2024-06-19_b2dc926658edba5097b12557dbf0e433_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-19_b2dc926658edba5097b12557dbf0e433_magniber
Size

20.5MB
MD5

b2dc926658edba5097b12557dbf0e433
SHA1

3862b5298b27ceca7e310bbb43e180912214e333
SHA256

aefa3a15b0a518b8a54b86b24e88ea7e7048c4a8a3eaf0cee87da0a8a5f490ef
SHA512

b6f1d1b1f740510ec2e0d145b9f54e133727765511368aadd3cba9bec1619a9f4810c3cb48cdadc3ffe8e0e2d3c00030ead340ca7b3c4302a1a136dab2249190
SSDEEP

393216:VZnm1hx8GO052IxCBZz2IxCBZz2IxCBZqggBZZZGSGSG9qCqCqu:TnG2G8Z2G8Z2G8kGSGSG9qCqCqu

Score

1^/10

Malware Config

Signatures

Files

2024-06-19_b2dc926658edba5097b12557dbf0e433_magniber
.exe windows:5 windows x86 arch:x86

7180856de37f301927a8b68973591df4

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/10/2019, 00:00

Not After

14/10/2020, 12:00

Subject

CN=大势至(北京)软件工程有限公司,O=大势至(北京)软件工程有限公司,ST=北京市,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/10/2019, 00:00

Not After

14/10/2020, 12:00

Subject

CN=大势至(北京)软件工程有限公司,O=大势至(北京)软件工程有限公司,ST=北京市,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

bb:c8:87:d5:b5:ec:2e:28:40:d0:20:7d:58:3b:a1:46:25:fd:a7:9b:af:9b:57:0e:b0:6e:c2:89:bb:80:ae:25
Signer

Actual PE Digest

bb:c8:87:d5:b5:ec:2e:28:40:d0:20:7d:58:3b:a1:46:25:fd:a7:9b:af:9b:57:0e:b0:6e:c2:89:bb:80:ae:25

Digest Algorithm

sha256

PE Digest Matches

true

88:89:dc:a6:13:46:4f:67:ac:e4:af:fd:15:72:4b:3a:27:2d:fc:a6
Signer

Actual PE Digest

88:89:dc:a6:13:46:4f:67:ac:e4:af:fd:15:72:4b:3a:27:2d:fc:a6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\code\nizhuohong\usbmanager\Bin\DszFileSafe.pdb

Imports

ws2_32

connect
gethostname
ntohl
WSACleanup
WSAStartup
inet_addr
socket
closesocket
select
WSAGetLastError
freeaddrinfo
htonl
getaddrinfo
sendto
recvfrom
accept
getpeername
getsockopt
htons
bind
ntohs
getsockname
setsockopt
WSAIoctl
send
recv
inet_ntoa
WSARecv
WSASocketW
shutdown
WSASend
__WSAFDIsSet
getservbyport
gethostbyaddr
getservbyname
WSAStringToAddressA
WSASetLastError
listen
gethostbyname
WSAEventSelect
WSACreateEvent
WSACloseEvent
ioctlsocket

wldap32

ord22
ord211
ord143
ord60
ord50
ord26
ord30
ord200
ord32
ord35
ord79
ord33
ord301
ord27
ord41
ord46

