a6d2362a8a1451633f927b418ee0726966b1ff8c1402af8b45d55839b026c8da

Sharing

Copy URL Twitter E-mail

General

Target

a6d2362a8a1451633f927b418ee0726966b1ff8c1402af8b45d55839b026c8da
Size

2.9MB
MD5

01bc1bcb82f00bf9e67a2c7888adf31b
SHA1

dc188f1782290f1063246df91bb4fa6ccbc14b8a
SHA256

a6d2362a8a1451633f927b418ee0726966b1ff8c1402af8b45d55839b026c8da
SHA512

a37970a0735c2e95d4b0b0cc1f8d855923c24b5d3202c171c449cef597146a2fa68d8d7e03f25ae76933b647aff121ed4b82eee67d78b5e7373dbb73fd381026
SSDEEP

49152:VlzVewMLFeDqdeQFkwjD7mvEdzXcMm3Ac/XrcQIW/AFFnt436UM6aP7/d997PrWC:Yw4FeDq/OwjD6EdzXcMEZPrcQIOAFxt/

Score

1^/10

Malware Config

Signatures

Files

a6d2362a8a1451633f927b418ee0726966b1ff8c1402af8b45d55839b026c8da
.exe windows:5 windows x86 arch:x86

48ae8ca8d88fc7e497353d47b5f7deb3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

05:58:ae:aa:8e:e9:c0:e7:66:6c:58:36:a2:23:00:a2
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

15/11/2016, 00:00

Not After

07/01/2019, 23:59

Subject

CN=Korea Trade Network Co.\, Ltd,O=Korea Trade Network Co.\, Ltd,L=Gangnam-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

71:a0:b7:36:95:dd:b1:af:c2:3b:2b:9a:18:ee:54:cb
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=thawte SHA256 Code Signing CA,O=thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:3f:6c:20:91:45:4c:b4:2d:10:47:88:a4:d0:11:3f
Certificate

Issuer

CN=thawte SHA256 Code Signing CA,O=thawte\, Inc.,C=US

Not Before

15/11/2016, 00:00

Not After

07/01/2019, 23:59

Subject

CN=Korea Trade Network Co.\, Ltd,O=Korea Trade Network Co.\, Ltd,L=Gangnam-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

02/01/2017, 00:00

Not After

01/04/2028, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G2,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

7a:a7:54:f2:57:ab:b6:36:f3:e5:c3:70:ae:ea:16:20:c7:eb:46:da:cf:87:34:88:af:bb:54:4c:62:cd:76:ae
Signer

Actual PE Digest

7a:a7:54:f2:57:ab:b6:36:f3:e5:c3:70:ae:ea:16:20:c7:eb:46:da:cf:87:34:88:af:bb:54:4c:62:cd:76:ae

Digest Algorithm

sha256

PE Digest Matches

false

f1:63:ad:ff:d0:69:2c:f2:0f:7b:dd:40:d5:b6:9e:30:8e:d5:8c:6b
Signer

Actual PE Digest

f1:63:ad:ff:d0:69:2c:f2:0f:7b:dd:40:d5:b6:9e:30:8e:d5:8c:6b

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
LCMapStringW
OutputDebugStringW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetTimeZoneInformation
SetConsoleCtrlHandler
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
EnumSystemLocalesW
SetConsoleMode
ReadConsoleInputA
SetCurrentDirectoryA
WTSGetActiveConsoleSessionId
Process32Next
Process32First
CreateToolhelp32Snapshot
OpenProcess
FlushConsoleInputBuffer
GlobalMemoryStatus
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
GetFileAttributesExW
IsValidCodePage
GetProcessHeap
GetStdHandle
GetFileType
SetStdHandle
IsProcessorFeaturePresent
IsDebuggerPresent
HeapQueryInformation
HeapSize
AreFileApisANSI
GetModuleHandleExW
ExitProcess
HeapReAlloc
ExitThread
CreateThread
RtlUnwind
RaiseException
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapAlloc
GetSystemTimeAsFileTime
HeapFree
FindResourceExW
GetUserDefaultLCID
VirtualProtect
SearchPathA
GetProfileIntA
GetTickCount
GetTempFileNameA
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetWindowsDirectoryA
lstrcpyA
GetACP
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameA
GetFileSize
FindFirstFileA
FindClose
CreateFileA
DeleteFileA
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
FileTimeToSystemTime
GlobalFlags
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
LoadLibraryW
LoadLibraryA
lstrcmpW
FreeResource
GetSystemDirectoryW
GetVersion
DecodePointer
EncodePointer
OutputDebugStringA
GetFileAttributesW
GetCurrentProcessId
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
InterlockedIncrement
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
InterlockedDecrement
SetErrorMode
CompareStringA
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetModuleFileNameA
FreeLibrary
GetVersionExA
GetCurrentThread
InterlockedExchange
SuspendThread
SetThreadPriority
GetCurrentThreadId
SetLastError
MultiByteToWideChar
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
TerminateThread
ResumeThread
ExpandEnvironmentStringsA
CreateEventA
GetModuleHandleA
GetCommandLineA
InitializeCriticalSectionAndSpinCount
CreateNamedPipeA
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
CloseHandle
DisconnectNamedPipe
FlushFileBuffers
WriteFile
ReadFile
ConnectNamedPipe
WaitForSingleObject
Sleep
GetLastError
SetEvent
ResetEvent

