemorySubsystem
TclFinalizeNotifier
TclFinalizeObjects
TclFinalizePreserve
TclFinalizeSynchronization
TclFinalizeThreadAlloc
TclFinalizeThreadData
TclFindCompiledLocal
TclFindElement
TclFindProc
TclFixupForwardJump
TclFormatInt
TclFreeAllocCache
TclFreeCompileEnv
TclFreeJumpFixupArray
TclFreeObj
TclFreePackageInfo
TclGetAndDetachPids
TclGetAuxDataType
TclGetDate
TclGetEncodingFromObj
TclGetEnv
TclGetExtension
TclGetFrame
TclGetInstructionTable
TclGetIntForIndex
TclGetInterpProc
TclGetLibraryPath
TclGetLoadedPackages
TclGetLong
TclGetNamespaceForQualName
TclGetObjInterpProc
TclGetOpenMode
TclGetOriginalCommand
TclGetStartupScriptFileName
TclGetStartupScriptPath
TclGlob
TclGlobalInvoke
TclGuessPackageName
TclHandleCreate
TclHandleFree
TclHandlePreserve
TclHandleRelease
TclHideLiteral
TclHideUnsafeCommands
TclInExit
TclInThreadExit
TclIncrVar2
TclInitAuxDataTypeTable
TclInitByteCodeObj
TclInitCompileEnv
TclInitCompiledLocals
TclInitEncodingSubsystem
TclInitIOSubsystem
TclInitJumpFixupArray
TclInitLiteralTable
TclInitNamespaceSubsystem
TclInitNotifier
TclInitObjSubsystem
TclInitSubsystems
TclInterpInit
TclInterpReady
TclInvoke
TclInvokeObjectCommand
TclInvokeStringCommand
TclIsLocalScalar
TclIsProc
TclJoinThread
TclLindexFlat
TclLindexList
TclListObjSetElement
TclLooksLikeInt
TclLookupArrayElement
TclLookupLiteralEntry
TclLookupVar
TclLsetFlat
TclLsetList
TclMatchIsTrivial
TclNativeDupInternalRep
TclNeedSpace
TclNewFSPathObj
TclNewProcBodyObj
TclObjCommandComplete
TclObjInterpProc
TclObjInvoke
TclObjInvokeGlobal
TclObjLookupVar
TclOpenFileChannelDeleteProc
TclOpenFileChannelInsertProc
TclParseBackslash
TclParseHex
TclParseInteger
TclParseWhiteSpace
TclPrecTraceProc
TclPreventAliasLoop
TclPrintInstruction
TclPrintObject
TclPrintSource
TclProcCleanupProc
TclProcCompileProc
TclProcDeleteProc
TclProcInterpProc
TclPtrGetVar
TclPtrIncrVar
TclPtrSetVar
TclRegAbout
TclRegError
TclRegExpRangeUniChar
TclRegisterAuxDataType
TclRegisterLiteral
TclReleaseLiteral
TclRememberCondition
TclRememberDataKey
TclRememberJoinableThread
TclRememberMutex
TclRenameCommand
TclResetFilesystem
TclResetShadowedCmdRefs
TclServiceIdle
TclSetByteCodeFromAny
TclSetCmdNameObj
TclSetLibraryPath
TclSetPreInitScript
TclSetStartupScriptFileName
TclSetStartupScriptPath
TclSetupEnv
TclSignalExitThread
TclSockGetPort
TclSockMinimumBuffers
TclStatDeleteProc
TclStatInsertProc
TclTeardownNamespace
TclThreadAllocObj
TclThreadDataKeyGet
TclThreadDataKeySet
TclThreadFreeObj
TclTransferResult
TclUniCharMatch
TclUpdateReturnInfo
TclVarTraceExists
TclWinAddProcess
TclWinCPUID
TclWinConvertError
TclWinConvertWSAError
TclWinDriveLetterForVolMountPoint
TclWinEncodingsCleanup
TclWinFlushDirtyChannels
TclWinGetPlatform
TclWinGetPlatformId
TclWinGetServByName
TclWinGetSockOpt
TclWinGetTclInstance
TclWinInit
TclWinMakeFile
TclWinNToHS
TclWinNoBackslash
TclWinOpenConsoleChannel
TclWinOpenFileChannel
TclWinOpenSerialChannel
TclWinResetInterfaceEncodings
