2024-06-14_2b0c4457ff9e5589f6e2f2d2dd82d507_magniber

Sharing

Copy URL

Twitter E-mail

General

Target

2024-06-14_2b0c4457ff9e5589f6e2f2d2dd82d507_magniber
Size

23.6MB
MD5

2b0c4457ff9e5589f6e2f2d2dd82d507
SHA1

f7628e5b892449fc4f86ea7ecf51ce796528c185
SHA256

931dd35c105250ed7d9c408f20d01fbffc265daefcfba3f98d4d659054283669
SHA512

9050ae8f525fc48f10e97e9fa4b8deefb638ae5ee3adce90209c6cd6e68f8f223fcdb8e9c2559240bb4be39b3ebd635915af5ae7d4fe55bc7315ec4c1e3e50ca
SSDEEP

393216:2RsEP8j2IxCBZz2IxCBZz2IxCBZqggBZZZGSGSG9qCqCq3:858j2G8Z2G8Z2G8kGSGSG9qCqCq3

Score

1^/10

Malware Config

Signatures

Files

2024-06-14_2b0c4457ff9e5589f6e2f2d2dd82d507_magniber
.exe windows:5 windows x64 arch:x64

3053e6506ffc9e2628f3dbc951f46612

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13-04-2011 10:00

Not After

28-01-2028 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24-05-2016 00:00

Not After

24-06-2027 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-10-2019 00:00

Not After

14-10-2020 12:00

Subject

CN=大势至(北京)软件工程有限公司,O=大势至(北京)软件工程有限公司,ST=北京市,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-10-2019 00:00

Not After

14-10-2020 12:00

Subject

CN=大势至(北京)软件工程有限公司,O=大势至(北京)软件工程有限公司,ST=北京市,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02-05-2019 00:00

Not After

01-08-2030 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02-05-2019 00:00

Not After

18-01-2038 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a9:07:d0:27:ab:74:b5:22:fa:6f:c2:7e:ab:08:04:cb:fd:60:40:f7:0d:95:9f:0d:7d:c5:c2:60:a2:73:33:b6
Signer

Actual PE Digest

a9:07:d0:27:ab:74:b5:22:fa:6f:c2:7e:ab:08:04:cb:fd:60:40:f7:0d:95:9f:0d:7d:c5:c2:60:a2:73:33:b6

Digest Algorithm

sha256

PE Digest Matches

true

87:cb:8f:f2:3e:eb:9a:cc:52:2a:df:e2:d6:35:8a:3c:09:ee:a9:9f
Signer

Actual PE Digest

87:cb:8f:f2:3e:eb:9a:cc:52:2a:df:e2:d6:35:8a:3c:09:ee:a9:9f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

c:\code\nizhuohong\usbmanager\Bin\DszFileSafe_x64.pdb

Imports

ws2_32

freeaddrinfo
gethostname
ntohl
WSACleanup
WSAStartup
inet_addr
inet_ntoa
recv
select
getaddrinfo
sendto
htonl
recvfrom
accept
listen
connect
socket
closesocket
getpeername
getsockopt
htons
bind
ntohs
getsockname
setsockopt
WSAIoctl
send
WSARecv
WSASocketW
shutdown
WSASend
WSAGetLastError
getservbyport
gethostbyaddr
getservbyname
__WSAFDIsSet
WSASetLastError
ioctlsocket
gethostbyname
WSAStringToAddressA
WSACreateEvent
WSACloseEvent
WSAEventSelect

wldap32

ord22
ord211
ord143
ord60
ord50
ord26
ord30
ord200
ord32
ord35
ord79
ord33
ord301
ord27
ord41
ord46

