Yuqu v_7[.]99[.]zip

resource
unpack001/Yuqu v_7.98.exe

Yuqu v_7.99.zip

.zip

Password: yuqu

Debug/IA2Marshal.dll

.dll regsvr32 windows:6 windows x86 arch:x86

Password: yuqu

1b927de6c53cd665cff68d0a78ca0cc6

Code Sign

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2031 00:00

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:1c:d3:ee:a4:7e:dd:a7:a0:32:57:3b:01:4d:0a:fd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09-04-2021 00:00

Not After

19-06-2024 23:59

Subject

CN=Mozilla Corporation,OU=Firefox Engineering Operations,O=Mozilla Corporation,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

fb:93:06:45:68:58:4f:95:72:3b:6a:f5:84:5c:19:4f:10:a8:62:f3
Signer

Actual PE Digest

fb:93:06:45:68:58:4f:95:72:3b:6a:f5:84:5c:19:4f:10:a8:62:f3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

IA2Marshal.pdb

Imports

kernel32

DisableThreadLibraryCalls

GetCurrentProcess

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

IsDebuggerPresent

IsProcessorFeaturePresent

QueryPerformanceCounter

SetUnhandledExceptionFilter

TerminateProcess

UnhandledExceptionFilter

rpcrt4

CStdStubBuffer_AddRef

CStdStubBuffer_Connect

CStdStubBuffer_CountRefs

CStdStubBuffer_DebugServerQueryInterface

CStdStubBuffer_DebugServerRelease

CStdStubBuffer_Disconnect

CStdStubBuffer_Invoke

CStdStubBuffer_IsIIDSupported

CStdStubBuffer_QueryInterface

IUnknown_AddRef_Proxy

IUnknown_QueryInterface_Proxy

IUnknown_Release_Proxy

NdrCStdStubBuffer2_Release

NdrCStdStubBuffer_Release

NdrDllCanUnloadNow

NdrDllGetClassObject

NdrDllRegisterProxy

NdrDllUnregisterProxy

NdrOleAllocate

NdrOleFree

NdrStubCall2

NdrStubForwardingFunction

ole32

HWND_UserFree

HWND_UserMarshal

HWND_UserSize

HWND_UserUnmarshal

oleaut32

BSTR_UserFree

BSTR_UserMarshal

BSTR_UserSize

BSTR_UserUnmarshal

VARIANT_UserFree

VARIANT_UserMarshal

VARIANT_UserSize

VARIANT_UserUnmarshal

vcruntime140

__std_type_info_destroy_list

_except_handler4_common

memset

api-ms-win-crt-runtime-l1-1-0

_cexit

_configure_narrow_argv

_execute_onexit_table

_initialize_narrow_environment

_initialize_onexit_table

_initterm

_initterm_e

_seh_filter_dll

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

cd:fd:93:90:2f:62:5a:8c:a9:17:2f:38:d4:53:83:78:49:3d:28:7e:b0:0a:13:5d:81:27:49:1e:b9:b1:32:7c
Signer

Actual PE Digest

cd:fd:93:90:2f:62:5a:8c:a9:17:2f:38:d4:53:83:78:49:3d:28:7e:b0:0a:13:5d:81:27:49:1e:b9:b1:32:7c

Digest Algorithm

sha256

PE Digest Matches

true

b5:c8:23:76:1e:eb:6a:89:52:d9:4d:5c:c3:0f:e6:f4:1e:ae:05:15
Signer

Actual PE Digest

b5:c8:23:76:1e:eb:6a:89:52:d9:4d:5c:c3:0f:e6:f4:1e:ae:05:15

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-localization-l1-2-0.pdb

Exports

ConvertDefaultLocale

EnumSystemGeoID

EnumSystemLocalesA

EnumSystemLocalesW

FindNLSString

FindNLSStringEx

FormatMessageA

FormatMessageW

GetACP

GetCPInfo

GetCPInfoExW

GetCalendarInfoEx

GetCalendarInfoW

GetFileMUIInfo

GetFileMUIPath

GetGeoInfoW

GetLocaleInfoA

GetLocaleInfoEx

GetLocaleInfoW

GetNLSVersion

GetNLSVersionEx

GetOEMCP

GetProcessPreferredUILanguages

GetSystemDefaultLCID

GetSystemDefaultLangID

GetSystemPreferredUILanguages

GetThreadLocale

GetThreadPreferredUILanguages

GetThreadUILanguage

GetUILanguageInfo

GetUserDefaultLCID

GetUserDefaultLangID

GetUserDefaultLocaleName

GetUserGeoID

GetUserPreferredUILanguages

IdnToAscii

IdnToUnicode

IsDBCSLeadByte

IsDBCSLeadByteEx

IsNLSDefinedString

IsValidCodePage

IsValidLanguageGroup

IsValidLocale

IsValidLocaleName

IsValidNLSVersion

LCMapStringA

LCMapStringEx

LCMapStringW

LocaleNameToLCID

ResolveLocaleName

SetCalendarInfoW

SetLocaleInfoW

SetProcessPreferredUILanguages

SetThreadLocale

SetThreadPreferredUILanguages

SetThreadUILanguage

SetUserGeoID

VerLanguageNameA

VerLanguageNameW

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

56:2c:25:6c:9d:a9:0a:3c:ab:98:f6:67:6b:55:d8:f3:82:39:31:90:c8:62:16:44:1b:23:f6:43:77:30:f5:a1
Signer

Actual PE Digest

56:2c:25:6c:9d:a9:0a:3c:ab:98:f6:67:6b:55:d8:f3:82:39:31:90:c8:62:16:44:1b:23:f6:43:77:30:f5:a1

Digest Algorithm

sha256

PE Digest Matches

true

9d:ea:4a:07:4e:a9:ca:3c:27:4a:3c:c3:43:34:1d:c5:26:39:e6:49
Signer

Actual PE Digest

9d:ea:4a:07:4e:a9:ca:3c:27:4a:3c:c3:43:34:1d:c5:26:39:e6:49

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-processthreads-l1-1-1.pdb

Exports

FlushInstructionCache

GetCurrentProcessorNumber

GetCurrentProcessorNumberEx

GetCurrentThreadStackLimits

GetProcessHandleCount

GetProcessMitigationPolicy

GetThreadContext

GetThreadIdealProcessorEx

GetThreadTimes

IsProcessorFeaturePresent

OpenProcess

SetProcessMitigationPolicy

SetThreadContext

SetThreadIdealProcessorEx

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

4b:fb:31:6b:fb:ab:16:71:db:ab:01:04:73:51:ce:7c:46:23:ad:cb:9d:bf:e4:9e:e2:11:22:a4:b8:cd:93:58
Signer

Actual PE Digest

4b:fb:31:6b:fb:ab:16:71:db:ab:01:04:73:51:ce:7c:46:23:ad:cb:9d:bf:e4:9e:e2:11:22:a4:b8:cd:93:58

Digest Algorithm

sha256

PE Digest Matches

true

99:f4:e2:aa:40:53:a0:1a:eb:76:a7:89:ae:04:44:c4:3b:71:68:2d
Signer

Actual PE Digest

99:f4:e2:aa:40:53:a0:1a:eb:76:a7:89:ae:04:44:c4:3b:71:68:2d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-synch-l1-2-0.pdb

Exports

DeleteSynchronizationBarrier

EnterSynchronizationBarrier

InitOnceBeginInitialize

InitOnceComplete

InitOnceExecuteOnce

InitOnceInitialize

InitializeConditionVariable

InitializeSynchronizationBarrier

SignalObjectAndWait

Sleep

SleepConditionVariableCS

SleepConditionVariableSRW

WaitOnAddress

WakeAllConditionVariable

WakeByAddressAll

WakeByAddressSingle

WakeConditionVariable

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

67:35:00:8b:0e:3d:24:43:61:28:fd:99:c1:81:a4:d4:aa:2e:82:99:d2:67:27:49:7b:f9:79:99:cd:de:26:d7
Signer

Actual PE Digest

67:35:00:8b:0e:3d:24:43:61:28:fd:99:c1:81:a4:d4:aa:2e:82:99:d2:67:27:49:7b:f9:79:99:cd:de:26:d7

Digest Algorithm

sha256

PE Digest Matches

true

78:03:56:c4:15:66:e4:ee:ed:d9:e5:a4:bc:02:16:44:28:25:a2:71
Signer

Actual PE Digest

78:03:56:c4:15:66:e4:ee:ed:d9:e5:a4:bc:02:16:44:28:25:a2:71

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-timezone-l1-1-0.pdb

Exports

EnumDynamicTimeZoneInformation

FileTimeToSystemTime

GetDynamicTimeZoneInformation

GetDynamicTimeZoneInformationEffectiveYears

GetTimeZoneInformation

GetTimeZoneInformationForYear

SetDynamicTimeZoneInformation

SetTimeZoneInformation

SystemTimeToFileTime

SystemTimeToTzSpecificLocalTime

SystemTimeToTzSpecificLocalTimeEx

TzSpecificLocalTimeToSystemTime

TzSpecificLocalTimeToSystemTimeEx

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

e0:98:8a:0f:b5:85:21:2a:4c:7f:b0:c7:bf:07:42:35:a0:48:87:da:d8:a1:02:2e:39:5b:45:ef:79:1d:3e:43
Signer

Actual PE Digest

e0:98:8a:0f:b5:85:21:2a:4c:7f:b0:c7:bf:07:42:35:a0:48:87:da:d8:a1:02:2e:39:5b:45:ef:79:1d:3e:43

