3a1d7de768d0b508c69735c5eb3eb180_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3a1d7de768d0b508c69735c5eb3eb180_NeikiAnalytics.exe
Size

5.5MB
MD5

3a1d7de768d0b508c69735c5eb3eb180
SHA1

759688f4aa7ebbf514eb77b387fa01d0b230167a
SHA256

236ca327258af399a853f37cd2dfb00ca24cd2febdde95f2d122ac66df5c78d2
SHA512

369f310be30dc608c30c487c170f033886134e37919dc3c488e49f200b13a67dd814c8a431060f4b521745cda2356ed1fc8917ba4a194cc8b26945d41be72050
SSDEEP

49152:w8L20WS0vZJltaXg1fWmBDTuJnejJ4eYxZhcvfKYAJPPpmgXlTls4vCfELXAS3rW:NXg36S1CHG4vCfEBrQSjhQB

Score

1^/10

Malware Config

Signatures

Files

3a1d7de768d0b508c69735c5eb3eb180_NeikiAnalytics.exe
.exe windows:5 windows x64 arch:x64

598695a63a82d59f61896fd964b91bdc

Code Sign

33:00:00:00:6f:65:2d:58:6d:07:11:46:28:00:00:00:00:00:6f
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

20/03/2015, 17:32

Not After

20/06/2016, 17:32

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/06/2015, 17:42

Not After

04/09/2016, 17:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

86:ff:ae:9d:0f:63:1f:3d:e9:b5:0f:99:c0:bd:ad:26:66:76:d1:0e
Signer

Actual PE Digest

86:ff:ae:9d:0f:63:1f:3d:e9:b5:0f:99:c0:bd:ad:26:66:76:d1:0e

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

E:\MFCMAPI\bin\x64\MrMAPI\MrMAPI.pdb

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
CreateEventW
TerminateProcess
GetStartupInfoW
CreateSemaphoreW
GetStringTypeW
GetStdHandle
FatalAppExitA
GetConsoleMode
ReadConsoleW
GetFileInformationByHandle
PeekNamedPipe
GetFullPathNameW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateFileW
SetFilePointerEx
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetConsoleCtrlHandler
GetTimeZoneInformation
GetConsoleCP
LCMapStringW
IsValidLocale
EnumSystemLocalesW
WriteConsoleW
SetEnvironmentVariableA
FindClose
FindFirstFileA
FindNextFileA
GetLastError
FreeLibrary
GetModuleFileNameA
ExitProcess
GetProcAddress
LoadLibraryExA
CreateDirectoryW
GetShortPathNameW
GetTickCount
LoadResource
LockResource
SizeofResource
lstrcmpiA
FindResourceW
GetSystemDirectoryA
IsValidCodePage
LoadLibraryA
LoadLibraryW
FileTimeToSystemTime
GetDateFormatW
GetTimeFormatW
SetLastError
LocalFree
FormatMessageA
lstrcmpiW
WideCharToMultiByte
GetModuleHandleA
OutputDebugStringW
GetCurrentThreadId
GetSystemTime
GetSystemTimeAsFileTime
GetModuleFileNameW
GetCommandLineA
GetCurrentDirectoryA
DecodePointer
RaiseException
ExitThread
CreateThread
HeapQueryInformation
VirtualQuery
VirtualAlloc
GetSystemInfo
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
FindFirstFileExW
IsProcessorFeaturePresent
IsDebuggerPresent
RtlUnwindEx
RtlLookupFunctionEntry
RtlPcToFileHeader
LocalUnlock
LocalLock
FindResourceExW
GetUserDefaultLCID
ReplaceFileA
GetDiskFreeSpaceA
VirtualProtect
SearchPathA
GetProfileIntA
Sleep
GetTempFileNameA
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetWindowsDirectoryA
HeapDestroy
GetFileType
SetStdHandle
GetModuleHandleW
AreFileApisANSI
HeapAlloc
HeapReAlloc
HeapFree
lstrcpyA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetACP
SetFileTime
SetFileAttributesA
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetVersionExA
GetCurrentThread
GetStringTypeExA
GetVolumeInformationA
MoveFileA
GetShortPathNameA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
DeleteFileA
CreateFileA
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
WaitForSingleObject
SetEvent
CloseHandle
GlobalFlags
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
GlobalDeleteAtom
LoadLibraryExW
FreeResource
EncodePointer
GetThreadLocale
SystemTimeToFileTime
GetAtomNameA
GlobalGetAtomNameA
lstrcmpA
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LeaveCriticalSection
HeapSize
EnterCriticalSection
InitializeCriticalSection
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetModuleHandleExW
OutputDebugStringA
SetErrorMode
GetCurrentProcessId
CopyFileA
MulDiv
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
GetSystemDirectoryW
ExpandEnvironmentStringsW
MultiByteToWideChar
FormatMessageW
CompareStringA
lstrcmpW
LocalAlloc
SetDllDirectoryA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap

