2024-06-06_6938def84c6de4ccf178b9b38fde887e_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-06_6938def84c6de4ccf178b9b38fde887e_mafia
Size

1.9MB
MD5

6938def84c6de4ccf178b9b38fde887e
SHA1

e98cc6a5d77fdc3a03a20f721a6f3fd300a74310
SHA256

af966349de93faa015ee9d9fa988f960a31c49b735b6b7d6efcf5b9ef764a7d5
SHA512

2674064b86374bb510eb71773a89171755d46070f74d7e63377c459c2c8715b440305f0e627a231506963622b4f303f04ab2ff58795c0d1fbd33893224db2e07
SSDEEP

49152:1BzSqJHqynfXRSHOwd/ZPymCSFOWIb62y36Fecr1nUBEpGvFktciK/bDGSh4bMVo:1QqJHqynfMHOwtsmCSkWIb62y36FecrN

Score

1^/10

Malware Config

Signatures

Files

2024-06-06_6938def84c6de4ccf178b9b38fde887e_mafia
.exe windows:5 windows x86 arch:x86

2b47474eb50ef4bbe8825d5552deb981

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

17/11/2006, 00:00

Not After

30/12/2020, 23:59

Subject

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3e:a8:9d:7d:0b:2e:c1:b9:89:1b:af:16:ad:a9:33:3b
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

08/07/2013, 00:00

Not After

07/10/2014, 23:59

Subject

CN=重庆掌赢科技有限公司,OU=推广部,O=重庆掌赢科技有限公司,L=重庆市,ST=重庆市,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

cb:84:53:4d:c0:56:02:1f:94:a5:69:e2:bf:51:bc:3e:8b:17:77:84
Signer

Actual PE Digest

cb:84:53:4d:c0:56:02:1f:94:a5:69:e2:bf:51:bc:3e:8b:17:77:84

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerSetControlDetails
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerClose
mixerOpen
PlaySoundA
mixerGetID
mixerGetDevCapsA
mixerGetNumDevs

kernel32

IsDebuggerPresent
GetStdHandle
HeapCreate
IsValidCodePage
SetHandleCount
GetConsoleCP
GetConsoleMode
LCMapStringW
GetCurrentDirectoryW
GetStringTypeW
SetUnhandledExceptionFilter
GetEnvironmentStringsW
QueryPerformanceCounter
GetTimeZoneInformation
GetDriveTypeW
CompareStringW
WriteConsoleW
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
UnhandledExceptionFilter
TerminateProcess
FreeEnvironmentStringsW
IsProcessorFeaturePresent
SizeofResource
LockResource
LoadResource
GetFileType
FindResourceW
WideCharToMultiByte
GetFileAttributesA
CloseHandle
WriteFile
CreateFileA
FindResourceA
GetModuleHandleA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameA
SetCurrentDirectoryA
GetLastError
CreateMutexA
WritePrivateProfileStringA
GetSystemDirectoryA
FreeLibrary
VirtualProtect
GetProcAddress
LoadLibraryA
MultiByteToWideChar
SetProcessWorkingSetSize
Sleep
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
lstrlenA
GetLocalTime
GetPrivateProfileStringA
GetTickCount
RemoveDirectoryA
DeleteFileA
SetStdHandle
HeapSize
HeapQueryInformation
ExitThread
ExitProcess
HeapReAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineA
VirtualQuery
VirtualAlloc
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
DecodePointer
EncodePointer
RtlUnwind
RaiseException
FindResourceExW
SearchPathA
GetProfileIntA
GetVersionExA
GetSystemInfo
CreateThread
FindClose
FindFirstFileA
GetNumberFormatA
GetWindowsDirectoryA
InitializeCriticalSection
GetACP
FormatMessageA
GetTempPathA
GetTempFileNameA
GetFileTime
GetFileSizeEx
GetFileAttributesExA
SetErrorMode
GetOEMCP
GetCPInfo
GlobalFlags
lstrcpyA
GetSystemDirectoryW
GetCurrentDirectoryA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetFullPathNameA
GetVolumeInformationA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpiA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
InterlockedDecrement
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GetThreadLocale
InterlockedIncrement
FreeResource
GlobalGetAtomNameA
GlobalFindAtomA
LoadLibraryW
lstrcmpW
GetCurrentProcessId
GlobalAddAtomA
GetPrivateProfileIntA
WaitForSingleObject
ResumeThread
SetThreadPriority
LocalAlloc
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoA
LoadLibraryExA
CompareStringA
ActivateActCtx
DeactivateActCtx
lstrcmpA
GetModuleHandleW
InterlockedExchange
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenW
MulDiv
SetLastError
CreateToolhelp32Snapshot
Process32First
Process32Next
LocalFree