Digest Algorithm

sha256

PE Digest Matches

true

dc:7f:be:ee:70:52:ba:ad:5c:69:dd:8c:b2:8a:2d:b4:3b:72:12:af
Signer

Actual PE Digest

dc:7f:be:ee:70:52:ba:ad:5c:69:dd:8c:b2:8a:2d:b4:3b:72:12:af

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-conio-l1-1-0.pdb

Exports

__conio_common_vcprintf

__conio_common_vcprintf_p

__conio_common_vcprintf_s

__conio_common_vcscanf

__conio_common_vcwprintf

__conio_common_vcwprintf_p

__conio_common_vcwprintf_s

__conio_common_vcwscanf

_cgets

_cgets_s

_cgetws

_cgetws_s

_cputs

_cputws

_getch

_getch_nolock

_getche

_getche_nolock

_getwch

_getwch_nolock

_getwche

_getwche_nolock

_putch

_putch_nolock

_putwch

_putwch_nolock

_ungetch

_ungetch_nolock

_ungetwch

_ungetwch_nolock

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

8d:a7:76:c4:c6:f5:cd:7a:4c:9e:0f:01:75:35:55:73:32:a5:1f:21:95:96:82:5e:96:32:9c:59:13:5a:8f:1a
Signer

Actual PE Digest

8d:a7:76:c4:c6:f5:cd:7a:4c:9e:0f:01:75:35:55:73:32:a5:1f:21:95:96:82:5e:96:32:9c:59:13:5a:8f:1a

Digest Algorithm

sha256

PE Digest Matches

true

49:f8:c7:c9:dc:a2:e5:42:6d:03:6f:5d:76:82:cf:72:ff:d2:8e:e5
Signer

Actual PE Digest

49:f8:c7:c9:dc:a2:e5:42:6d:03:6f:5d:76:82:cf:72:ff:d2:8e:e5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-convert-l1-1-0.pdb

Exports

__toascii

_atodbl

_atodbl_l

_atof_l

_atoflt

_atoflt_l

_atoi64

_atoi64_l

_atoi_l

_atol_l

_atoldbl

_atoldbl_l

_atoll_l

_ecvt

_ecvt_s

_fcvt

_fcvt_s

_gcvt

_gcvt_s

_i64toa

_i64toa_s

_i64tow

_i64tow_s

_itoa

_itoa_s

_itow

_itow_s

_ltoa

_ltoa_s

_ltow

_ltow_s

_strtod_l

_strtof_l

_strtoi64

_strtoi64_l

_strtoimax_l

_strtol_l

_strtold_l

_strtoll_l

_strtoui64

_strtoui64_l

_strtoul_l

_strtoull_l

_strtoumax_l

_ui64toa

_ui64toa_s

_ui64tow

_ui64tow_s

_ultoa

_ultoa_s

_ultow

_ultow_s

_wcstod_l

_wcstof_l

_wcstoi64

_wcstoi64_l

_wcstoimax_l

_wcstol_l

_wcstold_l

_wcstoll_l

_wcstombs_l

_wcstombs_s_l

_wcstoui64

_wcstoui64_l

_wcstoul_l

_wcstoull_l

_wcstoumax_l

_wctomb_l

_wctomb_s_l

_wtof

_wtof_l

_wtoi

_wtoi64

_wtoi64_l

_wtoi_l

_wtol

_wtol_l

_wtoll

_wtoll_l

atof

atoi

atol

atoll

btowc

c16rtomb

c32rtomb

mbrtoc16

mbrtoc32

mbrtowc

mbsrtowcs

mbsrtowcs_s

mbstowcs

mbstowcs_s

mbtowc

strtod

strtof

strtoimax

strtol

strtold

strtoll

strtoul

strtoull

strtoumax

wcrtomb

wcrtomb_s

wcsrtombs

wcsrtombs_s

wcstod

wcstof

wcstoimax

wcstol

wcstold

wcstoll

wcstombs

wcstombs_s

wcstoul

wcstoull

wcstoumax

wctob

wctomb

wctomb_s

wctrans

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

28:c1:a4:2b:1d:91:ea:be:3a:d3:3f:5c:90:ea:09:b4:05:5f:5a:c5:92:7f:1d:e5:82:9c:8b:3a:b3:ce:5d:39
Signer

Actual PE Digest

28:c1:a4:2b:1d:91:ea:be:3a:d3:3f:5c:90:ea:09:b4:05:5f:5a:c5:92:7f:1d:e5:82:9c:8b:3a:b3:ce:5d:39

Digest Algorithm

sha256

PE Digest Matches

true

e3:ab:0a:72:3e:e1:d0:34:5f:22:81:e5:aa:fb:a5:b4:12:e6:93:d5
Signer

Actual PE Digest

e3:ab:0a:72:3e:e1:d0:34:5f:22:81:e5:aa:fb:a5:b4:12:e6:93:d5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-environment-l1-1-0.pdb

Exports

__p__environ

__p__wenviron

_dupenv_s

_putenv

_putenv_s

_searchenv

_searchenv_s

_wdupenv_s

_wgetcwd

_wgetdcwd

_wgetenv

_wgetenv_s

_wputenv

_wputenv_s

_wsearchenv

_wsearchenv_s

getenv

getenv_s

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-filesystem-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

4f:bb:d0:ab:a0:f5:83:f3:48:6d:e9:4a:b5:28:2f:6e:35:8d:ce:a2:e8:b8:f0:f1:17:80:78:f5:a8:86:a9:cb
Signer

Actual PE Digest

4f:bb:d0:ab:a0:f5:83:f3:48:6d:e9:4a:b5:28:2f:6e:35:8d:ce:a2:e8:b8:f0:f1:17:80:78:f5:a8:86:a9:cb

Digest Algorithm

sha256

PE Digest Matches

true

01:38:64:ee:29:b6:ac:ca:90:af:a5:85:c6:5f:83:b9:16:59:07:50
Signer

Actual PE Digest

01:38:64:ee:29:b6:ac:ca:90:af:a5:85:c6:5f:83:b9:16:59:07:50

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-filesystem-l1-1-0.pdb

Exports

_access

_access_s

_chdir

_chdrive

_chmod

_findclose

_findfirst32

_findfirst32i64

_findfirst64

_findfirst64i32

_findnext32

_findnext32i64

_findnext64

_findnext64i32

_fstat32

_fstat32i64

_fstat64

_fstat64i32

_fullpath

_getdiskfree

_getdrive

_getdrives

_lock_file

_makepath

_makepath_s

_mkdir

_rmdir

_splitpath

_splitpath_s

_stat32

_stat32i64

_stat64

_stat64i32

_umask

_umask_s

_unlink

_unlock_file

_waccess

_waccess_s

_wchdir

_wchmod

_wfindfirst32

_wfindfirst32i64

_wfindfirst64

_wfindfirst64i32

_wfindnext32

_wfindnext32i64

_wfindnext64

_wfindnext64i32

_wfullpath

_wmakepath

_wmakepath_s

_wmkdir

_wremove

_wrename

_wrmdir

_wsplitpath

_wsplitpath_s

_wstat32

_wstat32i64

_wstat64

_wstat64i32

_wunlink

remove

rename

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-heap-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

47:ef:42:8b:ca:b7:de:34:29:47:8c:f4:03:4c:b1:bf:45:5b:d9:0f:5f:8a:e9:30:47:eb:83:ac:dc:59:a2:d4
Signer

Actual PE Digest

47:ef:42:8b:ca:b7:de:34:29:47:8c:f4:03:4c:b1:bf:45:5b:d9:0f:5f:8a:e9:30:47:eb:83:ac:dc:59:a2:d4

Digest Algorithm

sha256

PE Digest Matches

true

df:a8:71:5e:de:27:0f:ab:bc:5f:46:c2:d2:b8:8b:bb:64:45:ce:00
Signer

Actual PE Digest

df:a8:71:5e:de:27:0f:ab:bc:5f:46:c2:d2:b8:8b:bb:64:45:ce:00

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-heap-l1-1-0.pdb

Exports

_aligned_free

_aligned_malloc

_aligned_msize

_aligned_offset_malloc

_aligned_offset_realloc

_aligned_offset_recalloc

_aligned_realloc

_aligned_recalloc

_callnewh

_calloc_base

_expand

_free_base

_get_heap_handle

_heapchk

_heapmin

_heapwalk

_malloc_base

_msize

_query_new_handler

_query_new_mode

_realloc_base

_recalloc

_set_new_mode

calloc

free

malloc

realloc

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-locale-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

c4:9e:7c:72:02:bd:96:0b:21:f1:d5:4b:83:e8:0a:83:ee:1b:ad:36:75:78:a1:cc:50:6e:70:b5:77:2e:5c:b7
Signer

Actual PE Digest

c4:9e:7c:72:02:bd:96:0b:21:f1:d5:4b:83:e8:0a:83:ee:1b:ad:36:75:78:a1:cc:50:6e:70:b5:77:2e:5c:b7

Digest Algorithm

sha256

PE Digest Matches

true

55:40:1f:9c:58:bd:a7:92:7e:cc:54:e0:c5:0c:36:47:a3:91:9a:14
Signer

Actual PE Digest

55:40:1f:9c:58:bd:a7:92:7e:cc:54:e0:c5:0c:36:47:a3:91:9a:14

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-locale-l1-1-0.pdb

Exports

___lc_codepage_func

___lc_collate_cp_func

___lc_locale_name_func

___mb_cur_max_func

___mb_cur_max_l_func

__initialize_lconv_for_unsigned_char

__pctype_func

__pwctype_func

_configthreadlocale

_create_locale

_free_locale

_get_current_locale

_getmbcp

_lock_locales

_setmbcp

_unlock_locales

_wcreate_locale

_wsetlocale

localeconv

setlocale

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-math-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

b4:81:a9:e2:bf:77:48:ad:a2:83:51:23:75:b7:75:be:1d:a6:6a:78:f5:17:6a:b4:45:b0:03:89:ec:c9:a8:d2
Signer

