2024-06-08_e7ebec38aeccb9dc59a2071a9133e719_ryuk

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-08_e7ebec38aeccb9dc59a2071a9133e719_ryuk
Size

5.1MB
MD5

e7ebec38aeccb9dc59a2071a9133e719
SHA1

287f9debd8e29519750ef208d6f63d99dc2e1e53
SHA256

f47cd72dba5e0c0bf0e3701e1a72a694df91086f2caf71904ec95e5d21a30ed3
SHA512

aafcec8dd2a22b8debae5996aaeb57b0441b8eef6e0bd76ed74c8b823d1a0b321a4053f8124e00e24137f1129952b696d70d60678ca595b73453a0803f9ab8c5
SSDEEP

49152:WNxgiBROyu6an7JgIEHzDiIvyPd43uwkNIjpmryyfXUrL1srB4Y7CjzURlJJ/5uL:qtjlDua3uwkNIjpmrFPcIDogxJMIHM0

Score

1^/10

Malware Config

Signatures

Files

2024-06-08_e7ebec38aeccb9dc59a2071a9133e719_ryuk
.exe windows:6 windows x64 arch:x64

dfd9249ef44688d379165f7b954ef373

Code Sign

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7
Certificate

Issuer

CN=SSL.com Root Certification Authority ECC,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

07/03/2019, 19:35

Not After

03/03/2034, 19:35

Subject

CN=SSL.com Code Signing Intermediate CA ECC R2,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

21:60:ca:f0:28:0e:20:d2:4a:3f:1b:1e:b1:24:d5:21
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA ECC R2,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

06/09/2023, 06:24

Not After

05/09/2026, 06:24

Subject

CN=NTWIND LLC,O=NTWIND LLC,L=Samarkand,ST=Samarqand Region,C=UZ

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5a:5a:ac:e8:1a:35:6e:b4:62:86:8d:57:7d:e0:3d:c7
Certificate

Issuer

CN=SSL.com Timestamping Issuing RSA CA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

19/02/2024, 16:18

Not After

16/02/2034, 16:18

Subject

CN=SSL.com Timestamping Unit 2024 E1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

6d:52:18:70:87:e8:23:4d:85:60:00:d0:80:8f:93:56
Certificate

Issuer

CN=SSL.com Root Certification Authority RSA,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

13/11/2019, 18:50

Not After

12/11/2034, 18:50

Subject

CN=SSL.com Timestamping Issuing RSA CA R1,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c2:8b:d6:f8:09:1f:f4:00:19:91:da:82:d1:11:97:b7:39:5e:63:d7:19:d5:5e:a7:0e:77:02:51:c8:e8:d0:32
Signer

Actual PE Digest

c2:8b:d6:f8:09:1f:f4:00:19:91:da:82:d1:11:97:b7:39:5e:63:d7:19:d5:5e:a7:0e:77:02:51:c8:e8:d0:32

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Projects\SOFT\CloseAll\Source\CloseAll\x64\Release\CloseAll.pdb

