9645096bc9e53a83a9aaa69a13c82fea38c8719faf27298afd25892bd9f788ec[.]rar

Resubmissions

24/02/2025, 12:08

250224-pa55aa1pw5 10

24/02/2025, 09:40

250224-lnmnbavpt3 10

20/02/2025, 03:42

250220-d9d93awkdk 10

Sharing

Copy URL

Twitter E-mail

General

Target

9645096bc9e53a83a9aaa69a13c82fea38c8719faf27298afd25892bd9f788ec.rar
Size

3.6MB
MD5

8758b53f36c2aea61ac9fd05bd639f2a
SHA1

a7e9cf336e16f7305bbc5bb65bc8c292da186a15
SHA256

9645096bc9e53a83a9aaa69a13c82fea38c8719faf27298afd25892bd9f788ec
SHA512

cfdd89553b3e670cc2bab45069cab7b2c639996809962b6c1252eb9adda679a91f7f3840ec580159a5eb3890482355426e66d74b3243c99031ee88a1be4cca97
SSDEEP

98304:phWlB/fA5eSshKViWvuKBC2aMsicrcOr4qdVT4zK:pCu5c8cVKBvTcrzVT4zK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/libvlc.dll

Files

9645096bc9e53a83a9aaa69a13c82fea38c8719faf27298afd25892bd9f788ec.rar
.rar
01NEW_PURCHASE_ORDER_654576554.exe
.exe windows:4 windows x64 arch:x64

9a00b4d9cbb0969e8648268eb15ff6e1

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/06/2024, 00:00

Not After

08/06/2027, 23:59

Subject

CN=VideoLAN,O=VideoLAN,L=Paris,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/06/2024, 00:00

Not After

08/06/2027, 23:59

Subject

CN=VideoLAN,O=VideoLAN,L=Paris,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

28:2a:aa:08:e7:fc:95:81:4a:af:f4:cb:44:da:88:14:a9:85:7a:ba:0a:d7:e9:ab:c8:4c:8a:89:7d:44:18:78
Signer

Actual PE Digest

28:2a:aa:08:e7:fc:95:81:4a:af:f4:cb:44:da:88:14:a9:85:7a:ba:0a:d7:e9:ab:c8:4c:8a:89:7d:44:18:78

Digest Algorithm

sha256

PE Digest Matches

true

9b:00:2c:44:d8:68:8b:47:84:8a:07:a5:35:e5:4c:3a:ac:6a:a3:25
Signer

Actual PE Digest

9b:00:2c:44:d8:68:8b:47:84:8a:07:a5:35:e5:4c:3a:ac:6a:a3:25

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

Imports

libvlc

libvlc_add_intf
libvlc_new
libvlc_playlist_play
libvlc_release
libvlc_set_app_id
libvlc_set_user_agent
libvlc_wait

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegOpenKeyExW
RegQueryValueExW

kernel32

CloseHandle
CreateDirectoryW
CreateFileW
CreateSemaphoreW
CreateThread
DeleteCriticalSection
DeleteFileW
DuplicateHandle
EnterCriticalSection
FindClose
FindFirstFileW
FindNextFileW
FreeLibrary
GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessId
GetStartupInfoA
GetSystemTimeAsFileTime
GetThreadContext
GetTickCount
HeapSetInformation
InitializeCriticalSection
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryW
LocalFree
MultiByteToWideChar
OpenThread
QueryPerformanceCounter
RaiseException
ReleaseSemaphore
ResetEvent
ResumeThread
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlUnwindEx
RtlVirtualUnwind
SetErrorMode
SetEvent
SetLastError
SetNamedPipeHandleState
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransactNamedPipe
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
VirtualQueryEx
WaitForMultipleObjects
WaitForSingleObject
WaitNamedPipeW
WideCharToMultiByte
WriteFile

msvcrt

__C_specific_handler
___lc_codepage_func
__dllonexit
__getmainargs
__initenv
__iob_func
__lconv_init
__mb_cur_max
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_exit
_fileno
_fmode
_fstat64
fwprintf
_initterm
_lock
_lseeki64
_onexit
_setmode
_strnicmp
_unlock
abort
calloc
exit
fclose
fflush
fopen
fprintf
fputc
fputs
fputwc
free
fwprintf
fwrite
getenv
isspace
iswctype
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
raise
rand
realloc
setlocale
setvbuf
signal
sprintf
strcmp
strcoll
strerror
strftime
strlen
strncmp
strtoul
strxfrm
towlower
towupper
vfprintf
wcscat_s
wcscmp
wcscoll
wcscpy
wcsftime
wcslen
wcsncmp
wcstol
wcsxfrm
_snwprintf
_write
_read
_putenv
_open
_fileno
_fdopen
_close

shell32

CommandLineToArgvW
SHGetFolderPathW

user32

MessageBoxW

wininet

HttpAddRequestHeadersW
HttpOpenRequestW
HttpQueryInfoW
HttpSendRequestW
InternetCloseHandle
InternetConnectW
InternetCrackUrlW
InternetOpenW
InternetQueryDataAvailable
InternetReadFile
InternetSetOptionW

Exports

Exports

WinMain

Sections

.text
Size: 682KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 66B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libvlc.dll
.dll windows:6 windows x64 arch:x64

d61135040553431f58312b63fefdf1ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

~TQCB[*uMuPFnfLN0q!2auleBtu[{Z7>d^y#uEY+2wcK.cK,ydCb%7na~i,Pj+B$nkN;>oNtG

Imports

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegEnumKeyExW
RegEnumValueW
GetTokenInformation

bcrypt

BCryptCreateHash
BCryptFinishHash
BCryptGetProperty
BCryptHashData
BCryptOpenAlgorithmProvider
BCryptCloseAlgorithmProvider
BCryptDestroyHash
BCryptGenRandom

