2[.]2[.]0[.]Aimmy-CUDA[.]rar

Sharing

Copy URL

Twitter E-mail

General

Target

2.2.0.Aimmy-CUDA.rar
Size

719.3MB
MD5

13fec75f3559030e6605216a41e560c8
SHA1

b6b3177354fca4f88388e6808e1c2136ad9643a6
SHA256

775a009424cdbf6cb7642f1fe223e99f296dca857165e8fa0d64d78b77db2cd2
SHA512

72911348d1d3e875ae4f899a4f05443026edb56e135810bc87e79a93ab31236e91507ce600bd7ba24a311a9ca1bbef16f08b7ae87965bd10db4a3eba2209c575
SSDEEP

12582912:EicLblsSBvdnGgmcAPEOxj7Jz8gRAye7vxhiVMn6TMJUMB2jcb/8b/ksd:3cPlsSBFnGgm4qz8sBe/kS6Ytkhd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/[2.2.0] Aimmy-CUDA/nvinfer_builder_resource_10.dll

Files

2.2.0.Aimmy-CUDA.rar
.rar
[2.2.0] Aimmy-CUDA/Accord.dll.config
[2.2.0] Aimmy-CUDA/DirectML.dll
.dll windows:6 windows x64 arch:x64

0eb962894c1f1cf400b452799094c50a

Code Sign

33:00:00:03:af:30:40:0e:4c:a3:4d:05:41:00:00:00:00:03:af
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16-11-2023 19:09

Not After

14-11-2024 19:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3e:d0:23:0b:b2:60:0d:ac:ee:02:55:fb:ef:9b:93:10:c5:6e:04:fc:54:43:18:e8:ec:fa:70:f3:98:27:24:cd
Signer

Actual PE Digest

3e:d0:23:0b:b2:60:0d:ac:ee:02:55:fb:ef:9b:93:10:c5:6e:04:fc:54:43:18:e8:ec:fa:70:f3:98:27:24:cd

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\__w\1\s\build\x64-win-redist-release\bin\DirectML.pdb

Imports

api-ms-win-core-debug-l1-1-0

IsDebuggerPresent
DebugBreak
OutputDebugStringW

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-errorhandling-l1-1-0

RaiseException
SetLastError
GetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter

api-ms-win-core-heap-l1-1-0

HeapReAlloc
GetProcessHeap
HeapFree
HeapAlloc
HeapSize

api-ms-win-core-synch-l1-1-0

WaitForSingleObjectEx
CreateSemaphoreExW
CreateMutexExW
OpenSemaphoreW
WaitForSingleObject
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
ReleaseMutex
TryAcquireSRWLockExclusive
ReleaseSemaphore
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount

api-ms-win-core-processthreads-l1-1-0

GetCurrentThreadId
GetStartupInfoW
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
TlsAlloc
ExitProcess
TlsGetValue
TlsSetValue
TlsFree

api-ms-win-core-libraryloader-l1-2-0

LoadLibraryExW
GetModuleFileNameW
GetModuleHandleW
DisableThreadLibraryCalls
LoadResource
FreeLibrary
GetModuleHandleExW
GetModuleFileNameA
GetProcAddress
LockResource

api-ms-win-core-localization-l1-2-0

GetCPInfo
FormatMessageW
GetLocaleInfoEx
GetUserDefaultLCID
EnumSystemLocalesW
IsValidCodePage
GetLocaleInfoW
GetOEMCP
LCMapStringEx
IsValidLocale
GetACP
LCMapStringW

api-ms-win-core-profile-l1-1-0

QueryPerformanceFrequency
QueryPerformanceCounter

api-ms-win-eventing-provider-l1-1-0

EventSetInformation
EventUnregister
EventWriteTransfer
EventRegister

api-ms-win-core-libraryloader-l1-2-1

FindResourceW
LoadLibraryW

api-ms-win-core-memory-l1-1-0

VirtualFree
VirtualAlloc

d3d12

D3D12SerializeVersionedRootSignature

api-ms-win-core-string-l1-1-0

WideCharToMultiByte
CompareStringEx
MultiByteToWideChar
GetStringTypeW
CompareStringW

