ffauclt[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffauclt.exe
Size

3.6MB
MD5

088072691b7574461b4a011b3aa2e791
SHA1

dabb828d09800e699a556a59d5b7c9f171967500
SHA256

4d7d17fa176c18abace61bb3d49f3968688aed24e2675ef4f2c6356ce7526705
SHA512

19862cf244bd4f1cce4faadcd45956a16a122eb138d843f0323f59a8e5c7bdc8a55b6e30141d7e4c5c62c831b76237413853bd5f94f6471287f9c11a7b605163
SSDEEP

98304:SC68hmQu71hCvK2ZMlRSIPoXu//oEmrFdWdu9k:e5Qu3KUSs/ovWdu9k

Score

1^/10

Malware Config

Signatures

Files

ffauclt.exe
.exe windows:6 windows x86 arch:x86

0c5f2fb8b7ac8a0b62d1fdcb88f6685f

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

0f:17:48:4c:75:ad:2c:2e:e5:9d:19:3f:33:f2:20:83
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/06/2021, 00:00

Not After

21/06/2024, 23:59

Subject

CN=合肥诺拉网络科技有限公司,O=合肥诺拉网络科技有限公司,L=Hefei,ST=Anhui,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:17:48:4c:75:ad:2c:2e:e5:9d:19:3f:33:f2:20:83
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/06/2021, 00:00

Not After

21/06/2024, 23:59

Subject

CN=合肥诺拉网络科技有限公司,O=合肥诺拉网络科技有限公司,L=Hefei,ST=Anhui,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

38:c0:fc:fa:ab:fb:08:c9:62:85:76:51:28:9f:7a:b2:cb:05:bb:49:df:76:95:b5:a1:bc:8d:05:c4:b2:80:cf
Signer

Actual PE Digest

38:c0:fc:fa:ab:fb:08:c9:62:85:76:51:28:9f:7a:b2:cb:05:bb:49:df:76:95:b5:a1:bc:8d:05:c4:b2:80:cf

Digest Algorithm

sha256

PE Digest Matches

true

6f:c8:7a:86:25:37:46:73:71:e6:7c:19:4c:72:b6:69:b6:fa:e5:5e
Signer

Actual PE Digest

6f:c8:7a:86:25:37:46:73:71:e6:7c:19:4c:72:b6:69:b6:fa:e5:5e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

gethostname
ioctlsocket
sendto
recvfrom
listen
accept
freeaddrinfo
getaddrinfo
getservbyname
gethostbyname
htonl
shutdown
WSAIoctl
socket
setsockopt
ntohs
htons
getsockopt
getsockname
getpeername
connect
closesocket
bind
WSASetLastError
WSACleanup
recv
send
WSAGetLastError
__WSAFDIsSet
select
WSAStartup

wldap32

ord301
ord200
ord30
ord79
ord35
ord143
ord46
ord211
ord60
ord50
ord41
ord22
ord26
ord27
ord32
ord33

kernel32

GlobalGetAtomNameW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetCurrentDirectoryW
FlushFileBuffers
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
lstrcmpiW
FindResourceExW
SetErrorMode
GetFileTime
GlobalReAlloc
GetWindowsDirectoryW
VerifyVersionInfoW
GetTempFileNameW
GetTempPathW
GetProfileIntW
SearchPathW
GetUserDefaultLCID
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
ResetEvent
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
GetCurrentThread
ResumeThread
SetThreadPriority
CreateEventW
GlobalFlags
lstrcmpA
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
OutputDebugStringA
LocalFree
GlobalSize
SystemTimeToFileTime
GetSystemTime
FlushConsoleInputBuffer
GlobalMemoryStatus
GetTickCount
QueryPerformanceCounter
VerifyVersionInfoA
LoadLibraryA
GetModuleHandleA
GetSystemDirectoryA
VerSetConditionMask
ExpandEnvironmentStringsA
WaitForMultipleObjects
PeekNamedPipe
GetFileType
GetStdHandle
WaitForSingleObjectEx
FormatMessageA
SleepEx
Sleep
SetLastError
LocalReAlloc
LocalAlloc
GetTickCount64
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
RaiseException
DecodePointer
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrlenW
SetThreadLocale
GetPrivateProfileStringW
lstrcpyW
CreateMutexW
WaitForSingleObject
GetACP
MultiByteToWideChar
FormatMessageW
Module32FirstW
Process32NextW
Process32FirstW
SetEvent
GlobalHandle
LCMapStringW
GetStringTypeW
GetCPInfo
CreateToolhelp32Snapshot
FileTimeToSystemTime
GlobalFree
GetVersionExW
TerminateProcess
GetLongPathNameW
GetFileAttributesExW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToLocalFileTime
DeleteFileW
WideCharToMultiByte
CopyFileW
GetLocalTime
OutputDebugStringW
WriteFile
GetFileSize
GetFileAttributesW
CreateDirectoryW
SetFilePointer
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
GetLastError
ReadFile
GetFileSizeEx
CreateFileW
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
FreeLibrary
GetCurrentThreadId
GetCurrentProcessId
SetProcessWorkingSetSize
GetCurrentProcess
MulDiv
FindResourceW
SizeofResource
LockResource
LoadResource
CompareStringW
CreateProcessW
CloseHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
RtlUnwind
GetSystemInfo
VirtualAlloc
VirtualQuery
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetDriveTypeW
SetFilePointerEx
ExitProcess
SetConsoleCtrlHandler
GetConsoleMode
ReadConsoleInputA
SetConsoleMode
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
ReadConsoleW
GetConsoleCP
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
SystemTimeToTzSpecificLocalTime

