64b58a1b78167c57c2b1eca1aa5952788699838ba95f4a684b6fac7d7c827966_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

64b58a1b78167c57c2b1eca1aa5952788699838ba95f4a684b6fac7d7c827966_NeikiAnalytics.exe
Size

613KB
MD5

83554a123b73a418531d3d9add03b7a0
SHA1

5f0ccbce7240f7ad89696d4dc75858779b06d434
SHA256

64b58a1b78167c57c2b1eca1aa5952788699838ba95f4a684b6fac7d7c827966
SHA512

d32ea1bab8d9fab55117da43a55c3255d21241641aa61bc343c8488a92737dfd6fd47893995793e6950f868237f49fe16afc7c0fe717de1ff9db865d3ac8e59a
SSDEEP

12288:eZIrfgnp3uvh96jVn+nkK7fUSW+3dJJJV9999F7G3yb0m:eZIrfgnpevn68nb7fUSX3dJJJV9999Es

Score

1^/10

Malware Config

Signatures

Files

64b58a1b78167c57c2b1eca1aa5952788699838ba95f4a684b6fac7d7c827966_NeikiAnalytics.exe
.dll windows:6 windows x64 arch:x64

c7075496e43f7ede9edf2b4bf13e0f5c

Code Sign

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

13/01/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:4d:67:f6:43:16:c9:2a:3b:7a:17:cc:46:97:6a:8f
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

28/07/2021, 00:00

Not After

27/07/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA256 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:91:39:39:16:23:33:2d:43:e3:98:d1:0d:0a:da:f9
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA256 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

22/02/2024, 00:00

Not After

17/07/2024, 23:59

Subject

SERIALNUMBER=4969967,CN=Zoom Video Communications\, Inc.,O=Zoom Video Communications\, Inc.,L=San Jose,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

13/01/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:4d:67:f6:43:16:c9:2a:3b:7a:17:cc:46:97:6a:8f
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

28/07/2021, 00:00

Not After

27/07/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA256 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:91:39:39:16:23:33:2d:43:e3:98:d1:0d:0a:da:f9
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA256 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

22/02/2024, 00:00

Not After

17/07/2024, 23:59

Subject

SERIALNUMBER=4969967,CN=Zoom Video Communications\, Inc.,O=Zoom Video Communications\, Inc.,L=San Jose,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f6:d1:f0:ca:9c:03:e9:b7:86:6e:09:1e:8f:26:b8:47:06:97:b5:8b
Signer

Actual PE Digest

f6:d1:f0:ca:9c:03:e9:b7:86:6e:09:1e:8f:26:b8:47:06:97:b5:8b

Digest Algorithm

sha1

PE Digest Matches

true

c8:95:81:a9:69:c7:d9:f6:a4:a3:ad:80:08:c6:7d:90:6b:b5:4a:82:f1:b6:3c:c1:3e:5c:f0:7f:1b:c5:fc:59
Signer

Actual PE Digest

c8:95:81:a9:69:c7:d9:f6:a4:a3:ad:80:08:c6:7d:90:6b:b5:4a:82:f1:b6:3c:c1:3e:5c:f0:7f:1b:c5:fc:59

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\jenkins\workspace\Client\Client\DMT\windows\release\ffmpeg\libavformat\avformat_zm-59.pdb