api-ms-win-core-util-l1-1-0

DecodePointer
EncodePointer

api-ms-win-core-file-l1-1-0

FindFirstFileExW
FindClose
CreateFileW
SetFilePointerEx
GetFileType
FlushFileBuffers
FindNextFileW
WriteFile

api-ms-win-core-processthreads-l1-1-1

IsProcessorFeaturePresent

api-ms-win-core-sysinfo-l1-1-0

GetSystemTimeAsFileTime

api-ms-win-core-rtlsupport-l1-1-0

RtlPcToFileHeader
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlUnwindEx

api-ms-win-core-interlocked-l1-1-0

InterlockedFlushSList
InitializeSListHead

api-ms-win-core-processenvironment-l1-1-0

SetEnvironmentVariableW
GetCommandLineA
SetStdHandle
GetCommandLineW
GetEnvironmentStringsW
GetStdHandle
FreeEnvironmentStringsW

api-ms-win-core-fibers-l1-1-0

FlsSetValue
FlsFree
FlsGetValue
FlsAlloc

api-ms-win-core-datetime-l1-1-0

GetDateFormatW
GetTimeFormatW

api-ms-win-core-console-l1-1-0

GetConsoleMode
WriteConsoleW
GetConsoleOutputCP

api-ms-win-core-timezone-l1-1-0

GetTimeZoneInformation

api-ms-win-appmodel-runtime-l1-1-0

GetCurrentPackageFullName

Exports

Exports

DMLCreateDevice
DMLCreateDevice1

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 82KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
[2.2.0] Aimmy-CUDA/nvinfer_10.dll
.dll windows:6 windows x64 arch:x64

1d1ccea9d17583404f77927c3e7a61e1

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:97:c5:6c:aa:59:05:53:94:d9:a9:cd:b8:be:eb:56
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

13-01-2023 00:00

Not After

16-01-2026 23:59

Subject

CN=NVIDIA Corporation,OU=2-J,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

38:63:de:f8
Certificate

Issuer

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Not Before

24-12-1999 17:50

Not After

24-07-2029 14:15

Subject

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

Issuer

CN=Entrust.net Certification Authority (2048),OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)+OU=(c) 1999 Entrust.net Limited,O=Entrust.net

Not Before

22-07-2015 19:02

Not After

22-06-2029 19:32

Subject

CN=Entrust Timestamping CA - TS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

07:d7:13:53:da:25:61:b4:61:e9:90:47:8a:4c:ce:04
Certificate

Issuer

CN=Entrust Timestamping CA - TS1,OU=See www.entrust.net/legal-terms+OU=(c) 2015 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US

Not Before

19-01-2024 16:46

Not After

01-06-2029 00:00

Subject

CN=Entrust Timestamp Authority - TSA1,O=Entrust\, Inc.,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

2b:08:74:a2:8d:6b:71:d3:da:94:ec:5b:45:0c:71:59:44:98:28:e8:95:56:36:a8:11:0d:24:e3:6b:9d:cf:22
Signer

Actual PE Digest

2b:08:74:a2:8d:6b:71:d3:da:94:ec:5b:45:0c:71:59:44:98:28:e8:95:56:36:a8:11:0d:24:e3:6b:9d:cf:22

