2024-09-06_31b0f625f139b7c7b091a774fe2cb825_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-06_31b0f625f139b7c7b091a774fe2cb825_mafia
Size

3.1MB
MD5

31b0f625f139b7c7b091a774fe2cb825
SHA1

0b7b095881712d39a3d2985806231967cdc62a91
SHA256

3f60a10c29b8a46d65baef0378493813a222f36ad72a8bc1d020faaa04ab348c
SHA512

9ad2af2b0eab19494238980ec454ddbb8ff3903f8045e71c1dd4bbf3e15e7e665c52c6ceb4fd3065497b7767ace979fc477b1cbc0595f0dac70079d869515692
SSDEEP

98304:BoFrtN7cxcBhWlHok4ZfWcq/38KJABweTk2yrbmUHO4OiZrq1DfPHNADtV6v+mi:BoB7JM+fWcqheTk2Abxu4O7NADtV6v+R

Score

1^/10

Malware Config

Signatures

Files

2024-09-06_31b0f625f139b7c7b091a774fe2cb825_mafia
.exe windows:5 windows x86 arch:x86

c0ff55d01ad9c133d019012de634f829

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:33:bb:60:89:e3:2f:cd:22:4d:0e:49:de:b6:63:da
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

28/09/2018, 00:00

Not After

01/02/2020, 23:59

Subject

CN=Beijing Qihu Technology Co.\, Ltd.,OU=研发部,O=Beijing Qihu Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5b:21:3a:c4:69:7a:65:f6:b7:82:7d:9e:48:92:64:dc
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

28/09/2018, 00:00

Not After

01/02/2020, 23:59

Subject

CN=Beijing Qihu Technology Co.\, Ltd.,OU=研发部,O=Beijing Qihu Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

33:90:20:77:61:c4:26:dd:94:50:03:0d
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

14/06/2018, 10:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G3 - 003-01,O=GMO GlobalSign K.K.,C=JP

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:21:58:53:08:a2
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

18/03/2009, 10:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

43:0d:8c:83:dc:b7:f7:cb:e1:ea:0b:50:1c:ab:2b:98:7b:02:f5:7a:b6:db:ff:fb:de:af:87:64:61:0a:e4:96
Signer

Actual PE Digest

43:0d:8c:83:dc:b7:f7:cb:e1:ea:0b:50:1c:ab:2b:98:7b:02:f5:7a:b6:db:ff:fb:de:af:87:64:61:0a:e4:96