kernel32

RtlUnwind
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
EncodePointer
RaiseException
RtlPcToFileHeader
QueryPerformanceCounter
SetLastError
FormatMessageW
GetLastError
GetCPInfoExW
GetConsoleMode
GetFileType
ReadFile
ReadConsoleW
WriteFile
WriteConsoleW
GetConsoleOutputCP
GetStdHandle
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
GetExitCodeProcess
CreateProcessW
TerminateProcess
OpenProcess
K32EnumProcesses
GetProcessId
DuplicateHandle
CreatePipe
GetCurrentProcess
GetConsoleCP
CloseThreadpoolIo
GetCurrentProcessId
RaiseFailFastException
TzSpecificLocalTimeToSystemTime
SystemTimeToFileTime
FileTimeToSystemTime
GetSystemTime
GetCalendarInfoEx
CompareStringOrdinal
CompareStringEx
FindNLSStringEx
GetLocaleInfoEx
ResolveLocaleName
GetUserPreferredUILanguages
FindStringOrdinal
GetTickCount64
GetCurrentThread
WaitForSingleObject
Sleep
DeleteCriticalSection
LocalFree
EnterCriticalSection
SleepConditionVariableCS
LeaveCriticalSection
WakeConditionVariable
InitializeCriticalSection
InitializeConditionVariable
WaitForMultipleObjectsEx
CreateThreadpoolWait
SetThreadpoolWait
WaitForThreadpoolWaitCallbacks
CloseThreadpoolWait
CreateThreadpoolWork
CloseThreadpoolWork
SubmitThreadpoolWork
QueryPerformanceFrequency
GetFullPathNameW
GetLongPathNameW
LocalAlloc
GetProcAddress
LocaleNameToLCID
LCMapStringEx
EnumTimeFormatsEx
EnumCalendarInfoExEx
CreateIoCompletionPort
CopyFileExW
CreateDirectoryW
CreateFileW
CreateThreadpoolIo
StartThreadpoolIo
CancelThreadpoolIo
DeleteFileW
DeviceIoControl
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FlushFileBuffers
FreeLibrary
GetCurrentDirectoryW
GetFileAttributesExW
GetFileInformationByHandleEx
GetModuleFileNameW
GetOverlappedResult
GetSystemDirectoryW
LoadLibraryExW
SetFileAttributesW
SetFileInformationByHandle
SetFilePointerEx
SetThreadErrorMode
CreateThread
ResumeThread
GetThreadPriority
SetThreadPriority
GetDynamicTimeZoneInformation
GetTimeZoneInformation
GetCurrentProcessorNumberEx
SetEvent
ResetEvent
CreateEventExW
GetEnvironmentVariableW
GetFileAttributesW
ExitProcess
FreeConsole
FlushProcessWriteBuffers
WaitForSingleObjectEx
RtlVirtualUnwind
RtlCaptureContext
RtlRestoreContext
AddVectoredExceptionHandler
FlsAlloc
FlsGetValue
FlsSetValue
CreateEventW
SwitchToThread
GetCurrentThreadId
SuspendThread
GetThreadContext
SetThreadContext
FlushInstructionCache
VirtualAlloc
VirtualProtect
VirtualFree
QueryInformationJobObject
GetModuleHandleW
GetModuleHandleExW
GetProcessAffinityMask
InitializeContext
GetEnabledXStateFeatures
SetXStateFeaturesMask
InitializeCriticalSectionEx
VirtualQuery
GetSystemTimeAsFileTime
DebugBreak
SleepEx
GlobalMemoryStatusEx
GetSystemInfo
GetLogicalProcessorInformation
GetLogicalProcessorInformationEx
GetLargePageMinimum
VirtualUnlock
VirtualAllocExNuma
IsProcessInJob
GetNumaHighestNodeNumber
GetProcessGroupAffinity
K32GetProcessMemoryInfo
InterlockedFlushSList
RtlUnwindEx
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlLookupFunctionEntry
InitializeSListHead

ole32

CoTaskMemAlloc
CoGetApartmentType
CoCreateGuid
CoTaskMemFree
CoWaitForMultipleHandles
CoUninitialize
CoInitializeEx

user32

LoadStringW

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc
calloc

api-ms-win-crt-math-l1-1-0

nanf
fmod
fmodf
cos
nan
modf
tan
sin
floor
ceil
pow

api-ms-win-crt-string-l1-1-0

wcsncmp
strncpy_s
_stricmp
strcmp
strcpy_s

api-ms-win-crt-convert-l1-1-0

strtoull

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_register_onexit_function
_initterm
_execute_onexit_table
_initialize_narrow_environment
_crt_atexit
abort
_initterm_e
_configure_narrow_argv
_cexit
terminate
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__stdio_common_vsprintf_s
__stdio_common_vsscanf
__acrt_iob_func

