2024-12-21_14ad916181f193bcc3a81b4a772b64ae_floxif_hijackloader_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-12-21_14ad916181f193bcc3a81b4a772b64ae_floxif_hijackloader_icedid
Size

2.3MB
MD5

14ad916181f193bcc3a81b4a772b64ae
SHA1

96aa9b71d7edb9fd450997a9b33d969fc05f3458
SHA256

babf06ee836fb1d1d4f753a0a0700b4db25c979cc0cf12e95529c50dd0c4a56f
SHA512

42a4305cb02e6fd50e45ac2805d0b3ca943fd04db6de4629e04e724cf7b86240a8ab6bd7518d7fa3d6037e2051c13493592b6b407cfe7bf59d9e4a55156c1155
SSDEEP

49152:lDWTmYPDrBYM650bmPHCyXbv4G9iHj58BR981E360fQp//T+fzezHp1G:lDWiQD9Yh50b6isjiHjWBR9udzHpc

Score

1^/10

Malware Config

Signatures

Files

2024-12-21_14ad916181f193bcc3a81b4a772b64ae_floxif_hijackloader_icedid
.exe windows:5 windows x86 arch:x86

846335a1d2025f431b93aa1571478040

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14-07-2023 00:00

Not After

13-10-2034 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0f:f5:03:34:76:03:fb:03:4b:12:c6:db:62:fe:6c:3f
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

14-02-2022 00:00

Not After

16-04-2024 23:59

Subject

CN=ESTsoft Corp.,O=ESTsoft Corp.,L=Seocho-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:f5:03:34:76:03:fb:03:4b:12:c6:db:62:fe:6c:3f
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

14-02-2022 00:00

Not After

16-04-2024 23:59

Subject

CN=ESTsoft Corp.,O=ESTsoft Corp.,L=Seocho-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14-07-2023 00:00

Not After

13-10-2034 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

81:f9:fd:7c:cc:12:a1:c1:1d:f8:02:db:bc:e0:3a:f4:7f:b1:39:2e:ca:a4:d1:7d:0c:70:ec:36:fb:c5:d7:e4
Signer

Actual PE Digest

81:f9:fd:7c:cc:12:a1:c1:1d:f8:02:db:bc:e0:3a:f4:7f:b1:39:2e:ca:a4:d1:7d:0c:70:ec:36:fb:c5:d7:e4

Digest Algorithm

sha256

PE Digest Matches

false

7e:0b:6f:ac:4a:ef:39:8f:6f:16:e5:b7:5d:cc:74:e6:f1:d1:58:a3
Signer

Actual PE Digest

7e:0b:6f:ac:4a:ef:39:8f:6f:16:e5:b7:5d:cc:74:e6:f1:d1:58:a3

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Data\src\alupdate-windows\bin\Release\DebugInfo\ALUpdateExe.pdb

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

wininet

InternetSetCookieA
DeleteUrlCacheEntry
InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

