MZ Header

Rich Header

DOS stub

00000000: 0e 1f ba 0e 00 b4 09 cd  21 b8 01 4c cd 21 54 68  |........!..L.!Th|
00000010: 69 73 20 70 72 6f 67 72  61 6d 20 63 61 6e 6e 6f  |is program canno|
00000020: 74 20 62 65 20 72 75 6e  20 69 6e 20 44 4f 53 20  |t be run in DOS |
00000030: 6d 6f 64 65 2e 0d 0d 0a  24 00 00 00 00 00 00 00  |mode....$.......|

PE Header

Packer / Compiler

Sections

Data Directory

TLS

StringTable 040904b0

VS_FIXEDFILEINFO

Signers (1)

issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Code Signing 2010 CA
serial: 09E28B26DB593EC4E73286B66499C370

Certificates (4)

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., CN=VeriSign Time Stamping Services CA
        Validity
            Not Before: Jun 15 00:00:00 2007 GMT
            Not After : Jun 14 23:59:59 2012 GMT
        Subject: C=US, O=VeriSign, Inc., CN=VeriSign Time Stamping Services Signer - G2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c4:b5:f2:52:15:bc:88:86:60:29:16:4a:5b:2f:
                    4b:91:6b:87:91:f3:35:54:58:35:ea:d1:36:5e:62:
                    4d:52:51:34:71:c2:7b:66:1d:89:c8:dd:2a:c4:6a:
                    0a:f6:37:d9:98:74:91:f6:92:ae:b0:b5:76:96:f1:
                    a9:4a:63:45:47:2e:6b:0b:92:4e:4b:2b:8c:ee:58:
                    4a:8b:d4:07:e4:1a:2c:f8:82:aa:58:d9:cd:42:f3:
                    2d:c0:75:de:8d:ab:c7:8e:1d:9a:6c:4c:08:95:1e:
                    de:db:ef:67:e1:72:c2:49:c2:9e:60:3c:e1:e2:be:
                    16:a3:63:78:69:14:7b:ad:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            Authority Information Access: 
                OCSP - URI:http://ocsp.verisign.com

            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.verisign.com/tss-ca.crl

            X509v3 Extended Key Usage: critical
                Time Stamping
            X509v3 Key Usage: critical
                Digital Signature, Non Repudiation
            X509v3 Subject Alternative Name: 
                DirName:/CN=TSA1-2
    Signature Algorithm: sha1WithRSAEncryption
         50:c5:4b:c8:24:80:df:e4:0d:24:c2:de:1a:b1:a1:02:a1:a6:
         82:2d:0c:83:15:81:37:0a:82:0e:2c:b0:5a:17:61:b5:d8:05:
         fe:88:db:f1:91:91:b3:56:1a:40:a6:eb:92:be:38:39:b0:75:
         36:74:3a:98:4f:e4:37:ba:99:89:ca:95:42:1d:b0:b9:c7:a0:
         8d:57:e0:fa:d5:64:04:42:35:4e:01:d1:33:a2:17:c8:4d:aa:
         27:c7:f2:e1:86:4c:02:38:4d:83:78:c6:fc:53:e0:eb:e0:06:
         87:dd:a4:96:9e:5e:0c:98:e2:a5:be:bf:82:85:c3:60:e1:df:
         ad:28:d8:c7:a5:4b:64:da:c7:1b:5b:bd:ac:39:08:d5:38:22:
         a1:33:8b:2f:8a:9a:eb:bc:07:21:3f:44:41:09:07:b5:65:1c:
         24:bc:48:d3:44:80:eb:a1:cf:c9:02:b4:14:cf:54:c7:16:a3:
         80:5c:f9:79:3e:5d:72:7d:88:17:9e:2c:43:a2:ca:53:ce:7d:
         3d:f6:2a:3a:b8:4f:94:00:a5:6d:0a:83:5d:f9:5e:53:f4:18:
         b3:57:0f:70:c3:fb:f5:ad:95:a0:0e:17:de:c4:16:80:60:c9:
         0f:2b:6e:86:04:f1:eb:f4:78:27:d1:05:c5:ee:34:5b:5e:b9:
         49:32:f2:33

