808466e124ad991d9129432b5c5b1818_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

808466e124ad991d9129432b5c5b1818_JaffaCakes118
Size

29.8MB
MD5

808466e124ad991d9129432b5c5b1818
SHA1

bc8683e7581779656b9da19629406e9ee392f4b2
SHA256

5ed5d9b57096f0f81396f75cd292a14484385d0cace430f41a80e0a83b66e2bd
SHA512

e83968db1cea8ebea959bb3cd83eb2ac2e3790bf1d9592d5ce8885af2fffd0bda92e0c9e591a191cc65339378b0d8b3c0bfda38777985119b922987e53641387
SSDEEP

786432:EQUEX/rJm89HzNHDaGtzNPE5llVnZtaWlcrZxhfQKOvKMmjaLjLTPsu9UjpGChYK:D/rJm89HzNHDRRBE5llVnZtaWlcrZxhv

Score

1^/10

Malware Config

Signatures

Files

808466e124ad991d9129432b5c5b1818_JaffaCakes118
.dll windows:5 windows x86 arch:x86

e0e864431c0a21b7d84de45b5a8c62f1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:2f:4e:e1:35:5c
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

13/04/2019, 10:00

Subject

CN=GlobalSign CodeSigning CA - G2,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

11:21:30:b8:7f:4f:08:7e:63:e0:d3:d6:dc:5f:09:3c:07:29
Certificate

Issuer

CN=GlobalSign CodeSigning CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2015, 05:50

Not After

18/03/2016, 05:50

Subject

CN=RAFO TECHNOLOGY INC,O=RAFO TECHNOLOGY INC,L=Alhambra,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1b:33:69:df:62:20:14:34:a1:44:e9:da:3e:87:a4:1a:05:48:05:05
Signer

Actual PE Digest

1b:33:69:df:62:20:14:34:a1:44:e9:da:3e:87:a4:1a:05:48:05:05

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

G:\mustang\src\out\Release\chrome.dll.pdb

Imports

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

psapi

GetProcessMemoryInfo
QueryWorkingSet
GetModuleFileNameExW
GetModuleInformation
GetMappedFileNameW
EnumProcessModules

shlwapi

PathIsUNCW
SHStrDupW
PathAddBackslashW
AssocQueryStringW
SHGetValueW
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW

