Nursultan Alpha By Fleshk[.]zip

Nursultan Alpha By Fleshk.zip

.zip

??????????.txt

Nursultan Alpha/assets/UnRAR.exe

.exe windows:5 windows x64 arch:x64

7d1e440af537908e3c09fa351258d1f6

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

04:8b:08:39:9e:c7:03:62:3c:72:cd:20:77:ad:65:d9
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

08/08/2023, 00:00

Not After

07/08/2026, 23:59

Subject

SERIALNUMBER=HRB 109885,CN=win.rar GmbH,O=win.rar GmbH,L=Berlin,ST=Berlin,C=DE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#130e436861726c6f7474656e62757267,1.3.6.1.4.1.311.60.2.1.2=#13064265726c696e,1.3.6.1.4.1.311.60.2.1.3=#13024445

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

3a:f6:f4:74:eb:30:de:db:f0:2d:ec:df:dd:2a:78:91:ea:0d:10:04:37:b5:0f:4f:17:ba:48:53:b7:42:6a:aa
Signer

Actual PE Digest

3a:f6:f4:74:eb:30:de:db:f0:2d:ec:df:dd:2a:78:91:ea:0d:10:04:37:b5:0f:4f:17:ba:48:53:b7:42:6a:aa

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Projects\WinRAR\rar\build\unrar64\Release\UnRAR.pdb

Imports

kernel32

GetCurrentProcess

DeviceIoControl

SetFileTime

CloseHandle

RemoveDirectoryW

CreateFileW

DeleteFileW

CreateHardLinkW

GetShortPathNameW

GetLongPathNameW

MoveFileW

ReadFile

FlushFileBuffers

SetEndOfFile

SetFilePointer

GetCurrentProcessId

GetDriveTypeW

GetDiskFreeSpaceExW

CreateDirectoryW

SetFileAttributesW

GetFileAttributesW

GetVolumeInformationW

FindClose

FindFirstFileW

FindNextFileW

GetVersionExW

GetModuleFileNameW

GetCurrentDirectoryW

GetFullPathNameW

FoldStringW

SetErrorMode

GetModuleHandleW

FreeLibrary

LoadLibraryExW

GetProcAddress

ExpandEnvironmentStringsW

SetConsoleCtrlHandler

SetThreadPriority

SetThreadExecutionState

CreateEventW

LoadLibraryW

GetSystemDirectoryW

SetPriorityClass

GetProcessAffinityMask

CreateThread

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

SetEvent

ResetEvent

ReleaseSemaphore

WaitForSingleObject

CreateSemaphoreW

GetSystemTime

SystemTimeToTzSpecificLocalTime

TzSpecificLocalTimeToSystemTime

SystemTimeToFileTime

FileTimeToLocalFileTime

LocalFileTimeToFileTime

FileTimeToSystemTime

GetCPInfo

IsDBCSLeadByte

MultiByteToWideChar

WideCharToMultiByte

CompareStringW

HeapSize

SetFilePointerEx

GetProcessHeap

SetEnvironmentVariableA

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetOEMCP

FormatMessageW

Sleep

SetLastError

GetLastError

LocalFree

WriteConsoleW

ReadConsoleW

SetConsoleMode

GetConsoleMode

WriteFile

GetStdHandle

GetFileType

GetCurrentThread

GetCommandLineW

IsValidCodePage

FindNextFileA

FindFirstFileExA

HeapReAlloc

SetStdHandle

GetConsoleCP

HeapAlloc

HeapFree

LCMapStringW

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

UnhandledExceptionFilter

SetUnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

InitializeCriticalSectionAndSpinCount

WaitForSingleObjectEx

IsDebuggerPresent

GetStartupInfoW

QueryPerformanceCounter

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

RtlPcToFileHeader

RaiseException

RtlUnwindEx

EncodePointer

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

ExitProcess

GetModuleHandleExW

QueryPerformanceFrequency

GetModuleFileNameA

GetCommandLineA

GetACP

GetStringTypeW

user32

LoadStringW

CharLowerW

CharToOemA

OemToCharBuffA

OemToCharA

ExitWindowsEx

MessageBeep

CharToOemBuffW

CharUpperW

advapi32

CheckTokenMembership

FreeSid

AllocateAndInitializeSid

RegQueryValueExW

RegOpenKeyExW

RegCloseKey

LookupPrivilegeValueW

SetFileSecurityW

AdjustTokenPrivileges

OpenProcessToken

shell32

SHGetPathFromIDListW

SHGetSpecialFolderLocation

SHGetMalloc

ole32

CoCreateInstance

CoSetProxyBlanket

oleaut32

VariantClear

SysFreeString

SysAllocString

powrprof

SetSuspendState

Sections

.text
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