MZ Header

DOS stub

00000000: 56 4c 56 00 01 00 00 00  00 7c 48 00 00 00 00 00  |VLV......|H.....|
00000010: 00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  |................|
*
000000e0:

PE Header

Packer / Compiler

Sections

Data Directory

TLS

Signers (1)

issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)04/CN=VeriSign Class 3 Code Signing 2004 CA
serial: 6C409E48C32B0D1100F80B9D29BC1FB9

Certificates (2)

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority
        Validity
            Not Before: Jul 16 00:00:00 2004 GMT
            Not After : Jul 15 23:59:59 2014 GMT
        Subject: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:bc:ee:bc:7e:ef:83:eb:e0:37:4f:fb:03:10:
                    38:be:08:d2:8c:7d:9d:fa:92:7f:19:0c:c2:6b:ee:
                    42:52:8c:de:d3:1c:48:13:25:ea:c1:63:7a:f9:51:
                    65:ee:d3:aa:3b:f5:f0:94:9c:2b:fb:f2:66:d4:24:
                    da:f7:f5:9f:6e:19:39:36:bc:d0:a3:76:08:1e:22:
                    27:24:6c:38:91:27:e2:84:49:ae:1b:8a:a1:fd:25:
                    82:2c:10:30:e8:71:ab:28:e8:77:4a:51:f1:ec:cd:
                    f8:f0:54:d4:6f:c0:e3:6d:0a:8f:d9:d8:64:8d:63:
                    b2:2d:4e:27:f6:85:0e:fe:6d:e3:29:99:e2:85:47:
                    7c:2d:86:7f:e8:57:8f:ad:67:c2:33:32:91:13:20:
                    fc:a9:23:14:9a:6d:c2:84:4b:76:68:04:d5:71:2c:
                    5d:21:fa:88:0d:26:fd:1f:2d:91:2b:e7:01:55:4d:
                    f2:6d:35:28:82:df:d9:6b:5c:b6:d6:d9:aa:81:fd:
                    5f:cd:83:ba:63:9d:d0:22:fc:a9:3b:42:69:b2:8e:
                    3a:b5:bc:b4:9e:0f:5e:c4:ea:2c:82:8b:28:fd:53:
                    08:96:dd:b5:01:20:d1:f9:a5:18:e7:c0:ee:51:70:
                    37:e1:b6:05:48:52:48:6f:38:ea:c3:e8:6c:7b:44:
                    84:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.113733.1.7.23.3
                  CPS: https://www.verisign.com/rpa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.verisign.com/pca3.crl

            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, Code Signing
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Netscape Cert Type: 
                Object Signing CA
            X509v3 Subject Alternative Name: 
                DirName:/CN=Class3CA2048-1-43
            X509v3 Subject Key Identifier: 
                08:F5:51:E8:FB:FE:3D:3D:64:36:7C:68:CF:5B:78:A8:DF:B9:C5:37
            X509v3 Authority Key Identifier: 
                DirName:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
                serial:70:BA:E4:1D:10:D9:29:34:B6:38:CA:7B:03:CC:BA:BF

    Signature Algorithm: sha1WithRSAEncryption
         ae:3a:17:b8:4a:7b:55:fa:64:55:ec:40:a4:ed:49:41:90:99:
         9c:89:bc:af:2e:1d:ca:78:23:f9:1c:19:0f:7f:eb:68:bc:32:
         d9:88:38:de:dc:3f:d3:89:b4:3f:b1:82:96:f1:a4:5a:ba:ed:
         2e:26:d3:de:7c:01:6e:00:0a:00:a4:06:92:11:48:09:40:f9:
         1c:18:79:67:23:24:e0:bb:d5:e1:50:ae:1b:f5:0e:dd:e0:2e:
         81:cd:80:a3:6c:52:4f:91:75:55:8a:ba:22:f2:d2:ea:41:75:
         88:2f:63:55:7d:1e:54:5a:95:59:ca:d9:34:81:c0:5f:5e:f6:
         7a:b5

