2024-07-04_8a1c8345edced6772652095c6cb6e299_floxif_mafia

Sharing

Copy URL

Twitter E-mail

General

Target

2024-07-04_8a1c8345edced6772652095c6cb6e299_floxif_mafia
Size

3.9MB
MD5

8a1c8345edced6772652095c6cb6e299
SHA1

450e21d05b73f0175d885b6ad7f4fb6b9d8be9f8
SHA256

ec253ef0ef8b13e07a22fce0ac85816de407ea1ca09a1d9c66d00e83c192a4e4
SHA512

f95a942fb00486eb1a0f1926d0b3343931decf9974f4af1273dff2a1431ba72382ef0a10032e89627b1960e1d5b30e03e9b7da67c50e61d172f3daf37e565873
SSDEEP

49152:+0Yabeae79WlxXi2m8eyI3qfIP309Un5ePcb/nnZKNU2BK9MoYqNRt+m2:VYaKJQi20P3+UnQZNv

Score

1^/10

Malware Config

Signatures

Files

2024-07-04_8a1c8345edced6772652095c6cb6e299_floxif_mafia
.exe windows:5 windows x86 arch:x86

5bfb19d220a7247e2e7aac4a15f854ce

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08-11-2006 00:00

Not After

07-11-2021 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:01

Not After

23-05-2016 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:3c:45:5a:5c:7b:7b:26:66:91:5e:b2:18:57:d7:ea
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

20-09-2017 00:00

Not After

11-10-2018 23:59

Subject

CN=Piriform Ltd,O=Piriform Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08-11-2006 00:00

Not After

07-11-2021 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23-05-2006 17:01

Not After

23-05-2016 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

52:b6:a8:14:74:e8:04:89:20:f1:90:9e:45:4d:7f:c0
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

20-09-2017 00:00

Not After

11-10-2018 23:59

Subject

CN=Piriform Ltd,O=Piriform Ltd,L=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

04-01-2017 00:00

Not After

18-01-2028 00:00

Subject

CN=DigiCert SHA2 Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5d:68:8a:81:99:64:75:90:db:d0:9c:6f:6d:32:2a:bb:af:fa:a4:0d:c4:d1:66:c2:60:ed:16:ed:a5:81:af:73
Signer

Actual PE Digest

5d:68:8a:81:99:64:75:90:db:d0:9c:6f:6d:32:2a:bb:af:fa:a4:0d:c4:d1:66:c2:60:ed:16:ed:a5:81:af:73

Digest Algorithm

sha256

PE Digest Matches

false

f7:ec:3b:5d:8a:aa:3b:c2:39:ac:9c:74:b7:dc:6d:67:37:c2:9c:60
Signer

Actual PE Digest

f7:ec:3b:5d:8a:aa:3b:c2:39:ac:9c:74:b7:dc:6d:67:37:c2:9c:60

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\BUILD\work\01\cde5c69121bcb0b1\bin\DefragglerGUI\Release\Defraggler.pdb

Imports

wininet

InternetSetOptionW
InternetCloseHandle
InternetOpenW
InternetOpenUrlW
InternetReadFile
HttpQueryInfoW
InternetCrackUrlW
InternetConnectW
HttpSendRequestW
HttpOpenRequestW
InternetQueryDataAvailable
HttpAddRequestHeadersW