Imports

kernel32

GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
VirtualProtect
SetErrorMode
SystemTimeToTzSpecificLocalTime
SetFileAttributesW
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
FileTimeToSystemTime
GetUserDefaultLCID
GetProfileIntW
LoadLibraryExA
VirtualQuery
GetSystemInfo
WriteConsoleW
GetConsoleMode
GetConsoleCP
SetFilePointerEx
GetStringTypeW
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetFileType
GetStdHandle
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
RtlUnwindEx
RtlPcToFileHeader
ExitProcess
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetUserDefaultLangID
GetPrivateProfileSectionNamesW
LoadLibraryA
CreateDirectoryW
GetTickCount
EnumResourceLanguagesW
EnumResourceNamesW
EnumResourceTypesW
GetTimeFormatW
GetDateFormatW
GetModuleHandleA
GetLocalTime
CreateThread
OutputDebugStringW
ReplaceFileW
SetFileTime
GetFileTime
GetDiskFreeSpaceW
GlobalFindAtomW
FreeResource
GetSystemDirectoryW
EncodePointer
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SuspendThread
SetThreadPriority
CreateEventW
SetEvent
GetThreadLocale
GetStringTypeExW
MoveFileW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SizeofResource
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
GetFileSize
FlushFileBuffers
CreateFileW
GlobalAddAtomW
CompareStringA
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetVersionExW
GetCurrentThreadId
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetModuleHandleExW
InitializeCriticalSectionAndSpinCount
SetLastError
OutputDebugStringA
GetACP
ResumeThread
WaitForMultipleObjects
K32GetModuleFileNameExW
K32EnumProcessModules
OpenProcess
GetCurrentProcessId
DeleteCriticalSection
DecodePointer
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
SystemTimeToFileTime
GetSystemTime
GetTempFileNameW
GetTempPathW
lstrcmpW
WideCharToMultiByte
Process32NextW
lstrcmpiW
Process32FirstW
CreateToolhelp32Snapshot
GetLastError
GetCurrentThread
GetProcessHeap
lstrcpynW
Sleep
CloseHandle
WaitForSingleObject
FreeLibrary
LoadLibraryW
HeapCreate
HeapAlloc
HeapDestroy
HeapFree
FindClose
FindNextFileW
lstrlenW
FindFirstFileW
DeleteFileW
GetFileAttributesW
MultiByteToWideChar
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
FindResourceW
LoadResource
LockResource
VirtualAlloc

user32

InvalidateRect
SetActiveWindow
InsertMenuItemW
DestroyMenu
CreatePopupMenu
SetMenu
IsMenu
IsChild
DestroyWindow
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindow
GetMenu
GetScrollPos
EqualRect
WinHelpW
UnpackDDElParam
ReuseDDElParam
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
GetScrollRange
ShowScrollBar
SetPropW
RemovePropW
GetClassInfoExW
GetParent
GetSystemMetrics
PostMessageW
FindWindowExW
SetForegroundWindow
IsIconic
ShowWindow
UpdateWindow
SetRect
GetWindow
GetDesktopWindow
ScreenToClient
BeginPaint
EndPaint
TrackPopupMenu
CreateWindowExW
IsWindowVisible
SendMessageW
KillTimer
DestroyIcon
SetTimer
GetCursorPos
PtInRect
EnableWindow
SystemParametersInfoW
GetSysColor
DrawIconEx
AdjustWindowRectEx
MapWindowPoints
SetWindowLongPtrW
GetTopWindow
UnhookWindowsHookEx
SetScrollInfo
GetScrollInfo
MonitorFromWindow
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
ShowOwnedPopups
GetDC
ReleaseDC
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
ClientToScreen
FillRect
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetKeyNameTextW
MapVirtualKeyW
GetMenuItemInfoW
GetSysColorBrush
DeleteMenu
RealChildWindowFromPoint
UnionRect
GetSystemMenu
SetParent
MapDialogRect
GetDialogBaseUnits
SetCapture
SetWindowRgn
GetIconInfo
IsHungAppWindow
SendMessageTimeoutW
GetForegroundWindow
BringWindowToTop
SetWindowPos
FindWindowW
GetWindowThreadProcessId
WindowFromPoint
GetDCEx
LockWindowUpdate
LoadMenuW
AttachThreadInput
SendInput
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
GetCapture
CallNextHookEx
SetWindowsHookExW
ValidateRect
GetKeyState
GetActiveWindow
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
CharUpperW
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
GetDlgCtrlID
SetDlgItemTextW
GetDlgItem
MoveWindow
GetWindowLongW
MessageBoxW
IsWindowEnabled
PostQuitMessage
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
OffsetRect
SetRectEmpty
GetClientRect
SendDlgItemMessageA
GetWindowPlacement
GetMonitorInfoW
SwitchToThisWindow
GetLastActivePopup
EnumDesktopWindows
EnumDisplayMonitors
InternalGetWindowText
PostThreadMessageW
InvertRect
LoadMenuIndirectW
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
SetClipboardData
RegisterClipboardFormatW
DrawStateW
CreateIconIndirect
CopyIcon
GetDoubleClickTime
OpenClipboard
CloseClipboard
GetClipboardData
EmptyClipboard
IsClipboardFormatAvailable
EnableScrollBar
mouse_event
DrawFocusRect
DrawFrameControl
MessageBeep
HideCaret
ShowCaret
GetMenuDefaultItem
wsprintfW
OpenInputDesktop
CloseDesktop
GetUserObjectInformationW
WaitMessage
ToUnicodeEx
GetKeyboardLayoutList
GetKeyboardLayout
IsCharLowerW
GetKeyboardState
VkKeyScanExW
MapVirtualKeyExW
CopyAcceleratorTableW
GetWindowRgn
GetCursor
DrawEdge
IsWindowUnicode
GetWindowLongPtrA
SetWindowLongPtrA
LoadStringW
SetCursorPos
GetClassLongW
GetTabbedTextExtentA
GetTabbedTextExtentW
DrawMenuBar
DefFrameProcW
TranslateMDISysAccel
CharNextW
SetWindowContextHelpId
InvalidateRgn
GetNextDlgGroupItem
GetPropW
GetShellWindow
EnumChildWindows
IntersectRect
GetWindowLongPtrW
GetClassNameW
UnregisterClassW
RegisterWindowMessageW
InflateRect
SetCursor
LoadCursorW
IsZoomed
CopyRect
GetAsyncKeyState
CharUpperBuffW
RedrawWindow
RegisterClassW
GetClassInfoW
IsRectEmpty
GetFocus
GetWindowRect
LoadImageW
LoadIconW
GetClassLongPtrW