user32

EnumDisplaySettingsW
EnumDisplayMonitors
GetKeyboardLayoutList
UnregisterHotKey
RegisterHotKey
GetWindowTextLengthW
GetWindowDC
PrintWindow
SetThreadDesktop
OpenInputDesktop
GetIconInfo
GetWindowPlacement
GetCursorInfo
EnumDisplaySettingsExW
EnumWindows
GetWindowRgn
IsIconic
GetLayeredWindowAttributes
GetUserObjectInformationW
GetThreadDesktop
CloseDesktop
DefRawInputProc
CreateIconIndirect
RegisterRawInputDevices
GetRawInputDeviceInfoW
GetRawInputData
ScreenToClient
GetAsyncKeyState
GetDoubleClickTime
WindowFromPoint
EndPaint
BeginPaint
GetCapture
CallWindowProcW
TrackMouseEvent
UnregisterDeviceNotification
RegisterDeviceNotificationW
NotifyWinEvent
GetWindow
EnumThreadWindows
ClipCursor
GetCursorPos
GetKeyboardLayout
SetPropW
IsZoomed
IsWindowVisible
ClientToScreen
EnumChildWindows
GetParent
GetClientRect
RedrawWindow
SetWindowRgn
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SendNotifyMessageW
RegisterWindowMessageW
IsHungAppWindow
SetParent
GetWindowTextW
GetPropW
UpdateLayeredWindow
ShowWindow
EnableWindow
DestroyIcon
SetForegroundWindow
MoveWindow
GetAncestor
GetMonitorInfoW
MonitorFromWindow
MonitorFromRect
GetWindowThreadProcessId
GetClassNameW
IsRectEmpty
MapWindowPoints
GetWindowRect
ValidateRect
TrackPopupMenu
GetSystemMenu
GetDesktopWindow
SetWindowPos
GetClassInfoExW
EnumDisplayDevicesW
GetSysColor
MessageBoxW
SetWindowLongW
GetWindowLongW
InvalidateRect
ReleaseDC
GetDC
SendMessageW
LoadCursorW
LoadIconW
DestroyWindow
SetTimer
PostQuitMessage
KillTimer
WaitMessage
GetQueueStatus
TranslateMessage
RegisterClassExW
CallMsgFilterW
MsgWaitForMultipleObjectsEx
CreateWindowExW
DefWindowProcW
DispatchMessageW
GetActiveWindow
GetFocus
GetKeyboardState
CreateCaret
DestroyCaret
SetCaretPos
RemovePropW
SetKeyboardState
DrawIconEx
GetMessageExtraInfo
SendInput
GetMessageW
IsClipboardFormatAvailable
SetFocus
GetUpdateRect
CharUpperW
MessageBeep
BringWindowToTop
GetClassLongW
EmptyClipboard
RegisterClipboardFormatW
GetClipboardData
SetClipboardData
PostMessageW
GetKeyState
IsWindowEnabled
FindWindowW
SystemParametersInfoW
IsWindow
GetSystemMetrics
CharNextW
PostThreadMessageW
GetClipboardSequenceNumber
CloseClipboard
OpenClipboard
MapVirtualKeyW
GetWindowInfo
MonitorFromPoint
FindWindowExW
RealChildWindowFromPoint
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
PtInRect
OffsetRect
IntersectRect
SetCursor
SetWindowTextW
ShowScrollBar
SetMenuDefaultItem
EnableMenuItem
ReleaseCapture
SetCapture
SetWindowPlacement
FlashWindowEx
GetMessageTime
GetMessagePos
SetRectEmpty
EqualRect
GetMenuState
CreatePopupMenu
DestroyMenu
GetSubMenu
GetMenuItemCount
GetMenuInfo
SetMenuInfo
EndMenu
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
DrawTextExW
GetLastInputInfo
PeekMessageW
AllowSetForegroundWindow
UnregisterClassW
GetCaretBlinkTime
AdjustWindowRectEx
SetCursorPos
ShowCursor
FillRect
IsChild
SendMessageTimeoutW
LoadImageW
DrawEdge
DrawFrameControl
GetSysColorBrush
EndDialog
SendMessageCallbackW
GetGuiResources
DrawFocusRect
FrameRect
InvertRect
GetForegroundWindow
InflateRect
GetRawInputDeviceList

advapi32

GetUserNameW
LogonUserW
CryptSignHashW
CryptCreateHash
CryptAcquireContextW
InitializeAcl
ControlTraceW
StartTraceW
CryptSetKeyParam
ReadEventLogW
OpenEventLogW
CloseEventLog
CryptImportKey
CryptDestroyKey
CryptDecrypt
CryptGenKey
ImpersonateAnonymousToken
GetFileSecurityW
SetFileSecurityW
ConvertSecurityDescriptorToStringSecurityDescriptorW
CryptGetHashParam
CryptSetHashParam
CryptReleaseContext
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryValueExA
RegOpenKeyExA
RegisterTraceGuidsW
GetTraceEnableLevel
UnregisterTraceGuids
TraceEvent
GetTraceLoggerHandle
GetTraceEnableFlags
SystemFunction036
CreateProcessAsUserW
RegNotifyChangeKeyValue
RegEnumValueW
RegQueryValueExW
ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
OpenTraceW
ProcessTrace
CloseTrace
ConvertStringSecurityDescriptorToSecurityDescriptorW
RevertToSelf