user32

DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
PostThreadMessageW
GetComboBoxInfo
MonitorFromPoint
DrawIcon
FrameRect
CopyIcon
SetCursorPos
GetSystemMenu
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
GetKeyNameTextW
MapVirtualKeyW
GetMenuDefaultItem
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
MessageBeep
DrawFocusRect
GetNextDlgGroupItem
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
TrackMouseEvent
WaitMessage
CharUpperW
MapDialogRect
GetAsyncKeyState
EndDialog
CreateDialogIndirectParamW
SendDlgItemMessageA
CopyImage
RealChildWindowFromPoint
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageW
DestroyMenu
GetWindowDC
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetLastActivePopup
GetClassLongW
MessageBoxW
GetWindowTextLengthW
GetWindowTextW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
ScrollWindow
ValidateRect
EndPaint
TrackPopupMenu
SetMenu
GetMenu
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsMenu
RegisterClassW
PeekMessageW
DispatchMessageW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
RemoveMenu
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation
UnregisterClassW
DestroyWindow
CreateWindowExW
GetClassInfoExW
RegisterClassExW
RegisterWindowMessageW
FindWindowW
SendMessageTimeoutW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
CallWindowProcW
GetIconInfo
LoadBitmapW
GetWindowThreadProcessId
GetTopWindow
SetClassLongW
ClientToScreen
GetWindowRgn
SetWindowRgn
SetForegroundWindow
GetForegroundWindow
KillTimer
SetTimer
GetCapture
SetLayeredWindowAttributes
UpdateLayeredWindow
GetClassInfoW
DefWindowProcW
GetMessageTime
GetMessagePos
DrawIconEx
DestroyIcon
SetFocus
IsIconic
ReleaseDC
GetDC
SystemParametersInfoW
LoadImageW
MapWindowPoints
InflateRect
FillRect
GetSysColorBrush
SetMenuItemInfoW
GetMenuItemInfoW
DeleteMenu
ModifyMenuW
AppendMenuW
InsertMenuW
GetMenuItemCount
LoadMenuW
DrawFrameControl
UnionRect
GetKeyState
IntersectRect
DestroyCursor
CreateMenu
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
WindowFromPoint
ScreenToClient
AdjustWindowRectEx
GetClientRect
GetUpdateRect
IsClipboardFormatAvailable
CharUpperBuffW
RegisterClipboardFormatW
GetDoubleClickTime
SetMenuDefaultItem
LockWindowUpdate
BeginPaint
CopyAcceleratorTableW
InvalidateRect
IsChild
SetParent
GetParent
GetCursorPos
GetWindow
GetClassNameW
GetDesktopWindow
GetWindowRect
SetActiveWindow
GetSystemMetrics
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
IsWindow
IsWindowVisible
LoadCursorW
PtInRect
EqualRect
SetRect
GetSysColor
GetCursor
SetCursor
RedrawWindow
UpdateWindow
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
ReleaseCapture
SetCapture
GetFocus
IsZoomed
SendMessageW
IsRectEmpty
OffsetRect
CopyRect
SetRectEmpty
SetWindowLongW
GetWindowLongW
RemovePropW
GetPropW
SetPropW
EnableWindow
SetWindowPos
PostMessageW
SetScrollPos