user32

IsClipboardFormatAvailable
SetMenuDefaultItem
PostThreadMessageA
CreateMenu
IsMenu
UpdateLayeredWindow
UnionRect
MonitorFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
RegisterClipboardFormatA
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadImageA
LoadAcceleratorsA
InsertMenuItemA
TranslateAcceleratorA
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableA
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyA
ToAsciiEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateA
GetSystemMenu
LoadMenuW
SetClassLongA
GetAsyncKeyState
NotifyWinEvent
CreatePopupMenu
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
UnregisterClassA
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
IntersectRect
SetRect
IsRectEmpty
CopyAcceleratorTableA
CopyImage
DestroyMenu
GetMenuItemInfoA
InflateRect
DestroyIcon
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
InvalidateRect
RealChildWindowFromPoint
LoadCursorW
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoA
SetRectEmpty
DeleteMenu
GetSysColorBrush
CharUpperA
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FrameRect
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
CheckDlgButton
OffsetRect
CharNextA
SetWindowContextHelpId
MapDialogRect
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
CallWindowProcA
GetMenu
CopyRect
PtInRect
GetWindowThreadProcessId
IsWindowEnabled
MessageBoxA
ShowOwnedPopups
SetCursor
SetWindowsHookExA
GetUpdateRect
GetWindowRgn
DestroyCursor
SubtractRect
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
GetDoubleClickTime
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
SetMenuItemBitmaps
CharUpperBuffA
CopyIcon
LoadImageW
EmptyClipboard
CloseClipboard
SetClipboardData
FillRect
OpenClipboard
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
PostQuitMessage
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
DefWindowProcA
LoadCursorA
IsWindow
GetForegroundWindow
GetLastActivePopup
GetWindowTextA
SetWindowPos
GetSystemMetrics
LoadIconW
EnableWindow
KillTimer
SetTimer
GetClientRect
IsIconic
SendMessageA
DrawIcon
PostMessageA
GetWindowRect
GetDesktopWindow
GetTopWindow
IsWindowVisible
GetParent
GetWindowLongA
SetWindowLongA
GetWindow
EndPaint

gdi32

SetLayout
DeleteObject
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateCompatibleDC
SelectPalette
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateDIBitmap
CreateFontIndirectA
CreateCompatibleBitmap
CreateRectRgnIndirect
GetTextMetricsA
EnumFontFamiliesA
GetTextCharsetInfo
GetTextExtentPoint32A
GetRgnBox
GetLayout
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateDIBSection
CreateRoundRectRgn
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExA
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
GetTextFaceA
SetPixelV
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetTextColor
GetBkColor
GetStockObject
GetObjectA
SetBkColor
SetTextColor
CreateBitmap
CreateDCA
SetRectRgn
GetDeviceCaps
CopyMetaFileA

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumValueA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyA
RegGetValueA
RegCreateKeyExA
RegDeleteValueA
RegEnumKeyExA
RegQueryValueExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA

shell32

SHAppBarMessage
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc
SHGetFileInfoA
SHBrowseForFolderA
ShellExecuteA
SHGetDesktopFolder
DragQueryFileA
DragFinish

comctl32

ImageList_GetIconSize

shlwapi

PathFindFileNameA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
PathFindExtensionA
PathRemoveFileSpecW

ole32

CreateILockBytesOnHGlobal
CoInitializeEx
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
CreateStreamOnHGlobal
CoGetClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
StgCreateDocfileOnILockBytes
DoDragDrop
CoUninitialize
CoInitialize
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
StgOpenStorageOnILockBytes
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemFree
CoRegisterMessageFilter
CoRevokeClassObject

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VarBstrFromDate
SysStringLen
OleCreateFontIndirect
SysStringByteLen
SysAllocStringByteLen
VariantCopy
VariantInit
SysFreeString
SysAllocString
SysAllocStringLen
VariantClear
VariantChangeType

oledlg

ord8

imagehlp

MakeSureDirectoryPathExists

netapi32

Netbios

ws2_32

select
recv
socket
htons
connect
ioctlsocket
send
WSAStartup
gethostbyname
inet_ntoa
WSACleanup
setsockopt
gethostname
closesocket

wininet

FindFirstUrlCacheEntryA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetQueryDataAvailable
FindNextUrlCacheEntryA
InternetOpenUrlA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
DeleteUrlCacheEntry