kernel32

GetFileTime
SetErrorMode
GetFileSizeEx
UnhandledExceptionFilter
IsDebuggerPresent
ExitProcess
HeapSize
HeapReAlloc
ExitThread
GetFileInformationByHandle
GetDriveTypeA
FindFirstFileA
RtlUnwind
GetCPInfo
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
GetConsoleCP
GetConsoleMode
LCMapStringA
SetStdHandle
GetFullPathNameA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
GetFullPathNameW
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
CreateWaitableTimerA
WaitForMultipleObjectsEx
OpenEventA
WaitForSingleObjectEx
CreateEventA
QueryDosDeviceA
CreateMutexA
EnumResourceTypesW
SizeofResource
LockResource
LoadResource
FindResourceW
LoadLibraryW
GetProcAddress
FreeLibrary
GetLastError
lstrlenA
MultiByteToWideChar
GlobalAlloc
GlobalLock
lstrcpyW
GlobalUnlock
GlobalFree
lstrcmpW
lstrlenW
WideCharToMultiByte
CreateEventW
SetEvent
Sleep
GetModuleFileNameW
GetTempPathW
DeleteFileW
CopyFileW
GetVersionExW
GetUserDefaultLangID
CreateThread
SetEndOfFile
DuplicateHandle
GetVolumeInformationW
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
LocalReAlloc
GlobalHandle
GlobalReAlloc
GlobalFlags
VirtualProtect
FileTimeToLocalFileTime
WritePrivateProfileStringW
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
FileTimeToSystemTime
MulDiv
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
CreateWaitableTimerW
TerminateThread
QueueUserAPC
GetSystemTimeAsFileTime
TlsSetValue
TlsGetValue
TlsFree
WaitForSingleObject
CreateMutexW
lstrcatW
InterlockedIncrement
ConnectNamedPipe
CreateNamedPipeW
GetOverlappedResult
WaitNamedPipeW
GetComputerNameW
TlsAlloc
SetWaitableTimer
InterlockedDecrement
InterlockedCompareExchange
GetQueuedCompletionStatus
InterlockedExchangeAdd
CreateIoCompletionPort
InitializeCriticalSectionAndSpinCount
RaiseException
GetSystemDirectoryA
InterlockedExchange
PostQueuedCompletionStatus
ExpandEnvironmentStringsA
GetStdHandle
GetFileType
WaitForMultipleObjects
PeekNamedPipe
FormatMessageA
SleepEx
VerSetConditionMask
VerifyVersionInfoA
LoadLibraryA
CreateSemaphoreW
ResetEvent
ReleaseSemaphore
VirtualAlloc
VirtualFree
CreateFileA
lstrcpynW
FormatMessageW
Thread32Next
Thread32First
VirtualFreeEx
VirtualAllocEx
SystemTimeToFileTime
GetSystemTime
TerminateProcess
SetFilePointer
OpenProcess
HeapFree
GetProcessHeap
HeapAlloc
ResumeThread
SuspendThread
GetVersionExA
OutputDebugStringA
GetCurrentDirectoryA
GetModuleFileNameA
SetLastError
GetEnvironmentVariableA
ReadProcessMemory
GetThreadContext
GetEnvironmentVariableW
CreateProcessW
GetStartupInfoW
CreatePipe
GetModuleHandleA
ReadFile
GetFileAttributesW
WriteFile
GetTickCount
GetCurrentThreadId
GetCurrentThread
VirtualQuery
GetCurrentProcess
SetUnhandledExceptionFilter
SetCurrentDirectoryW
GetCurrentDirectoryW
GetVersion
EnumResourceNamesW
FindClose
FindNextFileW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
FindFirstFileW
GetWindowsDirectoryW
DeviceIoControl
CreateFileW
GetModuleHandleW
LocalAlloc
LocalFree
OutputDebugStringW
CloseHandle
Process32NextW
GetCurrentProcessId
Process32FirstW
CreateToolhelp32Snapshot
DeleteCriticalSection
InitializeCriticalSection
ReleaseMutex
FreeResource
EnterCriticalSection
LeaveCriticalSection
GetSystemInfo
SetFileAttributesW
CreateDirectoryW
GetLongPathNameW
EnumSystemLocalesA

user32

SetRectEmpty
UnregisterClassW
IsRectEmpty
GetMessageW
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
SystemParametersInfoW
DestroyMenu
EndPaint
BeginPaint
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
CheckMenuItem
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetFocus
GetWindowTextLengthW
GetLastActivePopup
DispatchMessageW
GetTopWindow
CharNextW
GetMessageTime
PeekMessageW
TrackPopupMenu
SetMenu
GetScrollRange
GetScrollPos
UpdateWindow
CreateWindowExW
RegisterClassW
GetScrollInfo
GetDlgCtrlID
DefWindowProcW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
MsgWaitForMultipleObjects
GetKeyState
GetWindowRgn
DeferWindowPos
EqualRect
EndDeferWindowPos
BeginDeferWindowPos
CallWindowProcW
RemovePropW
GetPropW
SetWindowLongW
SetPropW
SetWindowRgn
IsZoomed
GetWindowLongW
CopyRect
IsMenu
AdjustWindowRectEx
GetForegroundWindow
GetOpenClipboardWindow
GetClipboardData
FindWindowExW
SetRect
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
CharUpperW
GetDesktopWindow
RegisterClipboardFormatW
PostThreadMessageW
UnhookWindowsHookEx
ChangeClipboardChain
SetClipboardViewer
GetWindowDC
GetWindow
GetClassNameW
GetWindowThreadProcessId
ClientToScreen
ChildWindowFromPoint
SetWindowPos
IsClipboardFormatAvailable
SendNotifyMessageW
IsWindowVisible
UnregisterHotKey
GetMenuItemID
GetMenuItemCount
GetMenu
DrawIcon
GetSystemMetrics
IsIconic
RegisterHotKey
DeleteMenu
EnableMenuItem
AppendMenuW
GetSystemMenu
LoadIconW
PostQuitMessage
EnumWindows
wsprintfW
MessageBoxW
GetClassInfoW
EnumChildWindows
FindWindowW
GetWindowTextW
GetFocus
RegisterWindowMessageW
PostMessageW
GetSubMenu
LoadMenuW
ScreenToClient
GetMessagePos
GetDlgItem
SetCapture
ReleaseCapture
KillTimer
SetTimer
WindowFromPoint
PtInRect
GetCursorPos
MapWindowPoints
InvalidateRect
SetCursor
ReleaseDC
GetDC
GetParent
GetWindowRect
GetSysColorBrush
IsWindow
LoadImageW
LoadCursorW
GetSysColor
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
SetForegroundWindow
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetClientRect
SendMessageW
EnableWindow
RedrawWindow
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
GetClassInfoExW