Actual PE Digest

b4:81:a9:e2:bf:77:48:ad:a2:83:51:23:75:b7:75:be:1d:a6:6a:78:f5:17:6a:b4:45:b0:03:89:ec:c9:a8:d2

Digest Algorithm

sha256

PE Digest Matches

true

4a:5d:3e:6b:77:5b:7a:3e:d6:e5:62:4f:2e:9f:4c:b0:f8:3f:d1:b5
Signer

Actual PE Digest

4a:5d:3e:6b:77:5b:7a:3e:d6:e5:62:4f:2e:9f:4c:b0:f8:3f:d1:b5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-math-l1-1-0.pdb

Exports

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIlog10

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

_Cbuild

_Cmulcc

_Cmulcr

_FCbuild

_FCmulcc

_FCmulcr

_LCbuild

_LCmulcc

_LCmulcr

__libm_sse2_acos

__libm_sse2_acosf

__libm_sse2_asin

__libm_sse2_asinf

__libm_sse2_atan

__libm_sse2_atan2

__libm_sse2_atanf

__libm_sse2_cos

__libm_sse2_cosf

__libm_sse2_exp

__libm_sse2_expf

__libm_sse2_log

__libm_sse2_log10

__libm_sse2_log10f

__libm_sse2_logf

__libm_sse2_pow

__libm_sse2_powf

__libm_sse2_sin

__libm_sse2_sinf

__libm_sse2_tan

__libm_sse2_tanf

__setusermatherr

_cabs

_chgsign

_chgsignf

_copysign

_copysignf

_d_int

_dclass

_dexp

_dlog

_dnorm

_dpcomp

_dpoly

_dscale

_dsign

_dsin

_dtest

_dunscale

_except1

_fd_int

_fdclass

_fdexp

_fdlog

_fdnorm

_fdopen

_fdpcomp

_fdpoly

_fdscale

_fdsign

_fdsin

_fdtest

_fdunscale

_finite

_fpclass

_ftol

_hypot

_hypotf

_isnan

_j0

_j1

_jn

_ld_int

_ldclass

_ldexp

_ldlog

_ldpcomp

_ldpoly

_ldscale

_ldsign

_ldsin

_ldtest

_ldunscale

_libm_sse2_acos_precise

_libm_sse2_asin_precise

_libm_sse2_atan_precise

_libm_sse2_cos_precise

_libm_sse2_exp_precise

_libm_sse2_log10_precise

_libm_sse2_log_precise

_libm_sse2_pow_precise

_libm_sse2_sin_precise

_libm_sse2_sqrt_precise

_libm_sse2_tan_precise

_logb

_nextafter

_scalb

_set_SSE2_enable

_y0

_y1

_yn

acos

acosh

acoshf

acoshl

asin

asinh

asinhf

asinhl

atan

atan2

atanh

atanhf

atanhl

cabs

cabsf

cabsl

cacos

cacosf

cacosh

cacoshf

cacoshl

cacosl

carg

cargf

cargl

casin

casinf

casinh

casinhf

casinhl

casinl

catan

catanf

catanh

catanhf

catanhl

catanl

cbrt

cbrtf

cbrtl

ccos

ccosf

ccosh

ccoshf

ccoshl

ccosl

ceil

cexp

cexpf

cexpl

cimag

cimagf

cimagl

clog

clog10

clog10f

clog10l

clogf

clogl

conj

conjf

conjl

copysign

copysignf

copysignl

cos

cosh

cpow

cpowf

cpowl

cproj

cprojf

cprojl

creal

crealf

creall

csin

csinf

csinh

csinhf

csinhl

csinl

csqrt

csqrtf

csqrtl

ctan

ctanf

ctanh

ctanhf

ctanhl

ctanl

erf

erfc

erfcf

erfcl

erff

erfl

exp

exp2

exp2f

exp2l

expm1

expm1f

expm1l

fabs

fdim

fdimf

fdiml

floor

fma

fmaf

fmal

fmax

fmaxf

fmaxl

fmin

fminf

fminl

fmod

frexp

hypot

ilogb

ilogbf

ilogbl

ldexp

lgamma

lgammaf

lgammal

llrint

llrintf

llrintl

llround

llroundf

llroundl

log

log10

log1p

log1pf

log1pl

log2

log2f

log2l

logb

logbf

logbl

lrint

lrintf

lrintl

lround

lroundf

lroundl

modf

nan

nanf

nanl

nearbyint

nearbyintf

nearbyintl

nextafter

nextafterf

nextafterl

nexttoward

nexttowardf

nexttowardl

norm

normf

norml

pow

powf

remainder

remainderf

remainderl

remquo

remquof

remquol

rint

rintf

rintl

round

roundf

roundl

scalbln

scalblnf

scalblnl

scalbn

scalbnf

scalbnl

sin

sinh

sqrt

tan

tanh

tgamma

tgammaf

tgammal

trunc

truncf

truncl

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-multibyte-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

d8:52:c0:6f:2f:9c:98:18:86:30:8a:4f:cc:7b:47:bb:64:84:85:b0:d0:fd:f3:bd:51:04:4b:16:74:d1:82:67
Signer

Actual PE Digest

d8:52:c0:6f:2f:9c:98:18:86:30:8a:4f:cc:7b:47:bb:64:84:85:b0:d0:fd:f3:bd:51:04:4b:16:74:d1:82:67

Digest Algorithm

sha256

PE Digest Matches

true

c7:51:bf:93:d9:26:4a:9c:a3:a1:6e:e4:b6:51:e0:90:12:1b:56:07
Signer

Actual PE Digest

c7:51:bf:93:d9:26:4a:9c:a3:a1:6e:e4:b6:51:e0:90:12:1b:56:07

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-multibyte-l1-1-0.pdb

Exports

__p__mbcasemap

__p__mbctype

_ismbbalnum

_ismbbalnum_l

_ismbbalpha

_ismbbalpha_l

_ismbbblank

_ismbbblank_l

_ismbbgraph

_ismbbgraph_l

_ismbbkalnum

_ismbbkalnum_l

_ismbbkana

_ismbbkana_l

_ismbbkprint

_ismbbkprint_l

_ismbbkpunct

_ismbbkpunct_l

_ismbblead

_ismbblead_l

_ismbbprint

_ismbbprint_l

_ismbbpunct

_ismbbpunct_l

_ismbbtrail

_ismbbtrail_l

_ismbcalnum

_ismbcalnum_l

_ismbcalpha

_ismbcalpha_l

_ismbcblank

_ismbcblank_l

_ismbcdigit

_ismbcdigit_l

_ismbcgraph

_ismbcgraph_l

_ismbchira

_ismbchira_l

_ismbckata

_ismbckata_l

_ismbcl0

_ismbcl0_l

_ismbcl1

_ismbcl1_l

_ismbcl2

_ismbcl2_l

_ismbclegal

_ismbclegal_l

_ismbclower

_ismbclower_l

_ismbcprint

_ismbcprint_l

_ismbcpunct

_ismbcpunct_l

_ismbcspace

_ismbcspace_l

_ismbcsymbol

_ismbcsymbol_l

_ismbcupper

_ismbcupper_l

_ismbslead

_ismbslead_l

_ismbstrail

_ismbstrail_l

_mbbtombc

_mbbtombc_l

_mbbtype

_mbbtype_l

_mbcasemap

_mbccpy

_mbccpy_l

_mbccpy_s

_mbccpy_s_l

_mbcjistojms

_mbcjistojms_l

_mbcjmstojis

_mbcjmstojis_l

_mbclen

_mbclen_l

_mbctohira

_mbctohira_l

_mbctokata

_mbctokata_l

_mbctolower

_mbctolower_l

_mbctombb

_mbctombb_l

_mbctoupper

_mbctoupper_l

_mblen_l

_mbsbtype

_mbsbtype_l

_mbscat_s

_mbscat_s_l

_mbschr

_mbschr_l

_mbscmp

_mbscmp_l

_mbscoll

_mbscoll_l

_mbscpy_s

_mbscpy_s_l

_mbscspn

_mbscspn_l

_mbsdec

_mbsdec_l

_mbsdup

_mbsicmp

_mbsicmp_l

_mbsicoll

_mbsicoll_l

_mbsinc

_mbsinc_l

_mbslen

_mbslen_l

_mbslwr

_mbslwr_l

_mbslwr_s

_mbslwr_s_l

_mbsnbcat

_mbsnbcat_l

_mbsnbcat_s

_mbsnbcat_s_l

_mbsnbcmp

_mbsnbcmp_l

_mbsnbcnt

_mbsnbcnt_l

_mbsnbcoll

_mbsnbcoll_l

_mbsnbcpy

_mbsnbcpy_l

_mbsnbcpy_s

_mbsnbcpy_s_l

_mbsnbicmp

_mbsnbicmp_l

_mbsnbicoll

_mbsnbicoll_l

_mbsnbset

_mbsnbset_l

_mbsnbset_s

_mbsnbset_s_l

_mbsncat

_mbsncat_l

_mbsncat_s

_mbsncat_s_l

_mbsnccnt

_mbsnccnt_l

_mbsncmp

_mbsncmp_l

_mbsncoll

_mbsncoll_l

_mbsncpy

_mbsncpy_l

_mbsncpy_s

_mbsncpy_s_l

_mbsnextc

_mbsnextc_l

_mbsnicmp

_mbsnicmp_l

_mbsnicoll

_mbsnicoll_l

_mbsninc

_mbsninc_l

_mbsnlen

_mbsnlen_l

_mbsnset

_mbsnset_l

_mbsnset_s

_mbsnset_s_l

_mbspbrk

_mbspbrk_l

_mbsrchr

_mbsrchr_l

_mbsrev

_mbsrev_l

_mbsset

_mbsset_l

_mbsset_s

_mbsset_s_l

_mbsspn

_mbsspn_l

_mbsspnp

_mbsspnp_l

_mbsstr

_mbsstr_l

_mbstok

_mbstok_l

_mbstok_s

_mbstok_s_l

_mbstowcs_l

_mbstowcs_s_l

_mbstrlen

_mbstrlen_l

_mbstrnlen

_mbstrnlen_l

_mbsupr

_mbsupr_l

_mbsupr_s

_mbsupr_s_l

_mbtowc_l

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-private-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