Exports

Exports

00KAEMdaUeY5
00KWbb4lSPB2FpVkGKbWTo4SPu
01Z0vYVxpgBPguWCrdouGb7cTmMm
02kOgrwLHz7wR2wbS8L
04DSbZxzwSA
06ig9xNNRpB0slwJ0T697Q
0AQGXe8
0Ai8BdFPkCp8U7eoxi9LwLB9b
0DYq7CttHEohw
0DjmeRGofFBjoUYp6ioepsxmK1rUO6
0GjyRBwmBX52MGRU0cWXHZgyN
0KasOLAlQObL8R6ABf
0LqZWhslNm
0LtlAKbVEvuNIlagoEJ2
0MAfDxLCoBHDOvqCnLJZ8ag2GZm8l
0MvcGnsmzNLQucW1XRSZ
0N0RJ1ZUNg
0NEw8RzO2LttjSn72Oneu4qDvJ
0NgwI8iGjcy
0RDtGhuIPvApt96XqHq6j
0WCdcCwoC
0WpCN5NB96nnoB2dm6kAP2jCj
0X8IRY7iME53NhEbFRx
0Yj9njmjNlgT
0Ym3JLKUXzNaaODY7f
0YrTJSpmRLtGUsvTN4X6LC03o
0cpGnkNc8RYDg0wzebfxJwgZzswMwM
0e72HRS5ItUGgQ
0efhz654mdBAZyrKIx
0fE7tdeYT31WBijglSpuUz8MGzDf
0gms5v2tmC3RL4kDVuYqc49XrcTAiSU5
0h4OaA3tN2597
0i4AFXoWyIKhFbB51
0j6ZCvgwfFONZFGTbrCmr7mH9
0jxg6PUSKsZdllDy
0lZLw9xlJ3JKNN0ryju6NUTJw5
0lnCLTmx7jQhqjWjxV6jsYWzKRLpHmW
0m29nbpPpiFudwE7Z4Qkwm8Ubig
0oaZQkIOvjd79J9lkM
0r8ZxEAPs8JP5FHR5Va1kJ
0rEL0KrGvlDEr5oTkf2YF6
0tHGp7XatNofVq4h5Vmj
0wNXtmng3trZJ90M8LTqO3vEVESyDtix
0xHx3jV
0xtqLHEajQebk3jHh4Jh
0zHWqSFzmTzBZ8s3
12Cwmx89JjNHs8XfwKCiZrVIOKjdu86
13VQWlqWayj9cXDDySyis8OQeLOZ
16DbybO91YMJnfOysa478wU
16MGP39cp
17qsPOUcAXYOaRYHB
18ZqKxjCyaMidy5
19ChE1xsI
19Ep1L9QEozZv0gPX27oLSv2R
1AhQgxZtf9OKqgkj7PSmeUYJ
1AxbZaMFkGniejucbSoGFT
1BBaYIQCXJjiNmPyFs9VUe8
1Bk3gar5YSLJr
1C7XTOMzrBcdIpMGE2A5majASwu1SvjC
1GIbt4ZTA
1HgRWXVbsCcrfwNVr8jU4hF9pOt6QdY
1Ij9JLTAesZ7QNk2AkEKiH2bX
1KWrCkL
1LXJRVe2
1MCK41m
1NMvtmmLtItHMNsNqVP
1OXikZQWahtXzbCox
1OhM35odkdWU3Ho0ont4v2N1
1RadA8wGPUsflHDBeYnTpxCANO
1TAWREgQ
1WrzhwDmpU5EoePyRqgy
1XNBhiTgvpAR7xHcboKAcp73biPmh
1XTvwMMPDyL03AUD1HL
1XXBeGUPlbT
1Z89oIfdlaEkE3
1ZWhhYR3k
1ZdlyWslwVhxVMRKCX
1bs3qSfmRnRYqLPmicGOasjga
1bxDtvTtL3iCbQwbPbNLP
1dsy0GQ
1fZ1PdVxS7qso0Fyr38RiZ
1ht01Ns4Oqm9c0lw24Ti1M
1ihpbZIgHIKWlCNjDSO6MeuPFO
1jQJzGARp9g8vJMIy
1kOWcn3znyqrypSw5RuuvJsSZZYlReNe
1nhmB5cRVfmwgV4063Pn5bV7doic
1ofl56hDoEpecnN8gDCfZyWk
1qEnD4n6S7OnR11uPTZ
1rJHXYwofnUT6d68bnQkLbIrIWw
1tvSu0ff
1uWZ5NOUd64wrfrK1rg7NST
1v3WKJTUh
1xlzBApA0WDEmAK4KaLsRMf5u1pPcSt
1yAYJdTqiHd1SbgbLAWYXzyUSXMwPQ4
20OprnSkdLcd3nBZiww9
20boj2wCIrDZZlNumdn6xyJK4Sp
20gRjGVY7B79Th3r
22kmzjfYKhzSC2n37N30G9p8HIY
23PUOMG
247F472qSFKfkYrJ3kibDUfQ7
24VhKaQ6FEcVm
26cGgXUvbWsqgg6K9jbmXnE62kE3
26wSeQJtLlVWWzOWgjR3JlcbkD
2BeYYKr3UL44Zk6CGBR8Ugk
2DDQ36dNAbHnDWt
2F6pLL5R
2GXY9Kbi16Vs03UUegMa
2KGiCkhnKZXfCKxKORXT5R
2LcosNWBZMKso5Zkrg3ZY3vgvIlu
2MKOb8Gxmv9QUD5RDpPMPIRdsrBK
2MwkqDsB0vYW9m2JubJA5VVLkNL
2Nerqu7DC99sKWctXBvTOufY6WtD
2OScS1cCcJjOAOr8y3DT3GPnzBNj
2OegAoMPI
2PFyr8ID9k2MMt
2QO0mS8yR4ReaSJ
2ShaXQn3qK5f7REj4OH
2T8qGBQXAWUA2dj
2U0adiNM
2UvXoX0yBcpZv7vzR8rOo
2Xh3UlTBtHr4hGzU
2Y3RVZ4gNyIXd7kR7
2YHY5pPLCwAf0dB0AfV
2Yamq5mgnQd
2aEGx5dn4RngxFiGbB89ow1nG
2biy7Cq
2dK1pTX06gNRokUIAngLPk
2eAM4ajYEBlzCHXW
2eIpMWxTaDm4
2eungaGSdpHzWo1j
2fHhDNPMD
2fzPpW8bbSTJYBEGoz
2gBsfu5rzi7x14OEtCxr3IIY83gi
2i6Z1vRHSZ
2mH2ABzdV3g10a6V2MD5U72Vu28
2oRMJRqX88A6LqpXkqi7BSNq
2pOLagZnnVBxw
2pkikLqPUlUxwm2owCBTMq3FyuD
2t4Ive7oOBaSiSAQlOkFtk
2tAFWfbwqyhgZ9pelPpPKDVC1wp4
2uK6hbWlJoAO00MTOP09puLBjFUHPqK
2udxMa1GAoi
2ujScIo4Du9V61wdomgtx2CUmJa89V
2vxQ1BvachPJSWrnXOpbsl
2zvF5GSy
30gmlSezFsMo2mTiG6IVeXky
321BQNEq
327mNWs
32a6nKRn43QeCJ2FBQ
32nHeYGgx2droGFQtapALMEc
345cQLI3OJ6vFxj3SJ
355XcuEQEJlg55jPL5ZDH30gb6bjEoS
35URKoAiwKrTT
35obValh01MglxmjGwKAG9Dqt7ssV
37Z9qJ6VKmke14M
3ApiBcq
3BVMGUNnAu3tz
3Bdk1QKXPqTWpqxEc4i
3BpWqVun4D
3DcQPLGrzFEZVtSMjuFDJznc3lny8
3GcFIwzoEEz7ScMFjfSi
3I40GRUnvirYRs1V8p
3KH8z5KuF
3LKb5mjGH0mRFmRgl95HRYkaSlLJ3
3OCbY55h6Jfqt5mhH
3PEEhTRkwJHMl3qZCK7mmc28ZRDNs8z
3PvCQjhnZ8y
3QsvWLLKGlOJrd
3Upj1T10qjf88o
3XPCltgSAzvuv
