784af77a6ea7ada215b161295981bb53_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

784af77a6ea7ada215b161295981bb53_JaffaCakes118
Size

996KB
MD5

784af77a6ea7ada215b161295981bb53
SHA1

dfac85adced3f853bb47355fe10ab15a62cf14af
SHA256

aa16a6968152cf9dd041c6e7c1d025377bc0c34c76e63d694720b8d4158ae89b
SHA512

8981c52f73ec07684971739701b3445468293989a20a4295bff9e5acc10e4102819a0b203004b572d541e957ff3ebf3c1a788117479d15d0f8b9c495da229817
SSDEEP

24576:WDH0p3JBMaMCOKfjd8c4BIhJFoEtFo++BTgSDZU98OxNOWGEyLlCiObc:moBM4GDZu8OxNOWGEyLlCbc

Score

1^/10

Malware Config

Signatures

Files

784af77a6ea7ada215b161295981bb53_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a5067229bd1d0a242b64dac79fd0e78

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21/05/2009, 00:00

Not After

20/05/2019, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

53:4a:be:d0:be:56:d9:84:0d:d1:2d:db:84:f8:b0:31
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

31/07/2009, 00:00

Not After

01/09/2011, 23:59

Subject

CN=NVIDIA Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Software,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

eb:d4:28:a9:ec:6f:4d:73:cb:1d:c7:a2:3c:4d:68:31:44:c5:ec:74
Signer

Actual PE Digest

eb:d4:28:a9:ec:6f:4d:73:cb:1d:c7:a2:3c:4d:68:31:44:c5:ec:74

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Bld\nTune6.5\sys_bios\tools\wpt\NVMonitor\Win32\Release\NVMonitor.pdb

Imports

hid

HidD_GetIndexedString
HidD_GetProductString
HidP_GetLinkCollectionNodes
HidP_GetCaps
HidD_GetPreparsedData
HidD_SetNumInputBuffers
HidD_GetAttributes
HidP_SetUsageValue
HidD_SetOutputReport
HidD_GetInputReport
HidP_GetScaledUsageValue
HidP_GetUsageValue
HidP_GetSpecificValueCaps
HidD_GetHidGuid
HidD_FreePreparsedData
HidD_GetFeature
HidD_GetManufacturerString

psapi

EnumDeviceDrivers
GetDeviceDriverBaseNameA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

gdiplus

GdipDeleteBrush
GdipFree
GdipAlloc
GdipCreateStringFormat
GdipDrawImageI
GdipDeleteStringFormat
GdipDeleteGraphics
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipDeleteFont
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipCreateSolidFill
GdipSetStringFormatAlign
GdipCreateFromHDC
GdipDrawString
GdipDrawImageRectI
GdipCreateFont
GdipCloneBrush
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipGetImagePixelFormat
GdipDrawImageRectRect
GdipGetLogFontW
GdipGetFontSize
GdipGetFontHeight
GdipCreatePen1
GdipDeletePen
GdipDrawLine
GdipDrawLineI
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipFillRectangleI
GdipCloneBitmapAreaI
GdipGetDC
GdipReleaseDC
GdipDeleteRegion
GdipGetRegionBounds
GdipSetStringFormatLineAlign
GdipSetStringFormatMeasurableCharacterRanges
GdipMeasureString
GdipMeasureCharacterRanges
GdipCreateRegion
GdipDrawImageRectRectI
GdipCreateFromHWND
GdipCreateHBITMAPFromBitmap
GdipSetSolidFillColor
GdipGetGenericFontFamilySansSerif
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipDrawImageRect
GdipSetCompositingMode
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipImageRotateFlip
GdipSetInterpolationMode

iphlpapi

GetIfEntry
GetIfTable

pdh

PdhAddCounterA
PdhLookupPerfNameByIndexA
PdhCollectQueryData
PdhOpenQueryA
PdhCloseQuery
PdhRemoveCounter
PdhGetFormattedCounterValue

