2024-06-19_ceeae08b35f1a0dd10ca06201d46d52b_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-19_ceeae08b35f1a0dd10ca06201d46d52b_mafia
Size

1.7MB
MD5

ceeae08b35f1a0dd10ca06201d46d52b
SHA1

f4cdd640300714d61c14585392d0d280aadec067
SHA256

0e005bfb2e9e4a30b60b244f0ce1d663753a2feef381475de471d42399416d04
SHA512

5deda20b5f20451837fbd002cbff5b4404d9563cbaf1e63445ef0fcc765ce6b7533f208e033d42c7b792a375561c49ef39359e141d275b140f259478ad6c266a
SSDEEP

49152:wCubgIomZ5EMarBoy7U6bjcZwbM8+Lbk7j0JvjhFKOXj87I4Ntn/pF0idH+/lT1i:fubAmZjarCy7U6bjcZwbs07j0JVBz877

Score

1^/10

Malware Config

Signatures

Files

2024-06-19_ceeae08b35f1a0dd10ca06201d46d52b_mafia
.exe windows:5 windows x86 arch:x86

87707d3d5319d04cbaea4f53873aa171

Code Sign

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

28/07/2020, 00:00

Not After

18/03/2029, 00:00

Subject

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3e:38:88:0a:88:5c:4e:2e:75:e1:d5:98
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

17/07/2023, 03:40

Not After

17/07/2024, 03:40

Subject

SERIALNUMBER=91510107667582600T,CN=四川万象更新网络通信有限公司,O=四川万象更新网络通信有限公司,L=成都市,ST=四川省,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13074368656e676475,1.3.6.1.4.1.311.60.2.1.2=#13075369636875616e,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

28/07/2020, 00:00

Not After

18/03/2029, 00:00

Subject

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3e:38:88:0a:88:5c:4e:2e:75:e1:d5:98
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

17/07/2023, 03:40

Not After

17/07/2024, 03:40

Subject

SERIALNUMBER=91510107667582600T,CN=四川万象更新网络通信有限公司,O=四川万象更新网络通信有限公司,L=成都市,ST=四川省,C=CN,1.3.6.1.4.1.311.60.2.1.1=#13074368656e676475,1.3.6.1.4.1.311.60.2.1.2=#13075369636875616e,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

55:d3:34:1a:7a:fd:05:79:c6:93:58:22:bb:d0:a6:b3:78:6a:17:e1:b0:a9:7c:89:b0:ed:b3:6c:7b:ec:03:c1
Signer

Actual PE Digest

55:d3:34:1a:7a:fd:05:79:c6:93:58:22:bb:d0:a6:b3:78:6a:17:e1:b0:a9:7c:89:b0:ed:b3:6c:7b:ec:03:c1

