WINZIP64[.]EXE

Sharing

Copy URL Twitter E-mail

General

Target

WINZIP64.EXE
Size

7.4MB
MD5

d1cf3f71cc8546ebf04ccdb33d41fe94
SHA1

9031299c35cbc7c433e385fe431fe88c2d0c53a0
SHA256

5dc59da4128112b92d9eb850317475d0ce113104d756363b491487c5e50a8f22
SHA512

cc8e8de957e67af82a5ae0402530a5cded4f1708e63629864260a92f4110e299a24baceac134f60f05a0cc9787662988d332a1233b8bf6ce57c896aacd953ef0
SSDEEP

196608:OMuthipC4Pc8owrNwHMDUODXiJaFHQIgaB5a2+ry6b:XutcpC49fNw/O7iaHZgaBk2+ry6b

Score

1^/10

Malware Config

Signatures

Files

WINZIP64.EXE
.zip

Password: India@2023@@
Device/HarddiskVolume3/Program Files/WinZip/WINZIP64.EXE
.exe windows:5 windows x64 arch:x64

Password: India@2023@@

d292d81dd2a44ff79b49179b65784683

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:31:89:c6:37:e8
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

02/08/2019, 10:00

Subject

CN=GlobalSign CodeSigning CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

11:21:d1:d8:28:6b:82:39:33:99:c8:53:e4:4f:f8:aa:38:54
Certificate

Issuer

CN=GlobalSign CodeSigning CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

17/04/2015, 14:05

Not After

17/04/2016, 14:05

Subject

CN=WinZip Computing LLC,OU=IT,O=WinZip Computing LLC,L=Storrs Mansfield,ST=CT,C=US,1.2.840.113549.1.9.1=#0c0f68656c704077696e7a69702e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

b7:fa:cd:77:b6:a9:5d:77:bc:00:52:58:59:94:72:df:90:f0:07:97
Signer

Actual PE Digest

b7:fa:cd:77:b6:a9:5d:77:bc:00:52:58:59:94:72:df:90:f0:07:97

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

winzip64.pdb

Imports

wininet

InternetOpenW
InternetConnectW
InternetWriteFile
InternetGetLastResponseInfoW
FtpDeleteFileW
FtpOpenFileW
FtpGetCurrentDirectoryW
FtpCommandW
InternetAutodial
InternetGetConnectedState
InternetTimeFromSystemTimeW
InternetCrackUrlA
InternetCanonicalizeUrlW
FtpSetCurrentDirectoryW
FtpFindFirstFileW
FtpCreateDirectoryW
InternetCloseHandle
InternetFindNextFileW
HttpSendRequestA
InternetSetOptionW
InternetQueryOptionW
InternetCrackUrlW
HttpQueryInfoW
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetReadFile

iphlpapi

GetAdaptersInfo

msimg32

AlphaBlend

wzeay64

ord67
ord484
ord943
ord1882
ord501
ord492

psapi

EnumProcessModules
GetModuleFileNameExW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

advapi32

RegEnumKeyW
CryptGetProvParam
CryptEnumProvidersA
CryptGenRandom
CryptAcquireContextA
RegCreateKeyExA
RegOpenKeyExA
GetUserNameA
RegEnumKeyExW
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
RegSetValueW
RegQueryValueW
RegQueryInfoKeyW
RegOpenKeyW
RegDeleteKeyW
StartServiceW
QueryServiceStatus
OpenServiceW
OpenSCManagerW
CryptVerifySignatureW
SetFileSecurityW
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
CloseServiceHandle
RegSetValueExW
CryptGetUserKey
CryptDestroyKey
GetUserNameW
RegCloseKey
RegOpenKeyExW
RegQueryValueExA
RegSetValueExA
RegEnumValueW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyW
RegCreateKeyExW
CryptExportKey

shell32

FindExecutableW
SHCreateDirectoryExW
DragQueryFileW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW
ord727
DragFinish
DragQueryPoint
SHGetDesktopFolder
SHChangeNotify
SHCreateShellItem
ord155
ord21
ord152
ord18
ShellExecuteExW
SHBindToParent
ShellExecuteW
SHFileOperationW
SHGetFolderPathW
SHAddToRecentDocs