winmm

PlaySoundA

glu32

gluProject
gluPerspective
gluBuild2DMipmaps
gluLookAt
gluUnProject

opengl32

glFinish
glDeleteTextures
glGetString
glPopAttrib
glPopMatrix
glMatrixMode
glGetError
glTexEnvi
glEnable
glBlendFunc
glLoadIdentity
glPushMatrix
glDisable
glPushAttrib
glTexCoord2f
glScissor
glViewport
glGetIntegerv
glTexParameteri
glTexImage2D
glGenTextures
wglGetProcAddress
glClear
glClearColor
glFrontFace
glColor3f
glScalef
glColorMask
glTranslatef
glStencilFunc
glCallList
glBindTexture
glFogfv
glFogi
glFogf
glLightfv
glDeleteLists
glCallLists
glListBase
glGetDoublev
wglUseFontOutlinesW
glGenLists
wglUseFontOutlinesA
wglGetCurrentDC
wglDeleteContext
wglMakeCurrent
wglGetCurrentContext
wglCreateContext
glTexCoord2fv
glNormal3fv
glColor3fv
glMaterialf
glMaterialfv
glEndList
glNewList
glVertex3f
glLightf
glStencilOp
glClearStencil
glVertex2i
glOrtho
glReadPixels
glVertex3i
glTexCoord2i
glCopyTexImage2D
glReadBuffer
glDrawBuffer
glEnd
glVertex3fv
glBegin
glColor4f
glRotatef
glDepthMask

mfc80

ord4353
ord1873
ord2657
ord385
ord2021
ord3088
ord3056
ord630
ord5969
ord4564
ord6236
ord4115
ord1794
ord1931
ord1483
ord4098
ord2089
ord1547
ord4234
ord3171
ord4320
ord591
ord333
ord2019
ord1308
ord2176
ord6017
ord6048
ord764
ord578
ord876
ord2321
ord310
ord2451
ord304
ord2322
ord2131
ord265
ord911
ord781
ord3997
ord1482
ord1917
ord266
ord1185
ord5716
ord4081
ord297
ord2902
ord784
ord783
ord2468
ord2325
ord2272
ord4085
ord1115
ord3423
ord1191
ord1187
ord3397
ord6754
ord6752
ord1084
ord3210
ord1123
ord1934
ord3161
ord1280
ord1279
ord5637
ord2367
ord2372
ord1903
ord572
ord4261
ord4486
ord3949
ord2644
ord3709
ord3719
ord3718
ord2991
ord2533
ord2646
ord2540
ord2862
ord2714
ord4307
ord2835
ord2731
ord2537
ord5200
ord1599
ord1655
ord1656
ord1964
ord5175
ord1362
ord4967
ord3345
ord6277
ord3802
ord6279
ord1522
ord2172
ord2178
ord2405
ord2387
ord2385
ord2403
ord2415
ord2392
ord2408
ord2413
ord2396
ord2398
ord2400
ord2394
ord2410
ord2390
ord934
ord930
ord932
ord928
ord923
ord5233
ord5235
ord5960
ord1600
ord4282
ord4722
ord3403
ord5214
ord4185
ord6275
ord5073
ord1908
ord5152
ord4232
ord1402
ord3946
ord1617
ord1620
ord5915
ord6725
ord1545
ord587
ord602
ord416
ord347
ord651
ord1929
ord1930
ord589
ord5613
ord330
ord3760
ord709
ord3761
ord501
ord3684
ord4394
ord5403
ord2469
ord4035
ord6065
ord6281
ord6283
ord762
ord1439
ord6288
ord629
ord5089
ord384
ord5323
ord3683
ord566
ord3333
ord4481
ord2838
ord5566
ord5213
ord5230
ord4568
ord3948
ord5226
ord5224
ord2931
ord1920
ord3832
ord5382
ord6219
ord5102
ord1010
ord3806
ord5583
ord2018
ord2063
ord4326
ord6276
ord3801
ord6278
ord4014
ord4038
ord757
ord2248
ord1069
ord2020
ord5975
ord1054
ord3830
ord1122
ord4125
ord6090
ord605
ord354
ord3182
ord4262
ord4244
ord1401
ord5912
ord6724
ord1551
ord1670
ord1671
ord4890
ord4735
ord4212
ord5182
ord6067
ord4580
ord2168
ord3641
ord2475
ord380
ord3201
ord2702
ord2703
ord5493
ord5563
ord5529
ord5203
ord4908
ord4888
ord4749
ord4356
ord4360
ord2496
ord2867
ord3401
ord5751
ord6006
ord2324
ord745
ord5491
ord557
ord908
ord1248
ord1247
ord3389
ord3255
ord1181
ord5320
ord6286
ord5331
ord6297
ord3287
ord2368
ord3204
ord563
ord753
ord4001
ord4123
ord5641
ord5731
ord6255
ord1009
ord2654
ord3454
ord620
ord3576
ord5833
ord3317
ord4240
ord1591
ord2095
ord741
ord6282
ord643
ord3215
ord1559
ord1638
ord4118
ord6037
ord5642
ord3312
ord1588
ord1646
ord736
ord3596
ord1091
ord3244
ord2094
ord4100
ord1955
ord2371
ord1283
ord1063
ord1161
ord760
ord2878
ord2346
ord3302
ord3328
ord2987
ord754
ord5868
ord1580
ord5727
ord2876
ord2884
ord5634
ord2527
ord3680
ord3441
ord3758
ord1207

