LogiCameraSettings_2[.]12[.]20[.]exe

resource
unpack001/$PLUGINSDIR/LogEx.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/$PLUGINSDIR/nsExec.dll
unpack001/$PLUGINSDIR/nsProcess.dll
unpack002/$PLUGINSDIR/LogEx.dll
unpack002/$PLUGINSDIR/System.dll

LogiCameraSettings_2.12.20.exe

.exe windows:4 windows x86 arch:x86

b34f154ec913d2d2c435cbd644e91687

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

08:fc:2a:6c:41:1d:88:e7:25:3c:3d:99:17:0e:ae:62
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/06/2020, 00:00

Not After

22/07/2022, 12:00

Subject

SERIALNUMBER=C1067879,CN=Logitech Inc,O=Logitech Inc,L=Newark,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130a43616c69666f726e6961,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

82:77:11:c8:7c:ae:06:42:ff:a4:fc:d7:2f:1a:01:4e:e7:30:6b:b8
Signer

Actual PE Digest

82:77:11:c8:7c:ae:06:42:ff:a4:fc:d7:2f:1a:01:4e:e7:30:6b:b8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableW

SetFileAttributesW

Sleep

GetTickCount

GetFileSize

GetModuleFileNameW

GetCurrentProcess

CopyFileW

SetCurrentDirectoryW

GetFileAttributesW

GetWindowsDirectoryW

GetTempPathW

GetCommandLineW

GetVersion

SetErrorMode

lstrlenW

lstrcpynW

GetDiskFreeSpaceW

ExitProcess

GetShortPathNameW

CreateThread

GetLastError

CreateDirectoryW

CreateProcessW

RemoveDirectoryW

lstrcmpiA

CreateFileW

GetTempFileNameW

WriteFile

lstrcpyA

MoveFileExW

lstrcatW

GetSystemDirectoryW

GetProcAddress

GetModuleHandleA

GetExitCodeProcess

WaitForSingleObject

lstrcmpiW

MoveFileW

GetFullPathNameW

SetFileTime

SearchPathW

CompareFileTime

lstrcmpW

CloseHandle

ExpandEnvironmentStringsW

GlobalFree

GlobalLock

GlobalUnlock

GlobalAlloc

FindFirstFileW

FindNextFileW

DeleteFileW

SetFilePointer

ReadFile

FindClose

lstrlenA

MulDiv

MultiByteToWideChar

WideCharToMultiByte

GetPrivateProfileStringW

WritePrivateProfileStringW

FreeLibrary

LoadLibraryExW

GetModuleHandleW

user32

GetSystemMenu

SetClassLongW

EnableMenuItem

IsWindowEnabled

SetWindowPos

GetSysColor

GetWindowLongW

SetCursor

LoadCursorW

CheckDlgButton

GetMessagePos

LoadBitmapW

CallWindowProcW

IsWindowVisible

CloseClipboard

SetClipboardData

EmptyClipboard

OpenClipboard

ScreenToClient

GetWindowRect

GetDlgItem

GetSystemMetrics

SetDlgItemTextW

GetDlgItemTextW

MessageBoxIndirectW

CharPrevW

CharNextA

wsprintfA

DispatchMessageW

PeekMessageW

ReleaseDC

EnableWindow

InvalidateRect

SendMessageW

DefWindowProcW

BeginPaint

GetClientRect

FillRect

DrawTextW

EndDialog

RegisterClassW

SystemParametersInfoW

CreateWindowExW

GetClassInfoW

DialogBoxParamW

CharNextW

ExitWindowsEx

DestroyWindow

GetDC

SetTimer

SetWindowTextW

LoadImageW

SetForegroundWindow

ShowWindow

IsWindow

SetWindowLongW

FindWindowExW

TrackPopupMenu

AppendMenuW

CreatePopupMenu

EndPaint

CreateDialogParamW

SendMessageTimeoutW

wsprintfW

PostQuitMessage

gdi32

SelectObject

SetBkMode

CreateFontIndirectW

SetTextColor

DeleteObject

GetDeviceCaps

CreateBrushIndirect

SetBkColor

shell32

SHGetSpecialFolderLocation

ShellExecuteExW

SHGetPathFromIDListW

SHBrowseForFolderW

SHGetFileInfoW

SHFileOperationW

advapi32

AdjustTokenPrivileges

RegCreateKeyExW

RegOpenKeyExW

SetFileSecurityW

OpenProcessToken

LookupPrivilegeValueW

RegEnumValueW

RegDeleteKeyW

RegDeleteValueW

RegCloseKey

RegSetValueExW