3XcuNB435uaAimtNCFQzfTWnmkgBde
3Y3kesxjMHwiAcVoC7heqKvZ
3Ym3DizYZ3HJPKdPGeH05I1DdxsRc
3Zu3adqwch23TGBABXzrUFkpsXZ
3b4JWlxrrZx0SDph5gRlqVAdLB1udS
3eNgyWzBGdPe
3futgnAFMNBivztSywOEGy
3icMexj6onEfu5ViqzQsWugg32O
3irPHyGLI0Q
3j31POq
3jCw1oprzOjtA5kYPYiOHrJ
3kH4mXpRsl
3kOxePRpA2brjXlyYm
3l6gdwXcFKbMka8PxHXYkM2Xk3HgRype
3n4A8NGlLx
3nDdQRI1pEgStJ4EN
3nkJBJWs9
3o0lGWJyXeZJOyrLb2fLfocy1a7Dn
3rZnrqLGrnBHLFaJBQfkCN
3s42DnWaOfkQ7HBcr1ol
3sXBcwEaRSJnxKvTAskAvJw
3z1DhOkyx9hbEdy
3zTQ7avwPoNr
421v6kdVgWVmgCiR9xyhpq
42o5WuuVVM40Z55ghLq
46FvhoY5ObbaZnCDj21hoIle
46dMkfUifYG60T
48to2rbSnpuQXwhaAk
4BnjAnqrY
4C6TbeJyol7xYl4al1Vrg8xkFt9fzgQ
4GCM8cSxkapuY5eeImYhT5HVMND
4HMxM742xhIArlxMm9X5t
4LHf4iPuCo59J45MPbP7q2n62U0KG
4LPtb10woMfzB
4LUCe587IrQop5hJCxBjk4b2SC
4PVgReOwU7XC0fppwqceSMvSS
4R0pPReSqXgv9nZJuixmxnG7IYND
4TSbqKuuki8ltQRU06A6PviAU
4UfcICifQNclUlG
4VxfUzJ1
4XG0miJg9LlEpXjWhcUyzdwW
4ZP20OWu
4aNfo4nPrwOW52wn
4ak5IYLi7aukq0tJW51sCvQ5fg6
4be5Yq7qpWYc6NaPbvzA
4ckVgsEH
4djdC1K5p2jUFRcPseRL9S
4dki4vMp8yfjqWCvw7
4eoNhQWn1hZ8sv7X2o0wL
4f6MJbLrqFZqXC5mEkCEN1KPFr
4fnRyTQbUPAPftTDug0n
4gdJZkedu0wNGbvp
4ghvHwr3J2YTZJoN5xFeKKbev
4gzh4xF0SmZ
4ioSB5FlFnE6XDAPyEJdemWL
4kJvvareSoflOdeSzqOv85rom
4kp19fVqIeygo4YxfY4RgnwMrI
4meypS1Y4BE9KUJ
4n3Qzqcu6e6O
4nL8HVV8awS2KuNw2ab6
4o8MDF80tJmxJ6Xr3r0kWy2Bmif9
4pDqtsiHS
4pWRuODCriUAezQ8qlPn
4rcF4eKDJaw
4s6u1DY0h
4sCPa02TVKhXu
4sX4M4aDVY34zvtjcfuQMdU8lzt
4tfSIGfOspDPzWdHmLe8
4uCzDT2qV1n
4visdNuSfpydDdW
4wBSeo4slMxYtb36re7lf5P
4wCz9JzKYiq8ju2zpO4106dKA2vDcYg4
4wzCBd7KprBxZ6GaESwgDcGvcMG
4x9DLzhY3kPh
4xApOAZCy2k1t6cVq
4xTNf1XW79i1EReMVjJmToz
4yNuE5phX45ASqql23L
54581WUAxA
56WZWZnBahTQpa8
5AIZdC9ZyIaoQMrVOX
5AnLCrme1OBnmzn7cYTmWeZcZ3w
5BGJohHg
5DIsnpQa
5Gxz5YBWq9YZwKFaaGn2Sbq9
5HNjpxtFdCM3v7uxipHBK
5Iew6uyzE
5OjsrQj4owgOlvppcvsGWNe16KNze3J
5SUiQDPlagTPnnZj7Z
5Tj7bg1
5XSQSD5nZpK5fr4HwdlYn
5YQIzpAWsvWltHNRvYn6
5YTg83jRBdp
5YjGV64c2dcTz
5ZPj8JF0TR
5arVf2EsCliDp40vFzbKR3l7cg9o
5b0eUfJ3vynHn
5bhpPSmexAvMe541c2F
5bq44dwmdzQra4W32eR4V8Fj3CtnfaK
5dB810jN1K
5le6WbTTyKz79gZTj3UWgdig5nMU
5m05FSKRf23rFOCmAmrYA13mkw2pFtFq
5mw8LMg0W49HjRRiqS2b2YYIWg9
5nHhkJUKrw8NF59OqIXXNgB70HXbNaO
5qATTvU
5qQXA3fvg
5sQ7xakk
5sT0eV3aA15ubRjVTyroJfm9Nqagqk0
5sVJR6kdoLZ
5sW6xuZBHUeccwWs5nFQYM7GRc
5sp2fhAu42I97FoA1R9
5xWjHWUR6fj9iBBRh2hZps0f1
5xqkue4jB6ijPUkuTV
60S2sIXhcB5eXON4q
60yUk6hJgbKcoQDRQ4GKyayU
615qTndDz2z
61I1LBURINfsXx8U0Z4ve2IFIwb
63TcVY06TP32PAIoO
647WSiKvGmvjIainex9M
687iCQVMNwbSfdk24cId5gUbMlB
68H34EUMt2sQLnG86ybbm3OZNbUBq7f0
6ABXfeeomuOUV4o0pVMuKv
6EdVlft43S3Or6yxgDDwpAZgyfMC
6HedXEcGuOJxMubrsF32
6IBVBfwjnT1YTFqe2cq8F6JKB6M
6JQK3gZmRDqP3d3JBXr6
6KOo6WQBNdZB6e6wSdyyRvFHrkmO
6NDD2FFM2MhsJcQrGw13PpbRacWeD
6Ol9HVMJSUEvxcI7RA
6TpVdLy40Q1mpG
6VAD7bRvlen1xcB4MfGigK
6WKbHW5tbwHwTwbzUWPPqrNvTs6mdW
6Xl5L9xGQYVaBd54l9
6biE00j5zk1EftOE0cMyQTfGst8G
6dDmNBHTxoBK9oK1AR7XxQPt7fqiaq
6dGUodHjDiEDCMIVosYrFB95yEEszQ
6dLQN3UeiYAY0JBUz7ODfsA
6dklxssCx71k
6e6UtuIFVSAguMnhMHLrals9aX690
6g26ldUax8K6JcpB
6gsglgruCN
6iJ4yCcWcamts
6iU1OHcyOp34MsRMDQxahx9wU
6o0CycNsIhjqbOfZOdA0wJAnuVLH
6ogZeYZuTtd83oGZFaLdEVinf5gD
6p52bp15ddKrz3mprayyPKYFHBB
6pHzKUzHmOkVtM
6tO3UGZ4cEgOLcZsnvR0IhLUUBEKfqVh
6tao83nrjRvbrr8uJgMzyS
6tyK5WOPNVQdIAeYncX
6u5SAvsP
6wQdKIiG
6wsb54wG
6xfz7LpNzlFtea6V56wVD
6xnmlMbUYF
6yRIOPCOA8i2yXZlE6jRKS
70EADno4olsMF9vZqIvwOLC4kvgw15
72QAlcU3pY8u4zrt1q
72Qjr3GJ0oPafFYGoQ8XCADEVDS
73mCxJwDIxUdfRw3Kj
74PuIzaJuSsQk74aIn
74oR2vYGkSWkJNi33PHaRT6DpgZ
75ZTbMQzdZp89XBAsUHjGu
769UjWXTgnH0rNKmz
76vJOEgkvMWxJlu1ROQ7N6y4uz6l5ZuP
780JiPjste7ETQ2AJUr
797jjkR3KGGC5OG9
