filename | mmx64.efi | |
---|---|---|
size | 1160184 (0x11b3f8) | |
md5 | 4c5554ebea3988af2fa82431e936089d | |
type | PE32+ executable (EFI application) x86-64 (stripped to external PDB), for MS Windows | |
mimetype | application/x-dosexec | |
clamav | OK | |
virustotal | → scan with virustotal.com | |
histogram |
MZ Header
signature | MZ |
bytes_in_last_block | 0x90 |
blocks_in_file | 3 |
num_relocs | 0 |
header_paragraphs | 4 |
min_extra_paragraphs | 0 |
max_extra_paragraphs | 0xffff |
ss | 0 |
sp | 0xb8 |
checksum | 0 |
ip | 0 |
cs | 0 |
reloc_table_offset | 0x40 |
overlay_number | 0 |
reserved0 | 0 |
oem_id | 0 |
oem_info | 0 |
reserved2 | 0 |
reserved3 | 0 |
reserved4 | 0 |
reserved5 | 0 |
reserved6 | 0 |
lfanew | 0x80 |
DOS stub
00000000: 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 |........!..L.!Th| 00000010: 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f |is program canno| 00000020: 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 |t be run in DOS | 00000030: 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 |mode....$.......|
PE Header
Sections
Data Directory
type | va | size | |
---|---|---|---|
EXPORT | 0 | 0 | |
IMPORT | 0 | 0 | |
RESOURCE | 0 | 0 | |
EXCEPTION | 0 | 0 | |
SECURITY | 0x11aa40 | 0x9b8 | |
BASERELOC | 0xaf000 | 0xa | |
DEBUG | 0 | 0 | |
ARCHITECTURE | 0 | 0 | |
GLOBALPTR | 0 | 0 | |
TLS | 0 | 0 | |
LOAD_CONFIG | 0 | 0 | |
Bound_IAT | 0 | 0 | |
IAT | 0 | 0 | |
Delay_IAT | 0 | 0 | |
CLR_Header | 0 | 0 |
Signers (1)
issuer: /CN=Red Hat Secure Boot (CA key 1)/emailAddress=secalert@redhat.com
serial: EFBF15932842CA2F
Certificates (2)
Certificate: Data: Version: 3 (0x2) Serial Number: ef:bf:15:93:28:42:ca:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=Red Hat Secure Boot (CA key 1)/emailAddress=secalert@redhat.com Validity Not Before: Feb 12 12:57:20 2014 GMT Not After : Feb 6 12:57:21 2037 GMT Subject: CN=Red Hat Secure Boot (signing key 1)/emailAddress=secalert@redhat.