Imports

avcodec_zm-59

av_shrink_packet
av_packet_rescale_ts
av_grow_packet
av_packet_copy_props
av_packet_move_ref
avpriv_find_start_code
avpriv_ac3_parse_header
av_packet_alloc
avcodec_get_type
av_packet_add_side_data
avcodec_parameters_alloc
avcodec_alloc_context3
avpriv_pix_fmt_find
avpriv_packet_list_get
avpriv_packet_list_put
avpriv_codec_get_cap_skip_frame_fill_param
avpriv_h264_has_num_reorder_frames
avcodec_is_open
av_get_audio_frame_duration
avcodec_string
avcodec_pix_fmt_to_codec_tag
av_parser_parse2
av_parser_init
avcodec_receive_frame
avcodec_send_packet
avcodec_decode_subtitle2
avsubtitle_free
avcodec_close
avcodec_open2
avcodec_parameters_to_context
avcodec_parameters_from_context
av_codec_is_decoder
avcodec_find_decoder_by_name
av_codec_iterate
av_bsf_receive_packet
av_bsf_send_packet
av_bsf_init
av_bsf_alloc
av_bsf_get_by_name
av_packet_make_refcounted
av_packet_ref
av_packet_new_side_data
av_init_packet
av_packet_unref
av_get_audio_frame_duration2
avcodec_parameters_copy
av_get_bits_per_sample
avcodec_get_name
avpriv_packet_list_free
av_bsf_free
av_parser_close
avcodec_free_context
av_packet_free
avcodec_parameters_free
avcodec_descriptor_get
avcodec_find_decoder
avpriv_mpeg4audio_get_config2
av_packet_get_side_data
av_new_packet

avutil_zm-57

av_sha_final
av_spherical_alloc
av_stereo3d_alloc
av_timecode_make_string
av_timecode_init
av_encryption_info_alloc
av_encryption_info_clone
av_encryption_info_free
av_encryption_info_add_side_data
av_encryption_init_info_alloc
av_encryption_init_info_free
av_encryption_init_info_get_side_data
av_encryption_init_info_add_side_data
av_mastering_display_metadata_alloc
av_content_light_metadata_alloc
av_channel_layout_channel_from_index
av_buffer_pool_init
av_buffer_pool_uninit
av_buffer_pool_get
avpriv_report_missing_feature
av_log_once
av_buffer_create
av_set_options_string
av_opt_set_dict2
av_parse_time
av_sha_update
av_sha_init
av_sha_alloc
av_color_space_name
av_color_transfer_name
av_color_primaries_name
av_aes_ctr_set_full_iv
av_aes_ctr_crypt
av_aes_ctr_free
av_aes_ctr_init
av_aes_ctr_alloc
av_aes_crypt
av_aes_init
av_aes_alloc
avpriv_dict_set_timestamp
avpriv_request_sample
av_reallocp_array
av_malloc_array
av_fourcc_make_string
av_d2q
av_get_media_type_string
av_channel_layout_uninit
av_channel_layout_from_mask
av_strlcatf
av_strlcat
av_stristr
av_strcasecmp
av_fast_malloc
av_buffer_unref
av_buffer_alloc
av_bprint_chars
av_bprintf
av_strncasecmp
av_asprintf
av_dict_set_int
av_timecode_make_smpte_tc_string2
av_stereo3d_type_name
av_spherical_projection_name
av_spherical_tile_bounds
av_dict_count
av_get_picture_type_char
av_display_rotation_get
av_get_channel_name
av_dovi_alloc
av_frame_free
av_frame_alloc
av_buffer_ref
av_gettime
av_opt_ptr
av_opt_get_dict_val
av_opt_set_dict_val
av_opt_set_int
av_channel_layout_copy
av_realloc
av_add_stable
av_compare_mod
av_compare_ts
av_rescale_q_rnd
av_rescale_q
av_rescale_rnd
av_rescale
av_gcd
av_mul_q
av_opt_get
av_realloc_f
av_reallocp
av_crc
av_crc_get_table
av_bprint_finalize
av_bprint_clear
av_bprint_append_data
av_vbprintf
av_bprint_init
av_usleep
av_gettime_relative
av_opt_copy
av_opt_set
av_opt_set_dict
av_opt_set_defaults
av_strerror
av_match_list
av_strlcpy
av_strstart
av_opt_free
av_dynarray_add_nofree
av_memdup
av_strndup
av_strdup
av_freep
av_realloc_array
av_calloc
av_mallocz
av_div_q
av_reduce
av_match_name
av_free
av_malloc
av_dict_set
av_log
av_default_item_name
av_dict_free
av_dict_copy
av_dict_get
av_fast_realloc