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=ZA, ST=Western Cape, L=Durbanville, O=Thawte, OU=Thawte Certification, CN=Thawte Timestamping CA
        Validity
            Not Before: Dec  4 00:00:00 2003 GMT
            Not After : Dec  3 23:59:59 2013 GMT
        Subject: C=US, O=VeriSign, Inc., CN=VeriSign Time Stamping Services CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a9:ca:b2:a4:cc:cd:20:af:0a:7d:89:ac:87:75:
                    f0:b4:4e:f1:df:c1:0f:bf:67:61:bd:a3:64:1c:da:
                    bb:f9:ca:33:ab:84:30:89:58:7e:8c:db:6b:dd:36:
                    9e:0f:bf:d1:ec:78:f2:77:a6:7e:6f:3c:bf:93:af:
                    0d:ba:68:f4:6c:94:ca:bd:52:2d:ab:48:3d:f5:b6:
                    d5:5d:5f:1b:02:9f:fa:2f:6b:1e:a4:f7:a3:9a:a6:
                    1a:c8:02:e1:7f:4c:52:e3:0e:60:ec:40:1c:7e:b9:
                    0d:de:3f:c7:b4:df:87:bd:5f:7a:6a:31:2e:03:99:
                    81:13:a8:47:20:ce:31:73:0d:57:2d:cd:78:34:33:
                    95:12:99:12:b9:de:68:2f:aa:e6:e3:c2:8a:8c:2a:
                    c3:8b:21:87:66:bd:83:58:57:6f:75:bf:3c:aa:26:
                    87:5d:ca:10:15:3c:9f:84:ea:54:c1:0a:6e:c4:fe:
                    c5:4a:dd:b9:07:11:97:22:7c:db:3e:27:d1:1e:78:
                    ec:9f:31:c9:f1:e6:22:19:db:c4:b3:47:43:9a:1a:
                    5f:a0:1e:90:e4:5e:f5:ee:7c:f1:7d:ab:62:01:8f:
                    f5:4d:0b:de:d0:22:56:a8:95:cd:ae:88:76:ae:ee:
                    ba:0d:f3:e4:4d:d9:a0:fb:68:a0:ae:14:3b:b3:87:
                    c1:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            Authority Information Access: 
                OCSP - URI:http://ocsp.verisign.com

            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.verisign.com/ThawteTimestampingCA.crl

            X509v3 Extended Key Usage: 
                Time Stamping
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Subject Alternative Name: 
                DirName:/CN=TSA2048-1-53
    Signature Algorithm: sha1WithRSAEncryption
         4a:6b:f9:ea:58:c2:44:1c:31:89:79:99:2b:96:bf:82:ac:01:
         d6:1c:4c:cd:b0:8a:58:6e:df:08:29:a3:5e:c8:ca:93:13:e7:
         04:52:0d:ef:47:27:2f:00:38:b0:e4:c9:93:4e:9a:d4:22:62:
         15:f7:3f:37:21:4f:70:31:80:f1:8b:38:87:b3:e8:e8:97:00:
         fe:cf:55:96:4e:24:d2:a9:27:4e:7a:ae:b7:61:41:f3:2a:ce:
         e7:c9:d9:5e:dd:bb:2b:85:3e:b5:9d:b5:d9:e1:57:ff:be:b4:
         c5:7e:f5:cf:0c:9e:f0:97:fe:2b:d3:3b:52:1b:1b:38:27:f7:
         3f:4a

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4d:62:90:e5:8c:54:f0:f1:eb:17:34:1a:13:10:e6:a4
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority
        Validity
            Not Before: Sep 30 00:00:00 2010 GMT
            Not After : Jan  1 23:59:59 2014 GMT
        Subject: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010 CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f5:23:4b:5e:a5:d7:8a:bb:32:e9:d4:57:f7:ef:
                    e4:c7:26:7e:ad:19:98:fe:a8:9d:7d:94:f6:36:6b:
                    10:d7:75:81:30:7f:04:68:7f:cb:2b:75:1e:cd:1d:
                    08:8c:df:69:94:a7:37:a3:9c:7b:80:e0:99:e1:ee:
                    37:4d:5f:ce:3b:14:ee:86:d4:d0:f5:27:35:bc:25:
                    0b:38:a7:8c:63:9d:17:a3:08:a5:ab:b0:fb:cd:6a:
                    62:82:4c:d5:21:da:1b:d9:f1:e3:84:3b:8a:2a:4f:
                    85:5b:90:01:4f:c9:a7:76:10:7f:27:03:7c:be:ae:
                    7e:7d:c1:dd:f9:05:bc:1b:48:9c:69:e7:c0:a4:3c:
                    3c:41:00:3e:df:96:e5:c5:e4:94:71:d6:55:01:c7:
                    00:26:4a:40:3c:b5:a1:26:a9:0c:a7:6d:80:8e:90:
                    25:7b:cf:bf:3f:1c:eb:2f:96:fa:e5:87:77:c6:b5:
                    56:b2:7a:3b:54:30:53:1b:df:62:34:ff:1e:d1:f4:
                    5a:93:28:85:e5:4c:17:4e:7e:5b:fd:a4:93:99:7f:
                    df:cd:ef:a4:75:ef:ef:15:f6:47:e7:f8:19:72:d8:
                    2e:34:1a:a6:b4:a7:4c:7e:bd:bb:4f:0c:3d:57:f1:
                    30:d6:a6:36:8e:d6:80:76:d7:19:2e:a5:cd:7e:34:
                    2d:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.113733.1.7.23.3
                  CPS: https://www.verisign.com/cps
                  User Notice:
                    Explicit Text: https://www.verisign.com/rpa

