c925ac758d0630af4a538b9bade560fef0112ae03cdd5cd00fbf66869ec1b07c

Sharing

Copy URL Twitter E-mail

General

Target

c925ac758d0630af4a538b9bade560fef0112ae03cdd5cd00fbf66869ec1b07c
Size

4.3MB
MD5

2f405c1280d15e942585f4a83728290c
SHA1

4895b72e6eb44a32b0b58e8ffe3a7d640bed4271
SHA256

c925ac758d0630af4a538b9bade560fef0112ae03cdd5cd00fbf66869ec1b07c
SHA512

1f9157fdc0eecf55a233c141104863c565b4008d4d37ab4c96258e497effa0e3e2a016a2350fb3546e15143d78bea3cedebf68849c2b30545f03d7f2412e1c31
SSDEEP

98304:rcp8Kp5LJW8s6sRgL4H2cN+QWxe4b+1Mju9/BlyU5zu:C8g9s6sRgsH2cNPDiC1u

Score

1^/10

Malware Config

Signatures

Files

c925ac758d0630af4a538b9bade560fef0112ae03cdd5cd00fbf66869ec1b07c
.exe windows:5 windows x86 arch:x86

1e62385efa372ab86f108f659835af1c

Code Sign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

29:5b:f8:6e:85:26:53:40:33:13:83:7b
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

26/04/2023, 03:04

Not After

26/04/2026, 03:04

Subject

SERIALNUMBER=911101026662879416,CN=Beijing Qihu Technology Co.\, Ltd.,O=Beijing Qihu Technology Co.\, Ltd.,STREET=朝阳区酒仙桥路6号院2号楼1至19层104号内8层801,L=Beijing,ST=Beijing,C=CN,1.3.6.1.4.1.311.60.2.1.2=#13074265696a696e67,1.3.6.1.4.1.311.60.2.1.3=#1302434e,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

01:19:75:74:71:c9:92:d7:44:df:a5:96:eb:b9:70:15
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

02/11/2023, 10:30

Not After

04/12/2034, 10:30

Subject

CN=Globalsign TSA for Advanced - G4 - 202311,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10/12/2014, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e4:ac:dc:f1:c7:53:bf:0b:3f:5b:48:5a:19:c8:3d:65:6e:4d:91:4d:54:51:5a:e4:41:1e:25:75:61:df:4b:1a
Signer

Actual PE Digest

e4:ac:dc:f1:c7:53:bf:0b:3f:5b:48:5a:19:c8:3d:65:6e:4d:91:4d:54:51:5a:e4:41:1e:25:75:61:df:4b:1a

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\vmagent_new\bin\joblist\846566\out\Release\SoftMgr.pdb

