61f84f582a468a78ef21071fdbf8581f0afd47b25e0cb1dfba422a3ce819d604

Sharing

Copy URL Twitter E-mail

General

Target

61f84f582a468a78ef21071fdbf8581f0afd47b25e0cb1dfba422a3ce819d604
Size

1.5MB
MD5

cc323fef3ef0405ab7179bc2f1430a05
SHA1

66c4654e1e6c550e1f7b71bc1bfff474dadd61c4
SHA256

61f84f582a468a78ef21071fdbf8581f0afd47b25e0cb1dfba422a3ce819d604
SHA512

ccaf87cabee812e569fd21b96a8dd6948a1d4bbde44675c73456eefa629dbd137d26a91545113f78f63f795ae988162e812218205ed7cd94243320f2b874ffbe
SSDEEP

24576:1h4psokAho2tQCKvgYhXfvvnls4NPcw/wjAUhMsK2vAg5PB6Qp+:spgAO2tpWLHO0rwUUOWvAgTp+

Score

1^/10

Malware Config

Signatures

Files

61f84f582a468a78ef21071fdbf8581f0afd47b25e0cb1dfba422a3ce819d604
.exe windows:5 windows x86 arch:x86

e2f60046eef680ebe2b0a24382e26e8b

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:96:f3:9e:26:77:49:1e:6b:fe:51:e9:b8:a5:03:53
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

29/02/2024, 00:00

Not After

28/02/2025, 23:59

Subject

CN=成都有望科技有限公司,O=成都有望科技有限公司,L=成都市,ST=四川省,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:96:f3:9e:26:77:49:1e:6b:fe:51:e9:b8:a5:03:53
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

29/02/2024, 00:00

Not After

28/02/2025, 23:59

Subject

CN=成都有望科技有限公司,O=成都有望科技有限公司,L=成都市,ST=四川省,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:2b:d5:f7:9b:7a:f6:46:a1:23:59:ad:ef:49:e9:96:a5:e9:f4:6a:5b:a7:b2:45:91:31:94:0f:3a:b2:98:54
Signer

Actual PE Digest

2e:2b:d5:f7:9b:7a:f6:46:a1:23:59:ad:ef:49:e9:96:a5:e9:f4:6a:5b:a7:b2:45:91:31:94:0f:3a:b2:98:54

Digest Algorithm

sha256

PE Digest Matches

false

98:f4:b0:79:dd:f3:76:4d:e6:16:98:d4:55:39:aa:be:9d:95:29:58
Signer

Actual PE Digest

98:f4:b0:79:dd:f3:76:4d:e6:16:98:d4:55:39:aa:be:9d:95:29:58

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\build\EchoFind\EchoFindSearch\Release\EchoFindSearch.pdb

Imports

kernel32

lstrcpynW
CopyFileW
DeleteAtom
FindAtomW
AddAtomW
GetStartupInfoW
CreateProcessW
lstrlenA
VirtualProtect
DeleteFileW
FindNextFileW
GetFullPathNameW
GetDriveTypeW
lstrcmpW
lstrlenW
ReadFile
GetFileSize
CreateFileW
FindClose
FileTimeToLocalFileTime
FindFirstFileW
CreateMutexW
Sleep
DecodePointer
SetErrorMode
InterlockedIncrement
InterlockedDecrement
LoadLibraryExW
WideCharToMultiByte
SystemTimeToTzSpecificLocalTime
GetCommandLineW
GetTickCount
OpenProcess
FileTimeToSystemTime
lstrcmpiW
ResetEvent
WaitForMultipleObjects
GetCurrentProcess
SetLastError
RaiseException
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
GetLastError
WaitForSingleObjectEx
SetWaitableTimer
CreateWaitableTimerW
WaitForSingleObject
SetEvent
CreateEventW
CloseHandle
CancelWaitableTimer
ResumeThread
LocalFileTimeToFileTime
SystemTimeToFileTime
GetPrivateProfileStringW
GetLocalTime
WritePrivateProfileStringW
GetPrivateProfileIntW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
DeleteCriticalSection
IsValidCodePage
FindFirstFileExW
WriteConsoleW
ReadConsoleW
SetStdHandle
MultiByteToWideChar
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
GetModuleHandleW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetStdHandle
GetTimeZoneInformation
GetConsoleMode
IsBadReadPtr
SetFilePointerEx
GetFileType
ExitThread
RtlUnwind
LocalFree
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
ReleaseSemaphore
GetModuleHandleA
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
CreateThread
SignalObjectAndWait
CreateTimerQueue
FlushFileBuffers
TerminateProcess
UnhandledExceptionFilter
FindFirstChangeNotificationW
MoveFileW
lstrcmpA
DeviceIoControl
GetVersionExW
LoadLibraryW
GetProcAddress
FreeLibrary
GetSystemWindowsDirectoryW
GetModuleHandleExW
GetThreadIOPendingFlag
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
SetFilePointer
SetEndOfFile
GetTempFileNameW
GetTempPathW
WriteFile
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersion
OutputDebugStringA
InterlockedCompareExchange
InterlockedExchange
ExitProcess
FreeResource
MulDiv
GetACP
LoadLibraryExA
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
OutputDebugStringW
IsDebuggerPresent
GetCPInfo
GetLocaleInfoW
LCMapStringW
CompareStringW
QueryPerformanceFrequency
QueryPerformanceCounter
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
GetExitCodeThread
GetCurrentThread
SwitchToThread
DuplicateHandle
TryEnterCriticalSection
VirtualFree
VirtualAlloc
GetNativeSystemInfo
GetStringTypeW
SetUnhandledExceptionFilter
GetConsoleCP
GetCurrentProcessId
GetOEMCP
GetModuleFileNameW