ws2_32

ntohl
listen
setsockopt
connect
closesocket
bind
socket
WSAStartup
accept
WSACleanup
WSAGetLastError
getnameinfo
__WSAFDIsSet
ioctlsocket
select
getaddrinfo
freeaddrinfo
getsockopt

kernel32

IsProcessorFeaturePresent
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GetFullPathNameW
MoveFileExA
MoveFileExW
MultiByteToWideChar

vcruntime140

__current_exception
__std_type_info_destroy_list
__C_specific_handler
strstr
memcmp
strrchr
memset
memmove
strchr
memcpy
__current_exception_context

api-ms-win-crt-runtime-l1-1-0

terminate
_cexit
_crt_at_quick_exit
_crt_atexit
_initterm_e
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_errno
_initterm
abort
_execute_onexit_table

api-ms-win-crt-string-l1-1-0

strcspn
strncmp
strcmp
strspn

api-ms-win-crt-convert-l1-1-0

atoi
strtol

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-stdio-l1-1-0

_write
__stdio_common_vsscanf
_sopen
_wsopen
__stdio_common_vsprintf
_tempnam
__stdio_common_vfprintf
_close
_lseeki64
_read

api-ms-win-crt-math-l1-1-0

_fdopen
hypot
lrintf
llrint

api-ms-win-crt-filesystem-l1-1-0

_mkdir
_wstat64
_stat64
_fstat64
_wmkdir

api-ms-win-crt-heap-l1-1-0

free

Exports

Exports

av_add_index_entry
av_append_packet
av_codec_get_id
av_codec_get_tag
av_codec_get_tag2
av_demuxer_iterate
av_disposition_from_string
av_disposition_to_string
av_dump_format
av_filename_number_test
av_find_best_stream
av_find_default_stream_index
av_find_input_format
av_find_program_from_stream
av_fmt_ctx_get_duration_estimation_method
av_fopen_utf8
av_format_ffversion
av_format_inject_global_side_data
av_get_frame_filename
av_get_frame_filename2
av_get_output_timestamp
av_get_packet
av_guess_codec
av_guess_format
av_guess_frame_rate
av_guess_sample_aspect_ratio
av_hex_dump
av_hex_dump_log
av_index_search_timestamp
av_interleaved_write_frame
av_interleaved_write_uncoded_frame
av_match_ext
av_muxer_iterate
av_new_program
av_pkt_dump2
av_pkt_dump_log2
av_probe_input_buffer
av_probe_input_buffer2
av_probe_input_format
av_probe_input_format2
av_probe_input_format3
av_program_add_stream_index
av_read_frame
av_read_pause
av_read_play
av_sdp_create
av_seek_frame
av_stream_add_side_data
av_stream_get_class
av_stream_get_codec_timebase
av_stream_get_end_pts
av_stream_get_parser
av_stream_get_side_data
av_stream_new_side_data
av_url_split
av_write_frame
av_write_trailer
av_write_uncoded_frame
av_write_uncoded_frame_query
avformat_alloc_context
avformat_alloc_output_context2
avformat_close_input
avformat_configuration
avformat_find_stream_info
avformat_flush
avformat_free_context
avformat_get_class
avformat_get_mov_audio_tags
avformat_get_mov_video_tags
avformat_get_riff_audio_tags
avformat_get_riff_video_tags
avformat_index_get_entries_count
avformat_index_get_entry
avformat_index_get_entry_from_timestamp
avformat_init_output
avformat_license
avformat_match_stream_specifier
avformat_network_deinit
avformat_network_init
avformat_new_stream
avformat_open_input
avformat_query_codec
avformat_queue_attached_pictures
avformat_seek_file
avformat_transfer_internal_stream_timing_info
avformat_version
avformat_write_header
avio_accept
avio_alloc_context
avio_check
avio_close
avio_close_dir
avio_close_dyn_buf
avio_closep
avio_context_free
avio_enum_protocols
avio_feof
avio_find_protocol_name
avio_flush
avio_free_directory_entry
avio_get_dyn_buf
avio_get_str
avio_get_str16be
avio_get_str16le
avio_handshake
avio_open
avio_open2
avio_open_dir
avio_open_dyn_buf
avio_pause
avio_print_string_array
avio_printf
avio_protocol_get_class
avio_put_str
avio_put_str16be
avio_put_str16le
avio_r8
avio_rb16
avio_rb24
avio_rb32
avio_rb64
avio_read
avio_read_dir
avio_read_partial
avio_read_to_bprint
avio_rl16
avio_rl24
avio_rl32
avio_rl64
avio_seek
avio_seek_time
avio_size
avio_skip
avio_vprintf
avio_w8
avio_wb16
avio_wb24
avio_wb32
avio_wb64
avio_wl16
avio_wl24
avio_wl32
avio_wl64
avio_write
avio_write_marker
avpriv_mpegts_parse_close
avpriv_mpegts_parse_open
avpriv_mpegts_parse_packet
avpriv_new_chapter
avpriv_register_devices
avpriv_set_pts_info
avpriv_stream_set_need_parsing
avpriv_update_cur_dts