7AHCeyaiDxdr5jFxCkatEljtM4AMBOR
7CCl60ZAtVXpIjUgg0
7CWoAoOGhCHUMeMN9up4V19k9O74DD
7CvlTCXYuEYXB80WmdYssQPBrL41
7EQCmnr8K0pZGpiTmL8WpYrQtVs
7I7Jlz3Asmq6SdOCMY53kFx
7KubP9y
7PzfDBe
7TkpGGHb5Xj5
7UjUiuc7eAAA
7VLzXQ3o2rFdrwtoJTq5yfLlFM
7XMcqVvW13J5bYxxZNeULqAGjcxQc
7XpwuJHLxFq2Je3Jv
7ZTozsdnCIBzVG
7ZjmicqIzPkCxmu5ruBUw96k
7bLwttY312I5tCeKD2vtVu8Rh
7ceGZGVq5uCuSdJLODKh
7dbaLuhTeuLauIPGi
7eBFoFEgKN7Myamh8A6oeUC
7eezpg0CKN
7em74fIED1hIB02zMKWnsaD
7hDpWbH6tgw48ArYBqzr6yVzWYKj
7iR2enqCf6Ch04g7ykNaes7YsdCjzqaw
7jJgIr8OamMPIEPFiPdqTGpxjSk89LrH
7lXd4zKibEJ126ekJyu7luzO
7nU48bFcwNpxRXbHaZGapaK
7pPR4VuuLSs
7sdeh0FX28BYSmgdAhW2w27PUNk6W
7tscIxZij
7ulPsri7OzgN6
7wLuF0ZKoTRmxYIYP
7xKw8G8cYEpSGTIczUGGCikgCgQR4R
7ylFfi71O275EEAOt2NWCF7l
80hX7A3zYuHwNAyRpA
84Wd4ORJdZbiFHErwgHOsI7EUfkN
85KZM6AEDXrj8FL1yP
89EBtWSEmwtcT54iVIRS
89hrhTNsHd3mP
8A2kfsIRF
8Bcrj4pv42japLHB5rQv6L
8CuSAoreHXMCW8HUdm2Z3D0SE05rJv
8D5LS8S8r724Muqpc3mlo
8DE4vLnVdBHGHgAXh2sy4fXa7exy1yJ
8DNikflkhewp0VHv
8DRhUbZTYQ
8EIP7WfwmlLdLa3oe
8Et3YMF15xfnjbveW0
8Gq8p0yCrB
8HadDzN3M7sfJmG8dCg3S
8IgvogQDfrV4XJm2Ywf5iAFuK
8KkhXKIn
8LGMporwEhXXcaNqnIsRx
8N2hp0RSivXOyh81YSoyZZS4l
8PFTB17c
8PoNVtAA4Ygyj5vuQml
8Q0jEB23oE6lORQ0wgZ0wEPLmx4
8QEz3nPZHjKg5Bo1re1MZkagHcp
8QTy8107QfV
8TDYeSHK0xvnUlnl5ImtfpiXhJ
8TlP0RZnNM4ti5c7kvoCUQC
8V5PEMIFvxgWmb6YCVLMwN
8VgHbfEaq1DATUFNmhP0NfZ
8VhF69z0sQlziB4bujRf4nYYeTYla75d
8Vy0AWu0S6egGQhWQ24INkGNt
8ZRu7ccpGc4EjzJRk
8dtmNEwg
8f9OCrCj83zRMdyfOa3dPCTemMDXtXD
8fhseuQIzP7p
8gVQwNWMPz8RofXrPna1CRNV2Z
8gcSE6xrj7AdE2
8hqQ3FSRWNGSyfV963hXz5ByXfVg41
8kzW8WDXjyrbkDC0QBjV5cgeyVIvlK
8lJBYKflgIYSj4ZJeLyS
8lrIPQ7dYwBu8Q4
8pVG9asNpZQ8Fdj6k
8qhNNdUAwQVFqyhWHhQg5m7nKvX
8qy4YMxICPihv
8tYipxuuBvr10p9JuB9O8q6i
8trKozA7936IiFCKzTEa8btXQLomnBCX
8uiBTHcPh5P0FfOaZil
8us7y7uzJfVgRIQ4KndSiiVu1
8vUm3fOfEitY4GDZWQ20oYLL4
8zQGziYfc991iJYZrJ
8zZdCPRVFNPv9mwm9JTPAOMtAUx12
90YgoxBMZa2a2dkic
92HCVaBtaNZg2es8jvNUjL1WZc
94dqqJTimyct2Hjapl88C
9533ENLtH4m4dNMWnIwAgZqdL6
95g59hD1xK
96zsxCPcyxqWYtgyF6qGB
98Phd7D8kSs
98kiJbt4pglhG2QZ9qhfdHqnDmM
998a7fAmQ4HX2ikXdaKhIQdQih
99thimJutyym9
9DUpDRLSmNYgkdoCdPGZNwrQ05Jqx
9Ho773TJm9a
9J5rTskic4iDIiTuFNM1lWYpg8rVdfQ
9KCmWfKSCWsF6f9lbNeyIubXTg20Q3z
9MJousMGIM1oqfQ6z8YIkpb
9MJy1XEwUpEA5QNU
9MmHdJtYc0fJzuK4TJPnhH44
9PkkkOGfjkAGiggxwYqc7OhDsC9
9RCBbEsnz8Gwg8H3ydmR1hzg
9RaaJmIFUYYj3u5ohyiLyu
9TjCzyjWnFO1LlwL5O6YBgyhS2IqTwp
9VD5G4smec
9VZDwK37ycHr3zN7x0Ria1SMA
9Z4IFTjwgqpCmmubJJP9lIxX
9Zn0FmYZJBLSCD4XKrzmM0fWaJ6
9bS6F8260LKd
9fWNKMfZa1dJI3Dd
9gjAlsfYVE7JKzLIZSs6KSlCH
9hztcRwuRQGNq
9jLhb96kI9
9jdO5NzmSUVAoLH
9jkRiA2
9nKim2E6PHYsiY
9pIg09RuobPM
9qses3bErmXl96jkIElbS4rfxoRz
9rAf9DrTHg6PQ
9uX99LB
9uf0bAjzLJo
9uhjREbWhcDvkwyjDEv7vixmHLGZ3R
9v25g0Sy4bnbCn1Isll
9wNJKogSNcAq7u
9xnas7BQhA
9xwIUQH7NU7DNzLbm6j3quMV2
9yMn0XrYs7xiMR0DjAQzKH2T
9yQcQV2WPQd91npXF2qcDFtcaI
9ywVpYcVs2QOR14EE6Nba4D49Xl3hdiN
9zCvjNz
9zrns3W
A1I5SZUBxoz8zf
A3aeBX3RkdkPLi3UTPM
A4jFuuMn
A8IYvgZxkg
A8vYKC1QmOjlSdoK17d8GtYI8
A8xCbOnVat8ZHeJTmc2Glpv
ABzGKzcy0eYBzYTPfI0mdl
AD2vSh0eTSDqhovLibvn3aTqf
ADwV63ojH0FWJ2XCMeF
AF9YVchJs
AGSeotn
AI3pEtQBfWT2ONx19IHGfxN9ASVV
AJ57uOXMWbNCXLcW
AJQ0TpX1HTGwqfdpxQF
AJRqJDKMBLLZiiWdZjaB6EXCYO4n
AJZrFb6Coi1SyHuGw1Ao1I
AJq4Obsvku7J1SrkJ
AKTQWTj6plcLVmeawZp3QpJT
ANewCNMX359y50xhraz12
ANnitnF4ZRpVwraSZnRDvNYAYGG1r
AQKgOejNstVCXy5AuQpqB
AQgz0xNFGn2sHCUd1nhIq1
ARM4hei9MCazBPead1GWViZ
ARZdkLPyEiz1hG9nOixDJzgXiCIaOOl
ASprJTA6wL0UXbM2M1lNjYR3k
ASunrvQOz455gSHI
ATjC1plt19uJ4D0nS
AU748ryspQjgI6DqLTo8sCOoP3Scw3A
AUF0Sfs90aXFGk3htQpAw
AW6ld935zcke8tzNFue36Wg
AWR7RQebEJVgHNXzqjftLedNQ928e
AXankBGB2