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            1.3.6.1.5.5.7.1.12: 
                0_.].[0Y0W0U..image/gif0!0.0...+..............k...j.H.,{..0%.#http://logo.verisign.com/vslogo.gif
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, Code Signing
            X509v3 Subject Alternative Name: 
                DirName:/CN=VeriSignMPKI-2-8
            X509v3 Subject Key Identifier: 
                CF:99:A9:EA:7B:26:F4:4B:C9:8E:8F:D7:F0:05:26:EF:E3:D2:A7:9D
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.verisign.com/pca3.crl

    Signature Algorithm: sha1WithRSAEncryption
         ae:dd:21:1d:5f:8f:80:7a:d2:52:09:ea:db:6e:d2:5d:8b:e8:
         c2:1b:69:04:be:51:a5:01:0e:59:fa:37:d1:74:a3:ee:dc:ed:
         89:74:2b:62:d5:a6:bf:4f:ad:36:17:54:f0:13:e0:a3:45:d2:
         4c:26:cb:e2:6d:a2:1f:d0:1e:7a:07:0f:b6:b3:7b:6f:50:68:
         a2:e9:31:b3:b7:99:7d:80:70:a0:a7:de:0b:1e:a4:ff:f3:4d:
         81:1b:dd:20:c9:1c:c4:af:cf:f1:8f:fa:d9:da:95:f0:ec:dc:
         5c:bf:e8:8c:5a:3e:7a:b0:a3:eb:59:43:74:11:e0:9b:1a:6a:
         f3:6f

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:e2:8b:26:db:59:3e:c4:e7:32:86:b6:64:99:c3:70
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010 CA
        Validity
            Not Before: Nov 14 00:00:00 2011 GMT
            Not After : Nov 13 23:59:59 2014 GMT
        Subject: C=US, ST=California, L=Mountain View, O=Google Inc, OU=Digital ID Class 3 - Java Object Signing, CN=Google Inc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dd:88:f3:c4:03:40:e3:bb:93:64:db:52:47:e4:
                    d2:84:f3:e4:1c:03:eb:32:5a:c4:fa:06:9d:7b:cf:
                    82:c4:9c:57:a6:f6:30:f5:04:63:13:81:31:b7:23:
                    ec:97:09:6e:c7:83:4c:20:f9:6e:db:48:c4:52:a0:
                    44:31:70:b6:4a:e3:7c:6c:58:1a:ca:7c:7d:dc:fc:
                    66:d4:60:fe:a5:c9:7e:13:72:14:5d:12:4c:aa:ae:
                    e7:c1:00:be:d3:ac:ed:bd:b5:59:0f:b0:80:ec:0b:
                    c7:b7:10:a8:ce:b9:3e:07:e2:9e:79:8b:27:0d:b1:
                    7f:6e:c8:02:bb:8c:50:d1:ad:4c:81:6c:4c:a2:d3:
                    d2:e7:5d:3d:a2:8b:9e:66:84:5a:d8:fd:7e:d6:fd:
                    a3:25:9f:75:3b:22:8a:78:31:b2:dd:06:b6:57:38:
                    5d:88:83:6b:cb:55:af:e1:c3:55:66:bc:e7:2c:8f:
                    53:a9:c8:89:f0:e5:28:2f:b6:1d:a3:1c:9e:7d:39:
                    71:35:1c:23:21:09:e5:c7:7a:6a:e6:b6:c7:77:35:
                    aa:e7:df:26:5b:cd:07:20:b7:42:5d:de:5a:bf:27:
                    cc:2a:fe:81:e2:3a:8e:17:41:ac:74:9e:a5:ce:db:
                    fd:3f:34:1e:a2:cc:2d:74:fb:cf:99:6c:8b:0c:d5:
                    56:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://csc3-2010-crl.verisign.com/CSC3-2010.crl

            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.113733.1.7.23.3
                  CPS: https://www.verisign.com/rpa

            X509v3 Extended Key Usage: 
                Code Signing
            Authority Information Access: 
                OCSP - URI:http://ocsp.verisign.com
                CA Issuers - URI:http://csc3-2010-aia.verisign.com/CSC3-2010.cer

            X509v3 Authority Key Identifier: 
                keyid:CF:99:A9:EA:7B:26:F4:4B:C9:8E:8F:D7:F0:05:26:EF:E3:D2:A7:9D

