fc549799de9de687305d8ab38d160542_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fc549799de9de687305d8ab38d160542_JaffaCakes118
Size

3.5MB
MD5

fc549799de9de687305d8ab38d160542
SHA1

9e88e7e69702e3bcc1c4408075e19befb643ad58
SHA256

12c1b6e222274160b17bc902668b62921059d35f4ca5fb5c787508fcbb5d04b4
SHA512

524c41f8eac62d7d911720c463fe680c0cc1c5fb68ce77ac72e6ae4bbea24f172308423b4f2a1f5b0ae3510c9bd5d0c4dc85bc728177130382108f7242a9d807
SSDEEP

98304:50qq2Sb7DihxGF5i0U0HHA6v0sMN8PuM44Lf2fq:FqHau5iOAw0sMN8PuM44qfq

Score

1^/10

Malware Config

Signatures

Files

fc549799de9de687305d8ab38d160542_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fbe287324cb8930327db8822c381f0bb

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

2d:7a:be:43:11:df:97:5a:f6:92:1f:74:f9:66:d8:c4
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

20/12/2016, 00:00

Not After

20/12/2017, 23:59

Subject

CN=LiveSoftAction,O=LiveSoftAction,POSTALCODE=010458,STREET=District 1+STREET=Dionisie Lupu Street+STREET=64-66\, Mezzanine,L=Bucharest,ST=ROMANIA,C=RO

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dd:62:42:6b:d5:7c:70:c1:0a:40:64:fa:45:02:b0:73:c4:bf:ce:b6
Signer

Actual PE Digest

dd:62:42:6b:d5:7c:70:c1:0a:40:64:fa:45:02:b0:73:c4:bf:ce:b6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
VirtualQuery
VirtualAlloc
FreeLibraryAndExitThread
ExitThread
GetCommandLineA
GetModuleHandleExW
ExitProcess
RtlUnwind
InterlockedExchangeAdd
GetComputerNameW
TryEnterCriticalSection
AreFileApisANSI
GetTimeZoneInformation
InterlockedCompareExchange
GetFullPathNameA
UnlockFileEx
HeapValidate
GetTempPathA
GetFileAttributesA
FlushViewOfFile
GetVersionExA
GetSystemInfo
HeapCompact
CreateFileMappingA
LockFileEx
GetSystemTime
FormatMessageA
CreateSemaphoreA
SignalObjectAndWait
GetModuleFileNameA
Thread32Next
Thread32First
GetProcessShutdownParameters
SetProcessShutdownParameters
WaitForMultipleObjectsEx
ProcessIdToSessionId
GetSystemPowerStatus
SetProcessWorkingSetSize
GetProcessWorkingSetSize
GlobalMemoryStatusEx
GetLocalTime
GetExitCodeProcess
GetStringTypeW
LCMapStringW
GetCPInfo
OutputDebugStringW
EnumSystemLocalesW
IsValidLocale
GetConsoleCP
GetConsoleMode
GetDiskFreeSpaceA
SetFilePointerEx
ReadConsoleW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
QueryPerformanceCounter
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetUserDefaultLCID
GetDiskFreeSpaceW
SearchPathW
GetProfileIntW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
GetFileTime
GetFileSizeEx
GetFileAttributesW
FileTimeToLocalFileTime
GetWindowsDirectoryW
VirtualProtect
MoveFileW
lstrcmpiW
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
GlobalFlags
GetThreadLocale
SystemTimeToFileTime
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetErrorMode
GlobalFindAtomW
LoadLibraryA
GetSystemDirectoryW
EncodePointer
lstrcpyW
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
SetThreadPriority
GetCurrentThreadId
SetEvent
LoadLibraryW
GetModuleHandleA
FreeResource
FormatMessageW
MulDiv
GlobalUnlock
GlobalLock
GlobalSize
lstrcpynW
GetVersionExW
GetVolumeInformationA
FindNextFileW
FindFirstFileW
DeleteFileA
CreateFileA
OutputDebugStringA
FindClose
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetSystemTimeAsFileTime
SetFilePointer
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
RaiseException
DecodePointer
LockResource
OpenSemaphoreW
ReleaseSemaphore
ResumeThread
GetCurrentThread
LocalFree
GetCommandLineW
CreateMutexW
CreateProcessW
WaitForSingleObject
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
DuplicateHandle
GetCurrentProcess
WTSGetActiveConsoleSessionId
SetLastError
GetModuleHandleW
OpenProcess
GetProcAddress
ReadFile
GetFileSize
GlobalFree
GlobalAlloc
GetVersion
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
ExpandEnvironmentStringsW
FindResourceExW
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
CreateEventW
GetExitCodeThread
TerminateThread
CreateThread
GetCurrentProcessId
WideCharToMultiByte
MultiByteToWideChar
CopyFileW
CreateFileW
CreateDirectoryW
GetModuleFileNameW
OpenMutexW
WriteFile
Sleep
MoveFileExW
DeleteFileW
GetFileAttributesExW
GetTempPathW
FindResourceW
lstrlenW
GetTickCount
CloseHandle
SizeofResource
LoadResource
GetLastError
HeapCreate