user32

CreatePopupMenu
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
MessageBeep
GetIconInfo
DrawIconEx
LoadImageA
IsRectEmpty
OffsetRect
SetRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsIconic
IntersectRect
InflateRect
GetMenuItemInfoA
DestroyMenu
CharUpperA
DestroyIcon
InvalidateRect
KillTimer
SetTimer
DeleteMenu
SetCursor
ShowOwnedPopups
SystemParametersInfoA
CopyImage
RealChildWindowFromPoint
GetDesktopWindow
FillRect
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
GetMenuDefaultItem
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
UnpackDDElParam
ReuseDDElParam
GetKeyNameTextA
TrackMouseEvent
LoadMenuW
MapVirtualKeyA
GetMenuStringA
GetMenuState
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateWindowExA
GetClassInfoExA
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateA
LoadImageW
DrawEdge
DrawFrameControl
SetWindowRgn
UnionRect
IsMenu
UpdateLayeredWindow
MonitorFromPoint
BringWindowToTop
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
ShowWindow
InsertMenuItemA
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
SetMenuDefaultItem
SendMessageA
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExA
CallNextHookEx
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetUserObjectInformationW
GetProcessWindowStation
GetMenuCheckMarkDimensions
SetMenuItemInfoA
GetParent
LoadBitmapW
PostMessageA
PostQuitMessage
UnhookWindowsHookEx
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
LoadCursorA
EnableWindow
IsWindowEnabled
MessageBoxA
GetWindowLongA
GetWindowThreadProcessId
GetLastActivePopup
RegisterWindowMessageA
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetComboBoxInfo
IsZoomed
GetSystemMenu
PostThreadMessageA
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetCursorPos
SetRect
SetParent
LockWindowUpdate
SetClassLongA
GetDoubleClickTime
CopyIcon
DrawIcon
GetWindowRgn
DestroyCursor
MapDialogRect
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
FrameRect
CharUpperBuffA
RegisterClipboardFormatA
ModifyMenuA
SetPropA

gdi32

MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
GetTextExtentPoint32A
CombineRgn
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
GetTextMetricsA
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
SetTextAlign
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceA
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateSolidBrush
GetDeviceCaps
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
CreateDCA
StretchBlt
CopyMetaFileA

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

DuplicateTokenEx
RegOpenKeyA
OpenServiceA
ControlService
QueryServiceStatusEx
DeleteService
CreateServiceA
CloseServiceHandle
OpenSCManagerA
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
ReportEventA
RegisterEventSourceA
DeregisterEventSource
RegEnumKeyExA
RegEnumValueA
RegSetValueExA
RegDeleteValueA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
RevertToSelf
CreateProcessAsUserA
ImpersonateLoggedOnUser
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCreateKeyA

shell32

ShellExecuteA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHAppBarMessage
SHBrowseForFolderA
SHGetSpecialFolderPathA
DragFinish
DragQueryFileA
SHGetDesktopFolder

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
PathFindExtensionA
StrFormatKBSizeA

uxtheme

GetThemeSysColor
GetThemePartSize
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetWindowTheme

ole32

RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

SysFreeString
VariantClear
VariantChangeType
SystemTimeToVariantTime
VariantTimeToSystemTime
VarBstrFromDate
SysAllocString
SysAllocStringLen
SysStringLen
VariantInit

wtsapi32

WTSQueryUserToken
WTSFreeMemory
WTSEnumerateSessionsA

userenv

CreateEnvironmentBlock

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

gdiplus

GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

wintrust

WTHelperProvDataFromStateData
WinVerifyTrust
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 540KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 468KB - Virtual size: 468KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48ae8ca8d88fc7e497353d47b5f7deb3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5eCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

05:58:ae:aa:8e:e9:c0:e7:66:6c:58:36:a2:23:00:a2Certificate

Extended Key Usages

Key Usages

71:a0:b7:36:95:dd:b1:af:c2:3b:2b:9a:18:ee:54:cbCertificate

Extended Key Usages

Key Usages

2a:3f:6c:20:91:45:4c:b4:2d:10:47:88:a4:d0:11:3fCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6Certificate

Extended Key Usages

Key Usages

7a:a7:54:f2:57:ab:b6:36:f3:e5:c3:70:ae:ea:16:20:c7:eb:46:da:cf:87:34:88:af:bb:54:4c:62:cd:76:aeSigner

f1:63:ad:ff:d0:69:2c:f2:0f:7b:dd:40:d5:b6:9e:30:8e:d5:8c:6bSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

wtsapi32

userenv

version

oleacc

gdiplus

imm32

winmm

wintrust

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 540KB - Virtual size: 540KB

.data Size: 48KB - Virtual size: 85KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 468KB - Virtual size: 468KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

05:58:ae:aa:8e:e9:c0:e7:66:6c:58:36:a2:23:00:a2
Certificate

71:a0:b7:36:95:dd:b1:af:c2:3b:2b:9a:18:ee:54:cb
Certificate

2a:3f:6c:20:91:45:4c:b4:2d:10:47:88:a4:d0:11:3f
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

54:58:f2:aa:d7:41:d6:44:bc:84:a9:7b:a0:96:52:e6
Certificate

7a:a7:54:f2:57:ab:b6:36:f3:e5:c3:70:ae:ea:16:20:c7:eb:46:da:cf:87:34:88:af:bb:54:4c:62:cd:76:ae
Signer

f1:63:ad:ff:d0:69:2c:f2:0f:7b:dd:40:d5:b6:9e:30:8e:d5:8c:6b
Signer

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 540KB - Virtual size: 540KB

.data
Size: 48KB - Virtual size: 85KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 468KB - Virtual size: 468KB