Sections

.text
Size: 467KB - Virtual size: 466KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.managed
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

hydrated
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 243KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libvlccore.dll
.dll windows:4 windows x64 arch:x64

dce96bc6319a78e5eaf9315128c98209

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/06/2024, 00:00

Not After

08/06/2027, 23:59

Subject

CN=VideoLAN,O=VideoLAN,L=Paris,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/06/2024, 00:00

Not After

08/06/2027, 23:59

Subject

CN=VideoLAN,O=VideoLAN,L=Paris,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:c7:18:62:a5:d5:30:75:63:40:d1:0f:8c:d0:f0:fc:f9:54:be:81:1b:c3:de:8f:12:84:3e:5c:25:0b:34:f9
Signer

Actual PE Digest

07:c7:18:62:a5:d5:30:75:63:40:d1:0f:8c:d0:f0:fc:f9:54:be:81:1b:c3:de:8f:12:84:3e:5c:25:0b:34:f9

Digest Algorithm

sha256

PE Digest Matches

true

4d:a0:69:48:2b:69:2b:16:d8:e0:84:7c:ed:f7:56:e1:7b:74:ff:86
Signer

Actual PE Digest

4d:a0:69:48:2b:69:2b:16:d8:e0:84:7c:ed:f7:56:e1:7b:74:ff:86

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

Imports

advapi32

CryptAcquireContextA
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

AllocConsole
CloseHandle
CreateDirectoryA
CreateEventA
CreateFileA
CreateFileW
CreateMutexW
CreateSemaphoreW
CreateThread
CreateTimerQueueTimer
DeleteCriticalSection
DeleteTimerQueueTimer
DeviceIoControl
DuplicateHandle
EnterCriticalSection
EnumResourceLanguagesA
EnumSystemLocalesA
FormatMessageW
FreeLibrary
GetACP
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetFileAttributesW
GetFileSize
GetLastError
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNativeSystemInfo
GetProcAddress
GetProcessHeap
GetProcessTimes
GetProcessWorkingSetSize
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTempFileNameW
GetTempPathA
GetTempPathW
GetThreadLocale
GetThreadTimes
GetTickCount
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalMemoryStatus
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MapViewOfFile
MultiByteToWideChar
OpenFileMappingA
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
QueueUserAPC
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetConsoleOutputCP
SetConsoleTitleW
SetEvent
SetFilePointerEx
SetLastError
SetPriorityClass
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepEx
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteConsoleW
WriteFile

msvcrt

___lc_codepage_func
__dllonexit
__iob_func
__mb_cur_max
__setusermatherr
_amsg_exit
_beginthreadex
_close
_commit
_endthreadex
_errno
_exit
_fdopen
_fileno
_findclose
_fstat64
fwprintf
_get_osfhandle
_gmtime64
_initterm
_isatty
_localtime64
_lock
_lseeki64
_mktime64
_onexit
_open_osfhandle
_pipe
_stat64
_stricmp
_strnicmp
_sys_errlist
_sys_nerr
_time64
_unlock
_vsnprintf
_wfindfirst64
_wfindnext64
_wfullpath
_wgetcwd
_wmkdir
_wopen
_wremove
_wrename
_wstat64
_wunlink
abort
atof
atoi
atol
bsearch
calloc
clearerr
clock
div
exit
fclose
feof
ferror
fflush
fgetc
fgets
fopen
fprintf
fputc
fputs
fputwc
fputws
fread
free
freopen
fseek
ftell
fwprintf
fwrite
getc
getchar
getenv
isalnum
isalpha
iscntrl
islower
isspace
isupper
iswctype
isxdigit
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
putc
putchar
puts
qsort
raise
rand
realloc
rewind
setlocale
signal
sprintf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strpbrk
strrchr
strspn
strstr
strtol
strtoul
tolower
toupper
towlower
ungetc
vfprintf
wcscat
wcschr
wcscmp
wcscpy
wcslen
wcsrchr
wcstombs
_vsnwprintf
_snwprintf
_write
_stricmp
_strdup
_setmode
_read
_open
_getpid
_getcwd
_fileno
_fdopen
_dup
_close
_access

shell32

SHGetFolderPathW
ShellExecuteW

user32

FindWindowW
GetActiveWindow
GetCapture
GetCaretPos
GetClipboardOwner
GetClipboardViewer
GetCursorPos
GetDesktopWindow
GetFocus
GetInputState
GetMessagePos
GetMessageTime
GetOpenClipboardWindow
GetProcessWindowStation
MessageBoxW
SendMessageW

ws2_32

WSACleanup
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSARecv
WSARecvFrom
WSASendTo
WSAStartup
WSAWaitForMultipleEvents
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostname
getnameinfo
getpeername
getsockname
getsockopt
htonl
ioctlsocket
listen
ntohl
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