secur32

LsaFreeReturnBuffer
LsaGetLogonSessionData
LsaEnumerateLogonSessions

netapi32

NetApiBufferFree
NetUserEnum

kernel32

MapViewOfFile
UnmapViewOfFile
CreateEventA
GetFileAttributesExW
SetFileTime
GetProcessHeap
HeapFree
HeapAlloc
lstrcmpA
RemoveDirectoryW
CreateProcessW
GetStartupInfoW
SetUnhandledExceptionFilter
GetVersion
InterlockedDecrement
InterlockedIncrement
ExitProcess
OpenProcess
LoadLibraryA
CreateWaitableTimerA
WaitForMultipleObjectsEx
OpenEventA
WaitForSingleObjectEx
CreateFileA
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetConsoleMode
GetConsoleCP
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapCreate
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
LCMapStringW
GetCPInfo
RtlUnwind
GetCurrentProcessId
UnhandledExceptionFilter
HeapSetInformation
ExitThread
FormatMessageA
AreFileApisANSI
CreateFileMappingW
SetEndOfFile
GetStringTypeW
InterlockedPopEntrySList
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapDestroy
SetFilePointerEx
GetOverlappedResult
TerminateProcess
DuplicateHandle
CreatePipe
ResumeThread
SuspendThread
GetVersionExA
OutputDebugStringA
GetCurrentDirectoryA
GetModuleFileNameA
ReadProcessMemory
GetThreadContext
OpenEventW
OpenMutexW
QueryDosDeviceW
GetVolumeInformationW
FindVolumeClose
FindNextVolumeW
FindFirstVolumeW
SetErrorMode
GetDiskFreeSpaceExW
FindNextChangeNotification
FindCloseChangeNotification
FindFirstChangeNotificationW
GetVolumePathNameW
GetVolumePathNamesForVolumeNameW
GetDriveTypeW
VirtualFree
VirtualAlloc
GetFileSizeEx
GetLogicalDrives
EnumResourceNamesW
GetFileInformationByHandle
GetFullPathNameW
GetSystemWindowsDirectoryW
GetDiskFreeSpaceW
GetVolumeNameForVolumeMountPointW
CreateMutexW
CreateSemaphoreW
CreateThread
TerminateThread
RtlCaptureContext
VirtualQuery
ReleaseSemaphore
GetSystemTime
CreateWaitableTimerW
SetWaitableTimer
SetThreadPriority
GetModuleHandleA
LoadLibraryExW
lstrlenA
GetWindowsDirectoryW
GetTimeFormatW
GetDateFormatW
AllocConsole
GetCurrentDirectoryW
GlobalUnlock
GlobalLock
GlobalAlloc
GetPriorityClass
SetPriorityClass
GetSystemDirectoryW
lstrcmpW
DeviceIoControl
SystemTimeToTzSpecificLocalTime
CompareFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
GetNumberFormatW
GetLocaleInfoW
LocalFree
FormatMessageW
lstrcmpiW
CompareStringW
MulDiv
InterlockedExchange
GetFileSize
SetFilePointer
GetPrivateProfileStructW
WritePrivateProfileStructW
WritePrivateProfileStringW
GetEnvironmentVariableA
MoveFileExW
GetEnvironmentVariableW
InitializeCriticalSection
lstrlenW
GetPrivateProfileStringW
FileTimeToSystemTime
GetSystemTimeAsFileTime
MultiByteToWideChar
SystemTimeToFileTime
RaiseException
FlushInstructionCache
GetCurrentProcess
GetCurrentThread
ReadFile
DeleteFileW
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesW
Sleep
SetEnvironmentVariableA
GetTickCount
InitializeCriticalSectionAndSpinCount
CreateEventW
GetTempPathW
GetModuleHandleW
CreateFileW
LoadLibraryW
GetProcAddress
FreeLibrary
ResetEvent
WaitForMultipleObjects
GetHandleInformation
GetCommandLineW
GetModuleFileNameW
GetComputerNameExW
GetSystemInfo
GetVersionExW
GlobalMemoryStatusEx
SetLastError
SetConsoleTextAttribute
WriteConsoleW
GetStdHandle
GetLocalTime
WideCharToMultiByte
GetCurrentThreadId
SetEvent
WriteFile
FlushFileBuffers
GetLastError
WaitForSingleObject
CloseHandle
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
WaitNamedPipeW
TransactNamedPipe
SetNamedPipeHandleState
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
IsDebuggerPresent