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:27:8a:c5:92:45:5c:e7:54:10:69:fa:05:75: e7:d9:7e:a8:20:88:5a:a3:86:41:f4:33:ec:6b:03: ce:c3:a2:4f:26:82:00:75:af:82:e7:e3:f3:bf:2c: 83:7a:a8:1f:58:5c:27:08:c2:74:6d:9b:0a:5f:c8: 4c:60:4c:96:b1:7e:4e:85:03:29:cb:42:6a:6a:bf: ff:c4:79:e7:15:fb:37:a0:c4:04:fb:96:2e:44:3d: 6a:c6:48:3e:50:98:d9:9f:c0:47:78:a4:33:eb:1f: da:9a:f4:df:9b:8e:8a:cd:5a:4c:c7:f1:c2:5b:d9: 6e:dc:9b:ab:5c:a6:3b:5e:6c:b3:55:2f:3f:d2:9f: 19:2b:23:f2:e9:55:c8:59:af:d6:4f:4a:66:f7:5a: ae:bb:1c:de:44:77:cf:76:34:16:c1:38:47:e8:3f: dc:c4:88:77:b6:05:34:e0:cb:69:3a:18:3a:3c:e6: da:00:54:da:91:9f:d3:f5:50:b0:ca:19:ac:59:97: 3d:6b:6a:14:93:28:4e:3b:72:b4:be:b1:8a:06:2a: b4:b2:77:7c:8d:9d:dc:44:42:ba:79:b3:d6:d3:d6: 62:1b:91:49:ef:00:72:55:eb:9c:68:7e:b9:64:35: 1d:0b:8c:a8:92:d3:f3:ea:7a:a2:33:7e:fc:61:a0: db:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:41:FF:00:B4:BC:69:6E:2F:64:2F:A8:CA:83:CF:50:5A:88:74:52 Signature Algorithm: sha256WithRSAEncryption 6a:43:5d:2b:42:e3:3a:d4:06:cc:85:03:25:75:98:78:c5:0d: 90:a8:9d:44:dd:5f:7f:27:d5:48:54:b8:60:a6:f5:c9:54:b9: 63:53:61:5d:ec:f9:62:f0:51:bf:eb:ab:11:80:28:39:5c:61: fb:62:93:4b:87:f6:a5:de:c6:6b:2e:44:42:ad:d8:21:f3:3c: e1:5d:62:08:bf:67:0f:f1:27:0d:31:af:7c:e1:e8:55:30:aa: 06:65:83:30:15:9c:0f:9a:fa:9b:54:a2:e5:77:be:f4:b2:96: 6f:b4:8e:fc:56:ac:be:df:05:21:dc:a9:cd:d6:1d:a8:b0:87: 0d:5e:1e:41:fd:88:8f:61:42:35:67:82:af:55:63:e8:5c:f9: bb:4f:51:2e:06:e7:1e:47:08:9b:c1:af:af:94:35:fe:ee:02: 2c:d7:38:5b:77:f2:8c:30:3f:d1:2a:80:b9:d7:2d:2a:a9:92: 5d:28:90:64:52:cc:50:fd:b0:75:6a:02:f6:6e:0c:62:32:14: 1a:ef:89:3b:91:eb:73:dd:fc:8f:1c:c0:14:1f:fe:73:68:22: 0f:d6:c5:f5:c2:05:02:85:0f:df:cf:7b:f7:78:8b:eb:d8:81: 83:f7:10:f4:f5:64:dc:6b:6b:dd:f7:39:07:f2:df:ee:e1:39: 4a:e4:ca:2a
Certificate: Data: Version: 3 (0x2) Serial Number: ad:8e:19:64:68:34:ff:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=Red Hat Secure Boot (CA key 1)/emailAddress=secalert@redhat.com Validity Not Before: Feb 12 12:44:45 2014 GMT Not After : Feb 6 12:44:45 2037 GMT Subject: CN=Red Hat Secure Boot (CA key 1)/emailAddress=secalert@redhat.com Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:43:20:03:4c:6e:1b:54:72:b7:83:9e:bb:83: a4:51:85:d1:d2:3c:f9:99:3e:7d:ba:93:79:b3:bf: b8:38:c2:26:f3:52:d4:63:4b:2b:91:fa:a9:4c:e4: a2:7f:8e:d1:08:11:e3:b0:50:1f:c1:6e:42:23:6d: e0:23:59:be:91:ec:6b:ca:f7:6c:10:25:8f:33:be: