HackBGRT-2[.]5[.]1[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

HackBGRT-2.5.1.zip
Size

2.0MB
MD5

bb04d0b0b92a57733941f05a7738dc90
SHA1

3e9999f6f68d37b0953afd8b404257485e62fae4
SHA256

abd591d27b0fc4c99fea4df79c796c432bd4f69bfe95e26065e72d2ac26f42a7
SHA512

0389830b294c50958783a7e9f54bf5f89508896bdd02dfa911ddd21497761cd08dc0f1372dfb58785b91b86c92d79e77b33b5d5869cb7d11cdc9769a1f1dc4d3
SSDEEP

49152:lsQ7se4o0QMg4LssSaHzpPACQGIxSuw+98ne6E2H0T9:lsQ7Z4E4Lmq6bGIC+aer2H0T9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HackBGRT-2.5.1/setup.exe

Files

HackBGRT-2.5.1.zip
.zip
HackBGRT-2.5.1/CHANGELOG.md
HackBGRT-2.5.1/LICENSE
HackBGRT-2.5.1/README.efilib
.vbs
HackBGRT-2.5.1/README.md
HackBGRT-2.5.1/certificate.cer
HackBGRT-2.5.1/config.txt
.vbs
HackBGRT-2.5.1/efi-signed/bootaa64.efi
HackBGRT-2.5.1/efi-signed/bootarm.efi
HackBGRT-2.5.1/efi-signed/bootia32.efi
.exe windows:6 windows x86 arch:x86

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

Issuer

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Not Before

09-11-2023 13:43

Not After

19-01-2037 03:14

Subject

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

43:d8:07:3a:a7:50:1b:70:7a:a8:ff:51:c2:79:38:6e:23:2a:6d:9c:9a:fa:44:1f:65:44:e7:82:0a:67:e9:25
Signer

Actual PE Digest

43:d8:07:3a:a7:50:1b:70:7a:a8:ff:51:c2:79:38:6e:23:2a:6d:9c:9a:fa:44:1f:65:44:e7:82:0a:67:e9:25

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sbat
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/efi-signed/bootx64.efi
.exe windows:6 windows x64 arch:x64

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

Issuer

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Not Before

09-11-2023 13:43

Not After

19-01-2037 03:14

Subject

CN=HackBGRT Secure Boot Signer,OU=HackBGRT,O=Metabolix,0.9.2342.19200300.100.1.3=#0c166c617572692e6b656e74746140676d61696c2e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

6a:7b:83:04:db:52:f8:db:10:a6:ee:1f:99:cf:a7:e4:a3:29:fd:74:17:a5:a7:55:5e:f3:30:7d:d2:0d:92:ab
Signer

Actual PE Digest

6a:7b:83:04:db:52:f8:db:10:a6:ee:1f:99:cf:a7:e4:a3:29:fd:74:17:a5:a7:55:5e:f3:30:7d:d2:0d:92:ab

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sbat
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/setup.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/shim-signed/COPYRIGHT
HackBGRT-2.5.1/shim-signed/mmaa64.efi
HackBGRT-2.5.1/shim-signed/mmia32.efi
.exe windows:0 windows x86 arch:x86

Code Sign

27
Certificate

Issuer

CN=Rocky Linux Secure Boot Root CA,OU=Release engineering team,O=Rocky Enterprise Software Foundation,L=Dover,ST=Delaware,C=US,1.2.840.113549.1.9.1=#0c17736563757269747940726f636b796c696e75782e6f7267

Not Before

04-04-2024 00:33

Not After

04-04-2025 00:33

Subject

CN=Rocky Linux Shim Signing Cert 101,OU=Release engineering team,O=Rocky Enterprise Software Foundation,L=Dover,ST=Delaware,C=US,1.2.840.113549.1.9.1=#0c17736563757269747940726f636b796c696e75782e6f7267

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

e8:fe:29:70:d7:4f:08:b7:4e:6f:03:18:ee:52:15:1d:7c:c1:1c:aa:ae:0e:c5:09:b5:84:7a:c9:18:08:4e:f2
Signer

Actual PE Digest

e8:fe:29:70:d7:4f:08:b7:4e:6f:03:18:ee:52:15:1d:7c:c1:1c:aa:ae:0e:c5:09:b5:84:7a:c9:18:08:4e:f2

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 368KB - Virtual size: 367KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dynamic
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rel
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/shim-signed/mmx64.efi
.exe windows:0 windows x64 arch:x64

Code Sign

27
Certificate

Issuer

CN=Rocky Linux Secure Boot Root CA,OU=Release engineering team,O=Rocky Enterprise Software Foundation,L=Dover,ST=Delaware,C=US,1.2.840.113549.1.9.1=#0c17736563757269747940726f636b796c696e75782e6f7267