Digest Algorithm

sha256

PE Digest Matches

false

29:89:0a:73:9a:66:ef:1f:f1:38:ba:c1:bc:15:93:60:b3:17:0f:61
Signer

Actual PE Digest

29:89:0a:73:9a:66:ef:1f:f1:38:ba:c1:bc:15:93:60:b3:17:0f:61

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitThread
RaiseException
ExitProcess
HeapReAlloc
VirtualAlloc
HeapSize
GetStartupInfoW
HeapSetInformation
HeapFree
DecodePointer
EncodePointer
GetSystemInfo
VirtualQuery
RtlUnwind
HeapQueryInformation
GetSystemTimeAsFileTime
SetStdHandle
GetFileType
LCMapStringW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
IsProcessorFeaturePresent
HeapCreate
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
IsValidCodePage
GetStringTypeW
CompareStringW
GetTimeZoneInformation
WriteConsoleW
CreateFileW
FindResourceExW
GetNumberFormatA
GetWindowsDirectoryA
VirtualProtect
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
GetFileAttributesExA
SetErrorMode
SearchPathA
Sleep
GetProfileIntA
GetOEMCP
InitializeCriticalSectionAndSpinCount
GetFullPathNameA
GetVolumeInformationA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
WriteFile
ReadFile
lstrcmpiA
DeleteFileA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetCurrentDirectoryA
FileTimeToSystemTime
GetThreadLocale
GetTempFileNameA
CreateFileA
SetFilePointer
InterlockedIncrement
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
InterlockedDecrement
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GlobalSize
LocalFree
lstrlenW
MulDiv
GlobalUnlock
WaitForSingleObject
ResumeThread
SetThreadPriority
FindResourceA
FreeResource
GlobalFree
GlobalAddAtomA
GetCurrentProcessId
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GlobalDeleteAtom
GetCurrentThreadId
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetModuleFileNameA
GetLocaleInfoA
CompareStringA
InterlockedExchange
GlobalLock
lstrcmpA
GlobalAlloc
GetModuleHandleW
GetVersionExA
lstrcpyA
FreeLibrary
MultiByteToWideChar
LoadLibraryW
ActivateActCtx
DeactivateActCtx
lstrlenA
LockResource
SizeofResource
WideCharToMultiByte
LoadResource
FindResourceW
GetSystemTime
GetTempPathA
CloseHandle
GetUserDefaultUILanguage
GetModuleHandleA
GetExitCodeThread
MoveFileA
IsWow64Process
LoadLibraryA
GetLocalTime
ResetEvent
CopyFileA
RemoveDirectoryA
GetProcAddress
SetLastError
GetLastError
FindFirstFileA
FlushFileBuffers
ReleaseSemaphore
GetACP
GlobalMemoryStatus
GetFileAttributesA
GetConsoleWindow
GetCommandLineA
FormatMessageA
GetCurrentThread
GetTickCount
GetLogicalDrives
SetEvent
GetCurrentProcess
GetCPInfo
HeapAlloc
SetEnvironmentVariableA

user32

SetCapture
LoadMenuW
DeleteMenu
IntersectRect
SetClassLongA
GetAsyncKeyState
NotifyWinEvent
WindowFromPoint
CreatePopupMenu
DestroyAcceleratorTable
SetParent
IsZoomed
RealChildWindowFromPoint
IsDialogMessageA
CheckDlgButton
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
CallWindowProcA
GetMenu
SetWindowLongA
DestroyMenu
GetMenuItemInfoA
GetClassNameA
InvalidateRect
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
ReleaseCapture
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
SetMenuDefaultItem
GetNextDlgTabItem
EndDialog
GetMessageA
TranslateMessage
MoveWindow
GetWindow
GetWindowThreadProcessId
LoadCursorA
EnableWindow
DispatchMessageA
GetActiveWindow
GetKeyState
PeekMessageA
ValidateRect
SetWindowContextHelpId
MapDialogRect
SetWindowPos
RegisterWindowMessageA
DrawIconEx
RedrawWindow
IsWindowVisible
SetWindowRgn
DrawFocusRect
DrawFrameControl
DrawEdge
FillRect
OffsetRect
MessageBeep
CharUpperA
CopyAcceleratorTableA
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetRect
SetCursorPos
BringWindowToTop
LockWindowUpdate
WaitMessage
UpdateWindow
SetWindowTextA
ShowWindow
CreateWindowExA
GetWindowLongA
GetDC
GetClientRect
LoadIconA
KillTimer
GetWindowRect
SetTimer
GetSystemMetrics
AppendMenuA
LoadIconW
IsClipboardFormatAvailable
SendMessageA
DrawIcon
IsIconic
GetSystemMenu
CheckMenuItem
EnableMenuItem
GetMenuState
ModifyMenuA
GetParent
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CopyRect
SetRectEmpty
GetMonitorInfoA
SystemParametersInfoA
EnumDisplayMonitors
GetSysColor
SetLayeredWindowAttributes
LoadCursorW
MapWindowPoints
DefWindowProcA
GetClassInfoA
GetSysColorBrush
PostQuitMessage
PostMessageA
SetCursor
ShowOwnedPopups
MessageBoxA
IsWindowEnabled
GetLastActivePopup
GetMenuDefaultItem
OpenClipboard
CopyImage
SetClipboardData
DestroyIcon
UnionRect
EnableScrollBar
UpdateLayeredWindow
MonitorFromPoint
GetDesktopWindow
IsMenu
PtInRect
ClientToScreen
ScreenToClient
IsWindow
CallNextHookEx
GetCursorPos
UnhookWindowsHookEx
SetWindowsHookExA
DrawStateA
IsRectEmpty
InflateRect
CloseClipboard
EmptyClipboard
LoadImageA
LoadImageW
GetIconInfo
CopyIcon
GetDoubleClickTime
CharNextA
InvalidateRgn
GetNextDlgGroupItem
GetUpdateRect
UnregisterClassA
TranslateAcceleratorA
InsertMenuItemA
LoadAcceleratorsA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
CreateMenu
PostThreadMessageA
GetWindowRgn
DestroyCursor
HideCaret
InvertRect
SubtractRect
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
CharUpperBuffA
RegisterClipboardFormatA
FrameRect
GetDlgItem