kernel32

MulDiv
GlobalSize
GlobalLock
GlobalUnlock
FindFirstChangeNotificationW
FindCloseChangeNotification
GetUserDefaultUILanguage
OpenFileMappingW
TerminateThread
GetExitCodeThread
GetProcessIoCounters
HeapUnlock
HeapLock
HeapWalk
Process32FirstW
Process32NextW
GetModuleHandleW
GetProcAddress
DecodePointer
RaiseException
GetLastError
SetErrorMode
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetCurrentProcess
VirtualProtect
VirtualQuery
GetModuleHandleA
LoadLibraryA
GetStdHandle
SetConsoleTextAttribute
FreeConsole
AllocConsole
ReadConsoleW
WriteConsoleW
GetModuleFileNameW
ExpandEnvironmentStringsW
GetLongPathNameW
GetCurrentProcessId
CreateToolhelp32Snapshot
Module32FirstW
Module32NextW
CloseHandle
CreateEventW
WaitForSingleObject
CreateMutexW
GetExitCodeProcess
GetProcessId
ResetEvent
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
FreeLibrary
LoadLibraryExW
LoadResource
SizeofResource
lstrcmpiW
FindResourceW
MultiByteToWideChar
HeapAlloc
HeapReAlloc
HeapFree
GetProcessHeap
HeapSetInformation
GetEnvironmentVariableW
LocalFree
IsDebuggerPresent
GetCommandLineW
LoadLibraryW
lstrcmpiA
GlobalAlloc
GetHandleInformation
SetFilePointer
GetTickCount
FormatMessageA
WriteFile
CreateFileW
SetLastError
OutputDebugStringA
ReleaseMutex
DeleteFileW
GetTempFileNameW
MapViewOfFile
UnmapViewOfFile
MoveFileExW
GetLogicalDriveStringsW
CreateDirectoryW
GetVolumePathNameW
CopyFileW
GetFileAttributesW
ReplaceFileW
ReadFile
GetTempPathW
GetCurrentDirectoryW
MoveFileW
CreateFileMappingW
SetCurrentDirectoryW
RemoveDirectoryW
QueryDosDeviceW
GetFileAttributesExW
SetFileAttributesW
GetVolumeInformationW
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
QueryPerformanceCounter
GetSystemTimeAsFileTime
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
QueryPerformanceFrequency
SetEnvironmentVariableW
RtlCaptureStackBackTrace
GetModuleHandleExW
TryEnterCriticalSection
GlobalMemoryStatusEx
GetDiskFreeSpaceExW
GetNativeSystemInfo
GetVersionExW
WideCharToMultiByte
GetCurrentThread
Sleep
SetThreadPriority
GetThreadPriority
DuplicateHandle
CreateThread
OpenProcess
TerminateProcess
GetUserDefaultLangID
GetProcessTimes
FindFirstFileW
FindFirstFileExW
FindClose
FindNextFileW
CreateProcessW
AssignProcessToJobObject
AttachConsole
ResumeThread
SetEvent
WaitForMultipleObjects
RegisterWaitForSingleObject
UnregisterWaitEx
TlsGetValue
TlsSetValue
TlsAlloc
TlsFree
SetEndOfFile
OpenEventW
UnlockFile
LockFile
SetFileTime
FlushFileBuffers
GetFileSizeEx
GetFileInformationByHandle
GetModuleHandleExA
GetProcessHeaps
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CreateIoCompletionPort
GetSystemDirectoryW
GetWindowsDirectoryW
QueueUserWorkItem
SetUnhandledExceptionFilter
GetLocaleInfoW
GetLocaleInfoA
GetNumberFormatW
GetCurrencyFormatW
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
InitializeCriticalSection
GetThreadLocale
GetGeoInfoW
GetUserGeoID
CreateFileA
SwitchToThread
FormatMessageW
GlobalFree
GetComputerNameExW
CancelIo
ConnectNamedPipe
CreateNamedPipeW
GetNamedPipeInfo
LockResource
VerSetConditionMask
GetShortPathNameW
VerifyVersionInfoW
DeviceIoControl
IsProcessInJob
QueryInformationJobObject
lstrcmpW
ReleaseSemaphore
CreateSemaphoreW
VirtualAlloc
VirtualFree
GetOverlappedResult
GetThreadContext
OpenThread
SuspendThread
GetFileSize
GetTempFileNameA
GetFileType
GetSystemInfo
GetThreadTimes
GetTempPathA
DeleteFileA
CreateSemaphoreA
CreateEventA
GetStartupInfoW
ExitProcess
VirtualAllocEx
VirtualFreeEx
SetThreadExecutionState
FlushInstructionCache
DefineDosDeviceW
GetSystemPowerStatus
VirtualQueryEx
SleepEx
GetSystemTime
GetLocalTime
GetPrivateProfileStringW
WTSGetActiveConsoleSessionId
GetDiskFreeSpaceA
CreateFileMappingA
GetDiskFreeSpaceW
LockFileEx
HeapValidate
HeapCreate
GetFileAttributesA
HeapDestroy
UnlockFileEx
WaitForSingleObjectEx
GetEnvironmentVariableA
HeapCompact
CreateWaitableTimerW
GetComputerNameW
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
GetVolumeNameForVolumeMountPointW
GetVolumePathNamesForVolumeNameW
ClearCommError
EscapeCommFunction
GetCommModemStatus
GetCommState
PurgeComm
SetCommMask
SetCommState
SetCommTimeouts
WaitCommEvent
InterlockedPushEntrySList
CompareStringW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetDriveTypeW
GetStringTypeW
GetCPInfo
GetOEMCP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
UnhandledExceptionFilter
HeapSize
PeekNamedPipe
FileTimeToLocalFileTime
ExitThread
RtlUnwind
GetACP
SetStdHandle
GetFullPathNameW
GetConsoleMode
GetConsoleCP
SetThreadAffinityMask
GetProcessAffinityMask
AreFileApisANSI
SetConsoleCtrlHandler
GetCommandLineA
IsProcessorFeaturePresent
EncodePointer
LoadLibraryExA
InterlockedPopEntrySList
InitializeSListHead
SetEnvironmentVariableA
GetFullPathNameA
OutputDebugStringW
SetFilePointerEx
LCMapStringW
GetConsoleDisplayMode
SetHandleInformation

