434ec9eb705c22c966d682bcfcb428e0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

434ec9eb705c22c966d682bcfcb428e0N.exe
Size

3.4MB
MD5

434ec9eb705c22c966d682bcfcb428e0
SHA1

8b081e1da9578de23725e59aa3aea3419d0d74c3
SHA256

e0402d978f29cde6e6c045aa2fd88a11ef5f1ab5ddf3d2ef05e0bf22433c0f06
SHA512

999332ffc38b133797a3582273b6a5d3dd4887b5dc0146f85576153fa901ac853573135656d5ef19b1401d0538c50ca882396cb931624943fe9e9f7eb24351cc
SSDEEP

49152:yEQP21Sd3tN6EjGwjVqvNcEoK6cIYPvolVXQM7mn7Mxz/+4fbQWKXFr7f+:yZEIDGn7M1+sQWKXFr7f+

Score

1^/10

Malware Config

Signatures

Files

434ec9eb705c22c966d682bcfcb428e0N.exe
.exe windows:5 windows x64 arch:x64

435635a67a5a92e244401c57abe7737f

Code Sign

2f:b9:c9:dd:5f:7c:96:24:f1:5c:83:2e:4d:73:5d:1b
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

25/06/2013, 00:00

Not After

24/07/2016, 23:59

Subject

CN=Corel Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Corel Corporation,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3b:e4:43:21:75:20:87:67:3b:19:55:66:15:4e:39:c6:a4:46:44:34
Signer

Actual PE Digest

3b:e4:43:21:75:20:87:67:3b:19:55:66:15:4e:39:c6:a4:46:44:34

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\bld\PAIN-SET-JOB1\source\x64\Release\Setup.pdb

Imports

gdiplus

GdipCreateBitmapFromFile
GdiplusStartup
GdiplusShutdown
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipFree
GdipSetInterpolationMode
GdipDrawImageRectI
GdipDisposeImage
GdipAlloc
GdipCreateHBITMAPFromBitmap

setupxml

?SetAttributeSingleNode@CXMLFileManagerInterface@@QEAA_NPEB_W00W4XMLFILENAMES@@@Z
?GetAttributeSingleNode@CXMLFileManagerInterface@@QEAA?AV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PEB_W0W4XMLFILENAMES@@@Z
?Select@CXMLFileManagerInterface@@QEAAJPEB_W@Z
?IsXMLLoaded@CXMLFileManagerInterface@@QEAA_NXZ
?ToggleCheck@CXMLFileManagerInterface@@QEAAXPEB_W_N@Z
?ToggleCheck@CXMLFileManagerInterface@@QEAAXH_N@Z
?GetFeatureData@CXMLFileManagerInterface@@QEAA_NHPEAUCXML_FEATURE_DATA@@@Z
?GetFeatureData@CXMLFileManagerInterface@@QEAA_NPEB_WPEAUCXML_FEATURE_DATA@@@Z
?SetFeatureData@CXMLFileManagerInterface@@QEAA_NUCXML_FEATURE_DATA@@@Z
??0CXMLFileManagerInterface@@QEAA@XZ
?RemoveAll@CXMLFileManagerInterface@@QEAAJPEB_W@Z
?GetParentAttribute@CXMLFileManagerInterface@@QEAA?AV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PEB_W@Z
GetOsLanguage
??0CXMLFileManagerInterface@@QEAA@AEBV0@@Z
?AddNodeAsChild@CXMLFileManagerInterface@@QEAA_NPEB_W@Z
??1CXMLFileManagerInterface@@UEAA@XZ
?GetAttributeBool@CXMLFileManagerInterface@@QEAA_NPEB_W@Z
?SetAttribute@CXMLFileManagerInterface@@QEAA_NPEB_W_N@Z
?AddNodeToEndOfList@CXMLFileManagerInterface@@QEAA_NPEB_W@Z
?SetAttribute@CXMLFileManagerInterface@@QEAA_NPEB_WI@Z
?CounterLast@CXMLFileManagerInterface@@QEAAJXZ
?GetAttribute@CXMLFileManagerInterface@@QEAA?AV?$CStringT@_WV?$StrTraitMFC@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PEB_W@Z
?CounterNext@CXMLFileManagerInterface@@QEAAJXZ
?SetAttribute@CXMLFileManagerInterface@@QEAA_NPEB_W0@Z
?Init@CXMLFileManagerInterface@@SAJPEB_W@Z
?UnInitialize@CXMLFileManagerInterface@@QEAAXXZ
?Saveit@CXMLFileManagerInterface@@QEAAJPEB_W_N@Z
?SetFileIndex@CXMLFileManagerInterface@@QEAAXW4XMLFILENAMES@@@Z
?CreateXML@CXMLFileManagerInterface@@QEAAJPEB_W@Z