Not Before

04-04-2024 00:33

Not After

04-04-2025 00:33

Subject

CN=Rocky Linux Shim Signing Cert 101,OU=Release engineering team,O=Rocky Enterprise Software Foundation,L=Dover,ST=Delaware,C=US,1.2.840.113549.1.9.1=#0c17736563757269747940726f636b796c696e75782e6f7267

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

5f:b8:ce:fd:4a:8a:2e:31:8d:d3:7a:5f:57:89:6f:01:f2:41:c4:89:6a:82:93:a2:af:33:0e:de:b9:47:bf:ef
Signer

Actual PE Digest

5f:b8:ce:fd:4a:8a:2e:31:8d:d3:7a:5f:57:89:6f:01:f2:41:c4:89:6a:82:93:a2:af:33:0e:de:b9:47:bf:ef

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Sections

/4
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dynamic
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rela
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/shim-signed/shimaa64.efi
HackBGRT-2.5.1/shim-signed/shimia32.efi
.exe windows:0 windows x86 arch:x86

Code Sign

33:00:00:00:5e:0d:eb:f0:9b:ed:dd:7b:e1:00:01:00:00:00:5e
Certificate

Issuer

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

19-10-2023 19:53

Not After

16-10-2024 19:53

Subject

CN=Microsoft Windows UEFI Driver Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:08:d3:c4:00:00:00:00:00:04
Certificate

Issuer

CN=Microsoft Corporation Third Party Marketplace Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27-06-2011 21:22

Not After

27-06-2026 21:32

Subject

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:ce:54:b6:68:c3:a4:44:f0:c4:e8:c8:52:f8:a7:e1:7e:1e:8c:be:8f:b9:4f:a6:92:3d:32:f2:04:6c:6e:39
Signer

Actual PE Digest

06:ce:54:b6:68:c3:a4:44:f0:c4:e8:c8:52:f8:a7:e1:7e:1e:8c:be:8f:b9:4f:a6:92:3d:32:f2:04:6c:6e:39

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 411KB - Virtual size: 410KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/16
Size: 512B - Virtual size: 106B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/27
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dynamic
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rel
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/shim-signed/shimx64.efi
.exe windows:0 windows x64 arch:x64

Code Sign

33:00:00:00:5e:0d:eb:f0:9b:ed:dd:7b:e1:00:01:00:00:00:5e
Certificate

Issuer

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

19-10-2023 19:53

Not After

16-10-2024 19:53

Subject

CN=Microsoft Windows UEFI Driver Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:08:d3:c4:00:00:00:00:00:04
Certificate

Issuer

CN=Microsoft Corporation Third Party Marketplace Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27-06-2011 21:22

Not After

27-06-2026 21:32

Subject

CN=Microsoft Corporation UEFI CA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3c:34:0d:2b:8b:ae:9c:bc:9b:cd:ae:7d:cc:da:19:dd:0c:52:d3:71:c8:6f:e8:51:30:15:9e:50:f1:0b:da:76
Signer

Actual PE Digest

3c:34:0d:2b:8b:ae:9c:bc:9b:cd:ae:7d:cc:da:19:dd:0c:52:d3:71:c8:6f:e8:51:30:15:9e:50:f1:0b:da:76

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Sections

/4
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 382KB - Virtual size: 381KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/26
Size: 512B - Virtual size: 106B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/37
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dynamic
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rela
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sbat
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HackBGRT-2.5.1/shim.md
HackBGRT-2.5.1/splash.bmp

Sharing

General

Malware Config

Signatures

Files

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85Certificate

Extended Key Usages

43:d8:07:3a:a7:50:1b:70:7a:a8:ff:51:c2:79:38:6e:23:2a:6d:9c:9a:fa:44:1f:65:44:e7:82:0a:67:e9:25Signer

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 128KB

.sbat Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 648B

Code Sign

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85Certificate

Extended Key Usages

6a:7b:83:04:db:52:f8:db:10:a6:ee:1f:99:cf:a7:e4:a3:29:fd:74:17:a5:a7:55:5e:f3:30:7d:d2:0d:92:abSigner

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 128KB

.sbat Size: 512B - Virtual size: 152B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 49KB - Virtual size: 48KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Code Sign

27Certificate

Extended Key Usages

Key Usages

e8:fe:29:70:d7:4f:08:b7:4e:6f:03:18:ee:52:15:1d:7c:c1:1c:aa:ae:0e:c5:09:b5:84:7a:c9:18:08:4e:f2Signer

Headers

File Characteristics

Sections

.text Size: 368KB - Virtual size: 367KB

.reloc Size: 512B - Virtual size: 10B

.data Size: 130KB - Virtual size: 130KB

.dynamic Size: 512B - Virtual size: 120B

.rel Size: 37KB - Virtual size: 37KB

.sbat Size: 512B - Virtual size: 190B

Code Sign

27Certificate

Extended Key Usages

Key Usages

5f:b8:ce:fd:4a:8a:2e:31:8d:d3:7a:5f:57:89:6f:01:f2:41:c4:89:6a:82:93:a2:af:33:0e:de:b9:47:bf:efSigner

