2024-09-25_a44df03d7b722d2fbfa76a8575b237d0_avoslocker_poet-rat

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-25_a44df03d7b722d2fbfa76a8575b237d0_avoslocker_poet-rat
Size

3.4MB
MD5

a44df03d7b722d2fbfa76a8575b237d0
SHA1

912a877159a5acea004e7777e6a9c056bdaab8ee
SHA256

07a6d8341569bd3646bae07dca48ca7a21b6668bf7bb5352b18a57f43b084c93
SHA512

8e9925335539ea8e5ac15fbc976b094ec05a09d6cb2fe8f720db7429c850f78271236b1779ee58256cc89b4296be5ae65ba422d085573cee79ec50cdb3b282eb
SSDEEP

98304:9eJCahIRdZ1rwkRcV6ZWXxXE99w0HYtYLadvPHL5zzOV:96GrNeVNq9TYtYLad1vOV

Score

1^/10

Malware Config

Signatures

Files

2024-09-25_a44df03d7b722d2fbfa76a8575b237d0_avoslocker_poet-rat
.exe windows:6 windows x86 arch:x86

e3b366503cf3d7179ffe768463802e1a

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:bc:4a:41:3d:9b:28:05:16:04:b4:cc:ec:45:20:a3
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/01/2021, 00:00

Not After

08/02/2022, 23:59

Subject

CN=Max Co.\,LTD.,OU=Office Equipments Domestic Sales Division,O=Max Co.\,LTD.,L=CHUO-KU,ST=TOKYO,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

28:22:fc:8f:af:dc:2a:92:a2:2d:b7:de:82:e6:a3:03:17:17:22:6e
Signer

Actual PE Digest

28:22:fc:8f:af:dc:2a:92:a2:2d:b7:de:82:e6:a3:03:17:17:22:6e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Project_Hachisu_Win10\LC\BepopEx_next\BepopScan\Release\BepopScanEx.pdb

Imports

besymbolrw

_BePopSymbolRead@12
pBepopScanFilename
_BePopSymbolWriteExToHardDisk@8
_BePopGetErrMsg@4
_BePopGetErrCode@0
_BePopSymbolDataFree@4
_BePopSymbolDataInit@4
_BePopSymbolSelect@16

kernel32

FindNextFileW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
GetTimeFormatW
GetDateFormatW
EnumSystemLocalesW
IsValidLocale
GetOEMCP
GetACP
IsValidCodePage
GetStringTypeW
GetCPInfo
FreeEnvironmentStringsW
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
OutputDebugStringW
GetEnvironmentStringsW
SetEnvironmentVariableW
SetConsoleCtrlHandler
ExitProcess
LoadResource
LockResource
SizeofResource
FindResourceW
GlobalAlloc
GlobalUnlock
GlobalLock
GetLastError
ReleaseMutex
CreateMutexW
GetVersionExW
FreeLibrary
GetModuleFileNameW
GetProcAddress
LoadLibraryW
GetDiskFreeSpaceW
lstrcpyW
lstrcatW
CreateFileW
WriteFile
CloseHandle
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
WideCharToMultiByte
GetCommandLineW
SetLastError
LocalFree
FormatMessageW
DecodePointer
RaiseException
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionEx
DeleteCriticalSection
GlobalReAlloc
GlobalHandle
GlobalFree
GlobalSize
MulDiv
CopyFileW
MultiByteToWideChar
OutputDebugStringA
EncodePointer
GetCurrentThreadId
GetSystemDirectoryW
GetModuleHandleA
GetModuleHandleW
LoadLibraryExW
LoadLibraryA
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
CompareStringW
SetEvent
WaitForSingleObject
CreateEventW
SetThreadPriority
SuspendThread
ResumeThread
GetCurrentThread
lstrcmpA
CompareStringA
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetCurrentProcessId
GetTickCount
WriteConsoleW
GetFileAttributesW
GetFileTime
GetFullPathNameW
GetTempFileNameW
SetFileTime
ReplaceFileW
SystemTimeToFileTime
GetUserDefaultLCID
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GlobalGetAtomNameW
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LocalAlloc
LocalReAlloc
GetAtomNameW
FileTimeToSystemTime
GetThreadLocale
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetCurrentDirectoryW
DeleteFileW
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
GetShortPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
MoveFileW
GetStringTypeExW
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
LocalFileTimeToFileTime
SetFileAttributesW
SystemTimeToTzSpecificLocalTime
FindResourceExW
GetWindowsDirectoryW
SetErrorMode
VerSetConditionMask
VerifyVersionInfoW
GetProfileIntW
GetTempPathW
SearchPathW
Sleep
LocalLock
LocalUnlock
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW

