3c68066d5e8785f24b47c419e03c7188d907e5f23a13ddd13f9cf07b7ef1843a

Sharing

Copy URL

Twitter E-mail

General

Target

3c68066d5e8785f24b47c419e03c7188d907e5f23a13ddd13f9cf07b7ef1843a
Size

5.3MB
MD5

7eb190420700658efe3a4ec4caf4279f
SHA1

82b8a4b2f11a5b83d64b88ca79f679442bcc02da
SHA256

3c68066d5e8785f24b47c419e03c7188d907e5f23a13ddd13f9cf07b7ef1843a
SHA512

81d0cebf538adf82d38d13404706e8062818b9929f1978089fbf986a2c981dae80d44ec193cfa2cd66e32a75cbe2781c0301f1e3135cd3e565f75c1fa209fb18
SSDEEP

98304:jAynUB2dXKMcFfB7s03X2xPMWxeRmOxATEUbOKWROB7K:jFUiXKMiYPbxeULORROM

Score

1^/10

Malware Config

Signatures

Files

3c68066d5e8785f24b47c419e03c7188d907e5f23a13ddd13f9cf07b7ef1843a
.exe windows:5 windows x86 arch:x86

d8a0e3a2d274de37ef102ef1f55287a8

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8b:6b:86:23:d0:7b:86:b7:75:16:ca:6b:69:62:2c:8d
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

27/07/2021, 00:00

Not After

26/07/2024, 23:59

Subject

CN=Gazing Tai Technology Co.\, Ltd.,O=Gazing Tai Technology Co.\, Ltd.,L=Zhuhai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8b:6b:86:23:d0:7b:86:b7:75:16:ca:6b:69:62:2c:8d
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

27/07/2021, 00:00

Not After

26/07/2024, 23:59

Subject

CN=Gazing Tai Technology Co.\, Ltd.,O=Gazing Tai Technology Co.\, Ltd.,L=Zhuhai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

db:d6:35:b6:81:20:f1:40:99:a7:df:e5:91:08:86:48:ed:df:76:e0:ac:07:a5:52:5f:e0:3e:ad:60:88:6b:c5
Signer

Actual PE Digest

db:d6:35:b6:81:20:f1:40:99:a7:df:e5:91:08:86:48:ed:df:76:e0:ac:07:a5:52:5f:e0:3e:ad:60:88:6b:c5

Digest Algorithm

sha256

PE Digest Matches

false

50:45:bd:fe:05:77:48:18:9a:88:1c:9d:cd:f5:e3:5e:a1:2f:6b:03
Signer

Actual PE Digest

50:45:bd:fe:05:77:48:18:9a:88:1c:9d:cd:f5:e3:5e:a1:2f:6b:03

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

CareUEyes.pdb

Imports

winmm

PlaySoundW
timeKillEvent
timeSetEvent

wtsapi32

WTSUnRegisterSessionNotification
WTSRegisterSessionNotification

kernel32

CreateFileMappingW
CreateFileW
ReadFile
FindClose
FindFirstFileW
FindNextFileW
DeleteFileW
GetFileAttributesExW
GetCurrentDirectoryW
MapViewOfFile
GetVolumeInformationW
GetFileAttributesW
SetFilePointerEx
SetEndOfFile
FlushFileBuffers
GetFileInformationByHandle
CreateToolhelp32Snapshot
GetSystemTimeAsFileTime
SystemTimeToFileTime
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetVersionExW
GetSystemInfo
GetSystemDirectoryW
GetUserDefaultLangID
FindFirstChangeNotificationW
FindNextChangeNotification
Process32FirstW
Process32NextW
OpenFileMappingW
IsBadReadPtr
GetSystemTime
GetCurrentDirectoryA
GetModuleFileNameA
GetVersionExA
VirtualFree
FreeResource
GetFullPathNameW
GetModuleHandleA
SleepEx
VerSetConditionMask
QueryPerformanceFrequency
VerifyVersionInfoW
QueryPerformanceCounter
MoveFileExA
CompareFileTime
GetFileType
GetStdHandle
PeekNamedPipe
FormatMessageA
IsDebuggerPresent
EncodePointer
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
IsProcessorFeaturePresent
FormatMessageW
VirtualAlloc
FlushInstructionCache
VirtualProtect
GetEnvironmentVariableW
GetEnvironmentVariableA
CreateProcessW
ResumeThread
TerminateProcess
WriteFile
UnmapViewOfFile
SuspendThread
GetFileSize
FindCloseChangeNotification
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
CompareStringW
LCMapStringW
GetStringTypeW
GetCPInfo
LocalFree
UnhandledExceptionFilter
WaitForSingleObjectEx
GetStartupInfoW
RtlUnwind
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
SetStdHandle
GetDriveTypeW
GetACP
GetConsoleMode
ReadConsoleW
GetConsoleCP
GetDateFormatW
GetTimeFormatW
GetTimeZoneInformation
SetConsoleCtrlHandler
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
SetConsoleMode
ReadConsoleA
SwitchToFiber
DeleteFiber
CreateFiber
ConvertFiberToThread
ConvertThreadToFiber
ReadProcessMemory
LoadLibraryExA
LoadLibraryA
InterlockedCompareExchange
GetComputerNameA
GetLocalTime
IsBadWritePtr
SetLastError
lstrcmpW
GetCurrentThreadId
ExitProcess
GlobalAddAtomA
GetTickCount
CreateThread
Sleep
WaitForMultipleObjects
SetEvent
ResetEvent
CloseHandle
CreateEventW
WaitForSingleObject
LoadLibraryW
InitializeCriticalSection
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
GetCommandLineW
SetCurrentDirectoryW
InitializeCriticalSectionAndSpinCount
lstrcmpiW
LockResource
SizeofResource
FindResourceExW
DecodePointer
RaiseException
MultiByteToWideChar
LoadResource
FindResourceW
LoadLibraryExW
GetCurrentThread
GetModuleFileNameW
GetFileSizeEx
lstrlenA
VirtualQuery
SetUnhandledExceptionFilter
GetModuleHandleW
GetCommandLineA
GetCurrentProcessId
GetCurrentProcess
GetLastError
FreeLibrary
GetProcAddress
TerminateThread
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
OutputDebugStringA
WideCharToMultiByte
MulDiv
GlobalUnlock
GlobalLock
GlobalAlloc
GetThreadContext
InterlockedIncrement
InterlockedDecrement
OutputDebugStringW
HeapCreate