            Netscape Cert Type: 
                Object Signing
            1.3.6.1.4.1.311.2.1.27: 
                0.......
    Signature Algorithm: sha1WithRSAEncryption
         8b:d7:fa:f7:da:f8:2e:f5:0f:d6:e1:b5:63:23:ae:7c:6a:4b:
         62:34:2b:ec:ff:29:ea:2c:13:24:54:44:c5:c8:e1:ee:33:76:
         e3:a6:2c:c1:90:91:d4:13:a5:ea:a4:db:65:90:34:ff:d5:c7:
         80:50:07:03:08:1c:67:a6:1a:bf:14:de:b2:ce:c8:da:88:95:
         f4:05:5e:7b:19:26:72:6c:79:5f:45:07:75:21:09:5f:35:f0:
         f7:41:a0:7b:b8:87:22:1d:fd:69:a9:f4:69:a3:63:33:7e:6c:
         4a:ea:2c:c1:df:c6:f1:f0:9e:e9:f7:f7:83:fc:02:a5:c0:8b:
         1b:9c:1e:d7:d6:20:8e:84:b0:69:27:d1:5c:b1:43:f6:61:c2:
         85:29:57:3d:aa:b0:9a:9d:3a:5f:86:05:b4:2a:ce:b0:eb:30:
         19:52:e8:f3:1f:98:47:29:8e:b2:32:e5:ff:f7:37:4b:44:8b:
         2c:3c:0d:55:aa:16:6b:19:5e:14:32:53:a5:2b:e5:8f:10:3c:
         25:c7:48:96:b6:fd:af:33:12:14:d6:1d:91:ee:93:2c:55:57:
         eb:8e:99:8d:d6:8c:0b:6e:50:33:f2:b2:96:85:67:a8:a4:b7:
         f6:89:34:b9:da:ea:45:3b:61:24:fa:39:08:d3:df:dc:0f:ed:
         73:53:3a:ab
pkcs7-signedData
  • 1
    • SHA1: nil
    • 1.3.6.1.4.1.311.2.1.4
      • #0
        • 1.3.6.1.4.1.311.2.1.15
          • :
            00 3c 00 3c 00 3c 00 4f  00 62 00 73 00 6f 00 6c  |.<.<.<.O.b.s.o.l|
            00 65 00 74 00 65 00 3e  00 3e 00 3e              |.e.t.e.>.>.>    |
        • SHA1
          • 38 8e a0 7d 9d b2 08 3e  c8 db 57 81 91 3b 98 a2  |8..}...>..W..;..|
            1c db ce 9f                                       |....            |
    • Certificates
      • Certificate #0
        • 2
          • 38:25:D7:FA:F8:61:AF:9E:F4:90:E7:26:B5:D6:5A:D5
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • CN: VeriSign Time Stamping Services CA
          • 2007-06-15 00:00:00 UTC: 2012-06-14 23:59:59 UTC
          • Subject
            • C: US
            • O: VeriSign, Inc.
            • CN: VeriSign Time Stamping Services Signer - G2
          • #5
            • rsaEncryption: nil
            • C4:B5:F2:52:15:BC:88:86:60:29:16:4A:5B:2F:4B:91:
              6B:87:91:F3:35:54:58:35:EA:D1:36:5E:62:4D:52:51:
              34:71:C2:7B:66:1D:89:C8:DD:2A:C4:6A:0A:F6:37:D9:
              98:74:91:F6:92:AE:B0:B5:76:96:F1:A9:4A:63:45:47:
              2E:6B:0B:92:4E:4B:2B:8C:EE:58:4A:8B:D4:07:E4:1A:
              2C:F8:82:AA:58:D9:CD:42:F3:2D:C0:75:DE:8D:AB:C7:
              8E:1D:9A:6C:4C:08:95:1E:DE:DB:EF:67:E1:72:C2:49:
              C2:9E:60:3C:E1:E2:BE:16:A3:63:78:69:14:7B:AD:2D
              : 0x010001
          • X509v3 extensions
            • authorityInfoAccess
              • OCSP: http://ocsp.verisign.com
            • basicConstraints
              • true
              • nil
            • crlDistributionPoints: http://crl.verisign.com/tss-ca.crl
            • extendedKeyUsage: true, timeStamping
            • keyUsage: true, 0xc0
            • subjectAltName
              • CN: TSA1-2
        • RSA-SHA1:
          50 c5 4b c8 24 80 df e4  0d 24 c2 de 1a b1 a1 02  |P.K.$....$......|
          a1 a6 82 2d 0c 83 15 81  37 0a 82 0e 2c b0 5a 17  |...-....7...,.Z.|
          61 b5 d8 05 fe 88 db f1  91 91 b3 56 1a 40 a6 eb  |a..........V.@..|
          92 be 38 39 b0 75 36 74  3a 98 4f e4 37 ba 99 89  |..89.u6t:.O.7...|
          ca 95 42 1d b0 b9 c7 a0  8d 57 e0 fa d5 64 04 42  |..B......W...d.B|
          35 4e 01 d1 33 a2 17 c8  4d aa 27 c7 f2 e1 86 4c  |5N..3...M.'....L|