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:40:9e:48:c3:2b:0d:11:00:f8:0b:9d:29:bc:1f:b9
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA
        Validity
            Not Before: Apr 20 00:00:00 2009 GMT
            Not After : Apr 19 23:59:59 2012 GMT
        Subject: C=US, ST=Washington, L=Bellevue, O=Valve Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Steam, CN=Valve Corporation
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:a9:80:49:32:c1:b9:aa:c6:d1:b7:7f:3a:b3:8a:
                    83:e8:ac:b3:e5:3d:57:e9:bc:0e:b4:32:bc:14:97:
                    9f:3e:81:db:70:85:25:0d:d9:04:48:15:b4:14:d1:
                    20:ed:b4:ca:d0:4b:3d:ae:b0:8a:78:9b:1f:03:7a:
                    86:e7:d7:ef:3e:ff:10:78:9b:6e:28:56:55:8f:44:
                    27:14:fd:d7:ff:d2:e8:67:fc:b2:ca:39:5d:a2:d2:
                    12:cb:69:cb:32:58:a1:7f:15:ac:2a:a2:32:94:3a:
                    af:ea:3f:4a:a5:53:e7:0b:df:0b:79:d2:3a:f9:ea:
                    99:c0:5a:3c:28:90:7f:d0:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://CSC3-2004-crl.verisign.com/CSC3-2004.crl

            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.113733.1.7.23.3
                  CPS: https://www.verisign.com/rpa

            X509v3 Extended Key Usage: 
                Code Signing
            Authority Information Access: 
                OCSP - URI:http://ocsp.verisign.com
                CA Issuers - URI:http://CSC3-2004-aia.verisign.com/CSC3-2004-aia.cer

            X509v3 Authority Key Identifier: 
                keyid:08:F5:51:E8:FB:FE:3D:3D:64:36:7C:68:CF:5B:78:A8:DF:B9:C5:37