TclWinResetInterfaces
TclWinSerialReopen
TclWinSetInterfaces
TclWinSetSockOpt
TclWinSymLinkCopyDirectory
TclWinSymLinkDelete
Tcl_Access
Tcl_AddErrorInfo
Tcl_AddInterpResolvers
Tcl_AddObjErrorInfo
Tcl_AfterObjCmd
Tcl_AlertNotifier
Tcl_Alloc
Tcl_AllocStatBuf
Tcl_AllowExceptions
Tcl_AppendAllObjTypes
Tcl_AppendElement
Tcl_AppendExportList
Tcl_AppendObjCmd
Tcl_AppendObjToObj
Tcl_AppendResult
Tcl_AppendResultVA
Tcl_AppendStringsToObj
Tcl_AppendStringsToObjVA
Tcl_AppendToObj
Tcl_AppendUnicodeToObj
Tcl_ArrayObjCmd
Tcl_AsyncCreate
Tcl_AsyncDelete
Tcl_AsyncInvoke
Tcl_AsyncMark
Tcl_AsyncReady
Tcl_AttemptAlloc
Tcl_AttemptDbCkalloc
Tcl_AttemptDbCkrealloc
Tcl_AttemptRealloc
Tcl_AttemptSetObjLength
Tcl_BackgroundError
Tcl_Backslash
Tcl_BadChannelOption
Tcl_BinaryObjCmd
Tcl_BreakObjCmd
Tcl_CallWhenDeleted
Tcl_CancelIdleCall
Tcl_CaseObjCmd
Tcl_CatchObjCmd
Tcl_CdObjCmd
Tcl_ChannelBlockModeProc
Tcl_ChannelBuffered
Tcl_ChannelClose2Proc
Tcl_ChannelCloseProc
Tcl_ChannelFlushProc
Tcl_ChannelGetHandleProc
Tcl_ChannelGetOptionProc
Tcl_ChannelHandlerProc
Tcl_ChannelInputProc
Tcl_ChannelName
Tcl_ChannelOutputProc
Tcl_ChannelSeekProc
Tcl_ChannelSetOptionProc
Tcl_ChannelThreadActionProc
Tcl_ChannelVersion
Tcl_ChannelWatchProc
Tcl_ChannelWideSeekProc
Tcl_Chdir
Tcl_ClearChannelHandlers
Tcl_ClockObjCmd
Tcl_CloneInterp
Tcl_Close
Tcl_CloseObjCmd
Tcl_CommandComplete
Tcl_CommandTraceInfo
Tcl_Concat
Tcl_ConcatObj
Tcl_ConcatObjCmd
Tcl_ConditionFinalize
Tcl_ConditionNotify
Tcl_ConditionWait
Tcl_ContinueObjCmd
Tcl_ConvertCountedElement
Tcl_ConvertElement
Tcl_ConvertToType
Tcl_CreateAlias
Tcl_CreateAliasObj
Tcl_CreateChannel
Tcl_CreateChannelHandler
Tcl_CreateCloseHandler
Tcl_CreateCommand
Tcl_CreateEncoding
Tcl_CreateEventSource
Tcl_CreateExitHandler
Tcl_CreateHashEntry
Tcl_CreateInterp
Tcl_CreateMathFunc
Tcl_CreateNamespace
Tcl_CreateObjCommand
Tcl_CreateObjTrace
Tcl_CreateSlave
Tcl_CreateThread
Tcl_CreateThreadExitHandler
Tcl_CreateTimerHandler
Tcl_CreateTrace
Tcl_CutChannel
Tcl_DStringAppend
Tcl_DStringAppendElement
Tcl_DStringEndSublist
Tcl_DStringFree
Tcl_DStringGetResult
Tcl_DStringInit
Tcl_DStringResult
Tcl_DStringSetLength
Tcl_DStringStartSublist
Tcl_DbCkalloc
Tcl_DbCkfree
Tcl_DbCkrealloc
Tcl_DbDecrRefCount
Tcl_DbIncrRefCount
Tcl_DbIsShared
Tcl_DbNewBooleanObj
Tcl_DbNewByteArrayObj
Tcl_DbNewDoubleObj
Tcl_DbNewListObj
Tcl_DbNewLongObj
Tcl_DbNewObj
Tcl_DbNewStringObj
Tcl_DbNewWideIntObj
Tcl_DeleteAssocData
Tcl_DeleteChannelHandler
Tcl_DeleteClone
Tcl_DeleteCloseHandler
Tcl_DeleteCommand
Tcl_DeleteCommandFromToken
Tcl_DeleteEventSource
Tcl_DeleteEvents
Tcl_DeleteExitHandler
Tcl_DeleteHashEntry
Tcl_DeleteHashTable
Tcl_DeleteInterp
Tcl_DeleteNamespace
Tcl_DeleteThreadExitHandler
Tcl_DeleteTimerHandler
Tcl_DeleteTrace
Tcl_DetachChannel
Tcl_DetachPids
Tcl_DiscardResult
Tcl_DoOneEvent
Tcl_DoWhenIdle
Tcl_DontCallWhenDeleted
Tcl_DumpActiveMemory
Tcl_DuplicateObj
Tcl_EncodingObjCmd
Tcl_Eof
Tcl_EofObjCmd
Tcl_ErrnoId
Tcl_ErrnoMsg