user32

SystemParametersInfoW
CopyImage
OffsetRect
SetRectEmpty
SendDlgItemMessageA
FillRect
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DeleteMenu
SetTimer
KillTimer
InvalidateRect
CharUpperW
WaitMessage
SetCapture
ReleaseCapture
DrawTextW
RealChildWindowFromPoint
ClientToScreen
GetSysColorBrush
ReleaseDC
GetDC
GetSystemMetrics
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
WindowFromPoint
CharNextW
CopyAcceleratorTableW
InvalidateRgn
SetRect
IntersectRect
IsRectEmpty
SetWindowContextHelpId
MapDialogRect
DestroyMenu
GetMenuItemInfoW
InflateRect
GetAsyncKeyState
GetMenuDefaultItem
TrackMouseEvent
LoadImageW
BringWindowToTop
LoadAcceleratorsW
TranslateAcceleratorW
LoadMenuW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatW
GetNextDlgGroupItem
MessageBeep
DrawFocusRect
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
MapVirtualKeyW
GetKeyNameTextW
CharLowerW
wsprintfW
EnableWindow
SetForegroundWindow
GetClientRect
GetTopWindow
MonitorFromWindow
GetMonitorInfoW
GetMessageW
TranslateMessage
DispatchMessageW
IsDialogMessageW
EnumWindows
FlashWindow
GetGuiResources
GetLastInputInfo
GetUserObjectInformationW
GetProcessWindowStation
CloseDesktop
OpenInputDesktop
DefWindowProcW
PostQuitMessage
RegisterClassExW
CreateWindowExW
CreatePopupMenu
InsertMenuW
TrackPopupMenu
GetCursorPos
LoadCursorW
LoadIconW
DestroyIcon
LoadStringW
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
AppendMenuW
RemoveMenu
SendMessageW
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetParent
LoadBitmapW
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
PeekMessageW
IsWindowVisible
GetKeyState
ValidateRect
SetWindowsHookExW
CallNextHookEx
PostMessageW
ShowOwnedPopups
SetCursor
MessageBoxW
GetWindowThreadProcessId
GetLastActivePopup
RegisterWindowMessageW
UnhookWindowsHookEx
GetMessagePos
GetMessageTime
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
IsMenu
IsChild
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
IsZoomed
GetSystemMenu
SetCursorPos
CopyIcon
FrameRect
DrawIcon
UnionRect
PostThreadMessageW
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuW
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
EndDeferWindowPos
IsIconic
GetDlgCtrlID
SetFocus
GetCapture
GetMenu
SetMenu
UpdateWindow
GetForegroundWindow
BeginPaint
EndPaint
RedrawWindow
ScrollWindow
SetScrollPos
CreateMenu
GetWindowRgn
DestroyCursor

gdi32

MoveToEx
TextOutW
ExtTextOutW
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
GetTextExtentPoint32W
GetTextMetricsW
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
CombineRgn
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreateCompatibleBitmap
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
CopyMetaFileW
CreateDCW
GetDeviceCaps
CreateBitmap
SetBkColor
SetTextColor
GetObjectW
DeleteObject
DeleteDC
BitBlt
CreateCompatibleDC
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
SetPixel
SetViewportExtEx
RectVisible