            Netscape Cert Type: 
                Object Signing
            1.3.6.1.4.1.311.2.1.27: 
                0.......
    Signature Algorithm: sha1WithRSAEncryption
         79:e8:88:ca:fc:ca:47:f1:84:9e:11:5d:15:21:53:82:20:50:
         75:39:eb:d5:cd:bd:ad:e3:61:c6:78:8d:70:44:aa:f6:a0:36:
         3f:e0:52:f4:a1:7b:e0:ef:a3:23:ea:a5:ae:02:d9:53:f4:14:
         76:58:e5:aa:88:fc:f0:88:b1:3f:ae:27:d1:fc:9d:ba:da:30:
         4d:94:ba:4f:08:fd:d8:c9:37:4c:86:e2:67:8a:38:85:d4:44:
         7b:3a:76:fd:41:a6:5f:c8:1d:ea:15:12:b5:f4:fa:e0:b5:e5:
         84:84:ee:45:fe:48:ef:56:69:c4:b9:3c:19:fc:5e:a4:fd:18:
         ec:c4:93:a1:11:27:c2:33:09:1c:57:35:62:5b:5a:cb:6d:f5:
         2e:af:d9:c8:eb:39:fc:9f:45:0c:13:e2:25:ef:73:12:a3:f8:
         11:cc:81:97:30:5f:dd:01:4e:43:34:c4:a0:d4:d6:9f:62:50:
         de:75:cd:02:a0:4d:36:ac:7f:9b:d0:ce:2a:90:3e:63:9e:be:
         69:df:f5:07:6e:79:0d:3a:dd:3b:b5:6a:80:47:84:fe:7d:cb:
         7d:e4:b4:4d:1c:08:ba:0e:4b:a7:90:5c:f4:c9:d2:74:7c:89:
         2d:95:22:7c:c7:c1:16:1f:23:26:a3:42:f3:c3:93:61:c8:b2:
         d3:7c:8e:26
pkcs7-signedData
  • 1
    • SHA1: nil
    • 1.3.6.1.4.1.311.2.1.4
      • #0
        • 1.3.6.1.4.1.311.2.1.15
          • :
            00 3c 00 3c 00 3c 00 4f  00 62 00 73 00 6f 00 6c  |.<.<.<.O.b.s.o.l|
            00 65 00 74 00 65 00 3e  00 3e 00 3e              |.e.t.e.>.>.>    |
        • #1
          • SHA1: nil
          • : , , , , , , , ,
    • Certificates
      • Certificate #0
        • 2
          • 41:91:A1:5A:39:78:DF:CF:49:65:66:38:1D:4C:75:C2
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • OU: Class 3 Public Primary Certification Authority
          • 2004-07-16 00:00:00 UTC: 2014-07-15 23:59:59 UTC
          • Subject
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: Terms of use at https://www.verisign.com/rpa (c)04
            • CN: VeriSign Class 3 Code Signing 2004 CA
          • #5
            • rsaEncryption: nil
            • BE:BC:EE:BC:7E:EF:83:EB:E0:37:4F:FB:03:10:38:BE:
              08:D2:8C:7D:9D:FA:92:7F:19:0C:C2:6B:EE:42:52:8C:
              DE:D3:1C:48:13:25:EA:C1:63:7A:F9:51:65:EE:D3:AA:
              3B:F5:F0:94:9C:2B:FB:F2:66:D4:24:DA:F7:F5:9F:6E:
              19:39:36:BC:D0:A3:76:08:1E:22:27:24:6C:38:91:27:
              E2:84:49:AE:1B:8A:A1:FD:25:82:2C:10:30:E8:71:AB:
              28:E8:77:4A:51:F1:EC:CD:F8:F0:54:D4:6F:C0:E3:6D:
              0A:8F:D9:D8:64:8D:63:B2:2D:4E:27:F6:85:0E:FE:6D:
              E3:29:99:E2:85:47:7C:2D:86:7F:E8:57:8F:AD:67:C2:
              33:32:91:13:20:FC:A9:23:14:9A:6D:C2:84:4B:76:68:
              04:D5:71:2C:5D:21:FA:88:0D:26:FD:1F:2D:91:2B:E7:
              01:55:4D:F2:6D:35:28:82:DF:D9:6B:5C:B6:D6:D9:AA:
              81:FD:5F:CD:83:BA:63:9D:D0:22:FC:A9:3B:42:69:B2:
              8E:3A:B5:BC:B4:9E:0F:5E:C4:EA:2C:82:8B:28:FD:53:
              08:96:DD:B5:01:20:D1:F9:A5:18:E7:C0:EE:51:70:37:
              E1:B6:05:48:52:48:6F:38:EA:C3:E8:6C:7B:44:84:BB
              : 0x010001
          • X509v3 extensions
            • basicConstraints
              • true
              • true: 0
            • certificatePolicies
              • 2.16.840.1.113733.1.7.23.3
                • id-qt-cps: https://www.verisign.com/rpa
            • crlDistributionPoints: http://crl.verisign.com/pca3.crl
            • extendedKeyUsage
              • clientAuth: codeSigning
            • keyUsage: true, 6
            • nsCertType: 1
            • subjectAltName
              • CN: Class3CA2048-1-43
            • subjectKeyIdentifier:
              08 f5 51 e8 fb fe 3d 3d  64 36 7c 68 cf 5b 78 a8  |..Q...==d6|h.[x.|
              df b9 c5 37                                       |...7            |
            • authorityKeyIdentifier
              • unnamed
                • #0
                  • C: US
                  • O: VeriSign, Inc.
                  • OU: Class 3 Public Primary Certification Authority
                • 70 ba e4 1d 10 d9 29 34  b6 38 ca 7b 03 cc ba bf  |p.....)4.8.{....|
        • RSA-SHA1:
          ae 3a 17 b8 4a 7b 55 fa  64 55 ec 40 a4 ed 49 41  |.:..J{U.dU.@..IA|
          90 99 9c 89 bc af 2e 1d  ca 78 23 f9 1c 19 0f 7f  |.........x#.....|
          eb 68 bc 32 d9 88 38 de  dc 3f d3 89 b4 3f b1 82  |.h.2..8..?...?..|
          96 f1 a4 5a ba ed 2e 26  d3 de 7c 01 6e 00 0a 00  |...Z...&..|.n...|
          a4 06 92 11 48 09 40 f9  1c 18 79 67 23 24 e0 bb  |....H.@...yg#$..|
