| filename | iw5sp.exe | |
|---|---|---|
| size | 4753480 (0x488848) | |
| md5 | 96371a6f01b1e5465e0de0e5bc0c911b | |
| type | PE32 executable (GUI) Intel 80386, for MS Windows | |
| mimetype | application/x-dosexec | |
| clamav | Hacktool.Crack.CODModernWarfare FOUND | |
| virustotal | → scan with virustotal.com | |
| histogram | ||
MZ Header
| signature | MZ |
| bytes_in_last_block | 0x90 |
| blocks_in_file | 3 |
| num_relocs | 0 |
| header_paragraphs | 4 |
| min_extra_paragraphs | 0 |
| max_extra_paragraphs | 0xffff |
| ss | 0 |
| sp | 0xb8 |
| checksum | 0 |
| ip | 0 |
| cs | 0 |
| reloc_table_offset | 0x40 |
| overlay_number | 0 |
| reserved0 | 0 |
| oem_id | 0 |
| oem_info | 0 |
| reserved2 | 0 |
| reserved3 | 0 |
| reserved4 | 0 |
| reserved5 | 0 |
| reserved6 | 0 |
| lfanew | 0x120 |
PE Header
Packer / Compiler
Sections
Data Directory
TLS
| raw start | raw end | index | callbks | zero fill | flags | |
|---|---|---|---|---|---|---|
| 0x273f000 | 0x273f020 | 0x273afb8 | 0x790778 | 0 | 0 |
| id | lang | string |
|---|---|---|
| 1 | 1033 | Modern Warfare 2 |
Signers (1)
issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https:\/\/www.verisign.com\/rpa (c)04/CN=VeriSign Class 3 Code Signing 2004 CA
serial: 6C409E48C32B0D1100F80B9D29BC1FB9
Certificates (2)
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority
Validity
Not Before: Jul 16 00:00:00 2004 GMT
Not After : Jul 15 23:59:59 2014 GMT
Subject: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https:\/\/www.verisign.com\/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:be:bc:ee:bc:7e:ef:83:eb:e0:37:4f:fb:03:10:
38:be:08:d2:8c:7d:9d:fa:92:7f:19:0c:c2:6b:ee:
42:52:8c:de:d3:1c:48:13:25:ea:c1:63:7a:f9:51:
65:ee:d3:aa:3b:f5:f0:94:9c:2b:fb:f2:66:d4:24:
da:f7:f5:9f:6e:19:39:36:bc:d0:a3:76:08:1e:22:
27:24:6c:38:91:27:e2:84:49:ae:1b:8a:a1:fd:25:
82:2c:10:30:e8:71:ab:28:e8:77:4a:51:f1:ec:cd:
f8:f0:54:d4:6f:c0:e3:6d:0a:8f:d9:d8:64:8d:63:
b2:2d:4e:27:f6:85:0e:fe:6d:e3:29:99:e2:85:47:
7c:2d:86:7f:e8:57:8f:ad:67:c2:33:32:91:13:20:
fc:a9:23:14:9a:6d:c2:84:4b:76:68:04:d5:71:2c:
5d:21:fa:88:0d:26:fd:1f:2d:91:2b:e7:01:55:4d:
f2:6d:35:28:82:df:d9:6b:5c:b6:d6:d9:aa:81:fd:
5f:cd:83:ba:63:9d:d0:22:fc:a9:3b:42:69:b2:8e:
3a:b5:bc:b4:9e:0f:5e:c4:ea:2c:82:8b:28:fd:53:
08:96:dd:b5:01:20:d1:f9:a5:18:e7:c0:ee:51:70:
37:e1:b6:05:48:52:48:6f:38:ea:c3:e8:6c:7b:44:
84:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
X509v3 Certificate Policies:
Policy: 2.16.840.1.113733.1.7.23.3
CPS: https://www.verisign.com/rpa
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.verisign.com/pca3.crl
X509v3 Extended Key Usage:
TLS Web Client Authentication, Code Signing
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Netscape Cert Type:
Object Signing CA
X509v3 Subject Alternative Name:
DirName:/CN=Class3CA2048-1-43
X509v3 Subject Key Identifier:
08:F5:51:E8:FB:FE:3D:3D:64:36:7C:68:CF:5B:78:A8:DF:B9:C5:37
X509v3 Authority Key Identifier:
DirName:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
serial:70:BA:E4:1D:10:D9:29:34:B6:38:CA:7B:03:CC:BA:BF
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