bc:8d:83:42:57:fe:d9:95:7e:eb:fd:18:84:f5:87: e8:65:f1:1c:3b:e6:9d:4a:f9:30:42:88:cf:cf:68: d7:13:71:6d:3b:02:63:a9:0b:b6:f1:cc:0e:67:7b: 23:f8:60:d7:f3:11:35:b0:bd:2f:70:22:20:f6:d0: f7:47:83:12:22:f6:75:52:1d:7f:0f:9a:58:ac:97: e9:1b:30:13:9d:6c:c6:c4:6c:8b:57:5d:68:29:73: e2:77:75:e4:d4:88:0b:25:0c:54:0e:c0:ce:6a:ea: 10:54:4e:e3:2d:30:b0:60:84:14:2e:a8:68:b7:32: 44:bc:68:ee:d0:cd:72:43:20:ce:16:41:93:dc:01: aa:0b:15:fe:bd:b6:ec:f9:e9:dd:34:d5:ae:06:6e: 8c:d0:55:d2:47:66:35:f2:bf:0f:c8:71:7d:69:c1: 86:ab:92:60:58:a5:91:67:38:8f:11:d1:e7:cf:6d: 02:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:16:84:16:44:CE:3A:81:04:08:05:07:66:E8:F8:A2:9C:65:F8:5C X509v3 Authority Key Identifier: keyid:40:16:84:16:44:CE:3A:81:04:08:05:07:66:E8:F8:A2:9C:65:F8:5C DirName:/CN=Red Hat Secure Boot (CA key 1)/emailAddress=secalert@redhat.com serial:AD:8E:19:64:68:34:FF:5D X509v3 Basic Constraints: CA:TRUE Signature Algorithm: sha256WithRSAEncryption 55:65:e3:4a:50:8e:56:17:65:c7:2e:c0:5f:7b:8d:00:db:ec: de:ad:a4:3d:0b:74:13:1c:8e:0c:5b:79:77:a5:50:78:a5:c3: 43:ed:44:ea:35:c2:4b:b9:0b:10:f3:1f:4d:8f:81:82:c8:be: 8a:36:64:b9:1e:35:f9:79:fa:ee:20:8f:e5:a0:70:5e:80:af: a1:96:33:44:b6:23:51:af:df:77:28:91:72:08:b9:9f:26:76: d0:da:80:95:3e:a0:14:eb:67:69:e0:69:bf:c0:ce:f3:3a:f3: ea:e9:6e:42:28:4e:cf:46:12:f3:85:7c:ff:9a:69:cf:f4:5f: 34:8c:6d:ee:4e:b3:9d:3d:96:ce:b6:69:ec:91:9a:0c:f6:88: 88:48:e6:21:33:8b:83:61:06:e0:95:13:93:ca:9c:4b:d0:a1: df:f2:4f:03:ab:fe:4a:2f:c3:60:8d:79:35:b9:57:44:77:6f: cb:ac:44:0e:8a:4c:0f:42:7e:25:f2:ee:d0:60:6b:89:e4:2b: 77:b7:ee:27:02:f8:3e:29:6c:14:62:05:4c:c0:98:ec:21:7a: 6f:7b:ee:fa:88:96:47:7d:89:b7:64:48:0c:09:03:bb:a8:5f: ac:8e:a4:55:eb:59:a4:e7:43:40:b0:bb:20:63:0d:e3:1d:04: d4:17:51:64
No certificates in
#<struct PEdump::WIN_CERTIFICATE dwLength=0, wRevision=nil, wCertificateType=nil, data=nil>
pkcs7-signedData
- 1
- SHA256: nil
- 1.3.6.1.4.1.311.2.1.4
- #0
- 1.3.6.1.4.1.311.2.1.15
- :
- SHA256
f4 02 ac a6 36 88 2b b5 e2 8d 04 e1 58 5b 4e 32 |....6.+.....X[N2| a5 3c e9 ee 00 49 d5 f8 7a 3f 57 79 ee e2 69 40 |.<...I..z?Wy..i@|
- 1.3.6.1.4.1.311.2.1.15
- #0
- unnamed
- #0
- 2
- EF:BF:15:93:28:42:CA:2F
- RSA-SHA256: nil
- #2
- CN: Red Hat Secure Boot (CA key 1)