          d5 e1 50 ae 1b f5 0e dd  e0 2e 81 cd 80 a3 6c 52  |..P...........lR|
          4f 91 75 55 8a ba 22 f2  d2 ea 41 75 88 2f 63 55  |O.uU.."...Au./cU|
          7d 1e 54 5a 95 59 ca d9  34 81 c0 5f 5e f6 7a b5  |}.TZ.Y..4.._^.z.|
      • Certificate #1
        • 2
          • 6C:40:9E:48:C3:2B:0D:11:00:F8:0B:9D:29:BC:1F:B9
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: Terms of use at https://www.verisign.com/rpa (c)04
            • CN: VeriSign Class 3 Code Signing 2004 CA
          • 2009-04-20 00:00:00 UTC: 2012-04-19 23:59:59 UTC
          • Subject
            • C: US
            • ST: Washington
            • L: Bellevue
            • O: Valve Corporation
            • OU: Digital ID Class 3 - Microsoft Software Validation v2
            • OU: Steam
            • CN: Valve Corporation
          • #5
            • rsaEncryption: nil
            • A9:80:49:32:C1:B9:AA:C6:D1:B7:7F:3A:B3:8A:83:E8:
              AC:B3:E5:3D:57:E9:BC:0E:B4:32:BC:14:97:9F:3E:81:
              DB:70:85:25:0D:D9:04:48:15:B4:14:D1:20:ED:B4:CA:
              D0:4B:3D:AE:B0:8A:78:9B:1F:03:7A:86:E7:D7:EF:3E:
              FF:10:78:9B:6E:28:56:55:8F:44:27:14:FD:D7:FF:D2:
              E8:67:FC:B2:CA:39:5D:A2:D2:12:CB:69:CB:32:58:A1:
              7F:15:AC:2A:A2:32:94:3A:AF:EA:3F:4A:A5:53:E7:0B:
              DF:0B:79:D2:3A:F9:EA:99:C0:5A:3C:28:90:7F:D0:81
              : 0x010001
          • X509v3 extensions
            • basicConstraints
              • nil
            • keyUsage: true, 0x80
            • crlDistributionPoints: http://CSC3-2004-crl.verisign.com/CSC3-2004.crl
            • certificatePolicies
              • 2.16.840.1.113733.1.7.23.3
                • id-qt-cps: https://www.verisign.com/rpa
            • extendedKeyUsage: codeSigning
            • authorityInfoAccess
              • #0
                • OCSP: http://ocsp.verisign.com
                • caIssuers: http://CSC3-2004-aia.verisign.com/CSC3-2004-aia.cer
            • authorityKeyIdentifier:
              08 f5 51 e8 fb fe 3d 3d  64 36 7c 68 cf 5b 78 a8  |..Q...==d6|h.[x.|
              df b9 c5 37                                       |...7            |
            • nsCertType: 0x10
            • 1.3.6.1.4.1.311.2.1.27
              • false: true
        • RSA-SHA1:
          79 e8 88 ca fc ca 47 f1  84 9e 11 5d 15 21 53 82  |y.....G....].!S.|
          20 50 75 39 eb d5 cd bd  ad e3 61 c6 78 8d 70 44  | Pu9......a.x.pD|
          aa f6 a0 36 3f e0 52 f4  a1 7b e0 ef a3 23 ea a5  |...6?.R..{...#..|
          ae 02 d9 53 f4 14 76 58  e5 aa 88 fc f0 88 b1 3f  |...S..vX.......?|
          ae 27 d1 fc 9d ba da 30  4d 94 ba 4f 08 fd d8 c9  |.'.....0M..O....|
          37 4c 86 e2 67 8a 38 85  d4 44 7b 3a 76 fd 41 a6  |7L..g.8..D{:v.A.|
          5f c8 1d ea 15 12 b5 f4  fa e0 b5 e5 84 84 ee 45  |_..............E|
          fe 48 ef 56 69 c4 b9 3c  19 fc 5e a4 fd 18 ec c4  |.H.Vi..<..^.....|
          93 a1 11 27 c2 33 09 1c  57 35 62 5b 5a cb 6d f5  |...'.3..W5b[Z.m.|
          2e af d9 c8 eb 39 fc 9f  45 0c 13 e2 25 ef 73 12  |.....9..E...%.s.|
          a3 f8 11 cc 81 97 30 5f  dd 01 4e 43 34 c4 a0 d4  |......0_..NC4...|
          d6 9f 62 50 de 75 cd 02  a0 4d 36 ac 7f 9b d0 ce  |..bP.u...M6.....|
          2a 90 3e 63 9e be 69 df  f5 07 6e 79 0d 3a dd 3b  |*.>c..i...ny.:.;|
          b5 6a 80 47 84 fe 7d cb  7d e4 b4 4d 1c 08 ba 0e  |.j.G..}.}..M....|
          4b a7 90 5c f4 c9 d2 74  7c 89 2d 95 22 7c c7 c1  |K..\...t|.-."|..|
          16 1f 23 26 a3 42 f3 c3  93 61 c8 b2 d3 7c 8e 26  |..#&.B...a...|.&|
    • Signer
      • 1
      • unnamed
        • #0
          • C: US
          • O: VeriSign, Inc.
          • OU: VeriSign Trust Network
          • OU: Terms of use at https://www.verisign.com/rpa (c)04
          • CN: VeriSign Class 3 Code Signing 2004 CA
        • 6C:40:9E:48:C3:2B:0D:11:00:F8:0B:9D:29:BC:1F:B9
      • SHA1: nil
      • #3
        • 1.3.6.1.4.1.311.2.1.12
          • nil
        • contentType: 1.3.6.1.4.1.311.2.1.4
        • 1.3.6.1.4.1.311.2.1.11: msCodeInd
        • messageDigest
          • : , , , , , , , ,
      • rsaEncryption: nil
      • : , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
offsetsizetypecomment
4708f441308PNG(256 x 256)#
47aa5056824BINoverlay data past EOF#
offset:( 0x )size:( 0x )hotkeys:-=[]<>, offset/size fields are also editable

[?] ignoring invalid PEdump::BITMAPINFOHEADER

[?] can't find file_offset of VA 0x233afb8