          02 38 4d 83 78 c6 fc 53  e0 eb e0 06 87 dd a4 96  |.8M.x..S........|
          9e 5e 0c 98 e2 a5 be bf  82 85 c3 60 e1 df ad 28  |.^.........`...(|
          d8 c7 a5 4b 64 da c7 1b  5b bd ac 39 08 d5 38 22  |...Kd...[..9..8"|
          a1 33 8b 2f 8a 9a eb bc  07 21 3f 44 41 09 07 b5  |.3./.....!?DA...|
          65 1c 24 bc 48 d3 44 80  eb a1 cf c9 02 b4 14 cf  |e.$.H.D.........|
          54 c7 16 a3 80 5c f9 79  3e 5d 72 7d 88 17 9e 2c  |T....\.y>]r}...,|
          43 a2 ca 53 ce 7d 3d f6  2a 3a b8 4f 94 00 a5 6d  |C..S.}=.*:.O...m|
          0a 83 5d f9 5e 53 f4 18  b3 57 0f 70 c3 fb f5 ad  |..].^S...W.p....|
          95 a0 0e 17 de c4 16 80  60 c9 0f 2b 6e 86 04 f1  |........`..+n...|
          eb f4 78 27 d1 05 c5 ee  34 5b 5e b9 49 32 f2 33  |..x'....4[^.I2.3|
      • Certificate #1
        • 2
          • 47:BF:19:95:DF:8D:52:46:43:F7:DB:6D:48:0D:31:A4
          • RSA-SHA1: nil
          • Issuer
            • C: ZA
            • ST: Western Cape
            • L: Durbanville
            • O: Thawte
            • OU: Thawte Certification
            • CN: Thawte Timestamping CA
          • 2003-12-04 00:00:00 UTC: 2013-12-03 23:59:59 UTC
          • Subject
            • C: US
            • O: VeriSign, Inc.
            • CN: VeriSign Time Stamping Services CA
          • #5
            • rsaEncryption: nil
            • A9:CA:B2:A4:CC:CD:20:AF:0A:7D:89:AC:87:75:F0:B4:
              4E:F1:DF:C1:0F:BF:67:61:BD:A3:64:1C:DA:BB:F9:CA:
              33:AB:84:30:89:58:7E:8C:DB:6B:DD:36:9E:0F:BF:D1:
              EC:78:F2:77:A6:7E:6F:3C:BF:93:AF:0D:BA:68:F4:6C:
              94:CA:BD:52:2D:AB:48:3D:F5:B6:D5:5D:5F:1B:02:9F:
              FA:2F:6B:1E:A4:F7:A3:9A:A6:1A:C8:02:E1:7F:4C:52:
              E3:0E:60:EC:40:1C:7E:B9:0D:DE:3F:C7:B4:DF:87:BD:
              5F:7A:6A:31:2E:03:99:81:13:A8:47:20:CE:31:73:0D:
              57:2D:CD:78:34:33:95:12:99:12:B9:DE:68:2F:AA:E6:
              E3:C2:8A:8C:2A:C3:8B:21:87:66:BD:83:58:57:6F:75:
              BF:3C:AA:26:87:5D:CA:10:15:3C:9F:84:EA:54:C1:0A:
              6E:C4:FE:C5:4A:DD:B9:07:11:97:22:7C:DB:3E:27:D1:
              1E:78:EC:9F:31:C9:F1:E6:22:19:DB:C4:B3:47:43:9A:
              1A:5F:A0:1E:90:E4:5E:F5:EE:7C:F1:7D:AB:62:01:8F:
              F5:4D:0B:DE:D0:22:56:A8:95:CD:AE:88:76:AE:EE:BA:
              0D:F3:E4:4D:D9:A0:FB:68:A0:AE:14:3B:B3:87:C1:BB
              : 0x010001
          • X509v3 extensions
            • authorityInfoAccess
              • OCSP: http://ocsp.verisign.com
            • basicConstraints
              • true
              • true: 0
            • crlDistributionPoints: http://crl.verisign.com/ThawteTimestampingCA.crl
            • extendedKeyUsage: timeStamping
            • keyUsage: true, 6
            • subjectAltName
              • CN: TSA2048-1-53
        • RSA-SHA1:
          4a 6b f9 ea 58 c2 44 1c  31 89 79 99 2b 96 bf 82  |Jk..X.D.1.y.+...|
          ac 01 d6 1c 4c cd b0 8a  58 6e df 08 29 a3 5e c8  |....L...Xn..).^.|
          ca 93 13 e7 04 52 0d ef  47 27 2f 00 38 b0 e4 c9  |.....R..G'/.8...|
          93 4e 9a d4 22 62 15 f7  3f 37 21 4f 70 31 80 f1  |.N.."b..?7!Op1..|
          8b 38 87 b3 e8 e8 97 00  fe cf 55 96 4e 24 d2 a9  |.8........U.N$..|
          27 4e 7a ae b7 61 41 f3  2a ce e7 c9 d9 5e dd bb  |'Nz..aA.*....^..|
          2b 85 3e b5 9d b5 d9 e1  57 ff be b4 c5 7e f5 cf  |+.>.....W....~..|
          0c 9e f0 97 fe 2b d3 3b  52 1b 1b 38 27 f7 3f 4a  |.....+.;R..8'.?J|
      • Certificate #2
        • 2