RegQueryValueExW

RegEnumKeyW

comctl32

ImageList_Create

ImageList_AddMasked

ImageList_Destroy

ord17

ole32

OleUninitialize

OleInitialize

CoTaskMemFree

CoCreateInstance

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 196KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$PLUGINSDIR/LogEx.dll

.dll windows:4 windows x86 arch:x86

549d7b44067bbcdf42bf6a90a80a3a9e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

WriteFile

CreateFileW

CloseHandle

GlobalFree

GlobalAlloc

VirtualFree

ReadFile

VirtualAlloc

GetFileSize

lstrcpyW

WideCharToMultiByte

MultiByteToWideChar

GetCommandLineA

GetVersion

GetCurrentThreadId

TlsSetValue

TlsAlloc

TlsFree

SetLastError

TlsGetValue

GetLastError

ExitProcess

TerminateProcess

GetCurrentProcess

SetHandleCount

GetStdHandle

GetFileType

GetStartupInfoA

DeleteCriticalSection

GetModuleFileNameA

FreeEnvironmentStringsA

FreeEnvironmentStringsW

GetEnvironmentStrings

GetEnvironmentStringsW

GetModuleHandleA

GetEnvironmentVariableA

GetVersionExA

HeapDestroy

HeapCreate

HeapFree

HeapAlloc

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

GetCPInfo

GetACP

GetOEMCP

HeapReAlloc

GetProcAddress

LoadLibraryA

RtlUnwind

GetStringTypeA

GetStringTypeW

LCMapStringA

LCMapStringW

InterlockedDecrement

InterlockedIncrement

user32

FindWindowExW

GetDlgItem

SendMessageW

SetWindowTextW

Exports

AddFile

Close

Init

Write

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/System.dll

.dll windows:4 windows x86 arch:x86

fc0224e99e736751432961db63a41b76

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW

GlobalFree

GlobalSize

lstrcpynW

lstrcpyW

GetProcAddress

WideCharToMultiByte

VirtualFree

FreeLibrary

lstrlenW

LoadLibraryW

GlobalAlloc

MultiByteToWideChar

VirtualAlloc

VirtualProtect

GetLastError

user32

wsprintfW

ole32

StringFromGUID2

CLSIDFromString

Exports

Alloc

Call

Copy

Free

Get

Int64Op

Store

StrAlloc

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 867B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 638B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/modern-wizard.bmp

$PLUGINSDIR/nsDialogs.dll

.dll windows:4 windows x86 arch:x86

e2ee55bddad4241d619d6a8a38e2d869

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesW

lstrcpyW

MulDiv

lstrlenW

HeapFree

GetCurrentDirectoryW

lstrcmpiW

GetProcessHeap

HeapReAlloc

GlobalFree

lstrcpynW

GlobalAlloc

SetCurrentDirectoryW

HeapAlloc

user32

DestroyWindow

CallWindowProcW

SetCursor

LoadCursorW

GetPropW

CharPrevW

DrawFocusRect

GetWindowLongW

DrawTextW

GetClientRect

GetDlgItem

GetSysColor

SetWindowLongW

SetWindowPos

CreateDialogParamW

MapDialogRect

GetWindowRect

SetPropW

CreateWindowExW

IsWindow

SetTimer

KillTimer

DispatchMessageW

TranslateMessage

GetMessageW

IsDialogMessageW

ShowWindow

wsprintfW

CharNextW

SendMessageW

MapWindowPoints

RemovePropW

GetWindowTextW

gdi32

SetTextColor

shell32

SHBrowseForFolderW

SHGetPathFromIDListW

comdlg32

GetSaveFileNameW

GetOpenFileNameW

CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Create

CreateControl

CreateItem

CreateTimer

GetUserData

KillTimer

OnBack

OnChange

OnClick

OnNotify

SelectFileDialog

SelectFolderDialog

SetRTL

SetUserData

Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 630B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/nsExec.dll