user32

SetScrollInfo
EnableScrollBar
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
DrawFrameControl
SetScrollPos
GetScrollInfo
GetScrollPos
GetLastActivePopup
SetCursorPos
BringWindowToTop
SetRect
RegisterWindowMessageW
SetForegroundWindow
GetMenuDefaultItem
GetMessageW
DispatchMessageW
UnregisterClassW
FrameRect
GetMessagePos
PeekMessageW
SetWindowPlacement
GetWindowPlacement
TranslateAcceleratorW
SetActiveWindow
SetMenu
IsZoomed
EnumWindows
GetWindowThreadProcessId
TranslateMessage
LoadAcceleratorsW
GetClassInfoW
RegisterClassW
CharLowerW
PostQuitMessage
SetMenuDefaultItem
CharLowerA
CheckMenuRadioItem
AdjustWindowRectEx
GetMenu
TrackPopupMenu
GetMenuStringW
SetMenuItemInfoW
InsertMenuW
SetMenuInfo
GetMenuInfo
DeleteMenu
GetMenuItemCount
EnableMenuItem
GetMenuItemID
CreateDialogParamW
GetClassInfoExW
RegisterClassExW
GetDialogBaseUnits
InflateRect
IsDialogMessageW
DrawEdge
TrackMouseEvent
GetWindowDC
CopyRect
MonitorFromPoint
GetSubMenu
LoadMenuW
IsMenu
TrackPopupMenuEx
DestroyMenu
DrawIconEx
GetSysColorBrush
DrawTextExW
ClientToScreen
EnableWindow
SetDlgItemTextW
IsWindowEnabled
GetSysColor
GetFocus
DrawFocusRect
SetCursor
SetFocus
SetCapture
GetCapture
ReleaseCapture
GetDlgCtrlID
GetCursorPos
PtInRect
GetClassNameW
LoadCursorW
SystemParametersInfoW
CreateWindowExW
CharNextW
CallWindowProcW
SetRectEmpty
LoadBitmapW
GetWindowTextLengthW
GetWindowTextW
DefWindowProcW
DrawTextW
OffsetRect
SendMessageW
GetDC
ReleaseDC
LoadStringW
GetForegroundWindow
EndDialog
FillRect
MoveWindow
ShowWindow
RedrawWindow
UpdateWindow
InvalidateRect
GetDesktopWindow
GetWindow
MonitorFromWindow
GetMonitorInfoW
GetParent
MapWindowPoints
SetWindowPos
GetClientRect
EndPaint
BeginPaint
KillTimer
SetTimer
ScreenToClient
GetWindowRect
SetWindowTextW
GetDlgItem
IsWindow
LoadImageW
LoadIconW
DestroyIcon
IsWindowVisible
GetWindowLongW
CallNextHookEx
PostMessageW
GetKeyboardState
CopyIcon
UnregisterClassA
UnhookWindowsHookEx
SetWindowsHookExW
DestroyWindow
SetWindowLongW
DialogBoxParamW
MessageBoxW
GetActiveWindow
GetSystemMetrics
EnumChildWindows
GetDlgItemTextW
IsClipboardFormatAvailable
GetClipboardData
GetMenuItemInfoW

gdi32

GetDeviceCaps
CreateFontIndirectW
GetStockObject
SetBkMode
CreateSolidBrush
GetTextColor
SetBkColor
ExtTextOutW
DPtoLP
GetClipRgn
SelectClipRgn
CreateRectRgnIndirect
CombineRgn
CreateRectRgn
GetClipBox
CreatePen
GetCurrentObject
SaveDC
RestoreDC
OffsetWindowOrgEx
TextOutW
GetTextExtentPoint32W
CreateBitmap
MoveToEx
LineTo
PatBlt
CreatePatternBrush
GetTextMetricsW
Polygon
Polyline
BitBlt
DeleteObject
GetObjectW
CreateDIBSection
CreateCompatibleDC
SetViewportOrgEx
SelectObject
Rectangle
CreateCompatibleBitmap
SetTextColor
SelectPalette
RealizePalette
SetPolyFillMode
CreatePalette
DeleteDC

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseColorW

advapi32

OpenServiceW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
OpenSCManagerW
CloseServiceHandle
FreeSid
GetUserNameA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
QueryServiceStatus
StartServiceW
ControlService
CheckTokenMembership
AllocateAndInitializeSid
AdjustTokenPrivileges
LookupPrivilegeValueW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
OpenProcessToken
InitiateSystemShutdownW
RegQueryInfoKeyW
CryptAcquireContextA
CryptReleaseContext
GetUserNameW
CryptGenRandom

shell32

SHGetFileInfoW
SHBrowseForFolderW
ShellExecuteExW
ord645
SHGetPathFromIDListW
ord644
ord4
SHGetSpecialFolderLocation
SHOpenFolderAndSelectItems
ShellExecuteW
SHGetFolderPathW
SHEmptyRecycleBinW
SHQueryRecycleBinW
SHGetDesktopFolder
SHBindToParent
CommandLineToArgvW
Shell_NotifyIconW
ord2