- emailAddress: secalert@redhat.com
- 2014-02-12 12:57:20 UTC: 2037-02-06 12:57:21 UTC
- #4
- CN: Red Hat Secure Boot (signing key 1)
- emailAddress: secalert@redhat.com
- #5
- rsaEncryption: nil
- B2:27:8A:C5:92:45:5C:E7:54:10:69:FA:05:75:E7:D9:
7E:A8:20:88:5A:A3:86:41:F4:33:EC:6B:03:CE:C3:A2:
4F:26:82:00:75:AF:82:E7:E3:F3:BF:2C:83:7A:A8:1F:
58:5C:27:08:C2:74:6D:9B:0A:5F:C8:4C:60:4C:96:B1:
7E:4E:85:03:29:CB:42:6A:6A:BF:FF:C4:79:E7:15:FB:
37:A0:C4:04:FB:96:2E:44:3D:6A:C6:48:3E:50:98:D9:
9F:C0:47:78:A4:33:EB:1F:DA:9A:F4:DF:9B:8E:8A:CD:
5A:4C:C7:F1:C2:5B:D9:6E:DC:9B:AB:5C:A6:3B:5E:6C:
B3:55:2F:3F:D2:9F:19:2B:23:F2:E9:55:C8:59:AF:D6:
4F:4A:66:F7:5A:AE:BB:1C:DE:44:77:CF:76:34:16:C1:
38:47:E8:3F:DC:C4:88:77:B6:05:34:E0:CB:69:3A:18:
3A:3C:E6:DA:00:54:DA:91:9F:D3:F5:50:B0:CA:19:AC:
59:97:3D:6B:6A:14:93:28:4E:3B:72:B4:BE:B1:8A:06:
2A:B4:B2:77:7C:8D:9D:DC:44:42:BA:79:B3:D6:D3:D6:
62:1B:91:49:EF:00:72:55:EB:9C:68:7E:B9:64:35:1D:
0B:8C:A8:92:D3:F3:EA:7A:A2:33:7E:FC:61:A0:DB:2F: 0x010001
- subjectKeyIdentifier:
57 41 ff 00 b4 bc 69 6e 2f 64 2f a8 ca 83 cf 50 |WA....in/d/....P| 5a 88 74 52 |Z.tR |
- RSA-SHA256:
6a 43 5d 2b 42 e3 3a d4 06 cc 85 03 25 75 98 78 |jC]+B.:.....%u.x| c5 0d 90 a8 9d 44 dd 5f 7f 27 d5 48 54 b8 60 a6 |.....D._.'.HT.`.| f5 c9 54 b9 63 53 61 5d ec f9 62 f0 51 bf eb ab |..T.cSa]..b.Q...| 11 80 28 39 5c 61 fb 62 93 4b 87 f6 a5 de c6 6b |..(9\a.b.K.....k| 2e 44 42 ad d8 21 f3 3c e1 5d 62 08 bf 67 0f f1 |.DB..!.<.]b..g..| 27 0d 31 af 7c e1 e8 55 30 aa 06 65 83 30 15 9c |'.1.|..U0..e.0..| 0f 9a fa 9b 54 a2 e5 77 be f4 b2 96 6f b4 8e fc |....T..w....o...| 56 ac be df 05 21 dc a9 cd d6 1d a8 b0 87 0d 5e |V....!.........^| 1e 41 fd 88 8f 61 42 35 67 82 af 55 63 e8 5c f9 |.A...aB5g..Uc.\.| bb 4f 51 2e 06 e7 1e 47 08 9b c1 af af 94 35 fe |.OQ....G......5.| ee 02 2c d7 38 5b 77 f2 8c 30 3f d1 2a 80 b9 d7 |..,.8[w..0?.*...| 2d 2a a9 92 5d 28 90 64 52 cc 50 fd b0 75 6a 02 |-*..](.dR.P..uj.| f6 6e 0c 62 32 14 1a ef 89 3b 91 eb 73 dd fc 8f |.n.b2....;..s...| 1c c0 14 1f fe 73 68 22 0f d6 c5 f5 c2 05 02 85 |.....sh"........| 0f df cf 7b f7 78 8b eb d8 81 83 f7 10 f4 f5 64 |...{.x.........d| dc 6b 6b dd f7 39 07 f2 df ee e1 39 4a e4 ca 2a |.kk..9.....9J..*|