gdi32

MoveToEx
SetViewportExtEx
SetViewportOrgEx
GetObjectType
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
PatBlt
SetRectRgn
DPtoLP
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
StretchBlt
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
LPtoDP
Rectangle
GetRgnBox
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetTextFaceW
GetClipBox
ExcludeClipRect
CreatePen
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
LineTo
IntersectClipRect
GetWindowExtEx
Polyline
DeleteDC
CreateHatchBrush
SetTextColor
SetBkColor
CreateDCW
CopyMetaFileW
GetTextMetricsW
SetPixel
GetTextColor
CreateBitmap
SaveDC
RestoreDC
GetPixel
CreateSolidBrush
GetDeviceCaps
GetTextExtentPoint32W
CreateCompatibleBitmap
GetStockObject
CreatePatternBrush
BitBlt
ExtTextOutW
TextOutW
GetObjectW
SetDIBColorTable
GetDIBColorTable
CreateDIBSection
SelectObject
RectVisible
PtVisible
OffsetRgn
GetViewportOrgEx
Escape
CreateRectRgnIndirect
CreateFontIndirectW
CreateCompatibleDC
CombineRgn
ExtSelectClipRgn
SelectClipRgn
GetClipRgn
DeleteObject
CreateRoundRectRgn
CreateRectRgn
GetViewportExtEx

msimg32

GradientFill
AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegDeleteKeyW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
ReportEventA
RegisterEventSourceA
DeregisterEventSource

shell32

SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
DragQueryFileW
SHAppBarMessage
ShellExecuteW
SHGetSpecialFolderLocation
DragFinish

comctl32

DrawShadowText
_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
PathFileExistsW
StrFormatKBSizeW

uxtheme

GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
IsAppThemed
GetWindowTheme
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData

ole32

CreateStreamOnHGlobal
CoUninitialize
CoInitializeEx
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
OleDuplicateData
ReleaseStgMedium
CoCreateGuid
CoInitialize
CoDisconnectObject
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor

oleaut32

SysAllocString
VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
VariantChangeType
VariantInit
SysStringLen
SysFreeString
SysAllocStringLen
VariantClear

gdiplus

GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipDrawImageRectI
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipCreateBitmapFromStream
GdiplusShutdown
GdipAlloc
GdipFree
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHBITMAP
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorKeys
GdipSetImageAttributesWrapMode
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetInterpolationMode
GdipDrawImageRectRectI
GdiplusStartup
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromFile
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdipCloneBrush
GdipDeleteBrush
GdipCreateTexture2I
GdipCreateTextureIAI
GdipTranslateTextureTransform
GdipFillRectangleI
GdipLoadImageFromStream
GdipLoadImageFromFile
GdipLoadImageFromStreamICM
GdipLoadImageFromFileICM
GdipImageGetFrameDimensionsCount

ffucore

InitLog
CreateUpdateSession
SDDownloadFile

version

VerQueryValueW

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 672KB - Virtual size: 671KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c5f2fb8b7ac8a0b62d1fdcb88f6685f

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43Certificate

Extended Key Usages

Key Usages

0f:17:48:4c:75:ad:2c:2e:e5:9d:19:3f:33:f2:20:83Certificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0f:17:48:4c:75:ad:2c:2e:e5:9d:19:3f:33:f2:20:83Certificate

Extended Key Usages

Key Usages

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

38:c0:fc:fa:ab:fb:08:c9:62:85:76:51:28:9f:7a:b2:cb:05:bb:49:df:76:95:b5:a1:bc:8d:05:c4:b2:80:cfSigner

6f:c8:7a:86:25:37:46:73:71:e6:7c:19:4c:72:b6:69:b6:fa:e5:5eSigner

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

wldap32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

ffucore

version

oleacc

imm32

winmm

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rdata Size: 672KB - Virtual size: 671KB

.data Size: 61KB - Virtual size: 96KB

.gfids Size: 104KB - Virtual size: 104KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 34KB - Virtual size: 34KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

0f:17:48:4c:75:ad:2c:2e:e5:9d:19:3f:33:f2:20:83
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0f:17:48:4c:75:ad:2c:2e:e5:9d:19:3f:33:f2:20:83
Certificate

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

38:c0:fc:fa:ab:fb:08:c9:62:85:76:51:28:9f:7a:b2:cb:05:bb:49:df:76:95:b5:a1:bc:8d:05:c4:b2:80:cf
Signer

6f:c8:7a:86:25:37:46:73:71:e6:7c:19:4c:72:b6:69:b6:fa:e5:5e
Signer

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 672KB - Virtual size: 671KB

.data
Size: 61KB - Virtual size: 96KB

.gfids
Size: 104KB - Virtual size: 104KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 34KB - Virtual size: 34KB