          • 4D:62:90:E5:8C:54:F0:F1:EB:17:34:1A:13:10:E6:A4
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • OU: Class 3 Public Primary Certification Authority
          • 2010-09-30 00:00:00 UTC: 2014-01-01 23:59:59 UTC
          • Subject
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: Terms of use at https://www.verisign.com/rpa (c)10
            • CN: VeriSign Class 3 Code Signing 2010 CA
          • #5
            • rsaEncryption: nil
            • F5:23:4B:5E:A5:D7:8A:BB:32:E9:D4:57:F7:EF:E4:C7:
              26:7E:AD:19:98:FE:A8:9D:7D:94:F6:36:6B:10:D7:75:
              81:30:7F:04:68:7F:CB:2B:75:1E:CD:1D:08:8C:DF:69:
              94:A7:37:A3:9C:7B:80:E0:99:E1:EE:37:4D:5F:CE:3B:
              14:EE:86:D4:D0:F5:27:35:BC:25:0B:38:A7:8C:63:9D:
              17:A3:08:A5:AB:B0:FB:CD:6A:62:82:4C:D5:21:DA:1B:
              D9:F1:E3:84:3B:8A:2A:4F:85:5B:90:01:4F:C9:A7:76:
              10:7F:27:03:7C:BE:AE:7E:7D:C1:DD:F9:05:BC:1B:48:
              9C:69:E7:C0:A4:3C:3C:41:00:3E:DF:96:E5:C5:E4:94:
              71:D6:55:01:C7:00:26:4A:40:3C:B5:A1:26:A9:0C:A7:
              6D:80:8E:90:25:7B:CF:BF:3F:1C:EB:2F:96:FA:E5:87:
              77:C6:B5:56:B2:7A:3B:54:30:53:1B:DF:62:34:FF:1E:
              D1:F4:5A:93:28:85:E5:4C:17:4E:7E:5B:FD:A4:93:99:
              7F:DF:CD:EF:A4:75:EF:EF:15:F6:47:E7:F8:19:72:D8:
              2E:34:1A:A6:B4:A7:4C:7E:BD:BB:4F:0C:3D:57:F1:30:
              D6:A6:36:8E:D6:80:76:D7:19:2E:A5:CD:7E:34:2D:89
              : 0x010001
          • X509v3 extensions
            • basicConstraints
              • true
              • true: 0
            • certificatePolicies
              • 2.16.840.1.113733.1.7.23.3
                • #0
                  • id-qt-cps: https://www.verisign.com/cps
                  • id-qt-unotice: https://www.verisign.com/rpa
            • keyUsage: true, 6
            • 1.3.6.1.5.5.7.1.12
              • image/gif
                • SHA1:
                  8f e5 d3 1a 86 ac 8d 8e  6b c3 cf 80 6a d4 48 18  |........k...j.H.|
                  2c 7b 19 2e                                       |,{..            |
                • http://logo.verisign.com/vslogo.gif
            • extendedKeyUsage
              • clientAuth: codeSigning
            • subjectAltName
              • CN: VeriSignMPKI-2-8
            • subjectKeyIdentifier:
              cf 99 a9 ea 7b 26 f4 4b  c9 8e 8f d7 f0 05 26 ef  |....{&.K......&.|
              e3 d2 a7 9d                                       |....            |
            • crlDistributionPoints: http://crl.verisign.com/pca3.crl
        • RSA-SHA1:
          ae dd 21 1d 5f 8f 80 7a  d2 52 09 ea db 6e d2 5d  |..!._..z.R...n.]|
          8b e8 c2 1b 69 04 be 51  a5 01 0e 59 fa 37 d1 74  |....i..Q...Y.7.t|
          a3 ee dc ed 89 74 2b 62  d5 a6 bf 4f ad 36 17 54  |.....t+b...O.6.T|
          f0 13 e0 a3 45 d2 4c 26  cb e2 6d a2 1f d0 1e 7a  |....E.L&..m....z|
          07 0f b6 b3 7b 6f 50 68  a2 e9 31 b3 b7 99 7d 80  |....{oPh..1...}.|
          70 a0 a7 de 0b 1e a4 ff  f3 4d 81 1b dd 20 c9 1c  |p........M... ..|
          c4 af cf f1 8f fa d9 da  95 f0 ec dc 5c bf e8 8c  |............\...|
          5a 3e 7a b0 a3 eb 59 43  74 11 e0 9b 1a 6a f3 6f  |Z>z...YCt....j.o|
      • Certificate #3
        • 2
          • 09:E2:8B:26:DB:59:3E:C4:E7:32:86:B6:64:99:C3:70
          • RSA-SHA1: nil
          • Issuer
            • C: US
            • O: VeriSign, Inc.
            • OU: VeriSign Trust Network