Headers

File Characteristics

Sections

/4 Size: 105KB - Virtual size: 104KB

.text Size: 335KB - Virtual size: 335KB

.reloc Size: 512B - Virtual size: 10B

.data Size: 164KB - Virtual size: 164KB

.dynamic Size: 512B - Virtual size: 240B

.rela Size: 108KB - Virtual size: 107KB

.sbat Size: 512B - Virtual size: 190B

Code Sign

33:00:00:00:5e:0d:eb:f0:9b:ed:dd:7b:e1:00:01:00:00:00:5eCertificate

Extended Key Usages

61:08:d3:c4:00:00:00:00:00:04Certificate

Key Usages

06:ce:54:b6:68:c3:a4:44:f0:c4:e8:c8:52:f8:a7:e1:7e:1e:8c:be:8f:b9:4f:a6:92:3d:32:f2:04:6c:6e:39Signer

Headers

File Characteristics

Sections

.text Size: 411KB - Virtual size: 410KB

.reloc Size: 512B - Virtual size: 10B

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

43:d8:07:3a:a7:50:1b:70:7a:a8:ff:51:c2:79:38:6e:23:2a:6d:9c:9a:fa:44:1f:65:44:e7:82:0a:67:e9:25
Signer

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 128KB

.sbat
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 648B

6b:24:52:e9:3b:84:41:73:b0:22:92:e8:be:8e:38:85
Certificate

6a:7b:83:04:db:52:f8:db:10:a6:ee:1f:99:cf:a7:e4:a3:29:fd:74:17:a5:a7:55:5e:f3:30:7d:d2:0d:92:ab
Signer

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 128KB

.sbat
Size: 512B - Virtual size: 152B

.text
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

27
Certificate

e8:fe:29:70:d7:4f:08:b7:4e:6f:03:18:ee:52:15:1d:7c:c1:1c:aa:ae:0e:c5:09:b5:84:7a:c9:18:08:4e:f2
Signer

.text
Size: 368KB - Virtual size: 367KB

.reloc
Size: 512B - Virtual size: 10B

.data
Size: 130KB - Virtual size: 130KB

.dynamic
Size: 512B - Virtual size: 120B

.rel
Size: 37KB - Virtual size: 37KB

.sbat
Size: 512B - Virtual size: 190B

27
Certificate

5f:b8:ce:fd:4a:8a:2e:31:8d:d3:7a:5f:57:89:6f:01:f2:41:c4:89:6a:82:93:a2:af:33:0e:de:b9:47:bf:ef
Signer

/4
Size: 105KB - Virtual size: 104KB

.text
Size: 335KB - Virtual size: 335KB

.reloc
Size: 512B - Virtual size: 10B

.data
Size: 164KB - Virtual size: 164KB

.dynamic
Size: 512B - Virtual size: 240B

.rela
Size: 108KB - Virtual size: 107KB

.sbat
Size: 512B - Virtual size: 190B

33:00:00:00:5e:0d:eb:f0:9b:ed:dd:7b:e1:00:01:00:00:00:5e
Certificate

61:08:d3:c4:00:00:00:00:00:04
Certificate

06:ce:54:b6:68:c3:a4:44:f0:c4:e8:c8:52:f8:a7:e1:7e:1e:8c:be:8f:b9:4f:a6:92:3d:32:f2:04:6c:6e:39
Signer

.text
Size: 411KB - Virtual size: 410KB

.reloc
Size: 512B - Virtual size: 10B

/4
Size: 512B - Virtual size: 94B

/16
Size: 512B - Virtual size: 106B

.data
Size: 149KB - Virtual size: 149KB

/27
Size: 1KB - Virtual size: 1KB

.dynamic
Size: 512B - Virtual size: 120B

.rel
Size: 38KB - Virtual size: 37KB

.sbat
Size: 512B - Virtual size: 190B

33:00:00:00:5e:0d:eb:f0:9b:ed:dd:7b:e1:00:01:00:00:00:5e
Certificate

61:08:d3:c4:00:00:00:00:00:04
Certificate

3c:34:0d:2b:8b:ae:9c:bc:9b:cd:ae:7d:cc:da:19:dd:0c:52:d3:71:c8:6f:e8:51:30:15:9e:50:f1:0b:da:76
Signer

/4
Size: 118KB - Virtual size: 118KB

.text
Size: 382KB - Virtual size: 381KB

.reloc
Size: 512B - Virtual size: 10B

/14
Size: 512B - Virtual size: 100B

/26
Size: 512B - Virtual size: 106B

.data
Size: 185KB - Virtual size: 184KB

/37
Size: 1KB - Virtual size: 1KB

.dynamic
Size: 512B - Virtual size: 240B

.rela
Size: 109KB - Virtual size: 109KB

.sbat
Size: 512B - Virtual size: 190B