user32

GetDoubleClickTime
SetClassLongPtrA
LockWindowUpdate
SetParent
SetRect
SetCursorPos
CopyAcceleratorTableA
DestroyAcceleratorTable
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
IsCharLowerA
GetKeyboardLayout
WaitMessage
PostThreadMessageA
GetSystemMenu
IsZoomed
GetComboBoxInfo
LoadMenuW
TrackMouseEvent
GetKeyNameTextA
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetDialogBaseUnits
MapVirtualKeyA
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
MessageBeep
GetIconInfo
DrawIconEx
LoadImageA
IsRectEmpty
OffsetRect
SetRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
InvalidateRect
KillTimer
SetTimer
DeleteMenu
SetCursor
ShowOwnedPopups
IsIconic
PostQuitMessage
CopyImage
SystemParametersInfoA
InflateRect
GetMenuItemInfoA
DestroyMenu
CharUpperA
DestroyIcon
FillRect
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
GetCursorPos
GetActiveWindow
TranslateMessage
GetMessageA
RealChildWindowFromPoint
GetDesktopWindow
ClientToScreen
IsDialogMessageA
SetWindowTextA
ScrollWindowEx
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
SetWindowsHookExA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongPtrA
GetClassLongA
SetWindowLongPtrA
GetWindowLongPtrA
SetWindowLongA
PtInRect
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetTabbedTextExtentW
GetTabbedTextExtentA
WindowFromDC
DrawIcon
GetWindowRgn
DestroyCursor
GetDCEx
MapDialogRect
CreateMenu
InSendMessage
SendNotifyMessageA
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
EnumChildWindows
FrameRect
CharUpperBuffA
RegisterClipboardFormatA
ModifyMenuA
SetMenuDefaultItem
TabbedTextOutA
CopyIcon
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
GetWindowTextLengthA
GetWindowTextA
LoadCursorA
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetSystemMetrics
GetLastActivePopup
GetWindowThreadProcessId
GetWindowLongA
MessageBoxA
IsWindowEnabled
EnableWindow
LoadBitmapW
GetParent
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
SendMessageA
UnhookWindowsHookEx
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
LoadStringW
UnregisterClassA
LoadStringA
IntersectRect
MapVirtualKeyExA

gdi32

PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutA
ExtTextOutA
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
GetTextExtentPoint32A
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
OffsetClipRgn
RealizePalette
GetBkColor
GetTextMetricsA
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
GetCurrentObject
CreateFontA
GetCharWidthA
StretchDIBits
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
CreateCompatibleDC
BitBlt
DeleteObject
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
GetSystemPaletteEntries
CopyMetaFileA
CreateDCA

