2024-08-02_a7e2ea62bbb24ee92b219b87b31becb2_bkransomware_hijackloader

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-02_a7e2ea62bbb24ee92b219b87b31becb2_bkransomware_hijackloader
Size

7.6MB
MD5

a7e2ea62bbb24ee92b219b87b31becb2
SHA1

e39b4507046c0d61d91e498e5f6f62b15f444936
SHA256

fb90e04d8aee261e176d2e0d73230780736a7bf84f108ed9a9f7c3f512f0507a
SHA512

70ac8dd3e37b7733143e8c2054928848b0457c1214b238b9610448420a7d0f19f2dbecd036ea7844d008b8c307561a470a4a37f47ab0662dddeff8fb13aabf45
SSDEEP

196608:yI1SJgSzK5mzCNHeZ56ZCLjt2tq8l4TS7AVL7k:zSq7H3l9Al7

Score

1^/10

Malware Config

Signatures

Files

2024-08-02_a7e2ea62bbb24ee92b219b87b31becb2_bkransomware_hijackloader
.exe windows:5 windows x86 arch:x86

b064b6754912a893f171f692b1445f00

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0b:08:b5:d8:e4:66:de:21:ea:e1:d2:a2:76:31:29:16
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

06/09/2023, 00:00

Not After

13/10/2025, 23:59

Subject

CN=GRETECH CORPORATION,O=GRETECH CORPORATION,L=Shinjuku,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

63:8a:13:e7:26:d5:1d:24:36:24:09:c6:90:aa:38:82:de:bd:c8:c7:a2:a0:ad:9a:4b:a6:04:5a:21:c7:4d:89
Signer

Actual PE Digest

63:8a:13:e7:26:d5:1d:24:36:24:09:c6:90:aa:38:82:de:bd:c8:c7:a2:a0:ad:9a:4b:a6:04:5a:21:c7:4d:89

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\GOMAudio_Tags\2.2.27.1\project\bin\pdb\GOMAU.pdb

Imports

rpcrt4

UuidToStringW
RpcStringFreeW
UuidCreate

comdlg32

ChooseColorW
GetOpenFileNameW
GetSaveFileNameW

powrprof

SetSuspendState

kernel32

GetCurrentThread
GetVersion
LocalAlloc
GetPrivateProfileSectionNamesW
CompareStringW
IsDBCSLeadByteEx
GetNumberFormatW
GetUserDefaultLangID
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
CreateThread
lstrcpynA
SetUnhandledExceptionFilter
VirtualQuery
IsBadWritePtr
SetThreadPriority
lstrcatW
RemoveDirectoryW
CreateEventW
SetEvent
ResetEvent
WaitForMultipleObjects
lstrcmpiW
LoadLibraryExW
WinExec
GetLogicalDrives
GetLocalTime
HeapAlloc
HeapFree
GetProcessHeap
GetWindowsDirectoryW
GetVersionExA
CreateFileA
SetEndOfFile
GetFileAttributesA
GetACP
IsDBCSLeadByte
lstrlenA
InterlockedIncrement
InterlockedDecrement
IsBadStringPtrW
IsBadReadPtr
GetSystemInfo
InterlockedExchange
InterlockedExchangeAdd
DeleteTimerQueueEx
GetCPInfo
FlushFileBuffers
GetStdHandle
GetFileType
FindFirstFileA
FindNextFileA
GetDriveTypeA
CreateDirectoryA
SetFileAttributesA
GetDiskFreeSpaceA
GetModuleHandleA
LocalFileTimeToFileTime
MoveFileA
VerifyVersionInfoW
GetCurrentProcessId
LoadLibraryExA
DeviceIoControl
InterlockedPopEntrySList
InterlockedPushEntrySList
IsProcessorFeaturePresent
OutputDebugStringW
VirtualFree
InterlockedFlushSList
ReleaseSemaphore
VirtualProtect
FreeLibraryAndExitThread
GetThreadTimes
SetStdHandle
GetTimeZoneInformation
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetOEMCP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetTimeFormatW
GetDateFormatW
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
ChangeTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SwitchToThread
SignalObjectAndWait
CreateSemaphoreW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
UnhandledExceptionFilter
GetModuleHandleExW
ExitProcess
MoveFileExW
AreFileApisANSI
HeapSize
FindFirstFileExW
SystemTimeToTzSpecificLocalTime
ResumeThread
GetFileAttributesExW
HeapReAlloc
ExitThread
RtlUnwind
GetStringTypeW
EncodePointer
GetSystemTimeAsFileTime
GetExitCodeThread
DuplicateHandle
GetTempPathW
SetFilePointer
GetVolumeInformationW
GetLongPathNameW
Sleep
SetFileAttributesW
DeleteFileW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcpynW
CloseHandle
WriteFile
GetCurrentDirectoryW
GetCommandLineW
InitializeSListHead
GetFileInformationByHandle
WaitForSingleObjectEx
lstrlenW
GetDriveTypeW
WideCharToMultiByte
SystemTimeToFileTime
CopyFileW
FormatMessageW
LocalFree
SizeofResource
GetProcAddress
FreeResource
FreeLibrary
GetNativeSystemInfo
GetVersionExW
GetSystemTime
CreateProcessW
GetExitCodeProcess
WaitForSingleObject
FindNextFileW
FindFirstFileW
FindClose
GetSystemDefaultLangID
SetFileTime
GetFileTime
GetFileAttributesW
ReadFile
GetFileSize
FileTimeToSystemTime
FileTimeToLocalFileTime
TerminateThread
GetDiskFreeSpaceExW
FindResourceW
lstrcmpW
MulDiv
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
LockResource
LoadResource
GetModuleFileNameW
GetModuleHandleW
FlushInstructionCache
GetCurrentThreadId
GetCurrentProcess
IsDebuggerPresent
SetLastError
SetDllDirectoryW
LoadLibraryW
DeleteTimerQueueTimer
CreateTimerQueueTimer
CreateTimerQueue
GetTickCount
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VerSetConditionMask
lstrcpyW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
DecodePointer
QueryDepthSList
UnregisterWaitEx
CreateFileW
CreateDirectoryW
VirtualAlloc
MultiByteToWideChar
WriteConsoleW
CreateProcessA
SetEnvironmentVariableA