17:e8:a5:1f:4e:4f:ea:b3:1a:b1:27:a3:ba:d9:af:1d:b5:79:ea:1e:70:b1:d5:0d:86:a6:69:9b:bd:b7:68:77
Signer

Actual PE Digest

17:e8:a5:1f:4e:4f:ea:b3:1a:b1:27:a3:ba:d9:af:1d:b5:79:ea:1e:70:b1:d5:0d:86:a6:69:9b:bd:b7:68:77

Digest Algorithm

sha256

PE Digest Matches

true

24:d4:41:f4:86:c6:03:42:bf:9f:07:10:9c:5d:60:bb:45:58:ff:72
Signer

Actual PE Digest

24:d4:41:f4:86:c6:03:42:bf:9f:07:10:9c:5d:60:bb:45:58:ff:72

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-private-l1-1-0.pdb

Exports

_CreateFrameInfo

_CxxThrowException

_EH_prolog

_FindAndUnlinkFrame

_IsExceptionObjectToBeDestroyed

_NLG_Dispatch2

_NLG_Return

_NLG_Return2

_SetWinRTOutOfMemoryExceptionCallback

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxLongjmpUnwind

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__GetPlatformExceptionInfo

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__TypeMatch

__current_exception

__current_exception_context

__dcrt_get_wide_environment_from_os

__dcrt_initial_narrow_environment

__intrinsic_abnormal_termination

__intrinsic_setjmp

__processing_throw

__report_gsfailure

__std_exception_copy

__std_exception_destroy

__std_terminate

__std_type_info_compare

__std_type_info_destroy_list

__std_type_info_hash

__std_type_info_name

__unDName

__unDNameEx

__uncaught_exception

__uncaught_exceptions

_chkesp

_except_handler2

_except_handler3

_except_handler4_common

_get_purecall_handler

_get_unexpected

_global_unwind2

_is_exception_typeof

_local_unwind2

_local_unwind4

_longjmpex

_o__CIacos

_o__CIasin

_o__CIatan

_o__CIatan2

_o__CIcos

_o__CIcosh

_o__CIexp

_o__CIfmod

_o__CIlog

_o__CIlog10

_o__CIpow

_o__CIsin

_o__CIsinh

_o__CIsqrt

_o__CItan

_o__CItanh

_o__Getdays

_o__Getmonths

_o__Gettnames

_o__Strftime

_o__W_Getdays

_o__W_Getmonths

_o__W_Gettnames

_o__Wcsftime

_o____lc_codepage_func

_o____lc_collate_cp_func

_o____lc_locale_name_func

_o____mb_cur_max_func

_o___acrt_iob_func

_o___conio_common_vcprintf

_o___conio_common_vcprintf_p

_o___conio_common_vcprintf_s

_o___conio_common_vcscanf

_o___conio_common_vcwprintf

_o___conio_common_vcwprintf_p

_o___conio_common_vcwprintf_s

_o___conio_common_vcwscanf

_o___daylight

_o___dstbias

_o___fpe_flt_rounds

_o___libm_sse2_acos

_o___libm_sse2_acosf

_o___libm_sse2_asin

_o___libm_sse2_asinf

_o___libm_sse2_atan

_o___libm_sse2_atan2

_o___libm_sse2_atanf

_o___libm_sse2_cos

_o___libm_sse2_cosf

_o___libm_sse2_exp

_o___libm_sse2_expf

_o___libm_sse2_log

_o___libm_sse2_log10

_o___libm_sse2_log10f

_o___libm_sse2_logf

_o___libm_sse2_pow

_o___libm_sse2_powf

_o___libm_sse2_sin

_o___libm_sse2_sinf

_o___libm_sse2_tan

_o___libm_sse2_tanf

_o___p___argc

_o___p___argv

_o___p___wargv

_o___p__acmdln

_o___p__commode

_o___p__environ

_o___p__fmode

_o___p__mbcasemap

_o___p__mbctype

_o___p__pgmptr

_o___p__wcmdln

_o___p__wenviron

_o___p__wpgmptr

_o___pctype_func

_o___pwctype_func

_o___std_exception_copy

_o___std_exception_destroy

_o___std_type_info_destroy_list

_o___std_type_info_name

_o___stdio_common_vfprintf

_o___stdio_common_vfprintf_p

_o___stdio_common_vfprintf_s

_o___stdio_common_vfscanf

_o___stdio_common_vfwprintf

_o___stdio_common_vfwprintf_p

_o___stdio_common_vfwprintf_s

_o___stdio_common_vfwscanf

_o___stdio_common_vsnprintf_s

_o___stdio_common_vsnwprintf_s

_o___stdio_common_vsprintf

_o___stdio_common_vsprintf_p

_o___stdio_common_vsprintf_s

_o___stdio_common_vsscanf

_o___stdio_common_vswprintf

_o___stdio_common_vswprintf_p

_o___stdio_common_vswprintf_s

_o___stdio_common_vswscanf

_o___timezone

_o___tzname

_o___wcserror

_o__access

_o__access_s

_o__aligned_free

_o__aligned_malloc

_o__aligned_msize

_o__aligned_offset_malloc

_o__aligned_offset_realloc

_o__aligned_offset_recalloc

_o__aligned_realloc

_o__aligned_recalloc

_o__atodbl

_o__atodbl_l

_o__atof_l

_o__atoflt

_o__atoflt_l

_o__atoi64

_o__atoi64_l

_o__atoi_l

_o__atol_l

_o__atoldbl

_o__atoldbl_l

_o__atoll_l

_o__beep

_o__beginthread

_o__beginthreadex

_o__cabs

_o__callnewh

_o__calloc_base

_o__cexit

_o__cgets

_o__cgets_s

_o__cgetws

_o__cgetws_s

_o__chdir

_o__chdrive

_o__chmod

_o__chsize

_o__chsize_s

_o__close

_o__commit

_o__configthreadlocale

_o__configure_narrow_argv

_o__configure_wide_argv

_o__controlfp_s

_o__cputs

_o__cputws

_o__creat

_o__create_locale

_o__crt_atexit

_o__ctime32_s

_o__ctime64_s

_o__cwait

_o__d_int

_o__dclass

_o__difftime32

_o__difftime64

_o__dlog

_o__dnorm

_o__dpcomp

_o__dpoly

_o__dscale

_o__dsign

_o__dsin

_o__dtest

_o__dunscale

_o__dup

_o__dup2

_o__dupenv_s

_o__ecvt

_o__ecvt_s

_o__endthread

_o__endthreadex

_o__eof

_o__errno

_o__except1

_o__execute_onexit_table

_o__execv

_o__execve

_o__execvp

_o__execvpe

_o__exit

_o__expand

_o__fclose_nolock

_o__fcloseall

_o__fcvt

_o__fcvt_s

_o__fd_int

_o__fdclass

_o__fdexp

_o__fdlog

_o__fdopen

_o__fdpcomp

_o__fdpoly

_o__fdscale

_o__fdsign

_o__fdsin

_o__fflush_nolock

_o__fgetc_nolock

_o__fgetchar

_o__fgetwc_nolock

_o__fgetwchar

_o__filelength

_o__filelengthi64

_o__fileno

_o__findclose

_o__findfirst32

_o__findfirst32i64

_o__findfirst64

_o__findfirst64i32

_o__findnext32

_o__findnext32i64

_o__findnext64

_o__findnext64i32

_o__flushall

_o__fpclass

_o__fputc_nolock

_o__fputchar

_o__fputwc_nolock

_o__fputwchar

_o__fread_nolock

_o__fread_nolock_s

_o__free_base

_o__free_locale

_o__fseek_nolock

_o__fseeki64

_o__fseeki64_nolock

_o__fsopen

_o__fstat32

_o__fstat32i64

_o__fstat64

_o__fstat64i32

_o__ftell_nolock

_o__ftelli64

_o__ftelli64_nolock

_o__ftime32

_o__ftime32_s

_o__ftime64

_o__ftime64_s

_o__fullpath

_o__futime32

_o__futime64

_o__fwrite_nolock

_o__gcvt

_o__gcvt_s

_o__get_daylight

_o__get_doserrno

_o__get_dstbias

_o__get_errno

_o__get_fmode

_o__get_heap_handle

_o__get_initial_narrow_environment

_o__get_initial_wide_environment

_o__get_invalid_parameter_handler

_o__get_narrow_winmain_command_line

_o__get_osfhandle

_o__get_pgmptr

_o__get_stream_buffer_pointers

_o__get_terminate

_o__get_thread_local_invalid_parameter_handler

_o__get_timezone

_o__get_tzname

_o__get_wide_winmain_command_line

_o__get_wpgmptr

_o__getc_nolock

_o__getch

_o__getch_nolock

_o__getche

_o__getche_nolock

_o__getcwd

_o__getdcwd