gdi32

GetTextExtentPoint32A
CopyMetaFileA
CreateDCA
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
ExtTextOutA
GetObjectType
CreateDIBSection
CreateRoundRectRgn
OffsetRgn
GetRgnBox
SetRectRgn
GetMapMode
DPtoLP
Rectangle
SetPixel
SetDIBColorTable
RealizePalette
StretchBlt
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExA
SetPixelV
GetTextFaceA
Polygon
PatBlt
Ellipse
Polyline
GetTextColor
GetBkColor
CombineRgn
CreatePolygonRgn
CreateEllipticRgn
CreateRectRgn
CreateHatchBrush
DeleteObject
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
BitBlt
CreateRectRgnIndirect
CreateCompatibleBitmap
GetObjectA
CreateFontIndirectA
CreatePatternBrush
CreateSolidBrush
CreatePen
GetStockObject
CreateDIBitmap
CreateBitmap
CreateCompatibleDC
SelectPalette
GetDeviceCaps
GetPixel

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

advapi32

RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey
RegEnumValueA

shell32

DragFinish
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
DragQueryFileA
SHGetDesktopFolder
SHAppBarMessage
SHGetFileInfoA

ole32

CoRevokeClassObject
CoRegisterMessageFilter
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoInitializeEx
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CreateStreamOnHGlobal
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SystemTimeToVariantTime
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringLen
SysAllocString
OleCreateFontIndirect
VarBstrFromDate

msimg32

TransparentBlt
AlphaBlend

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA

oledlg

ord8

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDrawImageI

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 274KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0ff55d01ad9c133d019012de634f829

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14Certificate

Extended Key Usages

Key Usages

47:33:bb:60:89:e3:2f:cd:22:4d:0e:49:de:b6:63:daCertificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

5b:21:3a:c4:69:7a:65:f6:b7:82:7d:9e:48:92:64:dcCertificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

33:90:20:77:61:c4:26:dd:94:50:03:0dCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:31:89:c6:50:04Certificate

Key Usages

04:00:00:00:00:01:21:58:53:08:a2Certificate

Key Usages

43:0d:8c:83:dc:b7:f7:cb:e1:ea:0b:50:1c:ab:2b:98:7b:02:f5:7a:b6:db:ff:fb:de:af:87:64:61:0a:e4:96Signer

29:89:0a:73:9a:66:ef:1f:f1:38:ba:c1:bc:15:93:60:b3:17:0f:61Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

msimg32

comctl32

shlwapi

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 274KB - Virtual size: 273KB

.data Size: 25KB - Virtual size: 54KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 170KB - Virtual size: 169KB

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

47:33:bb:60:89:e3:2f:cd:22:4d:0e:49:de:b6:63:da
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

5b:21:3a:c4:69:7a:65:f6:b7:82:7d:9e:48:92:64:dc
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

33:90:20:77:61:c4:26:dd:94:50:03:0d
Certificate

04:00:00:00:00:01:31:89:c6:50:04
Certificate

04:00:00:00:00:01:21:58:53:08:a2
Certificate

43:0d:8c:83:dc:b7:f7:cb:e1:ea:0b:50:1c:ab:2b:98:7b:02:f5:7a:b6:db:ff:fb:de:af:87:64:61:0a:e4:96
Signer

29:89:0a:73:9a:66:ef:1f:f1:38:ba:c1:bc:15:93:60:b3:17:0f:61
Signer

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 274KB - Virtual size: 273KB

.data
Size: 25KB - Virtual size: 54KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 170KB - Virtual size: 169KB