ae:3a:17:b8:4a:7b:55:fa:64:55:ec:40:a4:ed:49:41:90:99:
9c:89:bc:af:2e:1d:ca:78:23:f9:1c:19:0f:7f:eb:68:bc:32:
d9:88:38:de:dc:3f:d3:89:b4:3f:b1:82:96:f1:a4:5a:ba:ed:
2e:26:d3:de:7c:01:6e:00:0a:00:a4:06:92:11:48:09:40:f9:
1c:18:79:67:23:24:e0:bb:d5:e1:50:ae:1b:f5:0e:dd:e0:2e:
81:cd:80:a3:6c:52:4f:91:75:55:8a:ba:22:f2:d2:ea:41:75:
88:2f:63:55:7d:1e:54:5a:95:59:ca:d9:34:81:c0:5f:5e:f6:
7a:b5
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:40:9e:48:c3:2b:0d:11:00:f8:0b:9d:29:bc:1f:b9
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https:\/\/www.verisign.com\/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA
Validity
Not Before: Apr 20 00:00:00 2009 GMT
Not After : Apr 19 23:59:59 2012 GMT
Subject: C=US, ST=Washington, L=Bellevue, O=Valve Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Steam, CN=Valve Corporation
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:a9:80:49:32:c1:b9:aa:c6:d1:b7:7f:3a:b3:8a:
83:e8:ac:b3:e5:3d:57:e9:bc:0e:b4:32:bc:14:97:
9f:3e:81:db:70:85:25:0d:d9:04:48:15:b4:14:d1:
20:ed:b4:ca:d0:4b:3d:ae:b0:8a:78:9b:1f:03:7a:
86:e7:d7:ef:3e:ff:10:78:9b:6e:28:56:55:8f:44:
27:14:fd:d7:ff:d2:e8:67:fc:b2:ca:39:5d:a2:d2:
12:cb:69:cb:32:58:a1:7f:15:ac:2a:a2:32:94:3a:
af:ea:3f:4a:a5:53:e7:0b:df:0b:79:d2:3a:f9:ea:
99:c0:5a:3c:28:90:7f:d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:http://CSC3-2004-crl.verisign.com/CSC3-2004.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.113733.1.7.23.3
CPS: https://www.verisign.com/rpa
X509v3 Extended Key Usage:
Code Signing
Authority Information Access:
OCSP - URI:http://ocsp.verisign.com
CA Issuers - URI:http://CSC3-2004-aia.verisign.com/CSC3-2004-aia.cer
X509v3 Authority Key Identifier:
08:F5:51:E8:FB:FE:3D:3D:64:36:7C:68:CF:5B:78:A8:DF:B9:C5:37
Netscape Cert Type:
Object Signing
1.3.6.1.4.1.311.2.1.27:
0.......
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
79:e8:88:ca:fc:ca:47:f1:84:9e:11:5d:15:21:53:82:20:50:
75:39:eb:d5:cd:bd:ad:e3:61:c6:78:8d:70:44:aa:f6:a0:36:
3f:e0:52:f4:a1:7b:e0:ef:a3:23:ea:a5:ae:02:d9:53:f4:14:
76:58:e5:aa:88:fc:f0:88:b1:3f:ae:27:d1:fc:9d:ba:da:30:
4d:94:ba:4f:08:fd:d8:c9:37:4c:86:e2:67:8a:38:85:d4:44:
7b:3a:76:fd:41:a6:5f:c8:1d:ea:15:12:b5:f4:fa:e0:b5:e5:
84:84:ee:45:fe:48:ef:56:69:c4:b9:3c:19:fc:5e:a4:fd:18:
ec:c4:93:a1:11:27:c2:33:09:1c:57:35:62:5b:5a:cb:6d:f5:
2e:af:d9:c8:eb:39:fc:9f:45:0c:13:e2:25:ef:73:12:a3:f8:
11:cc:81:97:30:5f:dd:01:4e:43:34:c4:a0:d4:d6:9f:62:50:
de:75:cd:02:a0:4d:36:ac:7f:9b:d0:ce:2a:90:3e:63:9e:be:
69:df:f5:07:6e:79:0d:3a:dd:3b:b5:6a:80:47:84:fe:7d:cb:
7d:e4:b4:4d:1c:08:ba:0e:4b:a7:90:5c:f4:c9:d2:74:7c:89:
2d:95:22:7c:c7:c1:16:1f:23:26:a3:42:f3:c3:93:61:c8:b2:
d3:7c:8e:26
pkcs7-signedData
- 1
- SHA1: nil
- 1.3.6.1.4.1.311.2.1.4
- #0
- 1.3.6.1.4.1.311.2.1.15
- :
00 3c 00 3c 00 3c 00 4f 00 62 00 73 00 6f 00 6c |.<.<.<.O.b.s.o.l| 00 65 00 74 00 65 00 3e 00 3e 00 3e |.e.t.e.>.>.> |
- :
- #1
- SHA1: nil
- : , , , , , , , ,
- 1.3.6.1.4.1.311.2.1.15
- #0
- Certificates
- Certificate #0
- 2
- 41:91:A1:5A:39:78:DF:CF:49:65:66:38:1D:4C:75:C2
- RSA-SHA1: nil
- Issuer
- C: US
- O: VeriSign, Inc.