gdi32

CreatePolygonRgn
GetDIBits
BitBlt
GetRgnBox
EnumFontFamiliesExW
GetFontData
ExtEscape
DeleteEnhMetaFile
CreateEnhMetaFileW
CloseEnhMetaFile
CreateRectRgn
GetStockObject
GetTextMetricsW
SetMapMode
GetTextExtentPoint32W
CreateCompatibleDC
GetTextFaceW
GetObjectW
SelectObject
CreateFontW
CreateFontIndirectW
EndPage
StartPage
EndDoc
StartDocW
SetWorldTransform
SetGraphicsMode
SaveDC
RestoreDC
GetDeviceCaps
DeleteDC
CreateDCW
DeleteObject
StretchDIBits
EnumEnhMetaFile
GetEnhMetaFileBits
GetEnhMetaFileHeader
PlayEnhMetaFile
PlayEnhMetaFileRecord
SetEnhMetaFileBits
GetWorldTransform
ModifyWorldTransform
CancelDC
SetAbortProc
CreateSolidBrush
CombineRgn
CreateRectRgnIndirect
EqualRgn
CreateCompatibleBitmap
SetDIBitsToDevice
GdiAlphaBlend
GetCharABCWidthsW
GetGlyphOutlineW
GetOutlineTextMetricsW
GetFontUnicodeRanges
GetGlyphIndicesW
GetTextExtentPointI
AddFontMemResourceEx
RemoveFontMemResourceEx
SetBkMode
SetTextColor
SetTextAlign
GdiFlush
SelectClipRgn
SetBkColor
SetDCBrushColor
SetDCPenColor
SetPolyFillMode
SetROP2
SetStretchBltMode
AbortPath
BeginPath
EndPath
PathToRegion
SetArcDirection
PolyBezier
SetBrushOrgEx
CreateBitmap
SetDIBits
SetRectRgn
GetICMProfileW
StretchBlt
CreateDIBSection
GetBkColor
PtInRegion
ExtTextOutW

ole32

RegisterDragDrop
OleInitialize
ReleaseStgMedium
OleDuplicateData
RevokeDragDrop
GetHGlobalFromStream
OleUninitialize
CoCreateInstance
CreateStreamOnHGlobal
CoTaskMemAlloc
DoDragDrop
CLSIDFromString
CoSetProxyBlanket
CoCreateGuid
StringFromGUID2
CoInitializeEx
CoUninitialize
PropVariantClear
CoTaskMemFree
CoTaskMemRealloc

oleaut32

SysFreeString
VarUI4FromStr
SysAllocString
VariantClear
SysStringLen
LoadRegTypeLi
LoadTypeLi
VariantTimeToSystemTime

netapi32

NetApiBufferFree
NetUserGetInfo
NetGetJoinInformation

userenv

RegisterGPNotification
DestroyEnvironmentBlock
GetAppliedGPOListW
FreeGPOListW
UnregisterGPNotification
CreateEnvironmentBlock

wtsapi32

WTSRegisterSessionNotification
WTSFreeMemory
WTSQueryUserToken
WTSQuerySessionInformationW
WTSUnRegisterSessionNotification