ole32

CreateBindCtx
CoGetClassObject
CLSIDFromString
CoCreateGuid
OleInitialize
CLSIDFromProgID
PropVariantCopy
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemAlloc
OleUninitialize
CoGetMalloc
RevokeDragDrop
CoTaskMemFree
CoUninitialize
CoInitialize
CreateStreamOnHGlobal
CoCreateInstance
PropVariantClear
CoInitializeEx
IIDFromString
StringFromGUID2
CoTaskMemRealloc
ReleaseStgMedium
CoInitializeSecurity
CoSetProxyBlanket
DoDragDrop
CoLockObjectExternal
OleLockRunning
RegisterDragDrop

oleaut32

VarDecFromR8
VarR8FromDec
SafeArrayCreateVector
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayDestroy
VarUI4FromStr
SysAllocString
SysFreeString
VariantClear
VariantInit
SysAllocStringLen
SysStringLen
LoadTypeLi
LoadRegTypeLi
DispCallFunc
OleCreateFontIndirect

comctl32

ImageList_Add
PropertySheetW
_TrackMouseEvent
ImageList_GetIcon
ord410
ImageList_Remove
ord412
ord413
ImageList_Create
ImageList_ReplaceIcon
ImageList_AddMasked
ord17
ImageList_SetBkColor
ImageList_GetIconSize
InitCommonControlsEx
ImageList_Destroy
ImageList_GetImageCount
ImageList_Draw
ImageList_Replace
ImageList_DrawEx

shlwapi

PathFileExistsW
StrRetToStrW
ord219
StrFormatByteSizeW
StrCpyW
SHGetValueW
PathIsUNCW
ord176
SHStrDupW