ole32

CoTaskMemFree
CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal
CoTaskMemRealloc
CoTaskMemAlloc
CoSetProxyBlanket
CoInitializeEx
CoInitialize

oleaut32

VarBstrFromR8
VariantChangeType
VariantClear
VariantInit
SysAllocString
VarUI4FromStr
SysFreeString

shlwapi

PathFileExistsW
PathRemoveExtensionW
StrFormatKBSizeW
PathFindFileNameA
PathMatchSpecW
PathIsDirectoryW
PathIsDirectoryEmptyW
PathCombineW
PathAddExtensionW
PathRemoveFileSpecW
PathAppendW

comctl32

ImageList_ReplaceIcon
ImageList_Remove
ImageList_SetImageCount
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_Create
ImageList_Destroy
_TrackMouseEvent
ImageList_AddMasked
ImageList_GetIconSize
ImageList_Read
ImageList_Write
InitCommonControlsEx
DestroyPropertySheetPage
PropertySheetW
CreatePropertySheetPageW
CreateStatusWindowW
ImageList_Add
ImageList_GetIcon
ImageList_Draw

msimg32

TransparentBlt
GradientFill
AlphaBlend

version

GetFileVersionInfoA
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoSizeA

iphlpapi

GetAdaptersAddresses

crypt32

CertCloseStore
CryptMsgGetParam
CryptQueryObject
CertFreeCertificateContext
CertGetNameStringW
CertFindCertificateInStore
CryptDecodeObject
CryptMsgClose

wintrust

WinVerifyTrust

psapi

EnumProcesses
EnumProcessModules
GetProcessImageFileNameW
GetModuleFileNameExW

Exports

Exports

??_B?1??get_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@CAAAVBreakpadWrapper@@XZ@51
?get_const_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@SAABVBreakpadWrapper@@XZ
?get_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@CAAAVBreakpadWrapper@@XZ
?get_mutable_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@SAAAVBreakpadWrapper@@XZ
?instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@0AAVBreakpadWrapper@@A
?t@?1??get_instance@?$singleton@VBreakpadWrapper@@@serialization@boost@@CAAAVBreakpadWrapper@@XZ@4V?$singleton_wrapper@VBreakpadWrapper@@@detail@34@A

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 516KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 189KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 384KB - Virtual size: 383KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 242KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5bfb19d220a7247e2e7aac4a15f854ce

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

61:0c:12:06:00:00:00:00:00:1bCertificate

Key Usages

3d:3c:45:5a:5c:7b:7b:26:66:91:5e:b2:18:57:d7:eaCertificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

61:0c:12:06:00:00:00:00:00:1bCertificate

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

52:b6:a8:14:74:e8:04:89:20:f1:90:9e:45:4d:7f:c0Certificate

Extended Key Usages

Key Usages

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41Certificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

5d:68:8a:81:99:64:75:90:db:d0:9c:6f:6d:32:2a:bb:af:fa:a4:0d:c4:d1:66:c2:60:ed:16:ed:a5:81:af:73Signer

f7:ec:3b:5d:8a:aa:3b:c2:39:ac:9c:74:b7:dc:6d:67:37:c2:9c:60Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

wininet

secur32

netapi32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

version

iphlpapi

crypt32

wintrust

psapi

Exports

Exports

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 516KB - Virtual size: 516KB

.data Size: 189KB - Virtual size: 208KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 384KB - Virtual size: 383KB

.reloc Size: 242KB - Virtual size: 241KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

61:0c:12:06:00:00:00:00:00:1b
Certificate

3d:3c:45:5a:5c:7b:7b:26:66:91:5e:b2:18:57:d7:ea
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

61:0c:12:06:00:00:00:00:00:1b
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

52:b6:a8:14:74:e8:04:89:20:f1:90:9e:45:4d:7f:c0
Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5d:68:8a:81:99:64:75:90:db:d0:9c:6f:6d:32:2a:bb:af:fa:a4:0d:c4:d1:66:c2:60:ed:16:ed:a5:81:af:73
Signer

f7:ec:3b:5d:8a:aa:3b:c2:39:ac:9c:74:b7:dc:6d:67:37:c2:9c:60
Signer

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 516KB - Virtual size: 516KB

.data
Size: 189KB - Virtual size: 208KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 384KB - Virtual size: 383KB

.reloc
Size: 242KB - Virtual size: 241KB