user32

DispatchMessageW
TranslateMessage
GetMessageW
CreateWindowExW
RegisterWindowMessageW
GetCursorPos
SetForegroundWindow
EnumThreadWindows
MsgWaitForMultipleObjectsEx
GetWindowDC
FindWindowExW
FillRect
InvalidateRgn
CreateAcceleratorTableW
GetWindowTextLengthW
GetWindowTextW
RemovePropW
LoadCursorW
GetClassInfoExW
CharNextW
PtInRect
SystemParametersInfoW
GetSystemMetrics
PostQuitMessage
IsIconic
IsWindowVisible
GetWindowRect
GetForegroundWindow
GetShellWindow
GetWindowInfo
GetDesktopWindow
GetWindow
EnumDisplaySettingsW
GetMonitorInfoW
MonitorFromPoint
GetWindowThreadProcessId
GetAncestor
WindowFromPoint
RegisterClassExW
UnregisterClassW
DestroyWindow
IsWindow
SetTimer
KillTimer
DefWindowProcW
ShowWindow
InvalidateRect
SetWindowPos
SendMessageW
PostMessageW
GetIconInfo
SetRect
DrawTextW
CharPrevW
DrawIconEx
GetSysColor
ClientToScreen
MonitorFromWindow
MessageBoxW
SetWindowRgn
PrivateExtractIconsW
LoadImageW
DestroyIcon
FindWindowW
CallWindowProcW
GetWindowLongW
SendMessageTimeoutW
SetWindowLongW
PeekMessageW
GetPropW
ReleaseDC
GetDC
LoadIconW
RedrawWindow
CopyRect
ScreenToClient
GetCaretPos
SetFocus
BringWindowToTop
AttachThreadInput
ShowCaret
HideCaret
SetWindowTextW
MoveWindow
SetCursor
IntersectRect
IsRectEmpty
wvsprintfW
InflateRect
UnionRect
OffsetRect
IsChild
UpdateLayeredWindow
IsZoomed
GetFocus
GetKeyState
SetCapture
ReleaseCapture
BeginPaint
EndPaint
GetUpdateRect
GetClientRect
CreateCaret
GetCaretBlinkTime
SetCaretPos
MapWindowPoints
GetParent
GetClassNameW
wsprintfW
RegisterClassW
EnableWindow
SetPropW

gdi32

CreatePen
GetStockObject
Rectangle
RestoreDC
BitBlt
GetTextMetricsW
SetWindowOrgEx
CreateRoundRectRgn
CombineRgn
CreateRectRgnIndirect
GetCharABCWidthsW
GetClipBox
SelectClipRgn
ExtSelectClipRgn
SetBkColor
SetBkMode
StretchBlt
SetStretchBltMode
SetTextColor
CreateDIBSection
SetDIBColorTable
TextOutW
ExtTextOutW
CreateSolidBrush
CreateDCW
GetDIBits
SetDIBitsToDevice
GetObjectW
SelectObject
GetTextExtentPoint32W
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
CreateFontIndirectW
SaveDC

advapi32

OpenProcessToken
GetTokenInformation
RegDeleteValueW
RegCreateKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
GetUserNameW
RegCreateKeyW

shell32

ShellExecuteExW
SHCreateDirectoryExW
ShellExecuteW
ExtractIconW
SHGetDesktopFolder
SHGetSpecialFolderPathW
Shell_NotifyIconW
ord165
SHGetFileInfoW

ole32

CreateStreamOnHGlobal
OleLockRunning
CLSIDFromProgID
CLSIDFromString
CoInitializeSecurity
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoInitializeEx
OleUninitialize
CoUninitialize
CoInitialize
OleInitialize
CoCreateInstance
CoCreateGuid