Exports

Exports

AddMD5
EndMD5
FromCharset
GetLang_1
GetLang_2B
GetLang_2T
InitMD5
NTPtime64
ToCharset
VLC_CompileBy
VLC_CompileHost
VLC_Compiler
access_vaDirectoryControlHelper
addon_entry_Hold
addon_entry_New
addon_entry_Release
addons_manager_Delete
addons_manager_Gather
addons_manager_Install
addons_manager_LoadCatalog
addons_manager_New
addons_manager_Remove
aout_BitsPerSample
aout_ChannelExtract
aout_ChannelReorder
aout_CheckChannelExtraction
aout_CheckChannelReorder
aout_Deinterleave
aout_DeviceGet
aout_DeviceSet
aout_DevicesList
aout_FiltersAdjustResampling
aout_FiltersChangeViewpoint
aout_FiltersDelete
aout_FiltersDrain
aout_FiltersFlush
aout_FiltersNew
aout_FiltersPlay
aout_FormatPrepare
aout_FormatPrint
aout_FormatPrintChannels
aout_Interleave
aout_MuteGet
aout_MuteSet
aout_VolumeGet
aout_VolumeSet
aout_VolumeUpdate
aout_filter_RequestVout
block_Alloc
block_FifoCount
block_FifoEmpty
block_FifoGet
block_FifoNew
block_FifoPut
block_FifoRelease
block_FifoShow
block_File
block_FilePath
block_Init
block_Realloc
block_TryRealloc
block_heap_Alloc
block_mmap_Alloc
block_shm_Alloc
config_AddIntf
config_ChainCreate
config_ChainDestroy
config_ChainDuplicate
config_ChainParse
config_ChainParseOptions
config_ExistIntf
config_FindConfig
config_GetDataDir
config_GetFloat
config_GetInt
config_GetIntChoices
config_GetLibDir
config_GetPsz
config_GetPszChoices
config_GetType
config_GetUserDir
config_PutFloat
config_PutInt
config_PutPsz
config_RemoveIntf
config_ResetAll
config_SaveConfigFile
config_StringEscape
config_StringUnescape
date_Change
date_Decrement
date_Get
date_Increment
date_Init
date_Move
date_Set
decoder_AbortPictures
decoder_GetDisplayDate
decoder_GetDisplayRate
decoder_GetInputAttachments
decoder_NewAudioBuffer
decoder_NewSubpicture
demux_Delete
demux_New
demux_PacketizerDestroy
demux_PacketizerNew
demux_vaControl
demux_vaControlHelper
es_format_Clean
es_format_Copy
es_format_Init
es_format_InitFromVideo
es_format_IsSimilar
filter_AddProxyCallbacks
filter_Blend
filter_ConfigureBlend
filter_DelProxyCallbacks
filter_DeleteBlend
filter_NewBlend
filter_chain_AppendConverter
filter_chain_AppendFilter
filter_chain_AppendFromString
filter_chain_Delete
filter_chain_DeleteFilter
filter_chain_GetFmtOut
filter_chain_IsEmpty
filter_chain_MouseEvent
filter_chain_MouseFilter
filter_chain_NewVideo
filter_chain_Reset
filter_chain_SubFilter
filter_chain_VideoFilter
filter_chain_VideoFlush
fingerprinter_Create
fingerprinter_Destroy
httpd_ClientIP
httpd_FileDelete
httpd_FileNew
httpd_HandlerDelete
httpd_HandlerNew
httpd_HostDelete
httpd_MsgAdd
httpd_MsgGet
httpd_RedirectDelete
httpd_RedirectNew
httpd_ServerIP
httpd_StreamDelete
httpd_StreamHeader
httpd_StreamNew
httpd_StreamSend
httpd_StreamSetHTTPHeaders
httpd_UrlCatch
httpd_UrlDelete
httpd_UrlNew
image_Ext2Fourcc
image_HandlerCreate
image_HandlerDelete
image_Mime2Fourcc
image_Type2Fourcc
input_Close
input_Control
input_Create
input_CreateFilename
input_DecoderCreate
input_DecoderDecode
input_DecoderDelete
input_DecoderDrain
input_DecoderFlush
input_GetItem
input_Read
input_Start
input_Stop
input_item_AddInfo
input_item_AddOpaque
input_item_AddOption
input_item_AddOptions
input_item_AddSlave
input_item_Copy
input_item_CopyOptions
input_item_DelInfo
input_item_GetDuration
input_item_GetInfo
input_item_GetMeta
input_item_GetName
input_item_GetNowPlayingFb
input_item_GetTitleFbName
input_item_GetURI
input_item_HasErrorWhenReading
input_item_Hold
input_item_IsArtFetched
input_item_IsPreparsed
input_item_MergeInfos
input_item_MetaMatch
input_item_NewExt
input_item_Release
input_item_ReplaceInfos
input_item_SetDuration
input_item_SetMeta
input_item_SetName
input_item_SetURI
input_item_WriteMeta
input_item_node_AppendItem
input_item_node_AppendNode
input_item_node_Create
input_item_node_Delete
input_item_slave_GetType
input_item_slave_New
input_resource_GetAout
input_resource_HoldAout
input_resource_New
input_resource_PutAout
input_resource_Release
input_resource_ResetAout
input_resource_Terminate
input_resource_TerminateVout
input_vaControl
intf_Create
libvlc_ArtRequest
libvlc_InternalAddIntf
libvlc_InternalCleanup
libvlc_InternalCreate
libvlc_InternalDestroy
libvlc_InternalDialogClean
libvlc_InternalDialogInit
libvlc_InternalInit
libvlc_InternalKeystoreClean
libvlc_InternalKeystoreInit
libvlc_InternalPlay
libvlc_MetadataCancel
libvlc_MetadataRequest
libvlc_Quit
libvlc_SetExitHandler
mdate
module_config_free
module_config_get
module_exists
module_find
module_get_capability
module_get_help
module_get_name
module_get_object
module_get_score
module_gettext
module_list_free
module_list_get
module_need
module_provides
module_unneed
msleep
mwait
net_Accept
net_AcceptSingle
net_Connect
net_ConnectDgram
net_Gets
net_Listen
net_ListenClose
net_OpenDgram
net_Printf
net_Read
net_SetCSCov
net_Write
net_vaPrintf
picture_BlendSubpicture
picture_Clone
picture_Copy
picture_CopyPixels
picture_CopyProperties
picture_Export
picture_Hold
picture_New
picture_NewFromFormat
picture_NewFromResource
picture_Release
picture_Reset
picture_Setup
picture_fifo_Delete
picture_fifo_Flush
picture_fifo_New
picture_fifo_OffsetDate
picture_fifo_Peek
picture_fifo_Pop
picture_fifo_Push
picture_pool_Enum
picture_pool_Get
picture_pool_GetSize
picture_pool_New
picture_pool_NewExtended
picture_pool_NewFromFormat
picture_pool_Release
picture_pool_Reserve
picture_pool_Wait
plane_CopyPixels
playlist_Add
playlist_AddExt
playlist_AddInput
playlist_AssertLocked
playlist_ChildSearchName
playlist_Clear
playlist_Control
playlist_CurrentInput
playlist_CurrentInputLocked
playlist_CurrentPlayingItem
playlist_Deactivate
playlist_EnableAudioFilter
playlist_Export
playlist_GetAout
playlist_GetNodeDuration
playlist_Import
playlist_IsServicesDiscoveryLoaded
playlist_ItemGetById
playlist_ItemGetByInput
playlist_LiveSearchUpdate
playlist_Lock
playlist_MuteGet
playlist_MuteSet
playlist_NodeAddCopy
playlist_NodeAddInput
playlist_NodeCreate
playlist_NodeDelete
playlist_RecursiveNodeSort
playlist_ServicesDiscoveryAdd
playlist_ServicesDiscoveryControl
playlist_ServicesDiscoveryRemove
playlist_SetRenderer
playlist_Status
playlist_TreeMove
playlist_TreeMoveMany
playlist_Unlock
playlist_VolumeGet
playlist_VolumeSet
playlist_VolumeUp
sdp_AddAttribute
sdp_AddMedia
secstotimestr
sout_AccessOutControl
sout_AccessOutDelete
sout_AccessOutNew
sout_AccessOutRead
sout_AccessOutSeek
sout_AccessOutWrite
sout_AnnounceRegisterSDP
sout_AnnounceUnRegister
sout_EncoderCreate
sout_MuxAddStream
sout_MuxDelete
sout_MuxDeleteStream
sout_MuxFlush
sout_MuxGetStream
sout_MuxNew
sout_MuxSendBuffer
sout_StreamChainDelete
sout_StreamChainNew
spu_ChangeFilters
spu_ChangeSources
spu_ClearChannel
spu_Create
spu_Destroy
spu_PutSubpicture
spu_RegisterChannel
spu_Render
subpicture_Delete
subpicture_New
subpicture_NewFromPicture
subpicture_Update
subpicture_region_ChainDelete
subpicture_region_Copy
subpicture_region_Delete
subpicture_region_New
text_segment_ChainDelete
text_segment_Copy
text_segment_Delete
text_segment_New
text_segment_NewInheritStyle
text_style_Copy
text_style_Create
text_style_Delete
text_style_Duplicate
text_style_Merge
text_style_New
update_Check
update_Delete
update_Download
update_GetRelease
update_NeedUpgrade
update_New
us_asprintf
us_atof
us_strtod
us_strtof
us_vasprintf
utf8_fprintf
utf8_vfprintf
var_AddCallback
var_AddListCallback
var_Change
var_Create
var_DelCallback
var_DelListCallback
var_Destroy
var_FreeList
var_Get
var_GetAndSet
var_GetChecked
var_Inherit
var_InheritURational
var_LocationParse
var_Set
var_SetChecked
var_TriggerCallback
var_Type
video_format_ApplyRotation
video_format_CopyCrop
video_format_FixRgb
video_format_GetTransform
video_format_IsSimilar
video_format_Print
video_format_ScaleCropAr
video_format_Setup
video_format_TransformBy
video_format_TransformTo
vlc_CPU
vlc_GetCPUCount
vlc_Log
vlc_LogSet
vlc_UrlClean
vlc_UrlParse
vlc_UrlParseFixup
vlc_accept
vlc_accept_i11e
vlc_access_NewMRL
vlc_actions_get_id
vlc_actions_get_key_names
vlc_actions_get_keycodes
vlc_b64_decode
vlc_b64_decode_binary
vlc_b64_decode_binary_to_buffer
vlc_b64_encode
vlc_b64_encode_binary
vlc_cancel
vlc_clone
vlc_close
vlc_cond_broadcast
vlc_cond_destroy
vlc_cond_init
vlc_cond_signal
vlc_cond_timedwait
vlc_cond_wait
vlc_control_cancel
vlc_credential_clean
vlc_credential_get
vlc_credential_init
vlc_credential_store
vlc_demux_chained_ControlVa
vlc_demux_chained_Delete
vlc_demux_chained_New
vlc_demux_chained_Send
vlc_dialog_display_error
vlc_dialog_display_error_va
vlc_dialog_display_progress
vlc_dialog_display_progress_va
vlc_dialog_id_dismiss
vlc_dialog_id_get_context
vlc_dialog_id_post_action
vlc_dialog_id_post_login
vlc_dialog_id_set_context
vlc_dialog_is_cancelled
vlc_dialog_provider_set_callbacks
vlc_dialog_provider_set_ext_callback
vlc_dialog_release
vlc_dialog_update_progress
vlc_dialog_update_progress_text
vlc_dialog_update_progress_text_va
vlc_dialog_wait_login
vlc_dialog_wait_login_va
vlc_dialog_wait_question
vlc_dialog_wait_question_va
vlc_drand48
vlc_dup
vlc_epg_AddEvent
vlc_epg_Delete
vlc_epg_Duplicate
vlc_epg_New
vlc_epg_SetCurrent
vlc_epg_event_Delete
vlc_epg_event_Duplicate
vlc_epg_event_New
vlc_error
vlc_event_attach
vlc_event_detach
vlc_ext_dialog_update
vlc_fifo_DequeueAllUnlocked
vlc_fifo_DequeueUnlocked
vlc_fifo_GetBytes
vlc_fifo_GetCount
vlc_fifo_Lock
vlc_fifo_QueueUnlocked
vlc_fifo_Signal
vlc_fifo_Unlock
vlc_fifo_Wait