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterA
ClosePrinter
GetJobA
DocumentPropertiesA

advapi32

SetFileSecurityA
RegEnumValueA
RegEnumKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegSetValueA
RegOpenKeyExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
LookupAccountSidA
MapGenericMask
MakeSelfRelativeSD
IsValidSid
IsValidSecurityDescriptor
GetSidSubAuthorityCount
GetSidSubAuthority
GetSidIdentifierAuthority
GetSecurityDescriptorLength
GetSecurityDescriptorDacl
GetAclInformation
GetAce
RegOpenKeyExA
RegCloseKey
GetFileSecurityA

shell32

SHBrowseForFolderA
SHGetPathFromIDListW
SHBrowseForFolderW
ExtractIconA
SHGetFileInfoA
SHAddToRecentDocs
ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteExA
SHAppBarMessage
SHGetMalloc
DragFinish
DragQueryFileA
SHGetDesktopFolder

shlwapi

StrStrIW
StrStrIA
PathFindExtensionA
PathFindFileNameA
PathRemoveExtensionA
PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
StrFormatKBSizeA

uxtheme

GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeParentBackground
DrawThemeText

ole32

CreateItemMoniker
CreateGenericComposite
StgCreateDocfileOnILockBytes
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateILockBytesOnHGlobal
CreateFileMoniker
StgIsStorageFile
StgOpenStorageOnILockBytes
OleLockRunning
OleSetMenuDescriptor
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CoInitializeEx
CoInitialize
CoUninitialize
CLSIDFromString
CoDisconnectObject
StringFromGUID2
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoCreateInstance
CreateStreamOnHGlobal
WriteClassStg
StgOpenStorage
StgCreateDocfile
OleCreateLinkToFile
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateOleAdviseHolder
CreateDataAdviseHolder
GetRunningObjectTable
CoGetMalloc
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleRegEnumVerbs
OleRegGetMiscStatus
PropVariantCopy
OleRun
GetHGlobalFromILockBytes
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleCreateFromFile
OleLoad
OleCreateStaticFromData
OleCreateLinkFromData
OleCreate
OleCreateFromData
CoCreateGuid
WriteClassStm

oleaut32

SysAllocStringLen
SysReAllocStringLen
SystemTimeToVariantTime
SysStringLen
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayRedim
RegisterTypeLi
VariantTimeToSystemTime
SafeArrayGetDim
SysAllocString
VariantInit
VarDecFromStr
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantChangeType
VariantCopy
VariantClear
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
LoadRegTypeLi
SafeArrayGetElement
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
LoadTypeLi
SysAllocStringByteLen
SysStringByteLen
SafeArrayUnaccessData
SysFreeString

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

oledlg

ord8

Exports

Exports

AddInLog
GetMAPIModule

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 210KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 418KB - Virtual size: 418KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

@W
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

598695a63a82d59f61896fd964b91bdc

Code Sign

33:00:00:00:6f:65:2d:58:6d:07:11:46:28:00:00:00:00:00:6fCertificate

Extended Key Usages

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0aCertificate

Extended Key Usages

61:33:26:1a:00:00:00:00:00:31Certificate

Key Usages

61:16:68:34:00:00:00:00:00:1cCertificate

Extended Key Usages

Key Usages

86:ff:ae:9d:0f:63:1f:3d:e9:b5:0f:99:c0:bd:ad:26:66:76:d1:0eSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oleacc

gdiplus

imm32

winmm

oledlg

Exports

Exports

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 1.5MB - Virtual size: 1.5MB

.data Size: 210KB - Virtual size: 263KB

.pdata Size: 175KB - Virtual size: 175KB

.rsrc Size: 418KB - Virtual size: 418KB

@W Size: 95KB - Virtual size: 95KB

33:00:00:00:6f:65:2d:58:6d:07:11:46:28:00:00:00:00:00:6f
Certificate

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

61:33:26:1a:00:00:00:00:00:31
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

86:ff:ae:9d:0f:63:1f:3d:e9:b5:0f:99:c0:bd:ad:26:66:76:d1:0e
Signer

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 1.5MB - Virtual size: 1.5MB

.data
Size: 210KB - Virtual size: 263KB

.pdata
Size: 175KB - Virtual size: 175KB

.rsrc
Size: 418KB - Virtual size: 418KB

@W
Size: 95KB - Virtual size: 95KB