- OU: Class 3 Public Primary Certification Authority
- 2004-07-16 00:00:00 UTC: 2014-07-15 23:59:59 UTC
- Subject
- C: US
- O: VeriSign, Inc.
- OU: VeriSign Trust Network
- OU: Terms of use at https://www.verisign.com/rpa (c)04
- CN: VeriSign Class 3 Code Signing 2004 CA
- #5
- rsaEncryption: nil
- BE:BC:EE:BC:7E:EF:83:EB:E0:37:4F:FB:03:10:38:BE:
08:D2:8C:7D:9D:FA:92:7F:19:0C:C2:6B:EE:42:52:8C:
DE:D3:1C:48:13:25:EA:C1:63:7A:F9:51:65:EE:D3:AA:
3B:F5:F0:94:9C:2B:FB:F2:66:D4:24:DA:F7:F5:9F:6E:
19:39:36:BC:D0:A3:76:08:1E:22:27:24:6C:38:91:27:
E2:84:49:AE:1B:8A:A1:FD:25:82:2C:10:30:E8:71:AB:
28:E8:77:4A:51:F1:EC:CD:F8:F0:54:D4:6F:C0:E3:6D:
0A:8F:D9:D8:64:8D:63:B2:2D:4E:27:F6:85:0E:FE:6D:
E3:29:99:E2:85:47:7C:2D:86:7F:E8:57:8F:AD:67:C2:
33:32:91:13:20:FC:A9:23:14:9A:6D:C2:84:4B:76:68:
04:D5:71:2C:5D:21:FA:88:0D:26:FD:1F:2D:91:2B:E7:
01:55:4D:F2:6D:35:28:82:DF:D9:6B:5C:B6:D6:D9:AA:
81:FD:5F:CD:83:BA:63:9D:D0:22:FC:A9:3B:42:69:B2:
8E:3A:B5:BC:B4:9E:0F:5E:C4:EA:2C:82:8B:28:FD:53:
08:96:DD:B5:01:20:D1:F9:A5:18:E7:C0:EE:51:70:37:
E1:B6:05:48:52:48:6F:38:EA:C3:E8:6C:7B:44:84:BB: 0x010001
- X509v3 extensions
- basicConstraints
- true
- true: 0
- certificatePolicies
- 2.16.840.1.113733.1.7.23.3
- id-qt-cps: https://www.verisign.com/rpa
- 2.16.840.1.113733.1.7.23.3
- crlDistributionPoints: http://crl.verisign.com/pca3.crl
- extendedKeyUsage
- clientAuth: codeSigning
- keyUsage: true, 6
- nsCertType: 1
- subjectAltName
- CN: Class3CA2048-1-43
- subjectKeyIdentifier:
08 f5 51 e8 fb fe 3d 3d 64 36 7c 68 cf 5b 78 a8 |..Q...==d6|h.[x.| df b9 c5 37 |...7 |
- authorityKeyIdentifier
- unnamed
- #0
- C: US
- O: VeriSign, Inc.