user32

CharNextW
PostThreadMessageW
CharUpperW
GetDialogBaseUnits
GetAsyncKeyState
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
IsZoomed
SetParent
DeleteMenu
WindowFromPoint
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
LoadImageW
DestroyIcon
IntersectRect
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
MapVirtualKeyW
GetKeyNameTextW
SendDlgItemMessageA
IsClipboardFormatAvailable
SetWindowRgn
DrawIcon
KillTimer
SetTimer
DestroyCursor
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
GetSystemMetrics
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
MapDialogRect
SetWindowContextHelpId
GetWindowThreadProcessId
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageW
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
CopyAcceleratorTableW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassLongW
SetWindowLongW
GetWindowLongW
EqualRect
MapWindowPoints
ScreenToClient
GetDCEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
LockWindowUpdate
GetMenuDefaultItem
WaitMessage
EnableMenuItem
GetSubMenu
InvalidateRect
InvalidateRgn
GetClientRect
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
DrawFocusRect
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
PostMessageW
MessageBoxW
ShowWindow
IsIconic
OpenClipboard
GetNextDlgGroupItem
MessageBeep
GetTabbedTextExtentW
InSendMessage
WindowFromDC
CreateMenu
SetWindowsHookExW
TrackMouseEvent
SetCursor
ClientToScreen
GetSysColor
FillRect
CopyRect
InflateRect
OffsetRect
IsRectEmpty
GetDC
ReleaseDC
SetRectEmpty
PtInRect
IsWindow
DrawMenuBar
GetSystemMenu
GetWindowTextW
GetClassNameW
LoadIconW
UnregisterClassW
GetMenuStringW
GetMenuState
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
UnhookWindowsHookEx
GetFocus
CheckMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetParent
LoadBitmapW
RegisterWindowMessageW
DispatchMessageW
PeekMessageW
EnableWindow
UpdateWindow
SetForegroundWindow
FindWindowW
LoadCursorW
SendMessageW
GetWindowRect
SetRect
UnionRect
RegisterClipboardFormatW
GetKeyState
SetCapture
LoadMenuW
GetWindowRgn
MonitorFromRect
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
EnumChildWindows
GetUpdateRect
CharUpperBuffW
ModifyMenuW
GetDoubleClickTime
SetMenuDefaultItem
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
SendNotifyMessageW
FrameRect
CopyIcon
SetCursorPos
DrawFrameControl
DrawEdge
SetClassLongW
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
AdjustWindowRectEx
ReleaseCapture