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegQueryValueW
RegEnumKeyW
RegOpenKeyW
RegOpenKeyA
RegEnumValueW
RegQueryValueExW
RegCreateKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegFlushKey
RegRestoreKeyW
RegSaveKeyW
CryptAcquireContextW
CryptSetHashParam
CryptGetHashParam
CryptCreateHash
CryptHashData
CryptDestroyHash
LookupAccountNameW
StartServiceW
SetServiceStatus
RegisterServiceCtrlHandlerW
OpenServiceW
OpenSCManagerW
DeleteService
CreateServiceW
ControlService
CloseServiceHandle
RegCreateKeyW
CreateProcessAsUserW
StartServiceCtrlDispatcherW
OpenProcessToken
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
LookupAccountSidW
GetTokenInformation
CryptDecrypt
CryptEncrypt
CryptImportKey
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextA
ConvertSidToStringSidW
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCloseKey

shell32

SHGetFileInfoW
SHGetSpecialFolderPathW
SHFileOperationW
ShellExecuteW
SHGetFolderPathW
Shell_NotifyIconW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
SHAppBarMessage
DragFinish
DragQueryFileW

shlwapi

PathFindFileNameW
PathStripPathW
PathAppendW
PathFileExistsW
PathRemoveFileSpecW
PathCombineW
UrlEscapeW
SHDeleteKeyW
SHCopyKeyW
PathFindExtensionW
PathFileExistsA
SHQueryValueExW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW

uxtheme

DrawThemeParentBackground
GetThemeSysColor
GetWindowTheme
IsAppThemed
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText

ole32

OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CLSIDFromProgID
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromString
CoDisconnectObject
StringFromGUID2
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitializeEx
CoUninitialize
CoCreateInstance
CoInitialize
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor

oleaut32

OleCreateFontIndirect
VarBstrFromDate
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetElemsize
SafeArrayDestroy
SafeArrayCreate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
DispCallFunc
LoadRegTypeLi
VariantChangeType
VariantCopy
SysAllocStringLen
VariantClear
VariantInit
SysFreeString
SysAllocString

oledlg

OleUIBusyW

urlmon

URLDownloadToFileW

wtsapi32

WTSQuerySessionInformationW
WTSFreeMemory
WTSQueryUserToken
WTSEnumerateSessionsW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

winhttp

WinHttpReceiveResponse
WinHttpOpen
WinHttpCloseHandle
WinHttpConnect
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpOpenRequest
WinHttpSendRequest

userenv

DestroyEnvironmentBlock
CreateEnvironmentBlock

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdiplusStartup
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipFree
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipAlloc
GdiplusShutdown

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

rpcrt4

UuidCreate

iphlpapi

GetAdaptersAddresses

psapi

GetProcessMemoryInfo

ws2_32

WSAGetLastError
setsockopt
WSAStartup
WSACleanup
listen
inet_addr
closesocket
bind
htons
WSAAccept
WSARecv
WSASend
WSASocketW

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 766KB - Virtual size: 766KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 159KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbe287324cb8930327db8822c381f0bb

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

2d:7a:be:43:11:df:97:5a:f6:92:1f:74:f9:66:d8:c4Certificate

Extended Key Usages

Key Usages

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

dd:62:42:6b:d5:7c:70:c1:0a:40:64:fa:45:02:b0:73:c4:bf:ce:b6Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oledlg

urlmon

wtsapi32

version

winhttp

userenv

oleacc

gdiplus

imm32

winmm

rpcrt4

iphlpapi

psapi

ws2_32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 766KB - Virtual size: 766KB

.data Size: 100KB - Virtual size: 131KB

.gfids Size: 107KB - Virtual size: 107KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 111KB - Virtual size: 111KB

.reloc Size: 159KB - Virtual size: 159KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

2d:7a:be:43:11:df:97:5a:f6:92:1f:74:f9:66:d8:c4
Certificate

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

dd:62:42:6b:d5:7c:70:c1:0a:40:64:fa:45:02:b0:73:c4:bf:ce:b6
Signer

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 766KB - Virtual size: 766KB

.data
Size: 100KB - Virtual size: 131KB

.gfids
Size: 107KB - Virtual size: 107KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 111KB - Virtual size: 111KB

.reloc
Size: 159KB - Virtual size: 159KB