user32

AppendMenuW
DeleteMenu
TrackPopupMenu
GetMenuInfo
SetMenuInfo
GetMenuItemInfoW
SetMenuContextHelpId
MsgWaitForMultipleObjects
GetMenuItemCount
DestroyMenu
CreatePopupMenu
IsMenu
GetIconInfo
SetActiveWindow
IsWindowEnabled
EnableWindow
LoadImageW
CreateIconFromResource
FindWindowW
MapWindowPoints
SetCaretPos
HideCaret
GetCaretBlinkTime
CreateCaret
UpdateWindow
GetCapture
IsIconic
SetLayeredWindowAttributes
AnimateWindow
PostQuitMessage
TrackMouseEvent
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
EnableMenuItem
GetKeyState
EqualRect
IsRectEmpty
UnionRect
IntersectRect
InflateRect
SetRect
DestroyCursor
SetSysColors
IsZoomed
GetWindowRgn
DrawTextW
SystemParametersInfoA
CharLowerBuffW
MapVirtualKeyA
UpdateLayeredWindow
LoadBitmapW
GetWindowDC
GetAncestor
SendMessageA
GetShellWindow
MonitorFromWindow
WindowFromPoint
KillTimer
SetTimer
GetMonitorInfoW
EnumDisplayDevicesW
CallWindowProcW
GetUserObjectInformationW
GetProcessWindowStation
DrawIconEx
RegisterClassExW
LoadCursorW
GetClassInfoExW
RegisterWindowMessageW
DefWindowProcW
CreateAcceleratorTableW
FillRect
DestroyAcceleratorTable
GetSysColor
GetClassNameW
GetDlgItem
GetDlgCtrlID
IsChild
GetWindow
SetFocus
RedrawWindow
InvalidateRgn
InvalidateRect
EndPaint
BeginPaint
GetClientRect
MoveWindow
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CreateWindowExW
GetWindowLongW
SetWindowLongW
GetDesktopWindow
ReleaseCapture
SetCapture
SetCursor
LockWorkStation
AttachThreadInput
SystemParametersInfoW
GetWindowThreadProcessId
ClientToScreen
ScreenToClient
PtInRect
CopyRect
EnumDisplayMonitors
RegisterHotKey
UnregisterHotKey
GetAsyncKeyState
GetSystemMetrics
MonitorFromPoint
BringWindowToTop
SetForegroundWindow
GetCursorPos
GetForegroundWindow
SetWinEventHook
UnhookWinEvent
PostMessageW
MonitorFromRect
GetWindowRect
IsWindow
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
OffsetRect
CharNextW
UnregisterClassW
SendMessageW
DestroyWindow
SetWindowPos
ShowWindow
GetParent
GetFocus
IsWindowVisible
GetActiveWindow
MessageBoxW
ReleaseDC
GetDC
DestroyIcon

gdi32

GetDeviceCaps
SelectObject
EnumFontFamiliesExW
GetCharABCWidthsW
GetFontData
GetGlyphOutlineW
GetOutlineTextMetricsW
GetFontUnicodeRanges
DeleteObject
CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteDC
GetStockObject
GetObjectW
SetDeviceGammaRamp
CreateRectRgn
CreatePen
SetROP2
CreateHatchBrush
FrameRgn
Rectangle
SetGraphicsMode
CreateRoundRectRgn
EnumFontsW
GetGlyphIndicesW
GetTextExtentPointI
AddFontMemResourceEx
CreateBitmap
RemoveFontMemResourceEx
SetTextColor
SetTextAlign
GetViewportOrgEx
GetCurrentObject
CreateDIBSection
SelectClipRgn
IntersectClipRect
GetRegionData
ExtCreateRegion
CreateFontIndirectW
GetTextMetricsW
SetWorldTransform
ExtTextOutW
GetTextFaceW
GdiFlush
SetBkMode
StretchBlt
SetViewportOrgEx