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

9a00b4d9cbb0969e8648268eb15ff6e1

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5cCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75Certificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5cCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75Certificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

28:2a:aa:08:e7:fc:95:81:4a:af:f4:cb:44:da:88:14:a9:85:7a:ba:0a:d7:e9:ab:c8:4c:8a:89:7d:44:18:78Signer

9b:00:2c:44:d8:68:8b:47:84:8a:07:a5:35:e5:4c:3a:ac:6a:a3:25Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libvlc

advapi32

kernel32

msvcrt

shell32

user32

wininet

Exports

Exports

Sections

.text Size: 682KB - Virtual size: 682KB

.data Size: 9KB - Virtual size: 8KB

.rdata Size: 64KB - Virtual size: 64KB

.buildid Size: 512B - Virtual size: 53B

.pdata Size: 42KB - Virtual size: 42KB

.xdata Size: 57KB - Virtual size: 57KB

.bss Size: - Virtual size: 5KB

.edata Size: 512B - Virtual size: 66B

.idata Size: 7KB - Virtual size: 6KB

.CRT Size: 512B - Virtual size: 104B

.tls Size: 512B - Virtual size: 104B

.rsrc Size: 74KB - Virtual size: 74KB

.reloc Size: 5KB - Virtual size: 5KB

/4 Size: 512B - Virtual size: 16B

d61135040553431f58312b63fefdf1ad

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

advapi32

bcrypt

kernel32

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

28:2a:aa:08:e7:fc:95:81:4a:af:f4:cb:44:da:88:14:a9:85:7a:ba:0a:d7:e9:ab:c8:4c:8a:89:7d:44:18:78
Signer

9b:00:2c:44:d8:68:8b:47:84:8a:07:a5:35:e5:4c:3a:ac:6a:a3:25
Signer

.text
Size: 682KB - Virtual size: 682KB

.data
Size: 9KB - Virtual size: 8KB

.rdata
Size: 64KB - Virtual size: 64KB

.buildid
Size: 512B - Virtual size: 53B

.pdata
Size: 42KB - Virtual size: 42KB

.xdata
Size: 57KB - Virtual size: 57KB

.bss
Size: - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 66B

.idata
Size: 7KB - Virtual size: 6KB

.CRT
Size: 512B - Virtual size: 104B

.tls
Size: 512B - Virtual size: 104B

.rsrc
Size: 74KB - Virtual size: 74KB

.reloc
Size: 5KB - Virtual size: 5KB

/4
Size: 512B - Virtual size: 16B

.text
Size: 467KB - Virtual size: 466KB

.managed
Size: 2.4MB - Virtual size: 2.4MB

hydrated
Size: - Virtual size: 1.1MB

.rdata
Size: 2.3MB - Virtual size: 2.3MB

.data
Size: 18KB - Virtual size: 118KB

.pdata
Size: 243KB - Virtual size: 242KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 3KB

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:d0:8e:bd:a0:6b:e0:7c:81:5e:a7:af:25:ef:68:75
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:c7:18:62:a5:d5:30:75:63:40:d1:0f:8c:d0:f0:fc:f9:54:be:81:1b:c3:de:8f:12:84:3e:5c:25:0b:34:f9
Signer

4d:a0:69:48:2b:69:2b:16:d8:e0:84:7c:ed:f7:56:e1:7b:74:ff:86
Signer