.dll windows:4 windows x86 arch:x86

d31c5eb927119d00232e4d4b0e32fcdb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW

MultiByteToWideChar

lstrlenA

GetExitCodeProcess

WaitForSingleObject

Sleep

TerminateProcess

lstrcpyW

GlobalReAlloc

GlobalUnlock

GlobalSize

ReadFile

PeekNamedPipe

GetTickCount

CreateProcessW

GetStartupInfoW

CreatePipe

GetProcAddress

lstrcpynW

DeleteFileW

lstrcmpiW

GetCurrentProcess

lstrcatW

CloseHandle

UnmapViewOfFile

MapViewOfFile

CreateFileMappingW

CreateFileW

CopyFileW

GetTempFileNameW

GlobalFree

GlobalAlloc

GetModuleFileNameW

ExitProcess

GetCommandLineW

GlobalLock

GetVersion

lstrlenW

user32

SendMessageW

FindWindowExW

CharNextW

wsprintfW

CharPrevW

advapi32

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

Exports

Exec

ExecToLog

ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/nsProcess.dll

.dll windows:5 windows x86 arch:x86

439074d1c01f7b16781bdf060930814a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

CloseHandle

TerminateProcess

WaitForSingleObject

GetExitCodeProcess

OpenProcess

MultiByteToWideChar

lstrlenA

lstrlenW

LoadLibraryA

lstrcmpiW

lstrcpynW

FreeLibrary

LocalFree

LocalAlloc

GetProcAddress

LoadLibraryW

GetVersionExW

GlobalFree

GlobalAlloc

user32

GetWindowThreadProcessId

EnumWindows

wsprintfW

PostMessageW

Exports

_CloseProcess

_FindProcess

_KillProcess

_Unload

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 927B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 254B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

D3Dcompiler_47.dll

.dll windows:6 windows x86 arch:x86

f63cad154afed6da772d0ab361f448f6

Code Sign

33:00:00:00:2b:39:32:48:c1:b2:c9:48:f3:00:00:00:00:00:2b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/09/2012, 21:12

Not After

04/12/2013, 21:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/01/2013, 22:33

Not After

24/04/2014, 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:00:16:11:04:b4:88:38:8c:be:c3:00:00:00:00:00:16
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

30/08/2012, 17:49

Not After

30/11/2013, 17:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ab:69:30:eb:d8:d5:6c:83:dd:de:d2:5c:78:4a:69:da:61:fc:c5:96:29:e5:ab:ad:9d:48:a5:e2:d1:66:17:bb
Signer

Actual PE Digest

ab:69:30:eb:d8:d5:6c:83:dd:de:d2:5c:78:4a:69:da:61:fc:c5:96:29:e5:ab:ad:9d:48:a5:e2:d1:66:17:bb

Digest Algorithm

sha256

PE Digest Matches

true

69:26:3d:60:06:7a:72:dd:e2:38:44:52:38:d1:d7:f8:7e:61:16:0d
Signer

Actual PE Digest

69:26:3d:60:06:7a:72:dd:e2:38:44:52:38:d1:d7:f8:7e:61:16:0d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D3DCompiler_47.pdb