se_core

ord3

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Exports

Exports

??0CMixer@@QAE@ABV0@@Z
??0CMixer@@QAE@PAUHWND__@@@Z
??0CMixer@@QAE@XZ
??1CMixer@@UAE@XZ
??4CMixer@@QAEAAV0@ABV0@@Z
??_7CMixer@@6B@
?Close@CMixer@@QAEHXZ
?GetCDMute@CMixer@@QAEHPAH@Z
?GetCDVolume@CMixer@@QAEHPAK0@Z
?GetControlDetails@CMixer@@QAEHPAUtMIXERCONTROLDETAILS@@K@Z
?GetDevCaps@CMixer@@QAEHPAUtagMIXERCAPSA@@@Z
?GetID@CMixer@@QAEIXZ
?GetLineControl@CMixer@@QAEHPAUtagMIXERCONTROLA@@PAUtagMIXERLINEA@@K@Z
?GetLineControls@CMixer@@QAEHPAUtagMIXERLINECONTROLSA@@K@Z
?GetLineInMute@CMixer@@QAEHPAH@Z
?GetLineInRecordVolume@CMixer@@QAEHPAK0@Z
?GetLineInVolume@CMixer@@QAEHPAK0@Z
?GetLineInfo@CMixer@@QAEHPAUtagMIXERLINEA@@K@Z
?GetLineInfo@CMixer@@QAEHPAUtagMIXERLINEA@@KK@Z
?GetMicStrong@CMixer@@QAEHKPAH@Z
?GetMicStrongMute@CMixer@@QAEHPAH@Z
?GetMicrophoneMute@CMixer@@QAEHPAH@Z
?GetMicrophoneRecordVolume@CMixer@@QAEHPAK@Z
?GetMicrophoneVolume@CMixer@@QAEHPAK@Z
?GetMidiMute@CMixer@@QAEHPAH@Z
?GetMidiVolume@CMixer@@QAEHPAK0@Z
?GetMixerHandle@CMixer@@QAEPAUHMIXER__@@XZ
?GetMute@CMixer@@QAEHKPAH@Z
?GetNumDevs@CMixer@@QAEIXZ
?GetRecordVolume@CMixer@@QAEHKPAK0H@Z
?GetSpeakerMute@CMixer@@QAEHPAH@Z
?GetSpeakerVolume@CMixer@@QAEHPAK0@Z
?GetVolume@CMixer@@QAEHKPAK0H@Z
?GetWaveMute@CMixer@@QAEHPAH@Z
?GetWaveVolume@CMixer@@QAEHPAK0@Z
?Open@CMixer@@QAEHPAUHWND__@@@Z
?SetCDMute@CMixer@@QAEHH@Z
?SetCDVolume@CMixer@@QAEHKK@Z
?SetControlDetails@CMixer@@QAEHPAUtMIXERCONTROLDETAILS@@K@Z
?SetLineInMute@CMixer@@QAEHH@Z
?SetLineInRecordVolume@CMixer@@QAEHKK@Z
?SetLineInVolume@CMixer@@QAEHKK@Z
?SetMicStrong@CMixer@@QAEHKH@Z
?SetMicStrongMute@CMixer@@QAEHH@Z
?SetMicrophoneMute@CMixer@@QAEHH@Z
?SetMicrophoneRecordVolume@CMixer@@QAEHK@Z
?SetMicrophoneVolume@CMixer@@QAEHK@Z
?SetMidiMute@CMixer@@QAEHH@Z
?SetMidiVolume@CMixer@@QAEHKK@Z
?SetMute@CMixer@@QAEHKH@Z
?SetRecordVolume@CMixer@@QAEHKKKH@Z
?SetSpeakerMute@CMixer@@QAEHH@Z
?SetSpeakerVolume@CMixer@@QAEHKK@Z
?SetVolume@CMixer@@QAEHKKKH@Z
?SetWaveMute@CMixer@@QAEHH@Z
?SetWaveVolume@CMixer@@QAEHKK@Z
?SetWindow@CMixer@@QAEXPAUHWND__@@@Z

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b47474eb50ef4bbe8825d5552deb981

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91Certificate

Key Usages

3e:a8:9d:7d:0b:2e:c1:b9:89:1b:af:16:ad:a9:33:3bCertificate

Extended Key Usages

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5eCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

cb:84:53:4d:c0:56:02:1f:94:a5:69:e2:bf:51:bc:3e:8b:17:77:84Signer

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

imagehlp

netapi32

ws2_32

wininet

se_core

oleacc

gdiplus

imm32

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 303KB - Virtual size: 302KB

.data Size: 34KB - Virtual size: 63KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 176KB - Virtual size: 176KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91
Certificate

3e:a8:9d:7d:0b:2e:c1:b9:89:1b:af:16:ad:a9:33:3b
Certificate

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

cb:84:53:4d:c0:56:02:1f:94:a5:69:e2:bf:51:bc:3e:8b:17:77:84
Signer

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 303KB - Virtual size: 302KB

.data
Size: 34KB - Virtual size: 63KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 176KB - Virtual size: 176KB