msi

ord205
ord70

user32

GetSubMenu
GetMenu
RegisterClassExW
PostQuitMessage
BringWindowToTop
FindWindowW
GetMonitorInfoW
MonitorFromRect
wsprintfW
EnumChildWindows
RedrawWindow
DestroyCursor
GetCursorPos
ReleaseCapture
SetCapture
GetAsyncKeyState
LoadImageW
GetWindowLongW
EnableMenuItem
GetSystemMenu
GetActiveWindow
FlashWindow
SetWindowTextW
CheckRadioButton
PtInRect
GetDesktopWindow
GetClipboardFormatNameW
RegisterClipboardFormatW
GetSysColorBrush
ClientToScreen
GetWindowTextLengthW
TrackPopupMenuEx
DestroyMenu
CreatePopupMenu
IsClipboardFormatAvailable
GetClassInfoW
CheckMenuItem
SetMenu
RemovePropW
GetPropW
SetPropW
EmptyClipboard
SetClipboardData
CopyRect
SetActiveWindow
GetDlgItemInt
GetMessagePos
SetRect
ValidateRect
GetForegroundWindow
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
EnumWindows
DeleteMenu
ModifyMenuW
InsertMenuW
DrawMenuBar
CloseClipboard
OpenClipboard
GetDlgItemTextA
IsMenu
SetForegroundWindow
MsgWaitForMultipleObjects
GetCursorInfo
EnumDisplaySettingsW
GetIconInfo
DrawIconEx
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindowThreadProcessId
MapWindowPoints
GetSysColor
WindowFromPoint
TranslateAcceleratorW
UpdateLayeredWindow
TranslateMessage
GetMessageW
MessageBeep
GetWindowDC
GetKeyState
FindWindowExW
SetWindowsHookW
CheckDlgButton
SetDlgItemTextW
RegisterWindowMessageW
LoadCursorW
GetParent
GetWindowLongPtrW
FillRect
MessageBoxW
GetFocus
SetLayeredWindowAttributes
IsChild
CreateWindowExW
RegisterClassW
DefWindowProcW
SetCursor
ReleaseDC
GetDC
GetSystemMetrics
IsIconic
PeekMessageW
DispatchMessageW
SystemParametersInfoW
LoadIconW
LoadBitmapW
GetWindow
GetLastActivePopup
GetClassNameW
SetWindowLongPtrW
ScreenToClient
GetWindowRect
GetClientRect
InvalidateRect
EndPaint
BeginPaint
UpdateWindow
IsWindowEnabled
EnableWindow
KillTimer
SetTimer
SetFocus
SendDlgItemMessageW
SetDlgItemInt
GetDlgItem
EndDialog
IsWindowVisible
SetWindowPos
MoveWindow
ShowWindow
DestroyWindow
IsWindow
UnregisterClassW
CallWindowProcW
PostMessageW
SendMessageW
FrameRect
SetWindowLongW
CharToOemBuffW
UnhookWindowsHook
TrackPopupMenu
DrawFocusRect
CharLowerW
CharUpperW
GetScrollInfo
GetDlgCtrlID
GetMenuStringW
GetMenuState
GetMenuItemCount
AppendMenuW
SetMenuDefaultItem
CheckMenuRadioItem
IsDialogMessageW
SetScrollInfo
LoadStringA
GetWindowPlacement
IsZoomed
SetWindowPlacement
GetCursor
GetClassLongPtrW
IntersectRect
MapDialogRect
LoadMenuW
InflateRect
GetCapture
InvalidateRgn
DestroyIcon
CreateIconIndirect
LoadStringW
DrawTextW
DrawTextExW
IsDlgButtonChecked
GetWindowTextW
CreateMenu
RemoveMenu
GetDlgItemTextW
CharToOemA
OemToCharA
OemToCharBuffA
IsCharAlphaNumericA
IsCharAlphaNumericW
GetClassInfoExW
CharNextW
CreateAcceleratorTableW
DestroyAcceleratorTable
SetRectEmpty
IsRectEmpty
MonitorFromPoint
CreateDialogParamW
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetMenuItemInfoW
AnimateWindow
CreateDialogIndirectParamW
DialogBoxParamW
DialogBoxIndirectParamW
TrackMouseEvent
SetClassLongPtrW
GetComboBoxInfo
SendDlgItemMessageA
GetClipboardData
MessageBoxIndirectW
SetParent