user32

GetSubMenu
EnableMenuItem
CheckMenuItem
DestroyMenu
CreatePopupMenu
GetSystemMenu
GetMenuStringW
TranslateAcceleratorW
LoadAcceleratorsW
IsMenu
PostQuitMessage
GetMenuItemCount
AppendMenuW
ModifyMenuW
RemoveMenu
DeleteMenu
UnregisterClassW
PostMessageW
DefWindowProcW
RegisterClassW
GetClassInfoW
CreateWindowExW
IsWindow
SetWindowPos
SetFocus
TrackPopupMenu
SetWindowTextW
GetClientRect
GetWindowRect
LoadCursorW
RegisterWindowMessageW
CallWindowProcW
RegisterClassExW
GetClassInfoExW
ShowWindow
InsertMenuItemW
GetCursor
CheckMenuRadioItem
LoadBitmapW
WindowFromPoint
GetCursorInfo
RegisterHotKey
UnregisterHotKey
SetWindowRgn
InflateRect
CharUpperW
CharToOemBuffA
OemToCharBuffA
CharUpperA
OemToCharA
CharLowerA
CharToOemA
LoadCursorFromFileW
CreateIconFromResource
LookupIconIdFromDirectory
SetParent
GetClassLongW
SetClassLongW
SystemParametersInfoA
GetSystemMetrics
RemovePropW
SetPropW
GetPropW
GetSysColorBrush
SetLastErrorEx
IsRectEmpty
AnimateWindow
AdjustWindowRectEx
ShowScrollBar
GetComboBoxInfo
GetWindowDC
DrawIcon
DrawIconEx
LoadMenuW
MonitorFromPoint
MonitorFromRect
UpdateWindow
SendMessageTimeoutW
ExitWindowsEx
UnionRect
SetRectEmpty
GetCursorPos
PostThreadMessageW
wvsprintfW
SendDlgItemMessageW
SystemParametersInfoW
DestroyIcon
EnumWindows
EqualRect
CopyRect
SetForegroundWindow
GetForegroundWindow
IsClipboardFormatAvailable
GetClipboardData
BringWindowToTop
GetWindowPlacement
MsgWaitForMultipleObjects
PeekMessageW
DispatchMessageW
TranslateMessage
IsDialogMessageW
UnhookWindowsHookEx
FindWindowExW
IntersectRect
SetActiveWindow
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
CallNextHookEx
SetWindowsHookExW
GetDlgItemTextA
SetDlgItemTextA
CreateDialogIndirectParamW
FindWindowW
RegisterWindowMessageA
wsprintfW
LoadStringW
LoadIconW
IsIconic
IsWindowVisible
UpdateLayeredWindow
SetLayeredWindowAttributes
SetCapture
ReleaseCapture
BeginPaint
EndPaint
InvalidateRect
RedrawWindow
SetCursor
SetRect
PtInRect
GetWindowLongW
SetWindowLongW
SendMessageW
IsChild
DestroyWindow
MoveWindow
DialogBoxIndirectParamW
EndDialog
GetDlgItem
CharNextW
GetActiveWindow
GetFocus
CreateAcceleratorTableW
DestroyAcceleratorTable
GetDC
ReleaseDC
InvalidateRgn
GetWindowTextW
GetWindowTextLengthW
SetWindowContextHelpId
ClientToScreen
ScreenToClient
GetSysColor
FillRect
GetDesktopWindow
GetParent
GetClassNameW
GetWindow
MapDialogRect
SetDlgItemInt
GetDlgItemInt
GetMessageW
SetDlgItemTextW
EnableWindow
MessageBoxW
SendMessageA
GetDlgItemTextW
CheckDlgButton
IsDlgButtonChecked
GetDlgCtrlID
GetKeyState
SetTimer
KillTimer
IsWindowEnabled
DrawTextW
MapWindowPoints
OffsetRect
CopyIcon
DestroyCursor
GetTopWindow
MonitorFromWindow
GetMonitorInfoW
EnumChildWindows
LoadImageW