gdi32

SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
GetCurrentObject
OffsetRgn
CreateRoundRectRgn
Polygon
SetDIBColorTable
SetPixel
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
DeleteMetaFile
CreateMetaFileW
CloseMetaFile
EnumFontFamiliesExW
GetTextFaceW
GetWindowOrgEx
GetTextAlign
GetStretchBltMode
GetPolyFillMode
GetNearestColor
GetBkMode
GetROP2
SetRectRgn
GetMapMode
CombineRgn
GetTextColor
StretchDIBits
GetCharWidthW
CreateFontW
GetTextMetricsW
GetBkColor
CreateRectRgnIndirect
LPtoDP
CreateDIBSection
CreateEllipticRgn
GetViewportOrgEx
DPtoLP
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
GetTextExtentPoint32W
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutW
TextOutW
MoveToEx
ExtCreatePen
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
StartDocW
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
SetTextJustification
SetTextAlign
SetTextCharacterExtra
SetStretchBltMode
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetGraphicsMode
SetMapperFlags
SetBkMode
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
DeleteDC
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
CreateDIBPatternBrushPt
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCW
CopyMetaFileW
DeleteObject
CreateFontIndirectW
Polyline
StrokePath
StrokeAndFillPath
SelectObject
PatBlt
GetCurrentPositionEx
GetBitmapBits
CreateSolidBrush
GetObjectW
GetDIBits
CreatePolygonRgn
StretchBlt
Rectangle
Ellipse
CreatePen
CreateEllipticRgnIndirect
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
PathToRegion
EndPath
BeginPath
GetRgnBox
CreateBitmapIndirect

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter
GetJobW

advapi32

SetFileSecurityW
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegSetValueW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegQueryValueW
RegEnumKeyExW
RegEnumValueW
RegCloseKey
GetFileSecurityW

shell32

SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
SHGetMalloc
SHAddToRecentDocs
DragFinish
DragQueryFileW
ShellExecuteW
ShellExecuteExW
ExtractIconW
SHBrowseForFolderW

shlwapi

PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW
StrFormatKBSizeW

uxtheme

GetThemeSysColor
GetWindowTheme
GetCurrentThemeName
GetThemeColor
DrawThemeText
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeParentBackground

ole32

CoDisconnectObject
StringFromGUID2
DoDragDrop
OleQueryLinkFromData
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleRegGetMiscStatus
OleRegEnumVerbs
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleRun
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
WriteClassStm
CreateDataAdviseHolder
CreateGenericComposite
CreateItemMoniker
OleSaveToStream
CreateOleAdviseHolder
CoLockObjectExternal
CoGetClassObject
CoInitializeEx
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
OleGetClipboard
PropVariantCopy
CLSIDFromProgID
CLSIDFromString
GetRunningObjectTable
OleIsRunning
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoGetMalloc
GetHGlobalFromILockBytes
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSetContainedObject
OleLockRunning
OleGetIconOfClass
OleQueryCreateFromData
RevokeDragDrop
RegisterDragDrop
OleSetMenuDescriptor

oleaut32

LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SysReAllocStringLen
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SysAllocStringByteLen
SysAllocString
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VariantCopy
VarDateFromStr
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
OleCreateFontIndirect
SysStringByteLen
VariantChangeType
VariantClear
VariantInit
SafeArrayGetLBound
SysAllocStringLen
SafeArrayGetUBound
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 590KB - Virtual size: 589KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3b366503cf3d7179ffe768463802e1a

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

07:bc:4a:41:3d:9b:28:05:16:04:b4:cc:ec:45:20:a3Certificate

Extended Key Usages

Key Usages

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

28:22:fc:8f:af:dc:2a:92:a2:2d:b7:de:82:e6:a3:03:17:17:22:6eSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

besymbolrw

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 590KB - Virtual size: 589KB

.data Size: 33KB - Virtual size: 57KB

.rsrc Size: 80KB - Virtual size: 80KB

.reloc Size: 208KB - Virtual size: 208KB

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

07:bc:4a:41:3d:9b:28:05:16:04:b4:cc:ec:45:20:a3
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

28:22:fc:8f:af:dc:2a:92:a2:2d:b7:de:82:e6:a3:03:17:17:22:6e
Signer

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 590KB - Virtual size: 589KB

.data
Size: 33KB - Virtual size: 57KB

.rsrc
Size: 80KB - Virtual size: 80KB

.reloc
Size: 208KB - Virtual size: 208KB