- 2
- #1
- 2
- AD:8E:19:64:68:34:FF:5D
- RSA-SHA256: nil
- #2
- CN: Red Hat Secure Boot (CA key 1)
- emailAddress: secalert@redhat.com
- 2014-02-12 12:44:45 UTC: 2037-02-06 12:44:45 UTC
- #4
- CN: Red Hat Secure Boot (CA key 1)
- emailAddress: secalert@redhat.com
- #5
- rsaEncryption: nil
- 9B:43:20:03:4C:6E:1B:54:72:B7:83:9E:BB:83:A4:51:
85:D1:D2:3C:F9:99:3E:7D:BA:93:79:B3:BF:B8:38:C2:
26:F3:52:D4:63:4B:2B:91:FA:A9:4C:E4:A2:7F:8E:D1:
08:11:E3:B0:50:1F:C1:6E:42:23:6D:E0:23:59:BE:91:
EC:6B:CA:F7:6C:10:25:8F:33:BE:BC:8D:83:42:57:FE:
D9:95:7E:EB:FD:18:84:F5:87:E8:65:F1:1C:3B:E6:9D:
4A:F9:30:42:88:CF:CF:68:D7:13:71:6D:3B:02:63:A9:
0B:B6:F1:CC:0E:67:7B:23:F8:60:D7:F3:11:35:B0:BD:
2F:70:22:20:F6:D0:F7:47:83:12:22:F6:75:52:1D:7F:
0F:9A:58:AC:97:E9:1B:30:13:9D:6C:C6:C4:6C:8B:57:
5D:68:29:73:E2:77:75:E4:D4:88:0B:25:0C:54:0E:C0:
CE:6A:EA:10:54:4E:E3:2D:30:B0:60:84:14:2E:A8:68:
B7:32:44:BC:68:EE:D0:CD:72:43:20:CE:16:41:93:DC:
01:AA:0B:15:FE:BD:B6:EC:F9:E9:DD:34:D5:AE:06:6E:
8C:D0:55:D2:47:66:35:F2:BF:0F:C8:71:7D:69:C1:86:
AB:92:60:58:A5:91:67:38:8F:11:D1:E7:CF:6D:02:FD: 0x010001
- #6
- subjectKeyIdentifier:
40 16 84 16 44 ce 3a 81 04 08 05 07 66 e8 f8 a2 |@...D.:.....f...| 9c 65 f8 5c |.e.\ |
- authorityKeyIdentifier
40 16 84 16 44 ce 3a 81 04 08 05 07 66 e8 f8 a2 |@...D.:.....f...| 9c 65 f8 5c |.e.\ |
- #0
- CN: Red Hat Secure Boot (CA key 1)
- emailAddress: secalert@redhat.com
00 ad 8e 19 64 68 34 ff 5d |....dh4.] |
- #0
- basicConstraints: true
- subjectKeyIdentifier:
- RSA-SHA256:
55 65 e3 4a 50 8e 56 17 65 c7 2e c0 5f 7b 8d 00 |Ue.JP.V.e..._{..| db ec de ad a4 3d 0b 74 13 1c 8e 0c 5b 79 77 a5 |.....=.t....[yw.| 50 78 a5 c3 43 ed 44 ea 35 c2 4b b9 0b 10 f3 1f |Px..C.D.5.K.....| 4d 8f 81 82 c8 be 8a 36 64 b9 1e 35 f9 79 fa ee |M......6d..5.y..| 20 8f e5 a0 70 5e 80 af a1 96 33 44 b6 23 51 af | ...p^....3D.#Q.| df 77 28 91 72 08 b9 9f 26 76 d0 da 80 95 3e a0 |.w(.r...&v....>.| 14 eb 67 69 e0 69 bf c0 ce f3 3a f3 ea e9 6e 42 |..gi.i....:...nB| 28 4e cf 46 12 f3 85 7c ff 9a 69 cf f4 5f 34 8c |(N.F...|..i.._4.| 6d ee 4e b3 9d 3d 96 ce b6 69 ec 91 9a 0c f6 88 |m.N..=...i......| 88 48 e6 21 33 8b 83 61 06 e0 95 13 93 ca 9c 4b |.H.!3..a.......K| d0 a1 df f2 4f 03 ab fe 4a 2f c3 60 8d 79 35 b9 |....O...J/.