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

user32

CharUpperW

shell32

SHGetKnownFolderPath

advapi32

CryptGenRandom
CryptReleaseContext
CryptAcquireContextW

ole32

CoTaskMemFree

kernel32

GetACP
GetProcessHeap
GetOEMCP
GetTimeZoneInformation
RemoveDirectoryW
GetCommandLineA
GetEnvironmentStringsW
IsValidCodePage
UnmapViewOfFile
HeapSize
Sleep
GetCurrentProcess
K32GetProcessMemoryInfo
GlobalMemoryStatusEx
SwitchToThread
FreeLibrary
GetProcAddress
LoadLibraryW
LoadLibraryA
GetLastError
GetModuleFileNameA
LoadLibraryExA
GetEnvironmentVariableA
FindClose
CloseHandle
QueryPerformanceCounter
QueryPerformanceFrequency
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
InitializeSRWLock
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
GetCurrentProcessId
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemInfo
GetNativeSystemInfo
VirtualQuery
FreeLibraryAndExitThread
CreateSemaphoreA
CreateFileMappingA
VerSetConditionMask
CreateFileW
GetFileAttributesW
GetFullPathNameW
SetLastError
CreateProcessW
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
LocalFree
VerifyVersionInfoW
GetEnvironmentVariableW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
FindFirstFileExW
FindNextFileW
FlushFileBuffers
GetDriveTypeW
GetFileInformationByHandle
GetFileType
GetFinalPathNameByHandleW
SetFileInformationByHandle
SetFileTime
DuplicateHandle
GetSystemTime
CreateFileMappingW
MapViewOfFile
FreeEnvironmentStringsW
SystemTimeToFileTime
MultiByteToWideChar
WideCharToMultiByte
GetStdHandle
GetCommandLineW
GetProcessTimes
FormatMessageA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
GetConsoleMode
SearchPathW
TerminateProcess
GetExitCodeProcess
CreateJobObjectW
AssignProcessToJobObject
SetInformationJobObject
RaiseException
CreateFileA
GetFileAttributesA
SetFilePointerEx
WriteFile
MapViewOfFileEx
GetTempPathA
GetTempFileNameA
GetLocaleInfoA
SetConsoleMode
RtlCaptureContext
SetUnhandledExceptionFilter
SetConsoleCtrlHandler
CreateThread
ExitThread
CreateWaitableTimerA
SetStdHandle
IsDebuggerPresent
RtlPcToFileHeader
InitializeCriticalSectionEx
SleepConditionVariableSRW
InitOnceBeginInitialize
InitOnceComplete
FreeLibraryWhenCallbackReturns
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
GetModuleHandleExW
IsProcessorFeaturePresent
WaitForSingleObjectEx
GetExitCodeThread
InitOnceExecuteOnce
GetSystemTimeAsFileTime
EncodePointer
DecodePointer
LCMapStringEx
CompareStringEx
GetCPInfo
GetStringTypeW
InitializeCriticalSectionAndSpinCount
CreateEventW
InitializeSListHead
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
GetStartupInfoW
GetFileSizeEx
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwind
WriteConsoleW
ExitProcess
ReadFile
GetConsoleOutputCP
SetEndOfFile
ReadConsoleW
HeapValidate
HeapWalk
DeleteFileW
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
SetEnvironmentVariableW
OutputDebugStringW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW

Exports

Exports

?tensorrt_build_ContainerAdministrator_20240730_09a8e4a4fa08dc04@@3HA
?tensorrt_version_10_3_0_26@@3HA
NvOptimusEnablementCuda
createInferBuilder_INTERNAL
createInferRefitter_INTERNAL
createInferRuntime_INTERNAL
createLeanRuntime
getBuilderPluginRegistry
getBuilderSafePluginRegistry
getForwardCompatibilityHelper
getInferLibBuildVersion
getInferLibMajorVersion
getInferLibMinorVersion
getInferLibPatchVersion
getInferLibVersion
getLogger
getPluginRegistry

Sections

.text
Size: 74.0MB - Virtual size: 74.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28.1MB - Virtual size: 28.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24.6MB - Virtual size: 27.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nv_fatb
Size: 75.3MB - Virtual size: 75.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nvFatBi
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 350KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
[2.2.0] Aimmy-CUDA/nvinfer_builder_resource_10.dll
.dll windows:6 windows x64 arch:x64

4bb8efcaf387d2fea587d2db6e08bb3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

LoadResource
LockResource
SizeofResource
FindResourceA
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
WriteConsoleW
RtlPcToFileHeader
RaiseException
RtlUnwindEx
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetCurrentProcess
TerminateProcess
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapAlloc
HeapFree
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
GetProcessHeap
GetStdHandle
GetFileType
GetStringTypeW
HeapSize
HeapReAlloc
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
CreateFileW

Exports

Exports

getCaskKLibEnd_INTERNAL
getCaskKLibStart_INTERNAL
getNbCaskKLibs_INTERNAL

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1332.3MB - Virtual size: 1332.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0eb962894c1f1cf400b452799094c50a