msvcr80

floor
_mbsnbcat
_ctime64
_time64
_localtime64_s
_access
malloc
_wtoi
_itow
_wtof
_mbsicmp
_CIsin
_CIcos
memmove_s
memcpy
_strdup
strrchr
fgets
fscanf
mbstowcs
__iob_func
strncmp
fopen
strncat
fgetc
rewind
exit
_stricmp
_CIexp
_CIlog
strncpy
wcstombs
strcat_s
_itoa_s
strtok
_itoa
memcpy_s
strtoul
_snprintf
_aligned_free
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
strcpy_s
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_invalid_parameter_noinfo
atof
_mbscmp
strstr
_recalloc
calloc
free
sscanf
printf
fflush
fclose
fopen_s
fprintf
sprintf_s
atol
atoi
memset
__CxxFrameHandler3
sprintf
_mbsnbcpy
_setmbcp

kernel32

GetSystemTimeAsFileTime
GetTickCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
ExpandEnvironmentStringsA
ReleaseMutex
OpenFileMappingA
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
FlushViewOfFile
GetFileTime
CompareFileTime
MulDiv
lstrcpynA
GlobalMemoryStatus
GetPrivateProfileStringA
WaitForMultipleObjects
ResetEvent
CreateEventA
CreateFileA
WaitForSingleObject
ReadFile
FlushFileBuffers
FindFirstFileA
IsDBCSLeadByte
InterlockedDecrement
GetProcessHeap
HeapFree
GetThreadLocale
GetACP
FindClose
RaiseException
WideCharToMultiByte
InterlockedExchange
GetCurrentProcess
GetModuleFileNameA
CreateDirectoryA
EnterCriticalSection
LeaveCriticalSection
SetEvent
InitializeCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentThreadId
GetCommandLineA
CreateMutexA
Sleep
DeleteCriticalSection
FreeLibrary
GetExitCodeThread
CreateThread
CloseHandle
lstrlenA
MultiByteToWideChar
SetLastError
LoadLibraryA
GetLastError
SetThreadLocale
GetUserDefaultUILanguage
GetUserGeoID
GetGeoInfoA
GetLocaleInfoA
lstrcmpiA
GetSystemDirectoryA
GetCurrentProcessId
GetLocalTime
OutputDebugStringA
GetDiskFreeSpaceExA
GetVersionExA
GetModuleHandleA
GetProcAddress
GetSystemInfo
lstrcatA
lstrcpyA