_o__getdiskfree

_o__getdllprocaddr

_o__getdrive

_o__getdrives

_o__getmbcp

_o__getsystime

_o__getw

_o__getwc_nolock

_o__getwch

_o__getwch_nolock

_o__getwche

_o__getwche_nolock

_o__getws

_o__getws_s

_o__gmtime32

_o__gmtime32_s

_o__gmtime64

_o__gmtime64_s

_o__heapchk

_o__heapmin

_o__hypot

_o__hypotf

_o__i64toa

_o__i64toa_s

_o__i64tow

_o__i64tow_s

_o__initialize_narrow_environment

_o__initialize_onexit_table

_o__initialize_wide_environment

_o__invalid_parameter_noinfo

_o__invalid_parameter_noinfo_noreturn

_o__isatty

_o__isctype

_o__isctype_l

_o__isleadbyte_l

_o__ismbbalnum

_o__ismbbalnum_l

_o__ismbbalpha

_o__ismbbalpha_l

_o__ismbbblank

_o__ismbbblank_l

_o__ismbbgraph

_o__ismbbgraph_l

_o__ismbbkalnum

_o__ismbbkalnum_l

_o__ismbbkana

_o__ismbbkana_l

_o__ismbbkprint

_o__ismbbkprint_l

_o__ismbbkpunct

_o__ismbbkpunct_l

_o__ismbblead

_o__ismbblead_l

_o__ismbbprint

_o__ismbbprint_l

_o__ismbbpunct

_o__ismbbpunct_l

_o__ismbbtrail

_o__ismbbtrail_l

_o__ismbcalnum

_o__ismbcalnum_l

_o__ismbcalpha

_o__ismbcalpha_l

_o__ismbcblank

_o__ismbcblank_l

_o__ismbcdigit

_o__ismbcdigit_l

_o__ismbcgraph

_o__ismbcgraph_l

_o__ismbchira

_o__ismbchira_l

_o__ismbckata

_o__ismbckata_l

_o__ismbcl0

_o__ismbcl0_l

_o__ismbcl1

_o__ismbcl1_l

_o__ismbcl2

_o__ismbcl2_l

_o__ismbclegal

_o__ismbclegal_l

_o__ismbclower

_o__ismbclower_l

_o__ismbcprint

_o__ismbcprint_l

_o__ismbcpunct

_o__ismbcpunct_l

_o__ismbcspace

_o__ismbcspace_l

_o__ismbcsymbol

_o__ismbcsymbol_l

_o__ismbcupper

_o__ismbcupper_l

_o__ismbslead

_o__ismbslead_l

_o__ismbstrail

_o__ismbstrail_l

_o__iswctype_l

_o__itoa

_o__itoa_s

_o__itow

_o__itow_s

_o__j0

_o__j1

_o__jn

_o__kbhit

_o__ld_int

_o__ldclass

_o__ldexp

_o__ldlog

_o__ldpcomp

_o__ldpoly

_o__ldscale

_o__ldsign

_o__ldsin

_o__ldtest

_o__ldunscale

_o__lfind

_o__lfind_s

_o__libm_sse2_acos_precise

_o__libm_sse2_asin_precise

_o__libm_sse2_atan_precise

_o__libm_sse2_cos_precise

_o__libm_sse2_exp_precise

_o__libm_sse2_log10_precise

_o__libm_sse2_log_precise

_o__libm_sse2_pow_precise

_o__libm_sse2_sin_precise

_o__libm_sse2_sqrt_precise

_o__libm_sse2_tan_precise

_o__loaddll

_o__localtime32

_o__localtime32_s

_o__localtime64

_o__localtime64_s

_o__lock_file

_o__locking

_o__logb

_o__lsearch

_o__lsearch_s

_o__lseek

_o__lseeki64

_o__ltoa

_o__ltoa_s

_o__ltow

_o__ltow_s

_o__makepath

_o__makepath_s

_o__malloc_base

_o__mbbtombc

_o__mbbtombc_l

_o__mbbtype

_o__mbbtype_l

_o__mbccpy

_o__mbccpy_l

_o__mbccpy_s

_o__mbccpy_s_l

_o__mbcjistojms

_o__mbcjistojms_l

_o__mbcjmstojis

_o__mbcjmstojis_l

_o__mbclen

_o__mbclen_l

_o__mbctohira

_o__mbctohira_l

_o__mbctokata

_o__mbctokata_l

_o__mbctolower

_o__mbctolower_l

_o__mbctombb

_o__mbctombb_l

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-process-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

69:69:7b:ab:9a:ae:0c:c5:99:03:98:6e:77:1c:b4:69:99:f6:4e:22:88:ec:f0:57:6c:07:86:4a:90:1a:41:98
Signer

Actual PE Digest

69:69:7b:ab:9a:ae:0c:c5:99:03:98:6e:77:1c:b4:69:99:f6:4e:22:88:ec:f0:57:6c:07:86:4a:90:1a:41:98

Digest Algorithm

sha256

PE Digest Matches

true

3c:c9:27:de:6e:c2:16:2c:63:ea:3d:66:f4:ba:30:5f:e8:f5:3b:24
Signer

Actual PE Digest

3c:c9:27:de:6e:c2:16:2c:63:ea:3d:66:f4:ba:30:5f:e8:f5:3b:24

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-process-l1-1-0.pdb

Exports

_beep

_cwait

_execl

_execle

_execlp

_execlpe

_execv

_execve

_execvp

_execvpe

_loaddll

_spawnl

_spawnle

_spawnlp

_spawnlpe

_spawnv

_spawnve

_spawnvp

_spawnvpe

_unloaddll

_wexecl

_wexecle

_wexeclp

_wexeclpe

_wexecv

_wexecve

_wexecvp

_wexecvpe

_wspawnl

_wspawnle

_wspawnlp

_wspawnlpe

_wspawnv

_wspawnve

_wspawnvp

_wspawnvpe

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-runtime-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:da:f7:91:ec:8c:d6:bc:9c:d3:ca:0b:d3:34:13:64:97:35:9e:df:bf:b6:c0:ad:59:ce:3e:f1:fe:f3:42:e8
Signer

Actual PE Digest

0d:da:f7:91:ec:8c:d6:bc:9c:d3:ca:0b:d3:34:13:64:97:35:9e:df:bf:b6:c0:ad:59:ce:3e:f1:fe:f3:42:e8

Digest Algorithm

sha256

PE Digest Matches

true

38:d0:bb:ce:4f:3b:91:fe:01:52:6f:59:bb:69:68:62:c4:4a:78:c4
Signer

Actual PE Digest

38:d0:bb:ce:4f:3b:91:fe:01:52:6f:59:bb:69:68:62:c4:4a:78:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-runtime-l1-1-0.pdb

Exports

_Exit

__control87_2

__doserrno

__fpe_flt_rounds

__fpecode

__p___argc

__p___argv

__p___wargv

__p__acmdln

__p__pgmptr

__p__wcmdln

__p__wpgmptr

__pxcptinfoptrs

__sys_errlist

__sys_nerr

__threadhandle

__threadid

__wcserror

__wcserror_s

_assert

_beginthread

_beginthreadex

_c_exit

_cexit

_clearfp

_configure_narrow_argv

_configure_wide_argv

_control87

_controlfp

_controlfp_s

_crt_at_quick_exit

_crt_atexit

_crt_debugger_hook

_endthread

_endthreadex

_errno

_execute_onexit_table

_exit

_fpieee_flt

_fpreset

_get_doserrno

_get_errno

_get_initial_narrow_environment

_get_initial_wide_environment

_get_invalid_parameter_handler

_get_narrow_winmain_command_line

_get_pgmptr

_get_terminate

_get_thread_local_invalid_parameter_handler

_get_wide_winmain_command_line

_get_wpgmptr

_getdllprocaddr

_getpid

_initialize_narrow_environment

_initialize_onexit_table

_initialize_wide_environment

_initterm

_initterm_e

_invalid_parameter_noinfo

_invalid_parameter_noinfo_noreturn

_invoke_watson

_query_app_type

_register_onexit_function

_register_thread_local_exe_atexit_callback

_resetstkoflw

_seh_filter_dll

_seh_filter_exe

_set_abort_behavior

_set_app_type

_set_controlfp

_set_doserrno

_set_errno

_set_error_mode

_set_invalid_parameter_handler

_set_new_handler

_set_thread_local_invalid_parameter_handler

_seterrormode

_sleep

_statusfp

_statusfp2

_strerror

_strerror_s

_wassert

_wcserror

_wcserror_s

_wperror

_wsystem

abort

exit

feclearexcept

fegetenv

fegetexceptflag

fegetround

feholdexcept

fesetenv

fesetexceptflag

fesetround

fetestexcept

perror

quick_exit

raise

set_terminate

signal

strerror

strerror_s

system

terminate

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-stdio-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

06:6a:c5:48:de:6e:e8:ec:f5:6d:b2:e4:7d:c8:0f:e8:50:a7:f5:6b:6e:95:33:49:2d:a2:ba:7c:d7:ae:f3:0f
Signer