Digest Algorithm

sha256

PE Digest Matches

true

59:72:2b:19:d3:1e:4a:6d:e0:c6:82:f2:f1:fa:16:52:6b:0a:04:e4
Signer

Actual PE Digest

59:72:2b:19:d3:1e:4a:6d:e0:c6:82:f2:f1:fa:16:52:6b:0a:04:e4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetCurrentThreadId
TerminateThread
CreateThread
SetLastError
LocalFree
LocalAlloc
Sleep
LoadLibraryA
MultiByteToWideChar
lstrlenA
DeactivateActCtx
ActivateActCtx
GetCurrentProcessId
MulDiv
lstrlenW
FormatMessageA
GlobalSize
LoadLibraryW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetErrorMode
GetModuleHandleW
lstrcmpA
InterlockedExchange
CompareStringA
GetLocaleInfoA
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
GetCurrentThread
GlobalDeleteAtom
SetThreadPriority
ResumeThread
GlobalGetAtomNameA
lstrcmpiA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetVolumeInformationA
GetFullPathNameA
GetFileAttributesExA
GetFileSizeEx
CreateActCtxW
ReleaseActCtx
GetModuleFileNameW
InterlockedDecrement
InterlockedIncrement
TlsGetValue
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCurrentDirectoryA
GlobalFlags
GlobalAddAtomA
lstrcmpW
GlobalFindAtomA
FreeResource
FindResourceA
GetTempFileNameA
GetTempPathA
GetCPInfo
GetOEMCP
GetACP
GetTickCount
GetProfileIntA
SearchPathA
GetWindowsDirectoryA
GetNumberFormatA
VirtualProtect
GetUserDefaultLCID
FindResourceExW
RtlUnwind
GetSystemTimeAsFileTime
CreateDirectoryA
RaiseException
HeapFree
EncodePointer
DecodePointer
HeapAlloc
HeapReAlloc
HeapSetInformation
SetStdHandle
GetFileType
VirtualAlloc
VirtualQuery
ExitProcess
ExitThread
HeapQueryInformation
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsValidCodePage
IsProcessorFeaturePresent
LCMapStringW
GetLocaleInfoW
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
GetTimeZoneInformation
SetHandleCount
GetStdHandle
GetStartupInfoW
GetConsoleCP
GetConsoleMode
HeapCreate
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
CompareStringW
GetProcessHeap
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
FreeLibrary
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCommandLineA
CopyFileA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
GetLastError
TerminateProcess
GetSystemInfo
LoadResource
LockResource
SizeofResource
FindResourceW
WideCharToMultiByte
FindFirstFileA
FindClose
WaitForSingleObject
CreateFileA
GetFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
CloseHandle
GetVersionExA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
GetFileAttributesA
SetFileAttributesA
DeleteFileA
GetModuleFileNameA

user32

GetClassLongA
GetCapture
IsChild
WinHelpA
SendDlgItemMessageA
LoadIconA
LoadIconW
RegisterWindowMessageA
CheckDlgButton
IsDialogMessageA
MoveWindow
ShowWindow
DestroyIcon
InflateRect
IntersectRect
GetMenuItemInfoA
DestroyMenu
IsRectEmpty
OffsetRect
IsIconic
IsZoomed
SetWindowRgn
RedrawWindow
SetParent
DestroyAcceleratorTable
CreatePopupMenu
WindowFromPoint
NotifyWinEvent
GetAsyncKeyState
SetClassLongA
LoadMenuW
GetSystemMenu
SetCapture
ReleaseCapture
MessageBeep
DrawStateA
DrawIconEx
DrawEdge
DrawFrameControl
DrawFocusRect
CopyAcceleratorTableA
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetRect
SetCursorPos
BringWindowToTop
LockWindowUpdate
TranslateAcceleratorA
InsertMenuItemA
LoadAcceleratorsA
LoadImageA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsMenu
CreateMenu
PostThreadMessageA
WaitMessage
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetMenuDefaultItem
CopyImage
LoadImageW
RegisterClipboardFormatA
CopyIcon
CharUpperBuffA
GetDoubleClickTime
GetIconInfo
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
SubtractRect
InvertRect
HideCaret
GetNextDlgGroupItem
MapDialogRect
DrawIcon
DestroyCursor
EndDeferWindowPos
SetPropA
SetForegroundWindow
ShowScrollBar
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
GetClassInfoA
DefWindowProcA
MapWindowPoints
GetClientRect
LoadCursorW
SetLayeredWindowAttributes
SystemParametersInfoA
GetMonitorInfoA
SetRectEmpty
CopyRect
KillTimer
SetTimer
InvalidateRect
UpdateWindow
RealChildWindowFromPoint
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
SetWindowTextA
DeleteMenu
ShowOwnedPopups
SetCursor
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnhookWindowsHookEx
CharUpperA
GetSystemMetrics
GetWindowTextLengthA
GetWindowTextA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
PostMessageA
PostQuitMessage
GetDesktopWindow
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetPropA
RemovePropA
IsWindow
SetFocus
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetWindowRgn
GetScrollPos
EnumDisplayMonitors