iphlpapi

GetIfTable

kernel32

GetConsoleMode
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
VirtualProtect
VirtualAlloc
VirtualQuery
GetFileAttributesW
GetStartupInfoA
GetDriveTypeA
HeapReAlloc
SetConsoleCtrlHandler
ReadConsoleInputA
SetConsoleMode
ExitThread
HeapSize
GetACP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
VirtualFree
HeapCreate
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetHandleCount
SetStdHandle
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetLocaleInfoW
CompareStringW
SetEnvironmentVariableA
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
ExitProcess
RtlUnwind
GetModuleHandleW
GetFileTime
GetFileSizeEx
SetErrorMode
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
GlobalFlags
GetCurrentDirectoryA
GetProfileIntA
GetModuleFileNameW
GetFullPathNameA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetConsoleCP
InterlockedExchange
FlushConsoleInputBuffer
GlobalMemoryStatus
QueryPerformanceCounter
GetStdHandle
GetFileType
GetVersion
GetCurrentThreadId
WaitNamedPipeA
SetNamedPipeHandleState
SetEvent
TerminateThread
ResetEvent
SuspendThread
FreeResource
GlobalAlloc
ResumeThread
GlobalLock
GlobalUnlock
GlobalFree
CreateEventA
MulDiv
OutputDebugStringA
MoveFileA
InterlockedDecrement
GetFileAttributesA
GetSystemInfo
GetVersionExW
VerSetConditionMask
VerifyVersionInfoW
GetLocaleInfoA
GetCurrentProcess
GetProcessHeap
HeapAlloc
HeapFree
GetTickCount
lstrlenA
CreateToolhelp32Snapshot
Process32First
GetCurrentProcessId
ProcessIdToSessionId
Process32Next
ReleaseMutex
CreateMutexA
CreateDirectoryA
GetVersionExA
CreateFileW
FileTimeToLocalFileTime
lstrcmpA
LocalAlloc
LocalFree
GetVolumeInformationA
GetPrivateProfileStringW
ReadFile
SetFilePointer
WriteFile
CreateFileA
FormatMessageA
GetPrivateProfileStringA
GetWindowsDirectoryA
GetSystemDirectoryA
GetTempPathA
GetSystemTime
SystemTimeToFileTime
FileTimeToSystemTime
RemoveDirectoryA
GetTempFileNameA
WritePrivateProfileStringA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetLastError
SetLastError
GetPrivateProfileIntA
FindFirstFileA
MoveFileExA
FindNextFileA
FindClose
WaitForMultipleObjects
OpenProcess
WaitForSingleObject
GetExitCodeProcess
TerminateProcess
OpenMutexA
CloseHandle
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
MultiByteToWideChar
GetSystemDefaultLCID
Sleep
FreeLibrary
CopyFileA
DeleteFileA
GetLocalTime
SetThreadLocale
GetCommandLineA
GetModuleFileNameA
CompareStringA
CreateThread
GetTimeZoneInformation

user32

CharNextA
GetSysColorBrush
GetDCEx
SetRectEmpty
InflateRect
EndPaint
BeginPaint
GetWindowDC
CharUpperA
RegisterWindowMessageA
WinHelpA
IsChild
GetClassLongA
SetPropA
GetPropA
RemovePropA
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
GetScrollPos
GetSubMenu
GetMenuItemID
GetMenuItemCount
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
DefWindowProcA
CallWindowProcA
GetMenu
IntersectRect
GetWindowPlacement
GetWindowTextLengthA
SetFocus
CopyAcceleratorTableA
GetDlgCtrlID
SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetLastActivePopup
IsWindowEnabled
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
PostQuitMessage
MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
RedrawWindow
OffsetRect
SetActiveWindow
CopyRect
wsprintfW
MonitorFromWindow
GetMonitorInfoA
GetWindow
GetTopWindow
GetWindowLongA
EnumWindows
IsIconic
ShowWindow
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SystemParametersInfoA
TranslateMessage
IsRectEmpty
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
DestroyMenu
UnregisterClassA
DispatchMessageA
GetWindowTextA
GetClassNameA
RegisterClipboardFormatA
SetWindowLongA
CreateWindowExA
LoadImageA
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ScreenToClient
GetSysColor
GetSystemMetrics
MoveWindow
GetCapture
ReleaseCapture
SetCapture
ClientToScreen
GetFocus
DestroyIcon
PtInRect
GetCursorPos
LoadIconA
LoadCursorA
PostThreadMessageA
InvalidateRect
UpdateWindow
GetWindowRect
BringWindowToTop
FillRect
SetCursor
DrawIconEx
SetWindowRgn
EnableWindow
GetParent
KillTimer
SetTimer
GetClientRect
SendMessageA
LoadBitmapA
SetRect
PostMessageA
PeekMessageA
IsWindow
IsDialogMessageA

gdi32

GetTextColor
CombineRgn
SetRectRgn
PatBlt
CreateRectRgnIndirect
CreatePatternBrush
ExtSelectClipRgn
GetRgnBox
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
LineTo
SetMapMode
GetPixel
SetBkMode
RestoreDC
SaveDC
SetBkColor
GetClipBox
GetTextMetricsA
LPtoDP
DPtoLP
GetMapMode
GetBkColor
CreateDCA
GetDeviceCaps
DeleteDC
GetStockObject
DeleteObject
CreateCompatibleDC
BitBlt
StretchBlt
CreateRoundRectRgn
GetTextExtentPoint32A
CreatePen
CreateSolidBrush
CreateFontA
CreateCompatibleBitmap
GetObjectA
CreateBitmap
FillRgn
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetTextColor
CreateFontIndirectA
SelectObject
MoveToEx