Actual PE Digest

06:6a:c5:48:de:6e:e8:ec:f5:6d:b2:e4:7d:c8:0f:e8:50:a7:f5:6b:6e:95:33:49:2d:a2:ba:7c:d7:ae:f3:0f

Digest Algorithm

sha256

PE Digest Matches

true

cd:d6:f2:d2:ca:df:e3:a6:28:86:42:e0:c0:2c:cc:ac:55:18:39:38
Signer

Actual PE Digest

cd:d6:f2:d2:ca:df:e3:a6:28:86:42:e0:c0:2c:cc:ac:55:18:39:38

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-stdio-l1-1-0.pdb

Exports

__acrt_iob_func

__p__commode

__p__fmode

__stdio_common_vfprintf

__stdio_common_vfprintf_p

__stdio_common_vfprintf_s

__stdio_common_vfscanf

__stdio_common_vfwprintf

__stdio_common_vfwprintf_p

__stdio_common_vfwprintf_s

__stdio_common_vfwscanf

__stdio_common_vsnprintf_s

__stdio_common_vsnwprintf_s

__stdio_common_vsprintf

__stdio_common_vsprintf_p

__stdio_common_vsprintf_s

__stdio_common_vsscanf

__stdio_common_vswprintf

__stdio_common_vswprintf_p

__stdio_common_vswprintf_s

__stdio_common_vswscanf

_chsize

_chsize_s

_close

_commit

_creat

_dup

_dup2

_eof

_fclose_nolock

_fcloseall

_fflush_nolock

_fgetc_nolock

_fgetchar

_fgetwc_nolock

_fgetwchar

_filelength

_filelengthi64

_fileno

_flushall

_fputc_nolock

_fputchar

_fputwc_nolock

_fputwchar

_fread_nolock

_fread_nolock_s

_fseek_nolock

_fseeki64

_fseeki64_nolock

_fsopen

_ftell_nolock

_ftelli64

_ftelli64_nolock

_fwrite_nolock

_get_fmode

_get_osfhandle

_get_printf_count_output

_get_stream_buffer_pointers

_getc_nolock

_getcwd

_getdcwd

_getmaxstdio

_getw

_getwc_nolock

_getws

_getws_s

_isatty

_kbhit

_locking

_lseek

_lseeki64

_mktemp

_mktemp_s

_open

_open_osfhandle

_pclose

_pipe

_popen

_putc_nolock

_putw

_putwc_nolock

_putws

_read

_rmtmp

_set_fmode

_set_printf_count_output

_setmaxstdio

_setmode

_sopen

_sopen_dispatch

_sopen_s

_tell

_telli64

_tempnam

_ungetc_nolock

_ungetwc_nolock

_wcreat

_wfdopen

_wfopen

_wfopen_s

_wfreopen

_wfreopen_s

_wfsopen

_wmktemp

_wmktemp_s

_wopen

_wpopen

_write

_wsopen

_wsopen_dispatch

_wsopen_s

_wtempnam

_wtmpnam

_wtmpnam_s

clearerr

clearerr_s

fclose

feof

ferror

fflush

fgetc

fgetpos

fgets

fgetwc

fgetws

fopen

fopen_s

fputc

fputs

fputwc

fputws

fread

fread_s

freopen

freopen_s

fseek

fsetpos

ftell

fwrite

getc

getchar

gets

gets_s

getwc

getwchar

putc

putchar

puts

putwc

putwchar

rewind

setbuf

setvbuf

tmpfile

tmpfile_s

tmpnam

tmpnam_s

ungetc

ungetwc

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-string-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

4a:f7:b2:a8:7c:0d:32:af:2c:96:ea:a5:fe:83:44:27:53:a1:05:26:3b:78:e6:6e:92:ce:a4:2c:39:01:4b:09
Signer

Actual PE Digest

4a:f7:b2:a8:7c:0d:32:af:2c:96:ea:a5:fe:83:44:27:53:a1:05:26:3b:78:e6:6e:92:ce:a4:2c:39:01:4b:09

Digest Algorithm

sha256

PE Digest Matches

true

15:fc:7d:e6:b7:e4:21:f5:f7:05:fb:44:ff:49:64:30:bf:80:c9:40
Signer

Actual PE Digest

15:fc:7d:e6:b7:e4:21:f5:f7:05:fb:44:ff:49:64:30:bf:80:c9:40

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-string-l1-1-0.pdb

Exports

__isascii

__iscsym

__iscsymf

__iswcsym

__iswcsymf

__strncnt

__wcsncnt

_isalnum_l

_isalpha_l

_isblank_l

_iscntrl_l

_isctype

_isctype_l

_isdigit_l

_isgraph_l

_isleadbyte_l

_islower_l

_isprint_l

_ispunct_l

_isspace_l

_isupper_l

_iswalnum_l

_iswalpha_l

_iswblank_l

_iswcntrl_l

_iswcsym_l

_iswcsymf_l

_iswctype_l

_iswdigit_l

_iswgraph_l

_iswlower_l

_iswprint_l

_iswpunct_l

_iswspace_l

_iswupper_l

_iswxdigit_l

_isxdigit_l

_memccpy

_memicmp

_memicmp_l

_strcoll_l

_strdup

_stricmp

_stricmp_l

_stricoll

_stricoll_l

_strlwr

_strlwr_l

_strlwr_s

_strlwr_s_l

_strncoll

_strncoll_l

_strnicmp

_strnicmp_l

_strnicoll

_strnicoll_l

_strnset

_strnset_s

_strrev

_strset

_strset_s

_strupr

_strupr_l

_strupr_s

_strupr_s_l

_strxfrm_l

_tolower

_tolower_l

_toupper

_toupper_l

_towlower_l

_towupper_l

_wcscoll_l

_wcsdup

_wcsicmp

_wcsicmp_l

_wcsicoll

_wcsicoll_l

_wcslwr

_wcslwr_l

_wcslwr_s

_wcslwr_s_l

_wcsncoll

_wcsncoll_l

_wcsnicmp

_wcsnicmp_l

_wcsnicoll

_wcsnicoll_l

_wcsnset

_wcsnset_s

_wcsrev

_wcsset

_wcsset_s

_wcsupr

_wcsupr_l

_wcsupr_s

_wcsupr_s_l

_wcsxfrm_l

_wctype

is_wctype

isalnum

isalpha

isblank

iscntrl

isdigit

isgraph

isleadbyte

islower

isprint

ispunct

isspace

isupper

iswalnum

iswalpha

iswascii

iswblank

iswcntrl

iswctype

iswdigit

iswgraph

iswlower

iswprint

iswpunct

iswspace

iswupper

iswxdigit

isxdigit

mblen

mbrlen

memcpy_s

memmove_s

memset

strcat

strcat_s

strcmp

strcoll

strcpy

strcpy_s

strcspn

strlen

strncat

strncat_s

strncmp

strncpy

strncpy_s

strnlen

strpbrk

strspn

strtok

strtok_s

strxfrm

tolower

toupper

towctrans

towlower

towupper

wcscat

wcscat_s

wcscmp

wcscoll

wcscpy

wcscpy_s

wcscspn

wcslen

wcsncat

wcsncat_s

wcsncmp

wcsncpy

wcsncpy_s

wcsnlen

wcspbrk

wcsspn

wcstok

wcstok_s

wcsxfrm

wctype

wmemcpy_s

wmemmove_s

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-time-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

b3:78:0a:48:f4:90:dc:4c:3c:d4:1c:48:df:dc:fe:5d:ff:e8:28:d6:07:53:5e:c7:ef:a4:6d:6f:ed:cb:95:44
Signer

Actual PE Digest

b3:78:0a:48:f4:90:dc:4c:3c:d4:1c:48:df:dc:fe:5d:ff:e8:28:d6:07:53:5e:c7:ef:a4:6d:6f:ed:cb:95:44

Digest Algorithm

sha256

PE Digest Matches

true

a2:ab:93:be:71:e1:28:d5:c7:c0:87:3a:24:66:31:da:b0:d7:78:b3
Signer

Actual PE Digest

a2:ab:93:be:71:e1:28:d5:c7:c0:87:3a:24:66:31:da:b0:d7:78:b3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-time-l1-1-0.pdb

Exports

_Getdays

_Getmonths

_Gettnames

_Strftime

_W_Getdays

_W_Getmonths

_W_Gettnames

_Wcsftime

__daylight

__dstbias

__timezone

__tzname

_ctime32

_ctime32_s

_ctime64

_ctime64_s

_difftime32

_difftime64

_ftime32

_ftime32_s

_ftime64

_ftime64_s

_futime32

_futime64

_get_daylight

_get_dstbias

_get_timezone

_get_tzname

_getsystime

_gmtime32

_gmtime32_s

_gmtime64

_gmtime64_s

_localtime32

_localtime32_s

_localtime64

_localtime64_s

_mkgmtime32

_mkgmtime64

_mktime32

_mktime64

_setsystime

_strdate

_strdate_s

_strftime_l

_strtime

_strtime_s

_time32

_time64

_timespec32_get

_timespec64_get

_tzset

_utime32

_utime64

_wasctime

_wasctime_s

_wcsftime_l

_wctime32

_wctime32_s

_wctime64

_wctime64_s

_wstrdate

_wstrdate_s

_wstrtime

_wstrtime_s

_wutime32

_wutime64

asctime

asctime_s

clock

strftime

wcsftime

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/api-ms-win-crt-utility-l1-1-0.dll