kernel32

CreateWaitableTimerA
OpenFileMappingW
FindFirstFileExW
ExitThread
InitializeSListHead
SetWaitableTimer
InterlockedPushEntrySList
VirtualAlloc
VirtualFree
GetLogicalDrives
GlobalMemoryStatus
CreateHardLinkW
GetLongPathNameW
GetProcessAffinityMask
InterlockedPopEntrySList
GetModuleHandleA
IsDBCSLeadByte
IsDBCSLeadByteEx
CompareStringA
DuplicateHandle
LoadLibraryA
GetVersionExA
CreateFileA
GetFileAttributesA
SetFileAttributesA
DeleteFileA
GetTempPathA
GetCurrentDirectoryA
LocalFileTimeToFileTime
FormatMessageA
GetComputerNameA
lstrcmpiW
GlobalHandle
SetThreadPriority
GetSystemInfo
lstrcmpW
FlushInstructionCache
GetTimeFormatA
GetDateFormatA
SystemTimeToFileTime
SetVolumeLabelW
DosDateTimeToFileTime
FileTimeToDosDateTime
DeviceIoControl
QueryPerformanceFrequency
UnlockFile
SetFileTime
LockFile
GetTempFileNameW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetWindowsDirectoryW
GetSystemDirectoryW
GetTempPathW
GetEnvironmentVariableW
SetEnvironmentVariableA
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
SetStdHandle
GetFileAttributesExW
GetTimeZoneInformation
GetFullPathNameA
GetStringTypeW
GetCPInfo
GetOEMCP
IsValidCodePage
HeapSize
CreateSemaphoreW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetCurrentThread
GetConsoleCP
ReadConsoleW
GetConsoleMode
SetFilePointerEx
PeekNamedPipe
GetFileInformationByHandle
FileTimeToLocalFileTime
GetCurrentDirectoryW
SetEnvironmentVariableW
IsProcessorFeaturePresent
IsDebuggerPresent
AreFileApisANSI
WriteConsoleW
GetModuleHandleExW
GetFileType
GetStdHandle
RtlUnwindEx
RtlLookupFunctionEntry
RtlPcToFileHeader
EncodePointer
FindResourceExW
MultiByteToWideChar
GetSystemDefaultUILanguage
LoadLibraryW
LocalFree
FindResourceA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SearchPathW
ResumeThread
FreeResource
GetCurrentProcess
SetErrorMode
GetSystemTime
OutputDebugStringW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
OpenProcess
TerminateProcess
ExpandEnvironmentStringsW
EnumResourceNamesW
GetPrivateProfileSectionNamesW
GetPrivateProfileSectionW
WritePrivateProfileStringW
MoveFileW
GetPrivateProfileStringA
WriteProfileStringA
MulDiv
SetThreadUILanguage
GetUserDefaultUILanguage
GetLocaleInfoW
CompareStringW
TryEnterCriticalSection
GetDiskFreeSpaceW
FlushFileBuffers
ExitProcess
WideCharToMultiByte
GetShortPathNameW
CopyFileW
lstrlenW
VerifyVersionInfoW
GetVersionExW
Sleep
VerSetConditionMask
FormatMessageW
SetLastError
GetComputerNameW
GetTimeFormatW
GetDateFormatW
GetLocalTime
GetSystemPowerStatus
SystemTimeToTzSpecificLocalTime
CreateEventW
WaitForSingleObject
WaitForMultipleObjectsEx
GetSystemTimeAsFileTime
CreateProcessW
GetFileTime
CompareFileTime
SetFilePointer
SetEndOfFile
GetDriveTypeW
FileTimeToSystemTime
ResetEvent
GetCurrentProcessId
WaitForSingleObjectEx
OpenEventA
MoveFileExW
GlobalFindAtomW
GlobalAddAtomW
GetVersion
GetCommandLineW
RtlCaptureStackBackTrace
GlobalSize
GetFullPathNameW
RemoveDirectoryW
GetVolumeInformationW
CopyFileExW
FindNextFileW
FindFirstFileW
FindClose
GetModuleFileNameW
GetProfileStringW
IsBadWritePtr
IsBadReadPtr
FindResourceW
SizeofResource
LockResource
LoadResource
LoadLibraryExW
CreateDirectoryW
GlobalFree
GlobalUnlock
GlobalLock
GlobalReAlloc
GlobalAlloc
InitializeCriticalSection
WriteFile
ReadFile
GetFileSize
CreateFileW
CreateThread
LeaveCriticalSection
EnterCriticalSection
ReleaseSemaphore
CreateSemaphoreA
GetCurrentThreadId
GetModuleHandleW
SetFileAttributesW
GetFileAttributesW
SetCurrentDirectoryW
HeapFree
HeapAlloc
InitializeCriticalSectionAndSpinCount
FreeLibrary
GetProcAddress
CreateEventA
CloseHandle
SetEvent
DeleteFileW
DecodePointer
RaiseException
GetLastError
DeleteCriticalSection
OpenEventW
GlobalMemoryStatusEx
GetTickCount
GetACP
GetProcessHeap

ws2_32

inet_addr
select
__WSAFDIsSet
closesocket
shutdown
WSAGetLastError
send
recv
getsockname
bind
gethostbyname
socket
connect
gethostname
inet_ntoa
ntohs
ioctlsocket
WSAStartup
setsockopt
htons