Imports

kernel32

CreateProcessW
GetTempPathW
GetCurrentProcess
GetExitCodeThread
GetModuleHandleA
GetFileAttributesExW
SystemTimeToTzSpecificLocalTime
GlobalAlloc
GlobalLock
GlobalUnlock
ExpandEnvironmentStringsW
lstrcmpiW
lstrcmpW
GetTempFileNameW
WritePrivateProfileStringW
FlushViewOfFile
SetEndOfFile
GlobalSize
GetExitCodeProcess
GlobalFree
CreateDirectoryW
FreeResource
VirtualQuery
GetDiskFreeSpaceExW
GetStartupInfoW
MoveFileW
CopyFileW
SystemTimeToFileTime
FindFirstFileA
FindNextFileA
FindClose
FindFirstFileW
FindNextFileW
OpenEventW
CreateThread
DeviceIoControl
GetLocalTime
WaitForMultipleObjects
GetVersion
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
WriteProcessMemory
CreateRemoteThread
ReadProcessMemory
VirtualFreeEx
OpenThread
CreateJobObjectW
AssignProcessToJobObject
ResumeThread
LocalFileTimeToFileTime
QueryInformationJobObject
GetWindowsDirectoryW
GetLogicalDriveStringsW
GetDriveTypeW
GetFullPathNameW
SearchPathW
lstrcpynW
TerminateThread
GetEnvironmentVariableW
CreateNamedPipeW
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
ConnectNamedPipe
OutputDebugStringA
GetVolumeInformationW
RemoveDirectoryW
SetThreadLocale
GetWindowsDirectoryA
lstrlenA
SuspendThread
GetModuleHandleExW
lstrcpyW
SetFileAttributesW
SetFilePointerEx
CreateFileA
GetModuleFileNameA
ProcessIdToSessionId
DuplicateHandle
QueryPerformanceCounter
GetCurrentThread
GetSystemDirectoryA
GetFileAttributesA
GetFileTime
lstrcmpA
GetDiskFreeSpaceExA
GetDriveTypeA
GetLogicalDriveStringsA
lstrcmpiA
GetPrivateProfileStringA
WritePrivateProfileStringA
EnumResourceNamesW
FindResourceExA
BeginUpdateResourceA
UpdateResourceA
UpdateResourceW
EndUpdateResourceW
SetThreadPriority
OpenEventA
OpenMutexW
DeleteFileA
RemoveDirectoryA
FormatMessageA
GetCurrentDirectoryW
GetStdHandle
MoveFileExW
DeleteFileW
GetFileSizeEx
ReadFile
GetPrivateProfileIntW
GetPrivateProfileStringW
SetFilePointer
OutputDebugStringW
WriteFile
WriteConsoleW
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindFirstFileExW
CreatePipe
FlushFileBuffers
GetConsoleOutputCP
ReadConsoleW
GetConsoleMode
IsValidLocale
GetFileType
ExitProcess
FreeLibraryAndExitThread
ExitThread
RtlUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapWalk
HeapUnlock
HeapLock
GetACP
VerSetConditionMask
VerifyVersionInfoW
QueryPerformanceFrequency
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
IsDebuggerPresent
GetCPInfo
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SwitchToThread
FormatMessageW
GetStringTypeW
OpenProcess
GetBinaryTypeW
FileTimeToSystemTime
ExpandEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcessId
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcessHeap
HeapSize
HeapDestroy
EnumSystemLocalesW
GetUserDefaultLCID
GetFileSize
InitializeCriticalSection
GetCommandLineW
GetModuleHandleW
MoveFileA
GetSystemDefaultLangID
GetUserDefaultLangID
GetThreadLocale
GetLocaleInfoW
LCMapStringW
WideCharToMultiByte
MultiByteToWideChar
CompareStringW
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
CreateFileW
MulDiv
SetThreadAffinityMask
LocalFree
LocalAlloc
LoadLibraryW
GetProcAddress
GetModuleFileNameW
FreeLibrary
UnmapViewOfFile
MapViewOfFileEx
MapViewOfFile
OpenFileMappingW
CreateFileMappingW
VirtualAllocEx
VirtualFree
VirtualAlloc
GetNativeSystemInfo
GetVersionExW
GetSystemDirectoryW
GetTickCount
GetSystemTimeAsFileTime
GetSystemInfo
GlobalMemoryStatusEx
GetCurrentThreadId
TerminateProcess
Sleep
CreateEventW
CreateEventA
CreateMutexW
WaitForSingleObjectEx
WaitForSingleObject
lstrlenW
ReleaseMutex
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
HeapFree
HeapReAlloc
HeapAlloc
SetErrorMode
SetLastError
GetLastError
RaiseException
CloseHandle
AreFileApisANSI
GetLongPathNameW
GetFileAttributesW

user32

keybd_event
GetCursorInfo
SetCursorPos
ShowCursor
GetSystemMetrics
GetDC
ReleaseDC
SystemParametersInfoW
MonitorFromWindow
SetWindowLongW
UnregisterClassW
DrawTextW
GetClipboardData
IsClipboardFormatAvailable
UnionRect
GetKeyState
GetUpdateRect
IsIconic
CopyRect
FindWindowExW
PeekMessageW
TranslateMessage
DispatchMessageW
SetParent
WindowFromPoint
GetWindowRect
GetMessageW
PtInRect
OpenClipboard
EmptyClipboard
CloseClipboard
SetClipboardData
wsprintfW
EndDialog
EnableWindow
EndPaint
ClientToScreen
RegisterClassExW
GetClassInfoExW
CreateWindowExW
GetWindowLongW
DefWindowProcW
CallWindowProcW
DestroyWindow
SetTimer
KillTimer
SendMessageW
GetDlgItem
GetCursorPos
ScreenToClient
GetParent
ShowWindow
FindWindowW
GetWindowThreadProcessId
WaitForInputIdle
SendMessageTimeoutW
GetForegroundWindow
GetIconInfo
GetClassInfoW
RegisterClassW
MessageBoxW
IntersectRect
TrackMouseEvent
IsRectEmpty
UpdateLayeredWindow
SetCursor
CreateIconIndirect
IsWindowEnabled
UpdateWindow
ExitWindowsEx
PostQuitMessage
EnumWindows
GetWindowPlacement
SendMessageA
GetWindowTextA
GetAsyncKeyState
SetWindowRgn
MessageBoxA
FindWindowA
GetClassNameA
EnumDesktopWindows
MsgWaitForMultipleObjects
AttachThreadInput
SetForegroundWindow
BringWindowToTop
SetActiveWindow
SetWindowTextW
SetWindowPos
IsWindowVisible
LoadImageW
DestroyIcon
IsZoomed
AppendMenuW
TrackPopupMenu
MapWindowPoints
PostMessageW
LoadCursorW
InflateRect
mouse_event
LoadStringA
OffsetRect
EqualRect
IsWindow
CreatePopupMenu
MonitorFromPoint
GetMonitorInfoW
DestroyMenu
IsChild
GetClientRect
MoveWindow
SetFocus
DestroyAcceleratorTable
GetDesktopWindow
InvalidateRect
InvalidateRgn
FillRect
ReleaseCapture
RegisterWindowMessageW
SetCapture
CreateAcceleratorTableW
RedrawWindow
CharNextW
GetSysColor
GetClassNameW
GetWindow
GetWindowTextLengthW
GetFocus
GetActiveWindow
DialogBoxParamW
GetLastInputInfo
GetWindowTextW
BeginPaint