gdi32

GetTextColor
GetBkColor
StretchDIBits
GetMapMode
ExtSelectClipRgn
ScaleWindowExtEx
GetDeviceCaps
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetRgnBox
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC
BitBlt
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
CreateFontIndirectW
CreateSolidBrush
GetTextExtentPoint32W
CreatePen
Rectangle
GetObjectW
SetDIBColorTable
CreateDIBSection
SetROP2
GetStockObject
CreateRectRgn
CreateRectRgnIndirect
SetRectRgn
CombineRgn
DPtoLP
OffsetRgn
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetMapMode

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

CryptAcquireContextW
CryptGetHashParam
CryptHashData
CryptCreateHash
RegQueryValueExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegCreateKeyW
RegOpenKeyExW
CryptReleaseContext
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
GetUserNameA
OpenSCManagerW
OpenServiceW
CloseServiceHandle
ControlService
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
ImpersonateNamedPipeClient
OpenThreadToken
GetTokenInformation
ReportEventA
DeregisterEventSource
RegisterEventSourceA
SetThreadToken
CryptImportKey
CryptEncrypt
CryptDestroyKey
CryptAcquireContextA
CryptGenRandom
GetUserNameW
LookupAccountSidW
ConvertSidToStringSidW
RevertToSelf
OpenProcessToken
QueryServiceStatus
EnumDependentServicesW
StartServiceW
RegDeleteValueW
CryptDestroyHash

shell32

ShellExecuteExW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListW
Shell_NotifyIconW
DragQueryFileW
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

StrStrIW
PathFileExistsW
StrStrA
PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CreateStreamOnHGlobal
CoTaskMemFree
CoInitializeEx
CoUninitialize
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
VariantClear
SysAllocString
SysFreeString
SysAllocStringLen
VariantChangeType
VariantInit
SysStringLen
VarDateFromStr
VariantCopy
SafeArrayDestroy
OleCreateFontIndirect

gdiplus

GdiplusShutdown
GdipDrawImageI
GdipDeleteGraphics
GdiplusStartup
GdipCreateBitmapFromStreamICM
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdipCreateBitmapFromStream

psapi

GetModuleInformation
GetModuleFileNameExW
EnumProcessModules

iphlpapi

GetAdaptersInfo

setupapi

SetupCopyOEMInfW
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status
CM_Get_Device_IDW
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

dbghelp

MiniDumpWriteDump

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

crypt32

CryptDecodeObject
CertFindRDNAttr
CertRDNValueToStrW
CertGetIssuerCertificateFromStore
CertDuplicateCertificateContext
PFXExportCertStore
CertNameToStrW
CertFreeCertificateContext
CertOpenStore
CertAddCertificateContextToStore
CertCloseStore
CryptAcquireCertificatePrivateKey
PFXIsPFXBlob
PFXImportCertStore
CertFindCertificateInStore
CertDeleteCertificateFromStore

wtsapi32

WTSFreeMemory
WTSEnumerateProcessesW

mswsock

GetAcceptExSockaddrs
AcceptEx

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 794KB - Virtual size: 793KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16.5MB - Virtual size: 16.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7180856de37f301927a8b68973591df4

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14Certificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5eCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5eCertificate

Extended Key Usages

Key Usages

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

bb:c8:87:d5:b5:ec:2e:28:40:d0:20:7d:58:3b:a1:46:25:fd:a7:9b:af:9b:57:0e:b0:6e:c2:89:bb:80:ae:25Signer

88:89:dc:a6:13:46:4f:67:ac:e4:af:fd:15:72:4b:3a:27:2d:fc:a6Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

wldap32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

psapi

iphlpapi

setupapi

dbghelp

version

crypt32

wtsapi32

mswsock

Sections

.text Size: 2.9MB - Virtual size: 2.9MB

.rdata Size: 794KB - Virtual size: 793KB

.data Size: 102KB - Virtual size: 538KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 16.5MB - Virtual size: 16.5MB

.reloc Size: 256KB - Virtual size: 256KB

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

05:76:79:32:48:63:21:18:7e:26:43:1d:7c:7e:f2:5e
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

bb:c8:87:d5:b5:ec:2e:28:40:d0:20:7d:58:3b:a1:46:25:fd:a7:9b:af:9b:57:0e:b0:6e:c2:89:bb:80:ae:25
Signer

88:89:dc:a6:13:46:4f:67:ac:e4:af:fd:15:72:4b:3a:27:2d:fc:a6
Signer

.text
Size: 2.9MB - Virtual size: 2.9MB

.rdata
Size: 794KB - Virtual size: 793KB

.data
Size: 102KB - Virtual size: 538KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 16.5MB - Virtual size: 16.5MB

.reloc
Size: 256KB - Virtual size: 256KB