user32

SetForegroundWindow
MessageBoxA
RegisterDeviceNotificationA
UnregisterDeviceNotification
InflateRect
DrawFocusRect
DrawTextA
RedrawWindow
GetMenuItemID
GetSubMenu
LoadMenuA
TrackPopupMenu
GetCursorPos
SetMenuDefaultItem
RegisterWindowMessageA
GetSysColor
ToAscii
GetKeyboardState
MapVirtualKeyA
GetKeyNameTextA
GetCaretBlinkTime
DefWindowProcA
UnregisterClassA
DestroyWindow
CreateWindowExA
RegisterClassExA
UpdateLayeredWindow
TrackMouseEvent
ReleaseCapture
PtInRect
GetClassNameA
MapWindowPoints
GetMessagePos
UnregisterHotKey
RegisterHotKey
IntersectRect
LoadIconA
KillTimer
GetSystemMetrics
EnumDisplaySettingsA
EnumDisplayDevicesA
LoadStringA
wsprintfA
CharUpperA
IsWindow
CopyRect
GetWindowRect
GetClientRect
GetDC
ReleaseDC
UpdateWindow
InvalidateRect
GetParent
EnableWindow
LoadCursorA
CopyIcon
SetCursor
GetDesktopWindow
IsIconic
IsWindowVisible
DrawIcon
SetTimer
PostMessageA
SendInput
FindWindowA
SendMessageA
ChangeDisplaySettingsA
GetShellWindow
GetForegroundWindow
SetCapture

gdi32

GetDIBits
CreateFontA
CreateFontIndirectA
DeleteDC
GetObjectA
CreateSolidBrush
GetStockObject
ChoosePixelFormat
SetPixelFormat
CreatePen
SelectObject
DeleteObject
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
StretchBlt
GetTextExtentPoint32A
SwapBuffers
CreateCompatibleDC
CreateRectRgnIndirect

advapi32

RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegQueryInfoKeyA
RegCreateKeyExA

shell32

Shell_NotifyIconA
DragAcceptFiles
DragQueryFileA
SHGetFolderPathA
SHCreateDirectoryExA

comctl32

ord17

shlwapi

PathAppendA
PathFileExistsA

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance

oleaut32

VariantClear
SysFreeString
SysAllocString
SysStringLen
VariantInit

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?length@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?empty@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE_NXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IPBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

Sections

.text
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 404KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a5067229bd1d0a242b64dac79fd0e78

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5cCertificate

Extended Key Usages

Key Usages

61:0c:12:06:00:00:00:00:00:1bCertificate

Key Usages

53:4a:be:d0:be:56:d9:84:0d:d1:2d:db:84:f8:b0:31Certificate

Extended Key Usages

Key Usages

eb:d4:28:a9:ec:6f:4d:73:cb:1d:c7:a2:3c:4d:68:31:44:c5:ec:74Signer

Headers

File Characteristics

PDB Paths

Imports

hid

psapi

setupapi

version

gdiplus

iphlpapi

pdh

winmm

glu32

opengl32

mfc80

msvcr80

kernel32

user32

gdi32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

msvcp80

Sections

.text Size: 484KB - Virtual size: 483KB

.rdata Size: 88KB - Virtual size: 86KB

.data Size: 8KB - Virtual size: 46KB

.rsrc Size: 404KB - Virtual size: 400KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

61:0c:12:06:00:00:00:00:00:1b
Certificate

53:4a:be:d0:be:56:d9:84:0d:d1:2d:db:84:f8:b0:31
Certificate

eb:d4:28:a9:ec:6f:4d:73:cb:1d:c7:a2:3c:4d:68:31:44:c5:ec:74
Signer

.text
Size: 484KB - Virtual size: 483KB

.rdata
Size: 88KB - Virtual size: 86KB

.data
Size: 8KB - Virtual size: 46KB

.rsrc
Size: 404KB - Virtual size: 400KB