gdi32

SetTextColor
GetBitmapBits
InvertRgn
DPtoLP
CreateFontIndirectW
GetDIBits
CreateDIBSection
SetDIBColorTable
SetBkMode
SetStretchBltMode
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteObject
BitBlt
GetStockObject
GetObjectW
DeleteDC
CreateRoundRectRgn
GetDeviceCaps
GetWindowOrgEx
CreateRectRgnIndirect
SaveDC
ExtSelectClipRgn
RestoreDC
SetWindowOrgEx
StretchBlt
SetBkColor
GetObjectA
CreateBitmap

advapi32

RegQueryInfoKeyA
RegEnumValueA
RegEnumKeyExA
BuildExplicitAccessWithNameW
SetNamedSecurityInfoW
GetNamedSecurityInfoW
SetEntriesInAclW
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
RegCloseKey
RegCreateKeyExA
RegCreateKeyExW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueA
RegDeleteValueW
RegEnumKeyW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExA
RegSetValueExW
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
GetUserNameW
OpenProcessToken
GetTokenInformation
ConvertSidToStringSidW
RegQueryInfoKeyW
RegEnumKeyExW
LookupAccountSidW
RegOpenKeyW
RegEnumValueW
LookupAccountNameW
IsValidSid
GetSidIdentifierAuthority
GetSidSubAuthorityCount
GetSidSubAuthority
LookupPrivilegeValueW
AdjustTokenPrivileges
DuplicateToken

shell32

ord165
SHCreateDirectoryExW
ShellExecuteExW
Shell_NotifyIconW
SHBrowseForFolderW
SHGetSpecialFolderPathW
SHGetSpecialFolderPathA
SHCreateDirectoryExA
SHGetFolderPathW
SHGetPathFromIDListW
ShellExecuteW

ole32

PropVariantClear
CoUninitialize
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal
OleUninitialize
StringFromGUID2
OleLockRunning
CoCreateInstance
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
OleInitialize
CoInitialize
CoTaskMemRealloc
StringFromCLSID
CoLoadLibrary

oleaut32

SafeArrayLock
SysFreeString
SafeArrayUnlock
SafeArrayCreate
SafeArrayDestroy
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayCopy
SafeArrayGetVartype
SysAllocString
VariantInit
VariantClear
SystemTimeToVariantTime
SysStringByteLen
SysAllocStringByteLen
DispCallFunc
SysStringLen
LoadRegTypeLi
LoadTypeLi
SysAllocStringLen
VarBstrCmp
VariantCopy
VarUI4FromStr
OleCreateFontIndirect
VariantChangeType
VariantTimeToSystemTime

shlwapi

PathBuildRootW
PathRemoveFileSpecA
StrToInt64ExA
StrStrW
StrChrW
StrRChrW
PathCanonicalizeW
ord176
PathUnquoteSpacesW
StrCmpNIW
PathAddBackslashW
StrCmpW
SHSetValueW
PathRemoveExtensionW
UrlGetPartW
PathFileExistsA
PathFindFileNameA
PathRemoveExtensionA
StrCmpNIA
StrRStrIA
StrRStrIW
SHGetValueA
StrFormatByteSizeA
PathIsDirectoryA
PathIsRelativeW
PathAddBackslashA
ord12
StrStrA
PathIsRelativeA
SHStrDupW
SHSetValueA
PathStripPathW
PathIsPrefixW
PathIsRootW
StrCpyNW
PathGetDriveNumberW
UrlIsW
SHDeleteKeyW
PathFileExistsW
StrCmpIW
PathAppendW
PathCombineW
PathFindFileNameW
PathRemoveFileSpecW
SHGetValueW
StrFormatByteSizeW
StrToIntW
PathIsDirectoryW
StrStrIA
SHDeleteValueW
StrStrIW
PathFindExtensionW
PathRemoveBackslashW
PathAppendA

ws2_32

WSAStartup
inet_ntoa
gethostbyname

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

psapi

GetModuleFileNameExW
EnumProcessModules
GetProcessImageFileNameW
GetModuleBaseNameW