Imports

msvcrt

_onexit

__dllonexit

_unlock

_lock

?terminate@@YAXXZ

??1type_info@@UAE@XZ

_initterm

_amsg_exit

_XcptFilter

_strtoui64

sscanf

_isnan

_vsnprintf

strtoul

isxdigit

atof

setlocale

_strdup

_mbstrlen

_vsnwprintf

strnlen

ceil

modf

strrchr

strncpy_s

memcpy_s

isalnum

_finite

_clearfp

_controlfp

strcpy_s

malloc

_strnicmp

_fpclass

strncmp

isspace

strstr

strchr

free

sprintf_s

_stricmp

_purecall

memmove

qsort

isalpha

toupper

atoi

_except_handler4_common

tolower

??2@YAPAXI@Z

getenv

??3@YAXPAX@Z

wcsncmp

wcsncpy_s

_wcsicmp

memcpy

memset

fclose

strcat_s

bsearch

_CxxThrowException

_snwprintf_s

wcschr

iswdigit

__unDName

fread

fseek

_wfsopen

vsprintf_s

wcstol

_wcsnicmp

_wsplitpath_s

towlower

wcscpy_s

??_U@YAPAXI@Z

??_V@YAXPAX@Z

swprintf_s

wcsncat_s

wcsrchr

_wmakepath_s

time

_wfullpath

_wcsdup

_wgetenv

_chsize

_close

_read

_write

_lseeki64

_get_osfhandle

_open_osfhandle

wcscat_s

ftell

_mbscmp

_memicmp

isdigit

_wsopen

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

__CxxFrameHandler3

_ftol2

_ftol2_sse

floor

advapi32

CryptDestroyHash

CryptHashData

CryptCreateHash

CryptGetHashParam

CryptReleaseContext

CryptAcquireContextW

RegOpenKeyExW

RegQueryValueExA

RegEnumKeyExA

RegOpenKeyExA

RegCloseKey

RegQueryValueExW

kernel32

SetLastError

LocalFree

LocalAlloc

GetVersion

InterlockedDecrement

InterlockedIncrement

GetTickCount

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

TerminateProcess

GetCurrentProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

LCMapStringW

CreateFileMappingW

UnmapViewOfFile

MapViewOfFile

GetFileSize

GetSystemInfo

VirtualAlloc

VirtualFree

GetProcAddress

LoadLibraryExW

GetEnvironmentVariableA

GetFullPathNameA

GetFullPathNameW

TlsFree

TlsGetValue

TlsSetValue

TlsAlloc

Sleep

HeapFree

GetFileAttributesW

SetFileAttributesW

CopyFileExW

DeleteFileW

GetFileType

DeviceIoControl

ExpandEnvironmentStringsW

InitializeCriticalSectionAndSpinCount

SetFilePointer

FlushViewOfFile

MapViewOfFileEx

GetModuleFileNameA

CreateFileA

DisableThreadLibraryCalls

CreateFileW

GetLastError

GetFileSizeEx

ReadFile

CloseHandle

WriteFile

WideCharToMultiByte

FreeLibrary

lstrcmpiA

MultiByteToWideChar

OutputDebugStringA

QueryPerformanceCounter

HeapCreate

HeapDestroy

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

HeapAlloc

GetProcessHeap

rpcrt4

UuidCreate

Exports

D3DAssemble

D3DCompile

D3DCompile2

D3DCompileFromFile

D3DCompressShaders

D3DCreateBlob

D3DCreateFunctionLinkingGraph

D3DCreateLinker

D3DDecompressShaders

D3DDisassemble

D3DDisassemble10Effect

D3DDisassemble11Trace

D3DDisassembleRegion

D3DGetBlobPart

D3DGetDebugInfo

D3DGetInputAndOutputSignatureBlob

D3DGetInputSignatureBlob

D3DGetOutputSignatureBlob

D3DGetTraceInstructionOffsets

D3DLoadModule

D3DPreprocess

D3DReadFileToBlob

D3DReflect

D3DReflectLibrary

D3DReturnFailure1

D3DSetBlobPart

D3DStripShader

D3DWriteBlobToFile

DebugSetMute

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

DevManagerCore.dll

.dll windows:6 windows x86 arch:x86

275ee71546affa8db829eb2cee7c518e

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

08:fc:2a:6c:41:1d:88:e7:25:3c:3d:99:17:0e:ae:62
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/06/2020, 00:00

Not After

22/07/2022, 12:00

Subject

SERIALNUMBER=C1067879,CN=Logitech Inc,O=Logitech Inc,L=Newark,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130a43616c69666f726e6961,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ec:7b:6b:b1:5f:a4:c0:48:14:09:a6:4c:5c:8a:33:d5:fc:d5:94:27
Signer