gdi32

SetBkColor
GetObjectW
GetTextExtentPoint32W
CreatePen
GetTextExtentExPointW
SetDIBits
SetTextAlign
SetMapMode
GetMapMode
CreatePalette
ExtTextOutW
SaveDC
RestoreDC
PatBlt
CreatePatternBrush
CreateBitmap
SetViewportOrgEx
EndPage
StartPage
EndDoc
StartDocW
Escape
TextOutW
SetAbortProc
DPtoLP
GetTextExtentPointW
GetCurrentObject
SetBkMode
SetDCPenColor
SetDCBrushColor
RoundRect
Ellipse
GetPixel
GetDIBits
CreateDIBitmap
MoveToEx
SetPolyFillMode
PolyPolygon
LineTo
UpdateColors
SetTextColor
DeleteObject
SelectPalette
RealizePalette
GetBkColor
CreateCompatibleBitmap
BitBlt
CreateDIBSection
GetTextMetricsW
GetStockObject
DeleteDC
CreateDCW
CreateSolidBrush
SelectObject
Polyline
CreateFontIndirectW
GetDeviceCaps
CreateCompatibleDC

comdlg32

GetOpenFileNameW
CommDlgExtendedError
GetSaveFileNameW
ChooseFontW
PrintDlgExW
PrintDlgW

gdiplus

GdipGetImageWidth
GdipAlloc
GdipGetImageHeight
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdipCreateHBITMAPFromBitmap
GdipDeleteGraphics
GdipDrawImageRectI
GdiplusStartup
GdiplusShutdown
GdipCloneBrush
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipFree
GdipFillRectangleI
GdipCreateFromHDC
GdipFlush
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipCreateLineBrushI
GdipDeleteBrush

crypt32

CryptMsgOpenToDecode
CryptDecryptMessage
CryptSignMessage
CryptEncodeObject
CryptVerifyMessageSignature
CryptVerifyDetachedMessageSignature
CryptMsgUpdate
CryptMsgClose
CryptMsgGetParam
CryptMsgControl
CertCreateCertificateContext
CertGetCertificateContextProperty
CryptDecodeObject
CertNameToStrW
CertGetSubjectCertificateFromStore
CertSetCertificateContextProperty
CertFreeCertificateContext
CertFindCertificateInStore
CertOpenStore
CertCloseStore
CertEnumCertificatesInStore
CertDuplicateCertificateContext
CryptUnprotectData
CryptProtectData
CryptEncryptMessage
CryptImportPublicKeyInfo

rpcrt4

UuidCreate

Sections

.text
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 210KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 505KB - Virtual size: 504KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12.6MB - Virtual size: 12.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manifest.json

Sharing

General

Malware Config

Signatures

Files

Password: India@2023@@

Password: India@2023@@

d292d81dd2a44ff79b49179b65784683

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:31:89:c6:37:e8Certificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

11:21:d1:d8:28:6b:82:39:33:99:c8:53:e4:4f:f8:aa:38:54Certificate

Extended Key Usages

Key Usages

b7:fa:cd:77:b6:a9:5d:77:bc:00:52:58:59:94:72:df:90:f0:07:97Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

wininet

iphlpapi

msimg32

wzeay64

psapi

version

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

msi

user32

kernel32

ws2_32

gdi32

comdlg32

gdiplus

crypt32

rpcrt4

Sections

.text Size: 6.4MB - Virtual size: 6.4MB

.rdata Size: 2.7MB - Virtual size: 2.7MB

.data Size: 210KB - Virtual size: 460KB

.pdata Size: 505KB - Virtual size: 504KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 12.6MB - Virtual size: 12.6MB

.reloc Size: 53KB - Virtual size: 53KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

04:00:00:00:00:01:31:89:c6:37:e8
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

11:21:d1:d8:28:6b:82:39:33:99:c8:53:e4:4f:f8:aa:38:54
Certificate

b7:fa:cd:77:b6:a9:5d:77:bc:00:52:58:59:94:72:df:90:f0:07:97
Signer

.text
Size: 6.4MB - Virtual size: 6.4MB

.rdata
Size: 2.7MB - Virtual size: 2.7MB

.data
Size: 210KB - Virtual size: 460KB

.pdata
Size: 505KB - Virtual size: 504KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 12.6MB - Virtual size: 12.6MB

.reloc
Size: 53KB - Virtual size: 53KB