script

?OnSetupInitialization@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnBeforeExecuteChain@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnAfterExecuteChain@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnBeforeExecutePatches@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnAfterExecutePatches@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnSetupPrerequisites@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnFeatureSelectionChanged@CScript@@SAIPEAVCUtlXSetupEng@@UCXML_FEATURE_DATA@@@Z
?OnCustomCommandLine_S@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnWizardInit@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnWizardProgressStart@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnWizardStart@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnWizardCompleteSuccess@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnWizardCompleteError@CScript@@SAIPEAVCUtlXSetupEng@@@Z
?OnWizardCompleteReboot@CScript@@SAIPEAVCUtlXSetupEng@@@Z

kernel32

GetThreadLocale
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetCurrentDirectoryW
CompareStringW
GetLocaleInfoW
SetEndOfFile
GetUserDefaultUILanguage
GlobalFlags
GlobalGetAtomNameW
SetErrorMode
GetTickCount
GetWindowsDirectoryW
lstrcpyW
VerSetConditionMask
VerifyVersionInfoW
GetTempFileNameW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
GetCommandLineW
ExitProcess
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlUnwindEx
RtlPcToFileHeader
CreateThread
ExitThread
GetSystemInfo
VirtualAlloc
VirtualQuery
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetTimeZoneInformation
GetStringTypeW
GetDateFormatW
GetTimeFormatW
LCMapStringW
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
GlobalFindAtomW
lstrcmpiW
LeaveCriticalSection
EnterCriticalSection
EncodePointer
SystemTimeToFileTime
SetFileTime
SetFileAttributesW
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToSystemTime
FindNextFileW
FindFirstFileW
FindClose
FileTimeToLocalFileTime
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
SetThreadPriority
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetModuleHandleExW
OutputDebugStringA
GetCurrentProcessId
SetLastError
MulDiv
GlobalUnlock
GlobalSize
GlobalFree
FreeResource
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryExW
GetVersionExW
GetCurrentThreadId
GetCurrentThread
Process32NextW
Module32NextW
Module32FirstW
Process32FirstW
CreateToolhelp32Snapshot
GetModuleHandleW
GetExitCodeProcess
CreateProcessW
WaitForSingleObject
WriteFile
CreateFileW
LocalFree
FormatMessageW
CopyFileW
GetTempPathW
DeleteCriticalSection
DecodePointer
HeapSize
RaiseException
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
WideCharToMultiByte
CreateDirectoryW
lstrcmpW
MultiByteToWideChar
GetDiskFreeSpaceExW
FreeLibrary
GetProcAddress
LoadLibraryW
CopyFileExW
GetExitCodeThread
Sleep
SuspendThread
ResumeThread
GetCurrentProcess
GetLastError
CreateMutexW
RemoveDirectoryW
GetModuleFileNameW
SetEvent
DeleteFileW
CloseHandle
FindResourceW
LoadResource
LockResource
SizeofResource
CreateEventW
DuplicateHandle
UnlockFile
GetSystemDirectoryW
SetFilePointer
GetSystemDefaultUILanguage

user32

TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
DestroyCursor
GetWindowRgn
RealChildWindowFromPoint
DeleteMenu
CopyImage
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
CharUpperW
InflateRect
GetMenuItemInfoW
DestroyMenu
LoadMenuW
SendDlgItemMessageA
FillRect
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
MapVirtualKeyW
GetKeyNameTextW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
UnhookWindowsHookEx
GetTopWindow
GetClassNameW
GetClassLongPtrW
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
GetForegroundWindow
TrackPopupMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
SetCursor
ShowOwnedPopups
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
CallNextHookEx
SetWindowsHookExW
ValidateRect
DefMDIChildProcW
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
GetFocus
SetFocus
GetDlgCtrlID
CheckDlgButton
MoveWindow
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetLastActivePopup
GetWindowLongW
IsWindowEnabled
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
GetWindowThreadProcessId
GetWindow
EnumDesktopWindows
PostMessageW
ScreenToClient
GetCursorPos
EnableMenuItem
GetSystemMenu
MessageBoxW
GetDlgItem
DefWindowProcW
UpdateLayeredWindow
SetWindowPos
SetWindowLongPtrW
GetWindowLongPtrW
CreateWindowExW
UnregisterClassW
RegisterClassExW
LoadCursorW
SystemParametersInfoW
UpdateWindow
SetLayeredWindowAttributes
GetWindowRect
DrawIcon
GetClientRect
IsIconic
GetAsyncKeyState
LoadImageW
LoadIconW
LoadBitmapW
GetParent
SendMessageW
EnableWindow
KillTimer
SetTimer
IsWindowVisible
SetForegroundWindow
ShowWindow
FindWindowW
ReleaseDC
GetDC
GetSystemMetrics
RegisterWindowMessageW
DefFrameProcW
DrawMenuBar
FrameRect
CharUpperBuffW
ModifyMenuW
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongPtrW
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
LockWindowUpdate
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
PostThreadMessageW
SetParent
UnionRect
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetIconInfo
DrawIconEx
DrawFocusRect
GetMenuDefaultItem
RegisterClipboardFormatW
ReuseDDElParam
UnpackDDElParam
SetRectEmpty
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
DestroyIcon
GetSysColorBrush
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableW
OffsetRect
CharNextW
GetKeyState
InvalidateRect
SetMenu