Actual PE Digest

ec:7b:6b:b1:5f:a4:c0:48:14:09:a6:4c:5c:8a:33:d5:fc:d5:94:27

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\tcbuilds\camerasettings_2.12\_build\Win32\Release\DevManagerCore.pdb

Imports

setupapi

CM_Get_Parent

SetupDiOpenDevRegKey

SetupDiGetDeviceRegistryPropertyW

SetupDiGetClassDevsW

SetupDiGetDeviceInterfaceDetailW

SetupDiEnumDeviceInterfaces

SetupDiOpenDeviceInterfaceRegKey

SetupDiDestroyDeviceInfoList

SetupDiOpenDeviceInterfaceW

SetupDiEnumDeviceInfo

shlwapi

PathFileExistsW

PathAppendW

kernel32

GetTempPathW

CloseHandle

ReleaseMutex

WaitForSingleObject

CreateMutexW

Sleep

lstrcmpW

lstrlenA

lstrlenW

IsBadReadPtr

MultiByteToWideChar

GetSystemDirectoryW

CreateFileW

GetLastError

DeviceIoControl

LocalFree

FormatMessageA

OutputDebugStringA

DecodePointer

GetVersionExW

QueryPerformanceCounter

DisableThreadLibraryCalls

GetSystemTimeAsFileTime

GetCurrentThreadId

IsProcessorFeaturePresent

IsDebuggerPresent

EncodePointer

WaitForMultipleObjectsEx

ResetEvent

GetTickCount

SetThreadPriority

LoadLibraryW

FormatMessageW

FreeLibrary

OutputDebugStringW

DebugBreak

CreateThread

K32GetModuleFileNameExW

lstrcmpiW

OpenProcess

WaitForMultipleObjects

GetProcAddress

GetModuleHandleW

ResumeThread

CreateEventW

SetEvent

DeleteCriticalSection

InitializeCriticalSectionAndSpinCount

GetCurrentProcessId

user32

CharNextW

GetDesktopWindow

KillTimer

SetTimer

PeekMessageW

DispatchMessageW

TranslateMessage

LoadCursorW

GetSysColor

IsWindow

UnregisterDeviceNotification

PostMessageW

RegisterWindowMessageW

SetWindowLongW

GetWindowLongW

CharLowerW

DefWindowProcW

RegisterClassW

GetClassInfoW

CreateWindowExW

DestroyWindow

RegisterDeviceNotificationW

shell32

SHGetFolderPathW

ShellExecuteExW

ole32

CLSIDFromString

CoTaskMemAlloc

PropVariantClear

CoInitializeEx

CoCreateInstance

CoTaskMemFree

StringFromCLSID

oleaut32

OleCreatePropertyFrame

SysAllocStringLen

VariantClear

VariantInit

SysFreeString

SysStringLen

SysAllocString

msvcp120

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

?_BADOFF@std@@3_JB

??_7ios_base@std@@6B@

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??0_Lockit@std@@QAE@H@Z

??1_Lockit@std@@QAE@XZ

??Bid@locale@std@@QAEIXZ

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?widen@?$ctype@_W@std@@QBE_WD@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?getloc@ios_base@std@@QBE?AVlocale@2@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z