advapi32

RegEnumValueW
RegDeleteKeyW
RegOpenKeyExW
RegQueryInfoKeyW
OpenProcessToken
OpenThreadToken
AllocateAndInitializeSid
EqualSid
FreeSid
GetTokenInformation
RegCreateKeyW
RegDeleteValueW
RegEnumKeyW
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyW
RegQueryValueW
LookupPrivilegeValueA
SetFileSecurityW
SetFileSecurityA
AdjustTokenPrivileges
RegCloseKey

ole32

CreateStreamOnHGlobal
CoGetClassObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
StringFromGUID2
CoTaskMemAlloc
CoFreeLibrary
CoLoadLibrary
OleSetContainedObject
OleCreate
CoInitialize
CoTaskMemRealloc
CoUninitialize
CoRevokeClassObject
CoRegisterClassObject
CoGetObject
CoCreateGuid
OleLockRunning
OleUninitialize
OleInitialize
CoTaskMemFree

shell32

SHCreateDirectoryExW
SHAppBarMessage
DragFinish
DragQueryPoint
Shell_NotifyIconW
SHFileOperationW
SHChangeNotify
SHBrowseForFolderW
SHGetPathFromIDListW
DragAcceptFiles
DragQueryFileW
ShellExecuteW
SHGetSpecialFolderPathW

oleaut32

SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
VarBstrCmp
UnRegisterTypeLi
VarUI4FromStr
SysAllocStringByteLen
SysStringByteLen
RegisterTypeLi
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocString
SysFreeString

shlwapi

PathFileExistsW
AssocQueryStringW

gdi32

CreateSolidBrush
DeleteDC
DeleteObject
GetDeviceCaps
GetStockObject
SelectObject
GetObjectW
CreatePen
Rectangle
CreateDIBSection
SetBkMode
SetTextColor
CreateFontIndirectW
GetTextExtentPointW
GetTextExtentPoint32W
SetBkColor
GetTextMetricsW
CreateCompatibleDC
GetClipBox
CreateFontW
RestoreDC
SaveDC
StretchBlt
Polygon
SetStretchBltMode
EnumFontFamiliesExW
GetStretchBltMode
CreateRectRgn
SelectClipRgn
CreateRectRgnIndirect
CombineRgn
CreateEllipticRgn
CreateRoundRectRgn
OffsetRgn
CreatePatternBrush
StretchDIBits
GetObjectA
ExtTextOutW
BitBlt
CreateCompatibleBitmap

urlmon

UrlMkGetSessionOption
CreateURLMonikerEx
CreateAsyncBindCtx
RegisterBindStatusCallback
IsAsyncMoniker
UrlMkSetSessionOption

winmm

mciSendCommandW
timeKillEvent
timeSetEvent
mixerSetControlDetails
mixerGetControlDetailsW
mixerGetLineControlsW
mixerGetID
mixerGetLineInfoW
waveOutGetNumDevs
mixerClose
mixerOpen
mixerGetDevCapsW
mixerGetNumDevs