gdi32

CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
CreatePatternBrush
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
CreatePen
LineTo
CreateHatchBrush
BitBlt
PatBlt
CreateRectRgnIndirect
GetObjectW
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
GetTextExtentPoint32W
GetBkColor
GetTextColor
SetTextColor
GetTextMetricsW
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetBkColor
CreateBitmap
CreateDCW
CopyMetaFileW
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
GetRgnBox
GetDeviceCaps

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegQueryValueW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
InitiateSystemShutdownW
RegEnumKeyW
RegEnumValueW
RegEnumKeyExW

shell32

SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
DragFinish
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
SHGetFolderPathW
ShellExecuteW
SHGetFileInfoW
DragQueryFileW

comctl32

InitCommonControlsEx
ImageList_AddMasked

shlwapi

StrFormatKBSizeW
PathRemoveFileSpecW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW

uxtheme

GetCurrentThemeName
GetWindowTheme
GetThemeSysColor
IsAppThemed
GetThemePartSize
GetThemeColor
CloseThemeData
OpenThemeData
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeBackground
DrawThemeText

ole32

OleInitialize
OleUninitialize
CoUninitialize
CoInitialize
CoCreateGuid
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
OleDuplicateData
ReleaseStgMedium
CoCreateInstance
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoDisconnectObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoInitializeEx
CoFreeUnusedLibraries

oleaut32

SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetElemsize
VarBstrFromDate
LoadTypeLi
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect
DispCallFunc
LoadRegTypeLi
VariantCopy
VariantChangeType
SysFreeString
SysAllocString
VariantClear
VariantInit
SafeArrayCreate
SysAllocStringLen

oledlg

OleUIBusyW

msi

ord159
ord169
ord43
ord34
ord88
ord190
ord111
ord113
ord125
ord17
ord281
ord137
ord141
ord116
ord278
ord254
ord45
ord175
ord158
ord74
ord118
ord160
ord32
ord145
ord133
ord94
ord232
ord8
ord19
ord49
ord96
ord70

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

rpcrt4

RpcStringFreeW
UuidToStringW

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 749KB - Virtual size: 748KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 437KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

435635a67a5a92e244401c57abe7737f

Code Sign

2f:b9:c9:dd:5f:7c:96:24:f1:5c:83:2e:4d:73:5d:1bCertificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

3b:e4:43:21:75:20:87:67:3b:19:55:66:15:4e:39:c6:a4:46:44:34Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

gdiplus

setupxml

script

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

msi

oleacc

imm32

winmm

rpcrt4

Sections

.text Size: 2.0MB - Virtual size: 2.0MB

.rdata Size: 749KB - Virtual size: 748KB

.data Size: 44KB - Virtual size: 104KB

.pdata Size: 90KB - Virtual size: 90KB

.rsrc Size: 437KB - Virtual size: 436KB

.reloc Size: 61KB - Virtual size: 61KB

2f:b9:c9:dd:5f:7c:96:24:f1:5c:83:2e:4d:73:5d:1b
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

3b:e4:43:21:75:20:87:67:3b:19:55:66:15:4e:39:c6:a4:46:44:34
Signer

.text
Size: 2.0MB - Virtual size: 2.0MB

.rdata
Size: 749KB - Virtual size: 748KB

.data
Size: 44KB - Virtual size: 104KB

.pdata
Size: 90KB - Virtual size: 90KB

.rsrc
Size: 437KB - Virtual size: 436KB

.reloc
Size: 61KB - Virtual size: 61KB