gdi32

SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkMode
SetMapMode
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
StartDocW
MoveToEx
TextOutW
ExtTextOutW
PolyBezierTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
GetTextExtentPoint32W
CombineRgn
RestoreDC
DPtoLP
GetCharWidthW
StretchDIBits
Ellipse
GetBkColor
EnumFontFamiliesExW
GetObjectW
CreateCompatibleDC
SelectObject
GetDIBits
CreateDIBSection
DeleteDC
DeleteObject
CreateSolidBrush
CopyMetaFileW
CreateDCW
GetDeviceCaps
CreateCompatibleBitmap
SetBkColor
SetTextColor
CreateBitmap
CreateFontIndirectW
BitBlt
CreatePen
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
CreateBrushIndirect
GetBkMode
GetTextColor
Rectangle
SetPixel
BeginPath
EndPath
StrokePath
Polygon
StretchBlt
GetBitmapDimensionEx
GetCurrentObject
PtInRegion
GetViewportOrgEx
ExtCreateRegion
GetBitmapBits
GetBoundsRect
Polyline
CreatePolygonRgn
GetRgnBox
GetWindowOrgEx
RoundRect
GetObjectA
GetTextAlign
GetTextExtentPoint32A
CloseFigure
FillPath
StrokeAndFillPath
EndDoc
StartPage
EndPage
GetCurrentPositionEx
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
GetMapMode
GetTextMetricsW
GetTextFaceW
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetROP2
SetAbortProc
AbortDoc
RectVisible

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW
GetJobW

advapi32

IsTextUnicode
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
GetFileSecurityW
ImpersonateSelf
OpenThreadToken
RevertToSelf
MapGenericMask
AccessCheck
RegEnumValueW
SetFileSecurityW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegSetValueW
RegCloseKey

shell32

SHAppBarMessage
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
ExtractIconW
DragFinish
DragQueryFileW
SHGetPropertyStoreForWindow
ShellExecuteW
SHGetFileInfoW
ShellExecuteExW
SHFileOperationW
ExtractIconExW

comctl32

ImageList_Draw
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_Add
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
_TrackMouseEvent
ImageList_GetIcon
InitCommonControlsEx
ImageList_AddMasked

shlwapi

PathCombineW
PathRemoveFileSpecW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW
StrCmpNW
SHCreateStreamOnFileEx