?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z

?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

xtime_get

_Xtime_diff_to_millis2

_Xtime_get_ticks

_Thrd_sleep

?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z

?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z

?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ

?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ

?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ

?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z

?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z

?id@?$ctype@_W@std@@2V0locale@2@A

??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z

?uncaught_exception@std@@YA_NXZ

?_Winerror_map@std@@YAPBDH@Z

?_Syserror_map@std@@YAPBDH@Z

?_Xout_of_range@std@@YAXPBD@Z

?_Xlength_error@std@@YAXPBD@Z

?_Xbad_alloc@std@@YAXXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

msvcr120

??0exception@std@@QAE@XZ

??0exception@std@@QAE@ABQBD@Z

??0exception@std@@QAE@ABV01@@Z

??1exception@std@@UAE@XZ

sscanf_s

??8type_info@@QBE_NABV0@@Z

??0bad_cast@std@@QAE@PBD@Z

?wait@Concurrency@@YAXI@Z

?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ

??0bad_cast@std@@QAE@ABV01@@Z

??1bad_cast@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

_mbsstr

_mbslwr

fputws

swprintf_s

_wfopen_s

fclose

fputs

_beginthreadex

_endthreadex

memcpy_s

wcscpy_s

_local_unwind4

_wsplitpath_s

iswdigit

wcschr

_wtoi

wcsncpy_s

_libm_sse2_sqrt_precise

wcsstr

_lock

_unlock

_calloc_crt

__dllonexit

_onexit

??1type_info@@UAE@XZ

__CppXcptFilter

_amsg_exit

_malloc_crt

_initterm

_initterm_e

_except_handler4_common

_except1

_crt_debugger_hook

__crtUnhandledException

__crtTerminateProcess

?terminate@@YAXXZ

__clean_type_info_names_internal

_wcslwr_s

__RTDynamicCast

??_V@YAXPAX@Z

_wcsicmp

wcscat_s

malloc

wcstombs_s

realloc

free

memset

swscanf_s

vswprintf_s

tolower

memcpy

__CxxFrameHandler3

_CxxThrowException

memmove

_purecall

_stricmp

winmm

waveOutWrite

waveInGetDevCapsW

waveInGetNumDevs

timeGetTime

waveOutMessage

waveOutUnprepareHeader

waveOutPrepareHeader

waveOutClose

waveOutOpen

mixerSetControlDetails

mixerGetControlDetailsW

mixerGetLineControlsW

mixerGetLineInfoW

mixerClose

waveInMessage

mixerOpen

mixerGetDevCapsW

mixerGetNumDevs

waveOutGetNumDevs

waveOutGetDevCapsW

waveInReset

waveInStart

waveInAddBuffer

waveInUnprepareHeader

waveInOpen

waveInClose

waveInPrepareHeader

waveOutReset

gdi32

CreateSolidBrush

advapi32

CopySid

RegCloseKey

RegCreateKeyExW

GetLengthSid

RegEnumValueA

RegQueryValueExW

RegOpenKeyExW

RegOpenKeyA

Exports

CreateDeviceManagerFactory

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Helper.exe

.exe windows:6 windows x86 arch:x86

86c04e43294af09b8e16face78eda335

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

08:fc:2a:6c:41:1d:88:e7:25:3c:3d:99:17:0e:ae:62
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/06/2020, 00:00

Not After

22/07/2022, 12:00

Subject

SERIALNUMBER=C1067879,CN=Logitech Inc,O=Logitech Inc,L=Newark,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130a43616c69666f726e6961,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