kernel32

SetErrorMode
GetFileSizeEx
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
ExitProcess
HeapSize
HeapReAlloc
RtlPcToFileHeader
ExitThread
GetFileInformationByHandle
GetDriveTypeA
FindFirstFileA
RtlUnwindEx
GetCPInfo
HeapQueryInformation
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
FlsAlloc
HeapSetInformation
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
GetConsoleCP
GetConsoleMode
LCMapStringA
SetStdHandle
GetFullPathNameA
GetStringTypeA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
CreateWaitableTimerA
WaitForMultipleObjectsEx
OpenEventA
WaitForSingleObjectEx
CreateEventA
QueryDosDeviceA
CreateMutexA
SizeofResource
LockResource
LoadResource
FindResourceW
LoadLibraryW
GetProcAddress
FreeLibrary
GetLastError
lstrlenA
MultiByteToWideChar
GlobalAlloc
GlobalLock
lstrcpyW
GlobalUnlock
GlobalFree
lstrcmpW
lstrlenW
WideCharToMultiByte
CreateEventW
SetEvent
Sleep
GetModuleFileNameW
GetTempPathW
DeleteFileW
CopyFileW
GetVersionExW
GetUserDefaultLangID
CreateThread
WaitForSingleObject
CreateMutexW
GetFileTime
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
LocalReAlloc
GlobalHandle
GlobalReAlloc
GlobalFlags
VirtualProtect
FileTimeToLocalFileTime
WritePrivateProfileStringW
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
FileTimeToSystemTime
MulDiv
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
CreateWaitableTimerW
TerminateThread
lstrcatW
GetLongPathNameW
CreateDirectoryW
QueueUserAPC
GetSystemTimeAsFileTime
TlsSetValue
TlsGetValue
TlsFree
ConnectNamedPipe
CreateNamedPipeW
GetOverlappedResult
WaitNamedPipeW
GetComputerNameW
TlsAlloc
SetWaitableTimer
GetQueuedCompletionStatus
CreateIoCompletionPort
InitializeCriticalSectionAndSpinCount
RaiseException
GetSystemDirectoryA
PostQueuedCompletionStatus
ExpandEnvironmentStringsA
GetStdHandle
GetFileType
WaitForMultipleObjects
PeekNamedPipe
FormatMessageA
SleepEx
VerSetConditionMask
VerifyVersionInfoA
LoadLibraryA
CreateSemaphoreW
ResetEvent
ReleaseSemaphore
VirtualAlloc
CreateFileA
lstrcpynW
FormatMessageW
Thread32Next
Thread32First
VirtualFreeEx
VirtualAllocEx
SystemTimeToFileTime
GetSystemTime
TerminateProcess
SetFilePointer
OpenProcess
HeapFree
GetProcessHeap
HeapAlloc
ResumeThread
SuspendThread
GetVersionExA
OutputDebugStringA
GetCurrentDirectoryA
GetModuleFileNameA
SetLastError
GetEnvironmentVariableA
ReadProcessMemory
RtlCaptureContext
GetThreadContext
GetEnvironmentVariableW
CreateProcessW
GetStartupInfoW
CreatePipe
GetModuleHandleA
ReadFile
GetFileAttributesW
WriteFile
GetTickCount
GetCurrentThreadId
GetCurrentThread
VirtualQuery
GetCurrentProcess
SetUnhandledExceptionFilter
SetCurrentDirectoryW
GetCurrentDirectoryW
EnumResourceNamesW
EnumResourceTypesW
GetVersion
FindClose
FindNextFileW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
FindFirstFileW
GetWindowsDirectoryW
DeviceIoControl
CreateFileW
GetModuleHandleW
LocalAlloc
LocalFree
OutputDebugStringW
CloseHandle
Process32NextW
GetCurrentProcessId
Process32FirstW
CreateToolhelp32Snapshot
DeleteCriticalSection
InitializeCriticalSection
ReleaseMutex
FreeResource
EnterCriticalSection
LeaveCriticalSection
GetSystemInfo
SetFileAttributesW
GetStringTypeW

user32

SetRectEmpty
UnregisterClassW
IsRectEmpty
GetMessageW
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
SystemParametersInfoW
DestroyMenu
EndPaint
BeginPaint
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
CheckMenuItem
SendDlgItemMessageA
SendDlgItemMessageW
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongPtrW
SetFocus
GetWindowTextLengthW
GetLastActivePopup
DispatchMessageW
GetTopWindow
GetWindowLongPtrW
CharNextW
UnhookWindowsHookEx
GetMessageTime
PeekMessageW
TrackPopupMenu
SetMenu
GetScrollRange
GetScrollPos
UpdateWindow
CreateWindowExW
GetClassInfoExW
GetScrollInfo
GetDlgCtrlID
DefWindowProcW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
MsgWaitForMultipleObjects
GetKeyState
GetWindowRgn
DeferWindowPos
EqualRect
EndDeferWindowPos
BeginDeferWindowPos
CallWindowProcW
RemovePropW
GetPropW
SetWindowLongW
SetPropW
SetWindowRgn
IsZoomed
GetWindowLongW
CopyRect
IsMenu
AdjustWindowRectEx
GetForegroundWindow
GetOpenClipboardWindow
GetClipboardData
CopyAcceleratorTableW
SetRect
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
CharUpperW
FindWindowExW
RegisterClipboardFormatW
PostThreadMessageW
SetWindowLongPtrW
GetDesktopWindow
ChangeClipboardChain
SetClipboardViewer
GetWindowDC
GetWindow
GetClassNameW
GetWindowThreadProcessId
ClientToScreen
ChildWindowFromPoint
SetWindowPos
IsClipboardFormatAvailable
SendNotifyMessageW
IsWindowVisible
UnregisterHotKey
GetMenuItemID
GetMenuItemCount
GetMenu
DrawIcon
GetSystemMetrics
IsIconic
RegisterHotKey
DeleteMenu
EnableMenuItem
AppendMenuW
GetSystemMenu
LoadIconW
PostQuitMessage
EnumWindows
wsprintfW
MessageBoxW
GetClassInfoW
EnumChildWindows
FindWindowW
GetWindowTextW
GetFocus
RegisterWindowMessageW
PostMessageW
GetSubMenu
LoadMenuW
ScreenToClient
GetMessagePos
GetDlgItem
SetCapture
ReleaseCapture
KillTimer
SetTimer
WindowFromPoint
PtInRect
GetCursorPos
MapWindowPoints
InvalidateRect
SetCursor
ReleaseDC
GetDC
GetParent
GetWindowRect
GetSysColorBrush
IsWindow
LoadImageW
LoadCursorW
GetSysColor
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
SetForegroundWindow
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetClientRect
SendMessageW
EnableWindow
RedrawWindow
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
RegisterClassW