`.y5.| 57 44 77 6f cb ac 44 0e 8a 4c 0f 42 7e 25 f2 ee |WDwo..D..L.B~%..| d0 60 6b 89 e4 2b 77 b7 ee 27 02 f8 3e 29 6c 14 |.`k..+w..'..>)l.| 62 05 4c c0 98 ec 21 7a 6f 7b ee fa 88 96 47 7d |b.L...!zo{....G}| 89 b7 64 48 0c 09 03 bb a8 5f ac 8e a4 55 eb 59 |..dH....._...U.Y| a4 e7 43 40 b0 bb 20 63 0d e3 1d 04 d4 17 51 64 |..C@.. c......Qd|
- 2
- #0
- 1
- unnamed
- #0
- CN: Red Hat Secure Boot (CA key 1)
- emailAddress: secalert@redhat.com
- EF:BF:15:93:28:42:CA:2F
- #0
- SHA256: nil
- #2
- SMIME-CAPS
- nil
- contentType: 1.3.6.1.4.1.311.2.1.4
- signingTime: 2019-01-24 22:02:13 UTC
- messageDigest:
b2 ac 2c 25 e9 c0 e5 00 35 6b 91 c5 12 4a bf 2e |..,%....5k...J..| 28 96 38 2b 9b 01 4a cf 4b 2a b9 c0 95 d2 84 7c |(.8+..J.K*.....||
- SMIME-CAPS
- rsaEncryption:
09 53 72 6b 36 44 e6 4b af ad 8a 86 dc f0 a5 fe |.Srk6D.K........| 74 1c 24 e0 88 13 88 92 67 35 f7 68 1c 0d 5e af |t.$.....g5.h..^.| 61 b8 a0 b0 fb 60 d8 77 4d ca 74 d0 98 fc 0d 4d |a....`.wM.t....M| 36 83 93 c3 d6 79 ce 75 5b d0 a9 bd d0 b9 f9 9e |6....y.u[.......| 44 78 f9 74 bc 5c 5d f3 55 d1 e4 f7 ee a3 b4 b0 |Dx.t.\].U.......| 4f 2c 09 05 3e 11 7c 15 fd 68 4d 28 4c 11 75 f5 |O,..>.|..hM(L.u.| d2 10 a1 21 b3 b7 ca ca 2b a8 74 3e 01 f3 33 12 |...!....+.t>..3.| 94 2f 53 02 06 e9 89 4c b3 82 c6 e7 43 6e 64 7f |./S....L....Cnd.| 7b 32 65 8f b3 6d bc 43 88 89 7b 7f 92 89 b7 3b |{2e..m.C..{....;| 47 97 07 f7 81 0e 6f b4 8e 2a 7d fe ca fa 97 58 |G.....o..*}....X| 42 45 13 08 88 1a ef 01 b0 6a 1b 28 60 de d3 5c |BE.......j.(`..\| dc 2c fe ba e8 53 b1 47 ca 29 3e c9 36 bd 27 8a |.,...S.G.)>.6.'.| ac af 0e 77 79 18 bd fe 60 48 96 22 c6 27 28 90 |...wy...`H.".'(.| 95 14 9b e2 70 d4 01 d9 f1 18 3c 1f 2a 5b 2c 41 |....p.....<.*[,A| cf 0d 8e a1 24 58 38 24 03 4b 1d a0 f1 b7 30 54 |....$X8$.K....0T| 77 8c 2f 79 42 bc a6 0e 08 fa ef 4e 04 15 cc 10 |w./yB......N....|
- unnamed
Cannot call to_der on
#<struct PEdump::WIN_CERTIFICATE dwLength=0, wRevision=nil, wCertificateType=nil, data=nil>
Please donate some bucks to keep this site up and running: | |
Ko-fi | |
---|---|
Yandex.Money | |
Thank you! |
[!] PEdump::WIN_CERTIFICATE: too small length 0