Code Sign

33:00:00:03:af:30:40:0e:4c:a3:4d:05:41:00:00:00:00:03:afCertificate

Extended Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

3e:d0:23:0b:b2:60:0d:ac:ee:02:55:fb:ef:9b:93:10:c5:6e:04:fc:54:43:18:e8:ec:fa:70:f3:98:27:24:cdSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

api-ms-win-core-debug-l1-1-0

api-ms-win-core-handle-l1-1-0

api-ms-win-core-errorhandling-l1-1-0

api-ms-win-core-heap-l1-1-0

api-ms-win-core-synch-l1-1-0

api-ms-win-core-processthreads-l1-1-0

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-localization-l1-2-0

api-ms-win-core-profile-l1-1-0

api-ms-win-eventing-provider-l1-1-0

api-ms-win-core-libraryloader-l1-2-1

api-ms-win-core-memory-l1-1-0

d3d12

api-ms-win-core-string-l1-1-0

api-ms-win-core-util-l1-1-0

api-ms-win-core-file-l1-1-0

api-ms-win-core-processthreads-l1-1-1

api-ms-win-core-sysinfo-l1-1-0

api-ms-win-core-rtlsupport-l1-1-0

api-ms-win-core-interlocked-l1-1-0

api-ms-win-core-processenvironment-l1-1-0

api-ms-win-core-fibers-l1-1-0

api-ms-win-core-datetime-l1-1-0

api-ms-win-core-console-l1-1-0

api-ms-win-core-timezone-l1-1-0

api-ms-win-appmodel-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 3.9MB - Virtual size: 3.9MB

.data Size: 82KB - Virtual size: 110KB

.pdata Size: 133KB - Virtual size: 133KB

_RDATA Size: 1024B - Virtual size: 640B

.rsrc Size: 6.4MB - Virtual size: 6.4MB

.reloc Size: 37KB - Virtual size: 37KB

1d1ccea9d17583404f77927c3e7a61e1

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:97:c5:6c:aa:59:05:53:94:d9:a9:cd:b8:be:eb:56Certificate

Extended Key Usages

Key Usages

38:63:de:f8Certificate

Key Usages

58:da:13:ff:00:00:00:00:51:ce:0d:f7Certificate

Extended Key Usages

Key Usages

07:d7:13:53:da:25:61:b4:61:e9:90:47:8a:4c:ce:04Certificate

Extended Key Usages

Key Usages

2b:08:74:a2:8d:6b:71:d3:da:94:ec:5b:45:0c:71:59:44:98:28:e8:95:56:36:a8:11:0d:24:e3:6b:9d:cf:22Signer

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

advapi32

ole32

kernel32

Exports

33:00:00:03:af:30:40:0e:4c:a3:4d:05:41:00:00:00:00:03:af
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

3e:d0:23:0b:b2:60:0d:ac:ee:02:55:fb:ef:9b:93:10:c5:6e:04:fc:54:43:18:e8:ec:fa:70:f3:98:27:24:cd
Signer

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 3.9MB - Virtual size: 3.9MB

.data
Size: 82KB - Virtual size: 110KB

.pdata
Size: 133KB - Virtual size: 133KB

_RDATA
Size: 1024B - Virtual size: 640B

.rsrc
Size: 6.4MB - Virtual size: 6.4MB

.reloc
Size: 37KB - Virtual size: 37KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:97:c5:6c:aa:59:05:53:94:d9:a9:cd:b8:be:eb:56
Certificate

38:63:de:f8
Certificate

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

07:d7:13:53:da:25:61:b4:61:e9:90:47:8a:4c:ce:04
Certificate

2b:08:74:a2:8d:6b:71:d3:da:94:ec:5b:45:0c:71:59:44:98:28:e8:95:56:36:a8:11:0d:24:e3:6b:9d:cf:22
Signer

.text
Size: 74.0MB - Virtual size: 74.0MB

.rdata
Size: 28.1MB - Virtual size: 28.1MB

.data
Size: 24.6MB - Virtual size: 27.8MB

.pdata
Size: 2.0MB - Virtual size: 2.0MB

.nv_fatb
Size: 75.3MB - Virtual size: 75.3MB

.nvFatBi
Size: 6KB - Virtual size: 6KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 350KB - Virtual size: 350KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 4KB - Virtual size: 4KB

_RDATA
Size: 512B - Virtual size: 252B

.rsrc
Size: 1332.3MB - Virtual size: 1332.3MB

.reloc
Size: 2KB - Virtual size: 1KB