            • OU: Terms of use at https://www.verisign.com/rpa (c)10
            • CN: VeriSign Class 3 Code Signing 2010 CA
          • 2011-11-14 00:00:00 UTC: 2014-11-13 23:59:59 UTC
          • Subject
            • C: US
            • ST: California
            • L: Mountain View
            • O: Google Inc
            • OU: Digital ID Class 3 - Java Object Signing
            • CN: Google Inc
          • #5
            • rsaEncryption: nil
            • DD:88:F3:C4:03:40:E3:BB:93:64:DB:52:47:E4:D2:84:
              F3:E4:1C:03:EB:32:5A:C4:FA:06:9D:7B:CF:82:C4:9C:
              57:A6:F6:30:F5:04:63:13:81:31:B7:23:EC:97:09:6E:
              C7:83:4C:20:F9:6E:DB:48:C4:52:A0:44:31:70:B6:4A:
              E3:7C:6C:58:1A:CA:7C:7D:DC:FC:66:D4:60:FE:A5:C9:
              7E:13:72:14:5D:12:4C:AA:AE:E7:C1:00:BE:D3:AC:ED:
              BD:B5:59:0F:B0:80:EC:0B:C7:B7:10:A8:CE:B9:3E:07:
              E2:9E:79:8B:27:0D:B1:7F:6E:C8:02:BB:8C:50:D1:AD:
              4C:81:6C:4C:A2:D3:D2:E7:5D:3D:A2:8B:9E:66:84:5A:
              D8:FD:7E:D6:FD:A3:25:9F:75:3B:22:8A:78:31:B2:DD:
              06:B6:57:38:5D:88:83:6B:CB:55:AF:E1:C3:55:66:BC:
              E7:2C:8F:53:A9:C8:89:F0:E5:28:2F:B6:1D:A3:1C:9E:
              7D:39:71:35:1C:23:21:09:E5:C7:7A:6A:E6:B6:C7:77:
              35:AA:E7:DF:26:5B:CD:07:20:B7:42:5D:DE:5A:BF:27:
              CC:2A:FE:81:E2:3A:8E:17:41:AC:74:9E:A5:CE:DB:FD:
              3F:34:1E:A2:CC:2D:74:FB:CF:99:6C:8B:0C:D5:56:F3
              : 0x010001
          • X509v3 extensions
            • basicConstraints
              • nil
            • keyUsage: true, 0x80
            • crlDistributionPoints: http://csc3-2010-crl.verisign.com/CSC3-2010.crl
            • certificatePolicies
              • 2.16.840.1.113733.1.7.23.3
                • id-qt-cps: https://www.verisign.com/rpa
            • extendedKeyUsage: codeSigning
            • authorityInfoAccess
              • #0
                • OCSP: http://ocsp.verisign.com
                • caIssuers: http://csc3-2010-aia.verisign.com/CSC3-2010.cer
            • authorityKeyIdentifier:
              cf 99 a9 ea 7b 26 f4 4b  c9 8e 8f d7 f0 05 26 ef  |....{&.K......&.|
              e3 d2 a7 9d                                       |....            |
            • nsCertType: 0x10
            • 1.3.6.1.4.1.311.2.1.27
              • false: true
        • RSA-SHA1:
          8b d7 fa f7 da f8 2e f5  0f d6 e1 b5 63 23 ae 7c  |............c#.||
          6a 4b 62 34 2b ec ff 29  ea 2c 13 24 54 44 c5 c8  |jKb4+..).,.$TD..|
          e1 ee 33 76 e3 a6 2c c1  90 91 d4 13 a5 ea a4 db  |..3v..,.........|
          65 90 34 ff d5 c7 80 50  07 03 08 1c 67 a6 1a bf  |e.4....P....g...|
          14 de b2 ce c8 da 88 95  f4 05 5e 7b 19 26 72 6c  |..........^{.&rl|
          79 5f 45 07 75 21 09 5f  35 f0 f7 41 a0 7b b8 87  |y_E.u!._5..A.{..|
          22 1d fd 69 a9 f4 69 a3  63 33 7e 6c 4a ea 2c c1  |"..i..i.c3~lJ.,.|
          df c6 f1 f0 9e e9 f7 f7  83 fc 02 a5 c0 8b 1b 9c  |................|
          1e d7 d6 20 8e 84 b0 69  27 d1 5c b1 43 f6 61 c2  |... ...i'.\.C.a.|
          85 29 57 3d aa b0 9a 9d  3a 5f 86 05 b4 2a ce b0  |.)W=....:_...*..|
          eb 30 19 52 e8 f3 1f 98  47 29 8e b2 32 e5 ff f7  |.0.R....G)..2...|
          37 4b 44 8b 2c 3c 0d 55  aa 16 6b 19 5e 14 32 53  |7KD.,<.U..k.^.2S|
          a5 2b e5 8f 10 3c 25 c7  48 96 b6 fd af 33 12 14  |.+...<%.H....3..|
          d6 1d 91 ee 93 2c 55 57  eb 8e 99 8d d6 8c 0b 6e  |.....,UW.......n|