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
VarUI4FromStr
SysStringByteLen
SysAllocStringByteLen
VarBstrCmp
SysFreeString
SysAllocString
SysStringLen
SafeArrayPutElement
SafeArrayCreate
VariantClear
VariantInit

shlwapi

StrTrimA
ord214
ord213
StrToInt64ExW
StrStrIA
PathAddBackslashW
StrToIntW
wnsprintfW
StrStrIW
PathAppendW
SHDeleteValueW
SHGetValueW
PathIsDirectoryW
PathFindExtensionW
StrCmpNIW
StrRStrIW
StrStrW
PathFileExistsW
PathFindFileNameW
ord176
StrCmpIW
PathRemoveFileSpecW
PathCombineW
SHSetValueW

comctl32

InitCommonControlsEx
_TrackMouseEvent
ord17

psapi

GetModuleFileNameExW

gdiplus

GdipSetPenMode
GdipSetPenDashStyle
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetSmoothingMode
GdipDrawLineI
GdipDrawRectangleI
GdipDrawPath
GdipFillEllipseI
ord1
GdipDrawEllipseI
GdipClosePathFigure
GdipCreateTexture
GdipCloneImage
GdipDisposeImage
GdipCloneBrush
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipCreatePen1
GdipCloneBitmapAreaI
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipSetInterpolationMode
GdipGraphicsClear
GdipFillPath
GdipDrawImagePointsI
GdipDrawImageRectRectI
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipLoadImageFromStreamICM
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipCreateSolidFill
GdipAddPathArcI
GdipAddPathLineI
GdipDeletePath
GdipCreatePath
GdipFree
GdipAlloc
GdiplusStartup
GdipGetPropertyItem
GdipDrawImageRectI
GdipDeletePen
GdipCreateHBITMAPFromBitmap
GdipDeleteBrush
GdipSaveImageToFile

imm32

ImmSetCompositionWindow
ImmGetContext

secur32

GetUserNameExW

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

wininet

InternetCrackUrlW
InternetGetCookieExW

iphlpapi

GetAdaptersInfo

winhttp

WinHttpSetTimeouts
WinHttpSetOption
WinHttpWriteData
WinHttpReadData
WinHttpConnect
WinHttpCrackUrl
WinHttpOpen
WinHttpCloseHandle
WinHttpOpenRequest
WinHttpAddRequestHeaders
WinHttpSendRequest
WinHttpSetCredentials
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpSetStatusCallback

msimg32

GradientFill
AlphaBlend

Sections

.text
Size: 996KB - Virtual size: 995KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 25KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 64KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e2f60046eef680ebe2b0a24382e26e8b

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:96:f3:9e:26:77:49:1e:6b:fe:51:e9:b8:a5:03:53Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:96:f3:9e:26:77:49:1e:6b:fe:51:e9:b8:a5:03:53Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

2e:2b:d5:f7:9b:7a:f6:46:a1:23:59:ad:ef:49:e9:96:a5:e9:f4:6a:5b:a7:b2:45:91:31:94:0f:3a:b2:98:54Signer

98:f4:b0:79:dd:f3:76:4d:e6:16:98:d4:55:39:aa:be:9d:95:29:58Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

psapi

gdiplus

imm32

secur32

version

wininet

iphlpapi

winhttp

msimg32

Sections

.text Size: 996KB - Virtual size: 995KB

.rdata Size: 240KB - Virtual size: 239KB

.data Size: 25KB - Virtual size: 38KB

.rsrc Size: 210KB - Virtual size: 210KB

.reloc Size: 64KB - Virtual size: 68KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:96:f3:9e:26:77:49:1e:6b:fe:51:e9:b8:a5:03:53
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:96:f3:9e:26:77:49:1e:6b:fe:51:e9:b8:a5:03:53
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

2e:2b:d5:f7:9b:7a:f6:46:a1:23:59:ad:ef:49:e9:96:a5:e9:f4:6a:5b:a7:b2:45:91:31:94:0f:3a:b2:98:54
Signer

98:f4:b0:79:dd:f3:76:4d:e6:16:98:d4:55:39:aa:be:9d:95:29:58
Signer

.text
Size: 996KB - Virtual size: 995KB

.rdata
Size: 240KB - Virtual size: 239KB

.data
Size: 25KB - Virtual size: 38KB

.rsrc
Size: 210KB - Virtual size: 210KB

.reloc
Size: 64KB - Virtual size: 68KB