comdlg32

ChooseColorW

advapi32

CryptGetProvParam
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
RegQueryValueExW
GetUserNameA
RegDeleteValueW
RegCreateKeyExW
DeregisterEventSource
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetHashParam
RegSetValueExW
CryptEnumProvidersW
RegOpenKeyExW
RegDeleteKeyW
RegCloseKey
RegQueryInfoKeyW
RegEnumKeyExW

shell32

SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetPathFromIDListW
SHFileOperationW
Shell_NotifyIconW
SHGetSpecialFolderPathW
SHCreateDirectoryExW
ShellExecuteW

ole32

CoTaskMemAlloc
CoCreateInstance
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoTaskMemRealloc
CLSIDFromString
CoGetClassObject
StringFromGUID2
OleLockRunning
IIDFromString
CoCreateGuid
CreateBindCtx
CoTaskMemFree
CLSIDFromProgID

oleaut32

SysFreeString
VariantInit
SysAllocString
VarUI4FromStr
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
SysAllocStringLen
SysStringLen
LoadRegTypeLi
VariantClear
OleCreateFontIndirect
DispCallFunc
VarUdateFromDate
LoadTypeLi

shlwapi

StrToIntExW
PathFileExistsW
PathAppendW
PathIsDirectoryW
PathRemoveFileSpecW
PathQuoteSpacesW

gdiplus

GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipAlloc
GdipFree
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGraphicsClear
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateBitmapFromScan0
GdipImageGetFrameCount
GdipDrawImageRectI
GdipImageSelectActiveFrame

version

GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoW
VerQueryValueW

ws2_32

getsockname
getpeername
connect
bind
WSAGetLastError
send
recv
closesocket
htons
ntohs
setsockopt
WSASetLastError
WSAIoctl
WSAStartup
WSACleanup
accept
htonl
listen
ioctlsocket
__WSAFDIsSet
select
getaddrinfo
freeaddrinfo
recvfrom
shutdown
sendto
gethostname
getsockopt
socket
getnameinfo

iphlpapi

GetAdaptersInfo

imm32

ImmReleaseContext
ImmAssociateContext
ImmGetContext

crypt32

CertEnumCertificatesInStore
CertFreeCertificateContext
CertGetEnhancedKeyUsage
CertCloseStore
CertGetCertificateContextProperty
CertOpenSystemStoreA
CertOpenStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertGetIntendedKeyUsage

wldap32

ord208
ord41
ord14
ord145
ord117
ord26
ord301
ord147
ord219
ord216
ord133
ord79
ord142
ord27
ord167
ord127
ord46

usp10

ScriptFreeCache
ScriptShape
ScriptItemize

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 519KB - Virtual size: 519KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 197KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8a0e3a2d274de37ef102ef1f55287a8

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

8b:6b:86:23:d0:7b:86:b7:75:16:ca:6b:69:62:2c:8dCertificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

8b:6b:86:23:d0:7b:86:b7:75:16:ca:6b:69:62:2c:8dCertificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

db:d6:35:b6:81:20:f1:40:99:a7:df:e5:91:08:86:48:ed:df:76:e0:ac:07:a5:52:5f:e0:3e:ad:60:88:6b:c5Signer

50:45:bd:fe:05:77:48:18:9a:88:1c:9d:cd:f5:e3:5e:a1:2f:6b:03Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winmm

wtsapi32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

gdiplus

version

ws2_32

iphlpapi

imm32

crypt32

wldap32

usp10

Sections

.text Size: 3.4MB - Virtual size: 3.4MB

.rdata Size: 1.1MB - Virtual size: 1.1MB

.data Size: 83KB - Virtual size: 187KB

.rsrc Size: 519KB - Virtual size: 519KB

.reloc Size: 197KB - Virtual size: 196KB

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

8b:6b:86:23:d0:7b:86:b7:75:16:ca:6b:69:62:2c:8d
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

8b:6b:86:23:d0:7b:86:b7:75:16:ca:6b:69:62:2c:8d
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

db:d6:35:b6:81:20:f1:40:99:a7:df:e5:91:08:86:48:ed:df:76:e0:ac:07:a5:52:5f:e0:3e:ad:60:88:6b:c5
Signer

50:45:bd:fe:05:77:48:18:9a:88:1c:9d:cd:f5:e3:5e:a1:2f:6b:03
Signer

.text
Size: 3.4MB - Virtual size: 3.4MB

.rdata
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 83KB - Virtual size: 187KB

.rsrc
Size: 519KB - Virtual size: 519KB

.reloc
Size: 197KB - Virtual size: 196KB