gdi32

GetTextColor
GetBkColor
StretchDIBits
GetMapMode
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
CreateBitmap
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetRgnBox
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC
BitBlt
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
CreateFontIndirectW
CreateSolidBrush
GetTextExtentPoint32W
CreatePen
Rectangle
GetObjectW
SetDIBColorTable
CreateDIBSection
SetROP2
GetStockObject
CreateRectRgn
CreateRectRgnIndirect
SetRectRgn
CombineRgn
DPtoLP
OffsetRgn
GetClipBox
SetTextColor
GetDeviceCaps
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetBkColor

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
CryptHashData
CryptCreateHash
CryptAcquireContextW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegCreateKeyW
RegOpenKeyExW
CryptDestroyHash
CryptReleaseContext
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
GetUserNameA
OpenSCManagerW
OpenServiceW
CloseServiceHandle
ControlService
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
ImpersonateNamedPipeClient
OpenThreadToken
GetTokenInformation
ReportEventA
DeregisterEventSource
RegisterEventSourceA
SetThreadToken
CryptImportKey
CryptEncrypt
CryptDestroyKey
CryptAcquireContextA
CryptGenRandom
GetUserNameW
LookupAccountSidW
ConvertSidToStringSidW
RevertToSelf
OpenProcessToken
QueryServiceStatus
EnumDependentServicesW
StartServiceW
RegDeleteValueW
CryptGetHashParam

shell32

ShellExecuteExW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListW
Shell_NotifyIconW
DragQueryFileW
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

StrStrIW
PathFileExistsW
StrStrA
PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CreateStreamOnHGlobal
CoTaskMemFree
CoInitializeEx
CoUninitialize
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
VariantClear
SysAllocString
SysFreeString
SysAllocStringLen
VariantChangeType
VariantInit
SysStringLen
VarDateFromStr
VariantCopy
SafeArrayDestroy
OleCreateFontIndirect

gdiplus

GdiplusShutdown
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdiplusStartup
GdipDisposeImage
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipAlloc
GdipFree
GdipCreateBitmapFromStreamICM

psapi

GetModuleInformation
GetModuleFileNameExW
EnumProcessModules

iphlpapi

GetAdaptersInfo

setupapi

SetupCopyOEMInfW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status
CM_Get_Device_IDW
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA

dbghelp

MiniDumpWriteDump

version

VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoA

crypt32

CryptDecodeObject
CertDuplicateCertificateContext
CertRDNValueToStrW
CertNameToStrW
PFXExportCertStore
CertFindRDNAttr
CertGetIssuerCertificateFromStore
CertFreeCertificateContext
CertOpenStore
CertAddCertificateContextToStore
CertCloseStore
CryptAcquireCertificatePrivateKey
PFXIsPFXBlob
PFXImportCertStore
CertFindCertificateInStore
CertDeleteCertificateFromStore

wtsapi32

WTSFreeMemory
WTSEnumerateProcessesW

mswsock

GetAcceptExSockaddrs
AcceptEx

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 266KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18.1MB - Virtual size: 18.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3053e6506ffc9e2628f3dbc951f46612

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14Certificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5eCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5eCertificate

Extended Key Usages

Key Usages

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

a9:07:d0:27:ab:74:b5:22:fa:6f:c2:7e:ab:08:04:cb:fd:60:40:f7:0d:95:9f:0d:7d:c5:c2:60:a2:73:33:b6Signer

87:cb:8f:f2:3e:eb:9a:cc:52:2a:df:e2:d6:35:8a:3c:09:ee:a9:9fSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

wldap32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

psapi

iphlpapi

setupapi

dbghelp

version

crypt32

wtsapi32

mswsock

Sections

.text Size: 3.6MB - Virtual size: 3.6MB

.rdata Size: 1.4MB - Virtual size: 1.4MB

.data Size: 114KB - Virtual size: 561KB

.pdata Size: 266KB - Virtual size: 266KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 18.1MB - Virtual size: 18.1MB

.reloc Size: 90KB - Virtual size: 89KB

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

a9:07:d0:27:ab:74:b5:22:fa:6f:c2:7e:ab:08:04:cb:fd:60:40:f7:0d:95:9f:0d:7d:c5:c2:60:a2:73:33:b6
Signer

87:cb:8f:f2:3e:eb:9a:cc:52:2a:df:e2:d6:35:8a:3c:09:ee:a9:9f
Signer

.text
Size: 3.6MB - Virtual size: 3.6MB

.rdata
Size: 1.4MB - Virtual size: 1.4MB

.data
Size: 114KB - Virtual size: 561KB

.pdata
Size: 266KB - Virtual size: 266KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 18.1MB - Virtual size: 18.1MB

.reloc
Size: 90KB - Virtual size: 89KB