          50 33 f2 b2 96 85 67 a8  a4 b7 f6 89 34 b9 da ea  |P3....g.....4...|
          45 3b 61 24 fa 39 08 d3  df dc 0f ed 73 53 3a ab  |E;a$.9......sS:.|
    • Signer
      • 1
      • unnamed
        • #0
          • C: US
          • O: VeriSign, Inc.
          • OU: VeriSign Trust Network
          • OU: Terms of use at https://www.verisign.com/rpa (c)10
          • CN: VeriSign Class 3 Code Signing 2010 CA
        • 09:E2:8B:26:DB:59:3E:C4:E7:32:86:B6:64:99:C3:70
      • SHA1: nil
      • #3
        • 1.3.6.1.4.1.311.2.1.12
          • nil
        • contentType: 1.3.6.1.4.1.311.2.1.4
        • 1.3.6.1.4.1.311.2.1.11: msCodeInd
        • messageDigest:
          06 7d 15 87 d0 e1 19 a9  b9 93 64 bc c9 73 c6 6b  |.}........d..s.k|
          df dc ed 14                                       |....            |
      • rsaEncryption:
        56 83 48 9b fc e9 a5 eb  69 b1 2f ea 25 fe e8 23  |V.H.....i./.%..#|
        64 ce cb 22 90 39 b4 1a  4b f5 3d b3 21 14 9f 6e  |d..".9..K.=.!..n|
        97 fb 9c 79 fd ef cb e1  51 1f 7e c8 87 2b 80 3c  |...y....Q.~..+.<|
        27 47 0c 31 08 c0 20 dc  04 1e 7d f2 fc f0 2f 29  |'G.1.. ...}.../)|
        d7 9a 18 75 49 d9 63 77  61 3b a0 66 04 37 1c a8  |...uI.cwa;.f.7..|
        42 2b 7c bd b5 e5 b9 61  2a fb 3c 4e 0e 5f ff 00  |B+|....a*..^.l{..+...z\|
        e7 7b 9a 96 a6 61 d1 35  81 f5 8e 56 0b a4 ba b9  |.{...a.5...V....|
        83 c6 a9 4f 41 96 de 35  35 3b fd 01 cc 4f 8e 68  |...OA..55;...O.h|
        59 19 bc b9 f7 c3 3e 19  ff 2e 9e 0c 9e d8 d1 f8  |Y.....>.........|
        6b 55 ef 3f d8 3e b6 0d  06 58 30 2e 72 e9 5d d7  |kU.?.>...X0.r.].|
        a9 64 e2 0f 0f 3d 81 ed  48 78 61 57 60 f5 09 e2  |.d...=..HxaW`...|
        4e 27 b9 d5 ff 90 c6 15  44 7b 15 52 f0 ed 65 7e  |N'......D{.R..e~|
        1a 80 19 95 b9 0d ad 72  cf 44 54 ae 53 f5 07 24  |.......r.DT.S..$|
        29 00 d8 a6 92 f5 ac 6d  fc 1d b8 6e 4a ba 3d fc  |)......m...nJ.=.|
      • countersignature
        • 1
          • unnamed
            • #0
              • C: US
              • O: VeriSign, Inc.
              • CN: VeriSign Time Stamping Services CA
            • 38:25:D7:FA:F8:61:AF:9E:F4:90:E7:26:B5:D6:5A:D5
          • SHA1: nil
          • #2
            • contentType: pkcs7-data
            • signingTime: 2012-04-28 02:07:01 UTC
            • messageDigest:
              d8 78 76 40 45 0d af 8d  24 66 20 5d 14 11 9f d1  |.xv@E...$f ]....|
              c1 05 36 d2                                       |..6.            |
          • rsaEncryption:
            2b ee a0 cd 43 90 ec 4f  06 8b 98 fb e2 3e 1a e8  |+...C..O.....>..|
            3e 86 89 04 f8 fa b5 e9  e1 4b 75 46 e5 70 87 d6  |>........KuF.p..|
            b6 94 b2 0d 30 2b 5b 8a  73 c5 a5 7f 46 93 f0 94  |....0+[.s...F...|
            cc d3 4e 1d 91 ea 62 87  87 3f c7 4c c8 18 1e 86  |..N...b..?.L....|
            fb 17 08 dd 55 54 2e c4  ed 16 2a e6 3d 3c 0d d4  |....UT....*.=<..|
            a1 01 82 a7 e0 38 a5 21  40 7a 66 00 51 ca dc 05  |.....8.!@zf.Q...|
            d3 aa 73 49 b6 64 5d a0  04 21 9a 58 a4 33 cb 41  |..sI.d]..!.X.3.A|
            43 a0 4d 70 88 d9 bf 32  63 3a 38 0b d8 d6 7d 2c  |C.Mp...2c:8...},|
offsetsizetypecomment
01218560EXE04/28/2012 00:39:00#
f756430815PNG(256 x 256)#
11550c23031PNG(256 x 256)#
1298005616PKCS7Authenticode Signature#
offset:( 0x )size:( 0x )hotkeys:-=[]<>, offset/size fields are also editable

[?] ignoring invalid PEdump::BITMAPINFOHEADER

[?] can't find file_offset of VA 0xf6d38