.dll windows:10 windows x86 arch:x86

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

11:29:f2:b0:ff:a2:cf:91:b1:6c:4e:69:19:d2:b2:7d:bb:36:1d:90:42:5c:d9:2e:5f:9b:17:27:0c:99:8b:ca
Signer

Actual PE Digest

11:29:f2:b0:ff:a2:cf:91:b1:6c:4e:69:19:d2:b2:7d:bb:36:1d:90:42:5c:d9:2e:5f:9b:17:27:0c:99:8b:ca

Digest Algorithm

sha256

PE Digest Matches

true

f9:85:fe:cd:4a:c1:4c:f2:60:3c:23:21:01:f5:0d:02:73:c7:f3:f1
Signer

Actual PE Digest

f9:85:fe:cd:4a:c1:4c:f2:60:3c:23:21:01:f5:0d:02:73:c7:f3:f1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-utility-l1-1-0.pdb

Exports

_abs64

_byteswap_uint64

_byteswap_ulong

_byteswap_ushort

_lfind

_lfind_s

_lrotl

_lrotr

_lsearch

_lsearch_s

_rotl

_rotl64

_rotr

_rotr64

_swab

abs

bsearch

bsearch_s

div

imaxabs

imaxdiv

labs

ldiv

llabs

lldiv

qsort

qsort_s

rand

rand_s

srand

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Debug/application.ini

Debug/breakpadinjector.dll

.dll windows:6 windows x86 arch:x86

4f2f2d47884b8828285b4cc439c27dad

Code Sign

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2031 00:00

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:1c:d3:ee:a4:7e:dd:a7:a0:32:57:3b:01:4d:0a:fd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09-04-2021 00:00

Not After

19-06-2024 23:59

Subject

CN=Mozilla Corporation,OU=Firefox Engineering Operations,O=Mozilla Corporation,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

b4:a6:d0:06:cf:c0:fc:65:03:35:53:23:d1:32:47:07:47:f9:a2:02
Signer

Actual PE Digest

b4:a6:d0:06:cf:c0:fc:65:03:35:53:23:d1:32:47:07:47:f9:a2:02

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

breakpadinjector.pdb

Imports

kernel32

AddVectoredExceptionHandler

CloseHandle

CreateEventW

CreateFileW

CreateSemaphoreW

CreateThread

DecodePointer

DeleteCriticalSection

EncodePointer

EnterCriticalSection

ExitProcess

FindClose

FindFirstFileExW

FindNextFileW

FlushFileBuffers

FreeEnvironmentStringsW

FreeLibrary

GetACP

GetCPInfo

GetCommandLineA

GetCommandLineW

GetConsoleCP

GetConsoleMode

GetCurrentProcess

GetCurrentProcessId

GetCurrentThread

GetCurrentThreadId

GetEnvironmentStringsW

GetFileType

GetLastError

GetModuleFileNameW

GetModuleHandleExW

GetModuleHandleW

GetOEMCP

GetProcAddress

GetProcessHeap

GetProcessId

GetStartupInfoW

GetStdHandle

GetStringTypeW

HeapAlloc

HeapFree

HeapReAlloc

HeapSize

InitializeCriticalSection

InitializeCriticalSectionAndSpinCount

InitializeSListHead

InterlockedFlushSList

IsDebuggerPresent

IsProcessorFeaturePresent

IsValidCodePage

LCMapStringW

LeaveCriticalSection

LoadLibraryExW

LoadLibraryW

MultiByteToWideChar

OpenThread

RaiseException

ReleaseSemaphore

ResetEvent

RtlCaptureContext

RtlUnwind

SetEvent

SetFilePointerEx

SetLastError

SetNamedPipeHandleState

SetStdHandle

SetUnhandledExceptionFilter

TerminateProcess

TlsAlloc

TlsFree

TlsGetValue

TlsSetValue

TransactNamedPipe

UnhandledExceptionFilter

WaitForMultipleObjects

WaitForSingleObject

WaitForSingleObjectEx

WaitNamedPipeW

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2031 00:00

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:1c:d3:ee:a4:7e:dd:a7:a0:32:57:3b:01:4d:0a:fd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09-04-2021 00:00

Not After

19-06-2024 23:59

Subject

CN=Mozilla Corporation,OU=Firefox Engineering Operations,O=Mozilla Corporation,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

8a:a0:38:8b:4b:60:4c:6d:55:ae:55:ec:aa:80:09:de:8a:6b:15:16
Signer

Actual PE Digest

8a:a0:38:8b:4b:60:4c:6d:55:ae:55:ec:aa:80:09:de:8a:6b:15:16

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

crashreporter.pdb

Imports

nss3

HASH_Begin

HASH_Create

HASH_Destroy

HASH_End

HASH_Update

NSS_Initialize

advapi32

RegCloseKey

RegCreateKeyExW

RegCreateKeyW

RegDeleteValueW

RegOpenKeyExW

RegOpenKeyW

RegQueryValueExW

RegSetValueExW

comctl32

InitCommonControlsEx

gdi32

GetStockObject

GetTextExtentPoint32W

SelectObject

SetBkMode

SetTextColor

ole32

CoCreateGuid

shell32

SHGetFolderPathW

wininet

HttpAddRequestHeadersW

HttpOpenRequestW

HttpQueryInfoW

HttpSendRequestW

InternetCloseHandle

InternetConnectW

InternetCrackUrlW

InternetOpenW

InternetQueryDataAvailable

InternetReadFile

InternetSetOptionW

shlwapi

PathAppendW

user32

BeginPaint

CallWindowProcW

CheckDlgButton

CloseClipboard

DialogBoxIndirectParamW

DialogBoxParamW

DrawTextW

EnableWindow

EndDialog

EndPaint

FillRect

GetClientRect

GetClipboardData

GetDC

GetDlgItem

GetDlgItemTextW

GetFocus

GetPropW

GetSysColor

GetSysColorBrush

GetWindowLongW

GetWindowRect

GetWindowTextW

InvalidateRect

IsClipboardFormatAvailable

IsDlgButtonChecked

IsWindowEnabled

LoadIconW

MapWindowPoints

MessageBoxW

MoveWindow

OpenClipboard

PostMessageW

RemovePropW

SendDlgItemMessageW

SendMessageW

SetDlgItemTextW

SetFocus

SetPropW

SetTimer

SetWindowLongW

SetWindowTextW

ShowWindow

msvcp140

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0_Lockit@std@@QAE@H@Z

??0ios_base@std@@IAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1_Lockit@std@@QAE@XZ

??1ios_base@std@@UAE@XZ

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??Bid@locale@std@@QAEIXZ

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?bad@ios_base@std@@QBE_NXZ

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?eof@ios_base@std@@QBE_NXZ

?fail@ios_base@std@@QBE_NXZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ

?good@ios_base@std@@QBE_NXZ

?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?init@?$basic_ios@DU?$char_traits@D@std@@@std@@IAEXPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@_N@Z

?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z

?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z

?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@U_Mbstatet@@@2@XZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

kernel32

CloseHandle

CompareFileTime

CreateDirectoryW

CreateEventW

CreateProcessW

CreateThread

DeleteCriticalSection

DeleteFileW

EnterCriticalSection

FindClose

FindFirstFileW

FindNextFileW

FindResourceW

FormatMessageW

FreeLibrary

GetCurrentProcess

GetCurrentProcessId

GetCurrentThreadId

GetFileAttributesW

GetLastError

GetModuleFileNameW

GetModuleHandleW

GetProcAddress

GetStartupInfoW

GetSystemTime

GetSystemTimeAsFileTime

GlobalAlloc

GlobalFree

GlobalLock

GlobalUnlock

InitializeCriticalSectionAndSpinCount

InitializeSListHead

IsDebuggerPresent

IsProcessorFeaturePresent

LeaveCriticalSection

LoadLibraryW

LoadResource

LocalFree

LockResource

MoveFileW

MultiByteToWideChar

QueryPerformanceCounter

ResetEvent

SetEvent

SetUnhandledExceptionFilter

SizeofResource

TerminateProcess

UnhandledExceptionFilter

VerSetConditionMask

VerifyVersionInfoW

WaitForSingleObject

WaitForSingleObjectEx

WideCharToMultiByte

vcruntime140

_CxxThrowException

__CxxFrameHandler3

__std_exception_copy

__std_exception_destroy

_except_handler4_common

memchr

memcmp

memcpy

memmove

memset

wcsrchr

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func

__p__commode

__stdio_common_vfprintf

__stdio_common_vfscanf

__stdio_common_vfwprintf

__stdio_common_vsprintf

__stdio_common_vswprintf_s

_fseeki64

_get_stream_buffer_pointers

_set_fmode

_wfopen_s

fclose

fflush

fgetc

fgetpos

fgets

fputc

fread

fsetpos

fwrite

setvbuf

ungetc

api-ms-win-crt-math-l1-1-0

__setusermatherr

_dtest

ceil

modf

api-ms-win-crt-runtime-l1-1-0

__p___argc

__p___wargv

_c_exit

_cexit

_configure_wide_argv

_controlfp_s

_crt_atexit

_exit

_get_wide_winmain_command_line

_initialize_onexit_table

_initialize_wide_environment

_initterm

_initterm_e

_invalid_parameter_noinfo_noreturn

_register_onexit_function

_register_thread_local_exe_atexit_callback

_seh_filter_exe

_set_app_type

abort

exit

terminate

api-ms-win-crt-heap-l1-1-0

_callnewh

_set_new_mode

free

malloc

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-time-l1-1-0

_gmtime64

_localtime64

_time64

strftime

api-ms-win-crt-filesystem-l1-1-0

_lock_file

_unlock_file

api-ms-win-crt-environment-l1-1-0

_putenv

_wgetenv

getenv

api-ms-win-crt-string-l1-1-0

_strdup

strcat

strcmp

strcpy

strlen

strncmp

wcscmp

wcscpy

wcslen

wcsncpy_s

api-ms-win-crt-utility-l1-1-0

rand

api-ms-win-crt-convert-l1-1-0

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

Not Before

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:cc:b5:5b:42:17:07:60:13:11:00:00:00:00:01:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2017 18:07