Sections

.text
Size: 406KB - Virtual size: 406KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 337B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7075496e43f7ede9edf2b4bf13e0f5c

Code Sign

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31Certificate

Extended Key Usages

Key Usages

0e:4d:67:f6:43:16:c9:2a:3b:7a:17:cc:46:97:6a:8fCertificate

Extended Key Usages

Key Usages

0c:91:39:39:16:23:33:2d:43:e3:98:d1:0d:0a:da:f9Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31Certificate

Extended Key Usages

Key Usages

0e:4d:67:f6:43:16:c9:2a:3b:7a:17:cc:46:97:6a:8fCertificate

Extended Key Usages

Key Usages

0c:91:39:39:16:23:33:2d:43:e3:98:d1:0d:0a:da:f9Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

f6:d1:f0:ca:9c:03:e9:b7:86:6e:09:1e:8f:26:b8:47:06:97:b5:8bSigner

c8:95:81:a9:69:c7:d9:f6:a4:a3:ad:80:08:c6:7d:90:6b:b5:4a:82:f1:b6:3c:c1:3e:5c:f0:7f:1b:c5:fc:59Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

avcodec_zm-59

avutil_zm-57

ws2_32

kernel32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-heap-l1-1-0

Exports

Exports

Sections

.text Size: 406KB - Virtual size: 406KB

.rdata Size: 139KB - Virtual size: 138KB

.data Size: 512B - Virtual size: 2KB

.pdata Size: 19KB - Virtual size: 18KB

.idata Size: 14KB - Virtual size: 13KB

.gfids Size: 2KB - Virtual size: 2KB

.00cfg Size: 512B - Virtual size: 337B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 4KB

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31
Certificate

0e:4d:67:f6:43:16:c9:2a:3b:7a:17:cc:46:97:6a:8f
Certificate

0c:91:39:39:16:23:33:2d:43:e3:98:d1:0d:0a:da:f9
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

0f:d1:bb:ca:79:6b:d7:f8:dd:4c:82:e1:0a:9a:96:31
Certificate

0e:4d:67:f6:43:16:c9:2a:3b:7a:17:cc:46:97:6a:8f
Certificate

0c:91:39:39:16:23:33:2d:43:e3:98:d1:0d:0a:da:f9
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

f6:d1:f0:ca:9c:03:e9:b7:86:6e:09:1e:8f:26:b8:47:06:97:b5:8b
Signer

c8:95:81:a9:69:c7:d9:f6:a4:a3:ad:80:08:c6:7d:90:6b:b5:4a:82:f1:b6:3c:c1:3e:5c:f0:7f:1b:c5:fc:59
Signer

.text
Size: 406KB - Virtual size: 406KB

.rdata
Size: 139KB - Virtual size: 138KB

.data
Size: 512B - Virtual size: 2KB

.pdata
Size: 19KB - Virtual size: 18KB

.idata
Size: 14KB - Virtual size: 13KB

.gfids
Size: 2KB - Virtual size: 2KB

.00cfg
Size: 512B - Virtual size: 337B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 4KB