gdiplus

GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipResetWorldTransform
GdipGetTextRenderingHint
GdipGetFontHeight
GdipCreateRegion
GdipSetStringFormatLineAlign
GdipFillRectangle
GdipGetLogFontW
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipSetStringFormatTrimming
GdipSetStringFormatHotkeyPrefix
GdipSetStringFormatFlags
GdipDrawLineI
GdipGetClip
GdipCombineRegionRectI
GdipSetEmpty
GdiplusStartup
GdipDrawRectangleI
GdipGetImageRawFormat
GdipCreatePen1
GdipImageRotateFlip
GdipCreateBitmapFromResource
GdipSetClipRegion
GdipBitmapLockBits
GdipGetPropertySize
GdipSaveImageToFile
GdipCreateHBITMAPFromBitmap
GdipGetImageEncoders
GdipBitmapGetPixel
GdipCreateImageAttributes
GdipCombineRegionRegion
GdipGetRegionHRgn
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDrawString
GdipDeleteFont
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDrawImagePointRectI
GdipSetPixelOffsetMode
GdipReleaseDC
GdipSetClipRectI
GdipFillRegion
GdipGraphicsClear
GdipSetInterpolationMode
GdipGetAllPropertyItems
GdipCreateBitmapFromFile
GdipGetImageEncodersSize
GdipDisposeImageAttributes
GdipSetTextRenderingHint
GdipSetSmoothingMode
GdipCreateRegionRectI
GdipDrawImageRectI
GdipDrawImageI
GdipFillRectangleI
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipFree
GdipAlloc
GdipBitmapUnlockBits
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromStream
GdipDrawImageRectRectI
GdipSetImageAttributesColorMatrix
GdipCloneBitmapAreaI
GdipDeletePen
GdiplusShutdown
GdipMeasureString
GdipSetStringFormatMeasurableCharacterRanges
GdipMeasureCharacterRanges
GdipResetClip
GdipCreateRegionRect
GdipDeleteRegion

iphlpapi

GetAdaptersInfo

wininet

InternetSetCookieW
InternetGetCookieW
InternetCrackUrlW
InternetCanonicalizeUrlW
HttpEndRequestW
InternetCloseHandle
InternetOpenUrlW
InternetReadFile
InternetQueryDataAvailable
InternetSetOptionW
HttpQueryInfoW
InternetQueryOptionW
InternetOpenW
HttpSendRequestExW
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetWriteFile
InternetConnectW

wintrust

WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
WTHelperGetProvCertFromChain
WinVerifyTrust

crypt32

CertGetNameStringW

ws2_32

inet_addr
gethostbyaddr
gethostbyname
__WSAFDIsSet
closesocket
connect
htons
recv
select
send
shutdown
WSAGetLastError
WSAStartup
WSACleanup
ioctlsocket
socket

wtsapi32

WTSUnRegisterSessionNotification
WTSRegisterSessionNotification

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_Add
_TrackMouseEvent
ImageList_Remove
InitCommonControlsEx
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_AddMasked

imm32

ImmGetContext
ImmSetConversionStatus
ImmReleaseContext

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 652KB - Virtual size: 651KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared_G
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b064b6754912a893f171f692b1445f00

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

0b:08:b5:d8:e4:66:de:21:ea:e1:d2:a2:76:31:29:16Certificate

Extended Key Usages

Key Usages

63:8a:13:e7:26:d5:1d:24:36:24:09:c6:90:aa:38:82:de:bd:c8:c7:a2:a0:ad:9a:4b:a6:04:5a:21:c7:4d:89Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

rpcrt4

comdlg32

powrprof

kernel32

user32

advapi32

ole32

shell32

oleaut32

shlwapi

gdi32

urlmon

winmm

gdiplus

iphlpapi

wininet

wintrust

crypt32

ws2_32

wtsapi32

msimg32

comctl32

imm32

Sections

.text Size: 3.2MB - Virtual size: 3.2MB

.rdata Size: 652KB - Virtual size: 651KB

.data Size: 72KB - Virtual size: 175KB

Shared_G Size: 512B - Virtual size: 12B

.rsrc Size: 3.7MB - Virtual size: 3.7MB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

0b:08:b5:d8:e4:66:de:21:ea:e1:d2:a2:76:31:29:16
Certificate

63:8a:13:e7:26:d5:1d:24:36:24:09:c6:90:aa:38:82:de:bd:c8:c7:a2:a0:ad:9a:4b:a6:04:5a:21:c7:4d:89
Signer

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 652KB - Virtual size: 651KB

.data
Size: 72KB - Virtual size: 175KB

Shared_G
Size: 512B - Virtual size: 12B

.rsrc
Size: 3.7MB - Virtual size: 3.7MB