msimg32

TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

LookupPrivilegeValueA
GetTokenInformation
RegQueryValueA
RegDeleteKeyA
RegisterEventSourceA
ReportEventA
DeregisterEventSource
RegOpenKeyExW
RegQueryValueExW
ChangeServiceConfigA
QueryServiceConfigA
DeleteService
ControlService
OpenServiceA
StartServiceA
QueryServiceStatus
CloseServiceHandle
OpenSCManagerA
CreateServiceA
ChangeServiceConfig2A
RegOpenKeyA
CreateWellKnownSid
GetNamedSecurityInfoA
GetExplicitEntriesFromAclA
DeleteAce
SetNamedSecurityInfoA
LookupAccountSidA
AdjustTokenPrivileges
GetFileSecurityA
InitializeSecurityDescriptor
GetSecurityDescriptorDacl
GetAclInformation
GetLengthSid
InitializeAcl
GetAce
EqualSid
AddAce
AddAccessAllowedAce
SetSecurityDescriptorDacl
GetSecurityDescriptorControl
SetFileSecurityA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegEnumKeyA
LookupAccountNameA
IsValidSid
GetSidIdentifierAuthority
GetSidSubAuthorityCount
GetSidSubAuthority
OpenProcessToken

shell32

SHGetSpecialFolderPathA
SHGetFolderPathA
ShellExecuteExA
ord680
DragFinish
DragQueryFileA
DragAcceptFiles
SHGetFolderPathW
ShellExecuteA
ShellExecuteW

comctl32

ord17
_TrackMouseEvent

shlwapi

PathAppendA
PathRemoveBackslashA
PathFindFileNameA
SHDeleteKeyA
PathFindExtensionA
PathStripToRootA
PathIsUNCA

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
CoUninitialize
CoInitialize
CoCreateInstance
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
CoTaskMemAlloc
CoGetClassObject
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes

oleaut32

VariantClear
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
SysAllocStringByteLen
SysStringLen
VariantChangeType
OleLoadPicture
SysAllocStringLen
SysAllocString
SysFreeString
VariantInit

urlmon

URLDownloadToFileA

ws2_32

WSASetLastError
shutdown
accept
connect
getsockopt
inet_addr
gethostbyname
recvfrom
sendto
send
WSACleanup
closesocket
ntohl
ntohs
recv
WSAStartup
socket
setsockopt
htonl
htons
bind
listen
select
__WSAFDIsSet
ioctlsocket
WSAGetLastError

crypt32

CertOpenStore
CryptQueryObject
CryptMsgGetParam
CertFindCertificateInStore
CertCloseStore
CryptMsgClose
CertFreeCertificateContext
CryptDecodeObject
CertGetNameStringA

wintrust

WinVerifyTrustEx

imagehlp

ImageGetCertificateData
ImageEnumerateCertificates

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 441KB - Virtual size: 441KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

846335a1d2025f431b93aa1571478040

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

0f:f5:03:34:76:03:fb:03:4b:12:c6:db:62:fe:6c:3fCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0f:f5:03:34:76:03:fb:03:4b:12:c6:db:62:fe:6c:3fCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

81:f9:fd:7c:cc:12:a1:c1:1d:f8:02:db:bc:e0:3a:f4:7f:b1:39:2e:ca:a4:d1:7d:0c:70:ec:36:fb:c5:d7:e4Signer

7e:0b:6f:ac:4a:ef:39:8f:6f:16:e5:b7:5d:cc:74:e6:f1:d1:58:a3Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

wininet

iphlpapi

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

ws2_32

crypt32

wintrust

imagehlp

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 441KB - Virtual size: 441KB

.data Size: 50KB - Virtual size: 73KB

.rsrc Size: 88KB - Virtual size: 87KB

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

0f:f5:03:34:76:03:fb:03:4b:12:c6:db:62:fe:6c:3f
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0f:f5:03:34:76:03:fb:03:4b:12:c6:db:62:fe:6c:3f
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

81:f9:fd:7c:cc:12:a1:c1:1d:f8:02:db:bc:e0:3a:f4:7f:b1:39:2e:ca:a4:d1:7d:0c:70:ec:36:fb:c5:d7:e4
Signer

7e:0b:6f:ac:4a:ef:39:8f:6f:16:e5:b7:5d:cc:74:e6:f1:d1:58:a3
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 441KB - Virtual size: 441KB

.data
Size: 50KB - Virtual size: 73KB

.rsrc
Size: 88KB - Virtual size: 87KB