Tcl_ErrorObjCmd
Tcl_Eval
Tcl_EvalEx
Tcl_EvalFile
Tcl_EvalObj
Tcl_EvalObjCmd
Tcl_EvalObjEx
Tcl_EvalObjv
Tcl_EvalTokens
Tcl_EvalTokensStandard
Tcl_EventuallyFree
Tcl_ExecObjCmd
Tcl_Exit
Tcl_ExitObjCmd
Tcl_ExitThread
Tcl_Export
Tcl_ExposeCommand
Tcl_ExprBoolean
Tcl_ExprBooleanObj
Tcl_ExprDouble
Tcl_ExprDoubleObj
Tcl_ExprLong
Tcl_ExprLongObj
Tcl_ExprObj
Tcl_ExprObjCmd
Tcl_ExprString
Tcl_ExternalToUtf
Tcl_ExternalToUtfDString
Tcl_FSAccess
Tcl_FSChdir
Tcl_FSConvertToPathType
Tcl_FSCopyDirectory
Tcl_FSCopyFile
Tcl_FSCreateDirectory
Tcl_FSData
Tcl_FSDeleteFile
Tcl_FSEqualPaths
Tcl_FSEvalFile
Tcl_FSFileAttrStrings
Tcl_FSFileAttrsGet
Tcl_FSFileAttrsSet
Tcl_FSFileSystemInfo
Tcl_FSGetCwd
Tcl_FSGetFileSystemForPath
Tcl_FSGetInternalRep
Tcl_FSGetNativePath
Tcl_FSGetNormalizedPath
Tcl_FSGetPathType
Tcl_FSGetTranslatedPath
Tcl_FSGetTranslatedStringPath
Tcl_FSJoinPath
Tcl_FSJoinToPath
Tcl_FSLink
Tcl_FSListVolumes
Tcl_FSLoadFile
Tcl_FSLstat
Tcl_FSMatchInDirectory
Tcl_FSMountsChanged
Tcl_FSNewNativePath
Tcl_FSOpenFileChannel
Tcl_FSPathSeparator
Tcl_FSRegister
Tcl_FSRemoveDirectory
Tcl_FSRenameFile
Tcl_FSSplitPath
Tcl_FSStat
Tcl_FSUnregister
Tcl_FSUtime
Tcl_FblockedObjCmd
Tcl_FconfigureObjCmd
Tcl_FcopyObjCmd
Tcl_FileEventObjCmd
Tcl_FileObjCmd
Tcl_Finalize
Tcl_FinalizeNotifier
Tcl_FinalizeThread
Tcl_FindCommand
Tcl_FindExecutable
Tcl_FindHashEntry
Tcl_FindNamespace
Tcl_FindNamespaceVar
Tcl_FirstHashEntry
Tcl_Flush
Tcl_FlushObjCmd
Tcl_ForObjCmd
Tcl_ForeachObjCmd
Tcl_ForgetImport
Tcl_FormatObjCmd
Tcl_Free
Tcl_FreeEncoding
Tcl_FreeParse
Tcl_FreeResult
Tcl_GetAlias
Tcl_GetAliasObj
Tcl_GetAllocMutex
Tcl_GetAssocData
Tcl_GetBoolean
Tcl_GetBooleanFromObj
Tcl_GetByteArrayFromObj
Tcl_GetChannel
Tcl_GetChannelBufferSize
Tcl_GetChannelHandle
Tcl_GetChannelInstanceData
Tcl_GetChannelMode
Tcl_GetChannelName
Tcl_GetChannelNames
Tcl_GetChannelNamesEx
Tcl_GetChannelOption
Tcl_GetChannelThread

Sections

.text
Size: 512KB - Virtual size: 511KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af289034b9e839ea481fbadeaf887cc3

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate

Extended Key Usages

Key Usages

02:a7:89:94:e8:04:2b:c5:0c:7a:33:3e:91:f7:4b:3dCertificate

Extended Key Usages

Key Usages

5b:f4:cd:7f:1f:45:67:26:ca:ec:c8:fd:da:2f:8b:bd:cd:7e:ed:bdSigner

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

msvcr80

Exports

Exports

Sections

.text Size: 512KB - Virtual size: 511KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 36KB - Virtual size: 40KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 28KB - Virtual size: 26KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

02:a7:89:94:e8:04:2b:c5:0c:7a:33:3e:91:f7:4b:3d
Certificate

5b:f4:cd:7f:1f:45:67:26:ca:ec:c8:fd:da:2f:8b:bd:cd:7e:ed:bd
Signer

.text
Size: 512KB - Virtual size: 511KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 36KB - Virtual size: 40KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 28KB - Virtual size: 26KB