setupapi

SetupIterateCabinetW

gdiplus

GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipCreateSolidFill
GdipFillPath
GdipCreateLineBrushFromRectI
GdipDrawLineI
GdipSetPenDashStyle
GdipSetPenDashArray
GdipDrawRectangleI
GdipDrawPath
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipDeleteFont
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipClosePathFigure
GdipDrawEllipse
GdipFillEllipse
GdipMeasureString
GdipDrawImageRectRect
GdipCloneBitmapAreaI
GdipGetImageGraphicsContext
GdipCreateHICONFromBitmap
GdipAddPathEllipse
GdipDrawImageRectRectI
GdipDeleteBrush
GdipCreateFromHDC
GdipCreateBitmapFromFile
GdipGetWorldTransform
GdipCreateBitmapFromStream
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetImageFlags
GdipGetImageRawFormat
ord1
GdipDrawString
GdipAddPathLine
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageHorizontalResolution
GdipGetImageVerticalResolution
GdipCreateLineBrushFromRect
GdipDrawArc
GdipFillRegion
GdipSetPathGradientFocusScales
GdipDeleteRegion
GdipCreateRegionPath
GdipSetPathGradientWrapMode
GdipSetPathGradientPresetBlend
GdipCreatePathGradientFromPath
GdipAddPathPath
GdipDeletePath
GdipAddPathRectangle
GdipRotateWorldTransform
GdipSaveImageToStream
GdipGetPropertySize
GdipGetAllPropertyItems
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateBitmapFromScan0
GdipSetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipFree
GdipBitmapSetResolution
GdipSetPropertyItem
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipDeletePen
GdipCreatePen1
GdipSetSmoothingMode
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateHBITMAPFromBitmap
GdipTranslateWorldTransform
GdipCreatePath
GdipSetPixelOffsetMode
GdipLoadImageFromFile
GdipImageRotateFlip
GdipDrawImageRect
GdipSetWorldTransform
GdipRotateMatrix
GdipTranslateMatrix
GdipDeleteMatrix
GdipCreateMatrix
GdipCreatePen2
GdipSetLineBlend
GdipCreateBitmapFromStreamICM
GdipCloneBrush
GdipDeleteGraphics

msimg32

AlphaBlend

comctl32

ord17
_TrackMouseEvent
InitCommonControlsEx

winmm

timeKillEvent
timeSetEvent

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

crypt32

CryptBinaryToStringA
CryptStringToBinaryA
CertGetNameStringW
CryptStringToBinaryW
CryptBinaryToStringW

iphlpapi

GetAdaptersInfo
GetNetworkParams

urlmon

UrlMkSetSessionOption
ObtainUserAgentString

wininet

InternetCrackUrlW

wintrust

WTHelperProvDataFromStateData
WinVerifyTrust

wtsapi32

WTSQuerySessionInformationW
WTSFreeMemory

msi

ord173
ord217

Exports

Exports

??4OceanDelegate@@QAEAAU0@$$QAU0@@Z
??4OceanDelegate@@QAEAAU0@ABU0@@Z
??4ShellResourceRequestDetails@@QAEAAU0@ABU0@@Z

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 682KB - Virtual size: 681KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e62385efa372ab86f108f659835af1c

Code Sign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:edCertificate

Extended Key Usages

Key Usages

29:5b:f8:6e:85:26:53:40:33:13:83:7bCertificate

Extended Key Usages

Key Usages

01:19:75:74:71:c9:92:d7:44:df:a5:96:eb:b9:70:15Certificate

Extended Key Usages

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51Certificate

Key Usages

e4:ac:dc:f1:c7:53:bf:0b:3f:5b:48:5a:19:c8:3d:65:6e:4d:91:4d:54:51:5a:e4:41:1e:25:75:61:df:4b:1aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

ws2_32

version

psapi

setupapi

gdiplus

msimg32

comctl32

winmm

imm32

crypt32

iphlpapi

urlmon

wininet

wintrust

wtsapi32

msi

Exports

Exports

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 682KB - Virtual size: 681KB

.data Size: 105KB - Virtual size: 138KB

.rsrc Size: 119KB - Virtual size: 119KB

.reloc Size: 234KB - Virtual size: 234KB

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

29:5b:f8:6e:85:26:53:40:33:13:83:7b
Certificate

01:19:75:74:71:c9:92:d7:44:df:a5:96:eb:b9:70:15
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

e4:ac:dc:f1:c7:53:bf:0b:3f:5b:48:5a:19:c8:3d:65:6e:4d:91:4d:54:51:5a:e4:41:1e:25:75:61:df:4b:1a
Signer

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 682KB - Virtual size: 681KB

.data
Size: 105KB - Virtual size: 138KB

.rsrc
Size: 119KB - Virtual size: 119KB

.reloc
Size: 234KB - Virtual size: 234KB