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

secur32

FreeCredentialsHandle
InitializeSecurityContextW
DeleteSecurityContext
FreeContextBuffer
QuerySecurityPackageInfoW
AcquireCredentialsHandleW
GetUserNameExW

winmm

midiOutUnprepareHeader
midiOutPrepareHeader
midiOutClose
midiOutOpen
midiOutGetDevCapsW
midiOutGetNumDevs
midiOutShortMsg
midiOutLongMsg
midiOutReset
midiOutGetID
midiInGetNumDevs
midiInGetDevCapsW
midiInOpen
midiInClose
midiInPrepareHeader
midiInUnprepareHeader
waveInGetDevCapsW
midiInAddBuffer
midiInReset
midiInGetID
waveInMessage
waveOutGetDevCapsW
waveOutReset
waveOutRestart
waveOutPause
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveInReset
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInClose
waveInOpen
midiInStart
timeEndPeriod
waveInGetNumDevs
waveOutGetNumDevs
timeBeginPeriod
timeGetTime

comctl32

InitCommonControlsEx

chrome_elf

SuccessfullyBlocked
GetBlacklistIndex
GetRedirectCount
IsBlacklistInitialized

usp10

ScriptFreeCache
ScriptStringAnalyse
ScriptStringFree
ScriptStringOut
ScriptShape
ScriptItemize

credui

CredUIPromptForCredentialsW

rpcrt4

UuidCreateSequential
RpcStringFreeW
UuidToStringW

hid

HidD_GetProductString
HidD_FreePreparsedData
HidD_GetPreparsedData
HidD_GetAttributes
HidP_GetValueCaps
HidP_GetButtonCaps
HidP_GetCaps
HidD_GetSerialNumberString

wintrust

WTHelperProvDataFromStateData
WinVerifyTrust

ntdsapi

DsUnBindW
DsBindW

Exports

Exports

ChromeMain
GetHandleVerifier
IsSandboxedProcess
RelaunchChromeBrowserWithNewCommandLineIfNeeded

Sections

.text
Size: 23.4MB - Virtual size: 23.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 374KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 997KB - Virtual size: 997KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0e864431c0a21b7d84de45b5a8c62f1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:2f:4e:e1:35:5cCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

11:21:30:b8:7f:4f:08:7e:63:e0:d3:d6:dc:5f:09:3c:07:29Certificate

Extended Key Usages

Key Usages

1b:33:69:df:62:20:14:34:a1:44:e9:da:3e:87:a4:1a:05:48:05:05Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

psapi

shlwapi

user32

advapi32

kernel32

gdi32

ole32

oleaut32

netapi32

userenv

wtsapi32

oleacc

secur32

winmm

comctl32

chrome_elf

usp10

credui

rpcrt4

hid

wintrust

ntdsapi

Exports

Exports

Sections

.text Size: 23.4MB - Virtual size: 23.4MB

.rdata Size: 5.1MB - Virtual size: 5.1MB

.data Size: 104KB - Virtual size: 374KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 143KB - Virtual size: 142KB

.reloc Size: 997KB - Virtual size: 997KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

04:00:00:00:00:01:2f:4e:e1:35:5c
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

11:21:30:b8:7f:4f:08:7e:63:e0:d3:d6:dc:5f:09:3c:07:29
Certificate

1b:33:69:df:62:20:14:34:a1:44:e9:da:3e:87:a4:1a:05:48:05:05
Signer

.text
Size: 23.4MB - Virtual size: 23.4MB

.rdata
Size: 5.1MB - Virtual size: 5.1MB

.data
Size: 104KB - Virtual size: 374KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 143KB - Virtual size: 142KB

.reloc
Size: 997KB - Virtual size: 997KB