uxtheme

IsAppThemed
DrawThemeBackground
GetThemePartSize
CloseThemeData
OpenThemeData
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent

ole32

CreateStreamOnHGlobal
CoGetClassObject
CoFreeUnusedLibraries
CoRevokeClassObject
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleGetClipboard
CLSIDFromProgID
OleUninitialize
OleInitialize
OleRun
CLSIDFromString
CoDisconnectObject
CoInitializeEx
CoInitialize
PropVariantClear
CoTaskMemFree
CoCreateInstance
StringFromCLSID
CoTaskMemAlloc
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoCreateGuid

oleaut32

VarBstrFromDate
VarDateFromStr
VariantCopy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysFreeString
OleLoadPicturePath
VariantChangeTypeEx
VarUdateFromDate
VarCmp
OleCreateFontIndirect
GetErrorInfo

urlmon

URLDownloadToFileW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

gdiplus

GdipCreateSolidFill
GdipSetClipRectI
GdipFillPieI
GdipFillRectangleI
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetPathGradientBlend
GdipGetPathGradientPointCount
GdipSetPathGradientCenterPointI
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipCreatePathGradientFromPath
GdipSetLineBlend
GdipCreateLineBrushI
GdipCreateLineBrush
GdipSetCompositingMode
GdipCloneBrush
GdipAddPathEllipseI
GdipDeletePath
GdipCreatePath
GdiplusStartup
GdipFree
GdipAlloc
GdipDeleteFont
GdipDrawString
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetCompositingQuality
GdipFillRectangle
GdiplusShutdown
GdipDeleteBrush
GdipCreateFontFromLogfontA
GdipCreateFontFromDC

oleacc

CreateStdAccessibleObject
LresultFromObject

winmm

PlaySoundW

oledlg

OleUIBusyW
OleUIAddVerbMenuW

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 985KB - Virtual size: 984KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfd9249ef44688d379165f7b954ef373

Code Sign

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7Certificate

Extended Key Usages

Key Usages

21:60:ca:f0:28:0e:20:d2:4a:3f:1b:1e:b1:24:d5:21Certificate

Extended Key Usages

Key Usages

5a:5a:ac:e8:1a:35:6e:b4:62:86:8d:57:7d:e0:3d:c7Certificate

Extended Key Usages

Key Usages

6d:52:18:70:87:e8:23:4d:85:60:00:d0:80:8f:93:56Certificate

Extended Key Usages

Key Usages

c2:8b:d6:f8:09:1f:f4:00:19:91:da:82:d1:11:97:b7:39:5e:63:d7:19:d5:5e:a7:0e:77:02:51:c8:e8:d0:32Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

urlmon

version

gdiplus

oleacc

winmm

oledlg

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.rdata Size: 1.1MB - Virtual size: 1.1MB

.data Size: 90KB - Virtual size: 127KB

.pdata Size: 168KB - Virtual size: 167KB

.gfids Size: 14KB - Virtual size: 14KB

.giats Size: 512B - Virtual size: 8B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 985KB - Virtual size: 984KB

.reloc Size: 84KB - Virtual size: 84KB

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7
Certificate

21:60:ca:f0:28:0e:20:d2:4a:3f:1b:1e:b1:24:d5:21
Certificate

5a:5a:ac:e8:1a:35:6e:b4:62:86:8d:57:7d:e0:3d:c7
Certificate

6d:52:18:70:87:e8:23:4d:85:60:00:d0:80:8f:93:56
Certificate

c2:8b:d6:f8:09:1f:f4:00:19:91:da:82:d1:11:97:b7:39:5e:63:d7:19:d5:5e:a7:0e:77:02:51:c8:e8:d0:32
Signer

.text
Size: 2.6MB - Virtual size: 2.6MB

.rdata
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 90KB - Virtual size: 127KB

.pdata
Size: 168KB - Virtual size: 167KB

.gfids
Size: 14KB - Virtual size: 14KB

.giats
Size: 512B - Virtual size: 8B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 985KB - Virtual size: 984KB

.reloc
Size: 84KB - Virtual size: 84KB