Not After

12-09-2018 18:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

83:a1:f0:55:79:36:00:b7:9e:9a:9c:b7:2a:f2:d0:a2:d5:d7:3a:28:1b:10:74:89:5a:02:b2:b5:4b:7c:f0:98
Signer

Actual PE Digest

83:a1:f0:55:79:36:00:b7:9e:9a:9c:b7:2a:f2:d0:a2:d5:d7:3a:28:1b:10:74:89:5a:02:b2:b5:4b:7c:f0:98

Digest Algorithm

sha256

PE Digest Matches

true

ac:b4:44:bd:e1:f5:e4:af:06:16:58:bd:fe:68:0f:83:87:b8:a3:3b
Signer

Actual PE Digest

ac:b4:44:bd:e1:f5:e4:af:06:16:58:bd:fe:68:0f:83:87:b8:a3:3b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D3DCompiler_47.pdb

Imports

msvcrt

__dllonexit

_unlock

strncpy_s

malloc

_strnicmp

atoi

isdigit

_lock

??1type_info@@UAE@XZ

_initterm

_amsg_exit

_XcptFilter

_callnewh

_isnan

_purecall

__isascii

_clearfp

_controlfp

_strdup

_mbstrlen

_vsnwprintf

strtoul

isxdigit

isalpha

atof

strchr

setlocale

strnlen

_onexit

modf

isspace

wcsncmp

wcsncpy_s

_wcsicmp

memcpy

memset

fclose

bsearch

qsort

strcat_s

_except_handler4_common

_CxxThrowException

_snwprintf_s

__unDName

fread

fseek

_wfsopen

wcstoul

_fileno

sscanf_s

_filelengthi64

towlower

_wcsnicmp

_wsplitpath_s

wcscpy_s

wcsncat_s

wcsrchr

swprintf_s

_wmakepath_s

time

_wcsdup

_wgetenv

_wfullpath

_chsize_s

_close

_read

_write

_lseeki64

_get_osfhandle

_open_osfhandle

wcscat_s

ftell

_mbscmp

_memicmp

toupper

_atoi64

_errno

strtod

__CxxFrameHandler3

_strtoui64

?terminate@@YAXXZ

strstr

ceil

strrchr

tolower

_finite

_fpclass

memmove

strcpy_s

memcpy_s

isalnum

getenv

free

_stricmp

sprintf_s

_vsnprintf

strncmp

_wsopen

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

_ftol2

_ftol2_sse

floor

kernel32

GetModuleFileNameA

GetEnvironmentVariableA

HeapCreate

lstrcmpiA

CreateFileA

LCMapStringW

FlushViewOfFile

MapViewOfFileEx

SetFilePointer

InitializeCriticalSectionAndSpinCount

ExpandEnvironmentStringsW

DeviceIoControl

SetFilePointerEx

SetEndOfFile

GetFileType

DeleteFileW

GetFileAttributesW

SetFileAttributesW

SetLastError

UnmapViewOfFile

MapViewOfFile

CreateFileMappingW

GetFileSize

LocalFree

LocalAlloc

DisableThreadLibraryCalls

MultiByteToWideChar

WideCharToMultiByte

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

OutputDebugStringA

HeapAlloc

GetProcessHeap

HeapFree

WriteFile

FreeLibrary

VirtualFree

VirtualAlloc

GetSystemInfo

CreateFileW

GetLastError

GetFileSizeEx

ReadFile

CloseHandle

Sleep

TlsAlloc

TlsSetValue

HeapDestroy

TlsGetValue

TlsFree

GetFullPathNameW

GetFullPathNameA

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

QueryPerformanceCounter

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

GetTickCount

GetProcAddress

LoadLibraryExW

advapi32

RegOpenKeyExW

CryptHashData

CryptCreateHash

CryptGetHashParam

CryptReleaseContext

CryptAcquireContextW

RegQueryValueExA

RegEnumKeyExA

RegOpenKeyExA

RegQueryValueExW

CryptDestroyHash

RegCloseKey

rpcrt4

UuidCreate

Exports

D3DAssemble

D3DCompile

D3DCompile2

D3DCompileFromFile

D3DCompressShaders

D3DCreateBlob

D3DCreateFunctionLinkingGraph

D3DCreateLinker

D3DDecompressShaders

D3DDisassemble

D3DDisassemble10Effect

D3DDisassemble11Trace

D3DDisassembleRegion

D3DGetBlobPart

D3DGetDebugInfo

D3DGetInputAndOutputSignatureBlob

D3DGetInputSignatureBlob

D3DGetOutputSignatureBlob

D3DGetTraceInstructionOffsets

D3DLoadModule

D3DPreprocess

D3DReadFileToBlob

D3DReflect

D3DReflectLibrary

D3DReturnFailure1

D3DSetBlobPart

D3DStripShader

D3DWriteBlobToFile

DebugSetMute

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Debug/default-browser-agent.exe

.exe windows:6 windows x86 arch:x86

8144943822eb4a57b5e397524cd49a7b

Code Sign

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2031 00:00

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:1c:d3:ee:a4:7e:dd:a7:a0:32:57:3b:01:4d:0a:fd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09-04-2021 00:00

Not After

19-06-2024 23:59

Subject

CN=Mozilla Corporation,OU=Firefox Engineering Operations,O=Mozilla Corporation,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

62:17:20:9c:93:ca:28:fa:f9:21:40:aa:49:2e:0b:54:8d:ab:82:4a
Signer

Actual PE Digest

62:17:20:9c:93:ca:28:fa:f9:21:40:aa:49:2e:0b:54:8d:ab:82:4a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

default-browser-agent.pdb

Imports

advapi32

ConvertSidToStringSidW

DeregisterEventSource

GetTokenInformation

GetUserNameW

OpenProcessToken

RegCloseKey

RegCreateKeyExW

RegDeleteKeyValueW

RegDeleteKeyW

RegDeleteTreeW

RegDeleteValueW

RegEnumValueW

RegGetValueW

RegOpenKeyExW

RegQueryInfoKeyW

RegSetKeyValueW

RegSetValueExW

RegisterEventSourceW

ReportEventW

bcrypt

BCryptCloseAlgorithmProvider

BCryptCreateHash

BCryptDestroyHash

BCryptFinishHash

BCryptGenRandom

BCryptHashData

BCryptOpenAlgorithmProvider

crypt32

CryptBinaryToStringW

kernel32

AcquireSRWLockExclusive

AcquireSRWLockShared

CloseHandle

CompareStringOrdinal

CreateEventW

CreateMutexA

CreateMutexW

CreateProcessW

DeleteCriticalSection

EnterCriticalSection

FileTimeToSystemTime

FormatMessageW

GetConsoleMode

GetCurrentDirectoryW

GetCurrentProcess

GetCurrentProcessId

GetCurrentThread

GetCurrentThreadId

GetEnvironmentVariableW

GetFileAttributesW

GetLastError

GetModuleFileNameW

GetModuleHandleA

GetModuleHandleW

GetProcAddress

GetProcessHeap

GetStdHandle

GetSystemDirectoryW

GetSystemInfo

GetSystemTime

GetSystemTimeAsFileTime

GetUserDefaultLocaleName

GetVersionExW

HeapAlloc

HeapFree

HeapReAlloc

InitializeCriticalSectionAndSpinCount

InitializeSListHead

IsDebuggerPresent

IsProcessorFeaturePresent

K32GetModuleFileNameExW

LeaveCriticalSection

LoadLibraryA

LoadLibraryW

LocalFree

MultiByteToWideChar

QueryPerformanceCounter

RaiseException

ReleaseMutex

ReleaseSRWLockExclusive

ReleaseSRWLockShared

ResetEvent

RtlCaptureContext

SetEvent

SetLastError

SetUnhandledExceptionFilter

Sleep

SystemTimeToFileTime

TerminateProcess

TlsAlloc

TlsGetValue

TlsSetValue

UnhandledExceptionFilter

VerSetConditionMask

VerifyVersionInfoW

VirtualAlloc

VirtualFree

WaitForSingleObject

WaitForSingleObjectEx

WideCharToMultiByte

WriteConsoleW

WriteFile

lstrlenW

netapi32

NetApiBufferFree

NetUserGetInfo

ole32

CoCreateGuid

CoCreateInstance

CoInitializeEx

CoTaskMemAlloc

CoTaskMemFree

CoUninitialize

PropVariantClear

StringFromGUID2

oleaut32

SysAllocString

SysFreeString

VariantClear

rpcrt4

UuidCreate

shell32

SHChangeNotify

SHGetKnownFolderPath

shlwapi

AssocQueryStringW

PathAppendW

PathCombineW

PathRemoveFileSpecW

msvcp140

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0_Lockit@std@@QAE@H@Z

??0ios_base@std@@IAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1_Lockit@std@@QAE@XZ

??1ios_base@std@@UAE@XZ

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z

??Bid@locale@std@@QAEIXZ

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A