b3:c7:48:ed:22:4c:54:3b:6d:84:4f:de:38:a3:35:81:2b:a2:f1:71
Signer

Actual PE Digest

b3:c7:48:ed:22:4c:54:3b:6d:84:4f:de:38:a3:35:81:2b:a2:f1:71

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

gethostname

connect

WSAStartup

htonl

WSASocketW

WSAGetLastError

shutdown

setsockopt

WSACleanup

recv

closesocket

gethostbyname

send

WSAStringToAddressW

htons

kernel32

DecodePointer

IsDebuggerPresent

IsProcessorFeaturePresent

QueryPerformanceCounter

GetCommandLineW

LocalFree

WideCharToMultiByte

EncodePointer

GetFileType

GetConsoleScreenBufferInfo

GetStdHandle

TlsGetValue

GetCurrentThread

TlsSetValue

QueueUserAPC

TlsAlloc

TlsFree

GetCurrentProcessId

GetSystemTimeAsFileTime

GetCurrentDirectoryW

WaitForSingleObject

Sleep

GetCurrentThreadId

CloseHandle

SwitchToThread

UnlockFile

GetLastError

LockFileEx

OutputDebugStringW

GetCurrentProcess

AllocConsole

SetConsoleTextAttribute

WriteFile

GetConsoleMode

WriteConsoleW

advapi32

GetLengthSid

RegCreateKeyExW

RegSetValueExW

RegisterEventSourceW

ReportEventW

DeregisterEventSource

CopySid

GetTokenInformation

OpenProcessToken

RegCloseKey

qt5widgets

?exec@QApplication@@SAHXZ

??1QApplication@@UAE@XZ

??0QApplication@@QAE@AAHPAPADH@Z

msvcr120

_controlfp_s

_invoke_watson

__crtSetUnhandledExceptionFilter

__crtTerminateProcess

__crtUnhandledException

_crt_debugger_hook

_except_handler4_common

_commode

_fmode

_acmdln

_initterm

_initterm_e

__setusermatherr

_configthreadlocale

_ismbblead

_cexit

_exit

exit

__set_app_type

__getmainargs

_amsg_exit

__crtGetShowWindowMode

_XcptFilter

??1type_info@@UAE@XZ

_onexit

__dllonexit

_calloc_crt

_unlock

_lock

iswcntrl

calloc

towupper

towlower

_wstat64i32

_close

_get_osfhandle

_wsopen_s

_beginthreadex

_wgetdcwd

_wmkdir

_wgetenv

free

?terminate@@YAXXZ

_localtime64

wcsftime

_gmtime64_s

_mktime64

_wrename

fwrite

memcpy_s

fgetwc

??_V@YAXPAX@Z

_lock_file

setvbuf

fsetpos

_wremove

fgetc

_errno

fflush

_fseeki64

fgetpos

ungetc

ungetwc

_unlock_file

fputwc

??_U@YAPAXI@Z

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

??1bad_cast@std@@UAE@XZ

atoi

fclose

memset

?what@exception@std@@UBEPBDXZ

??1exception@std@@UAE@XZ

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@ABQBD@Z

memcpy

__CxxFrameHandler3

_CxxThrowException

memmove

??3@YAXPAX@Z

??2@YAPAXI@Z

_purecall

_CIfmod

_except1

msvcp120

?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ

?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ

?seekg@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@V?$fpos@H@2@@Z

?is@?$ctype@_W@std@@QBE_NF_W@Z

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z

?_BADOFF@std@@3_JB

??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE_N_N@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z

??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z

_Mtx_init

_Cnd_timedwait

_Mtx_current_owns

_Mtx_lock

_Cnd_wait

_Cnd_broadcast

_Mtx_unlock

_Mtx_destroy

_Cnd_destroy

_Xtime_get_ticks

?_Throw_C_error@std@@YAXH@Z

?_Throw_Cpp_error@std@@YAXH@Z

_Cnd_init

?classic@locale@std@@SAABV12@XZ

?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WD@Z

?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@_W@Z

??0_Locinfo@std@@QAE@HPBD@Z

??1_Locinfo@std@@QAE@XZ

?always_noconv@codecvt_base@std@@QBE_NXZ

?unshift@?$codecvt@_WDH@std@@QBEHAAHPAD1AAPAD@Z

?widen@?$ctype@_W@std@@QBE_WD@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?getloc@ios_base@std@@QBE?AVlocale@2@XZ

?pubsetbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEPAV12@PA_W_J@Z

?clear@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z

?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE?AVlocale@2@ABV32@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z

?seekp@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@_JH@Z

?tellp@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE?AV?$fpos@H@2@XZ

?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QBE?AVlocale@2@XZ

?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXXZ

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z

?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z

??0_Lockit@std@@QAE@H@Z

??1_Lockit@std@@QAE@XZ

?_Xruntime_error@std@@YAXPBD@Z

?id@?$ctype@_W@std@@2V0locale@2@A

?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?_Syserror_map@std@@YAPBDH@Z

?_Winerror_map@std@@YAPBDH@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

??Bid@locale@std@@QAEIXZ

?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z

?_Locimp_Addfac@_Locimp@locale@std@@CAXPAV123@PAVfacet@23@I@Z

?_Init@locale@std@@CAPAV_Locimp@12@_N@Z

?in@?$codecvt@_WDH@std@@QBEHAAHPBD1AAPBDPA_W3AAPA_W@Z

?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ

?_Incref@facet@locale@std@@UAEXXZ

??_7_Facet_base@std@@6B@

??_7facet@locale@std@@6B@

??_7codecvt_base@std@@6B@

?id@?$codecvt@_WDH@std@@2V0locale@2@A

??_7?$codecvt@_WDH@std@@6B@

?wcout@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A

?wcerr@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z

?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