advapi32

RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegEnumValueA
RegEnumKeyExA
RegDeleteValueA
RegSetValueExA
RegCreateKeyA
RegQueryValueExA
RegCloseKey
QueryServiceStatus
RegOpenKeyExA
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
RegisterEventSourceA
ReportEventA
DeleteService
CreateServiceA
OpenSCManagerA
OpenServiceA
CloseServiceHandle
DeregisterEventSource
RegCreateKeyExA

shell32

SHGetFileInfoA
DragFinish
DragQueryFileA
SHAppBarMessage
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
ShellExecuteA

oleaut32

VariantClear
VariantChangeType
SysAllocStringLen
SysAllocString
SysStringLen
SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
VarBstrFromDate
VariantInit

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize

shlwapi

PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW

gdiplus

GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdipGetImagePaletteSize
GdipGetImageGraphicsContext
GdipDrawImageI
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipGetImageWidth
GdipBitmapLockBits
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipGetImageHeight
GdipCreateFromHDC
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdiplusShutdown

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

gdi32

RestoreDC
SaveDC
CreateBitmap
CreateDCA
CopyMetaFileA
SetDIBColorTable
GetRgnBox
OffsetRgn
Polygon
Ellipse
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
Polyline
CreateEllipticRgn
GetTextColor
GetBkColor
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
GetTextExtentPoint32A
DPtoLP
PatBlt
CombineRgn
SetRectRgn
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateFontIndirectA
CreateDIBitmap
CreateHatchBrush
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
CreateSolidBrush
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreateCompatibleDC
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
DeleteObject
SelectClipRgn
CreateRectRgn
GetObjectA
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
GetDeviceCaps
SetPixelV
GetTextFaceA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
EnumFontFamiliesExA
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Rectangle
SetPixel
StretchBlt
RealizePalette
SetWindowExtEx

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comdlg32

GetFileTitleA

ole32

CoInitializeEx
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitialize
CoUninitialize
CoCreateInstance
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
DoDragDrop

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 265KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87707d3d5319d04cbaea4f53873aa171

Code Sign

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54Certificate

Extended Key Usages

Key Usages

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate

Extended Key Usages

Key Usages

3e:38:88:0a:88:5c:4e:2e:75:e1:d5:98Certificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54Certificate

Extended Key Usages

Key Usages

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate

Extended Key Usages

Key Usages

3e:38:88:0a:88:5c:4e:2e:75:e1:d5:98Certificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

55:d3:34:1a:7a:fd:05:79:c6:93:58:22:bb:d0:a6:b3:78:6a:17:e1:b0:a9:7c:89:b0:ed:b3:6c:7b:ec:03:c1Signer

59:72:2b:19:d3:1e:4a:6d:e0:c6:82:f2:f1:fa:16:52:6b:0a:04:e4Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

oleaut32

msimg32

comctl32

shlwapi

gdiplus

oleacc

imm32

winmm

gdi32

winspool.drv

comdlg32

ole32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 265KB - Virtual size: 265KB

.data Size: 24KB - Virtual size: 53KB

.rsrc Size: 36KB - Virtual size: 35KB

.reloc Size: 167KB - Virtual size: 167KB

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

3e:38:88:0a:88:5c:4e:2e:75:e1:d5:98
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

3e:38:88:0a:88:5c:4e:2e:75:e1:d5:98
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

55:d3:34:1a:7a:fd:05:79:c6:93:58:22:bb:d0:a6:b3:78:6a:17:e1:b0:a9:7c:89:b0:ed:b3:6c:7b:ec:03:c1
Signer

59:72:2b:19:d3:1e:4a:6d:e0:c6:82:f2:f1:fa:16:52:6b:0a:04:e4
Signer

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 265KB - Virtual size: 265KB

.data
Size: 24KB - Virtual size: 53KB

.rsrc
Size: 36KB - Virtual size: 35KB

.reloc
Size: 167KB - Virtual size: 167KB