- OU: Class 3 Public Primary Certification Authority
70 ba e4 1d 10 d9 29 34 b6 38 ca 7b 03 cc ba bf |p.....)4.8.{....|
- #0
- unnamed
- basicConstraints
- RSA-SHA1:
ae 3a 17 b8 4a 7b 55 fa 64 55 ec 40 a4 ed 49 41 |.:..J{U.dU.@..IA| 90 99 9c 89 bc af 2e 1d ca 78 23 f9 1c 19 0f 7f |.........x#.....| eb 68 bc 32 d9 88 38 de dc 3f d3 89 b4 3f b1 82 |.h.2..8..?...?..| 96 f1 a4 5a ba ed 2e 26 d3 de 7c 01 6e 00 0a 00 |...Z...&..|.n...| a4 06 92 11 48 09 40 f9 1c 18 79 67 23 24 e0 bb |....H.@...yg#$..| d5 e1 50 ae 1b f5 0e dd e0 2e 81 cd 80 a3 6c 52 |..P...........lR| 4f 91 75 55 8a ba 22 f2 d2 ea 41 75 88 2f 63 55 |O.uU.."...Au./cU| 7d 1e 54 5a 95 59 ca d9 34 81 c0 5f 5e f6 7a b5 |}.TZ.Y..4.._^.z.|
- 2
- Certificate #1
- 2
- 6C:40:9E:48:C3:2B:0D:11:00:F8:0B:9D:29:BC:1F:B9
- RSA-SHA1: nil
- Issuer
- C: US
- O: VeriSign, Inc.
- OU: VeriSign Trust Network
- OU: Terms of use at https://www.verisign.com/rpa (c)04
- CN: VeriSign Class 3 Code Signing 2004 CA
- 2009-04-20 00:00:00 UTC: 2012-04-19 23:59:59 UTC
- Subject
- C: US
- ST: Washington
- L: Bellevue
- O: Valve Corporation
- OU: Digital ID Class 3 - Microsoft Software Validation v2
- OU: Steam
- CN: Valve Corporation
- #5
- rsaEncryption: nil
- A9:80:49:32:C1:B9:AA:C6:D1:B7:7F:3A:B3:8A:83:E8:
AC:B3:E5:3D:57:E9:BC:0E:B4:32:BC:14:97:9F:3E:81:
DB:70:85:25:0D:D9:04:48:15:B4:14:D1:20:ED:B4:CA:
D0:4B:3D:AE:B0:8A:78:9B:1F:03:7A:86:E7:D7:EF:3E:
FF:10:78:9B:6E:28:56:55:8F:44:27:14:FD:D7:FF:D2:
E8:67:FC:B2:CA:39:5D:A2:D2:12:CB:69:CB:32:58:A1:
7F:15:AC:2A:A2:32:94:3A:AF:EA:3F:4A:A5:53:E7:0B:
DF:0B:79:D2:3A:F9:EA:99:C0:5A:3C:28:90:7F:D0:81: 0x010001
- X509v3 extensions
- basicConstraints
- nil
- keyUsage: true, 0x80
- crlDistributionPoints: http://CSC3-2004-crl.verisign.com/CSC3-2004.crl
- certificatePolicies
- 2.16.840.1.113733.1.7.23.3
- id-qt-cps: https://www.verisign.com/rpa
- 2.16.840.1.113733.1.7.23.3
- extendedKeyUsage: codeSigning
- authorityInfoAccess
- #0
- OCSP: http://ocsp.verisign.com
- caIssuers: http://CSC3-2004-aia.verisign.com/CSC3-2004-aia.cer
- #0
- authorityKeyIdentifier:
08 f5 51 e8 fb fe 3d 3d 64 36 7c 68 cf 5b 78 a8 |..Q...==d6|h.[x.| df b9 c5 37 |...7 |
- nsCertType: 0x10
- 1.3.6.1.4.1.311.2.1.27
- false: true
- basicConstraints
- RSA-SHA1:
79 e8 88 ca fc ca 47 f1 84 9e 11 5d 15 21 53 82 |y.....G....].!S.| 20 50 75 39 eb d5 cd bd ad e3 61 c6 78 8d 70 44 | Pu9......a.x.pD| aa f6 a0 36 3f e0 52 f4 a1 7b e0 ef a3 23 ea a5 |...6?.R..{...#..| ae 02 d9 53 f4 14 76 58 e5 aa 88 fc f0 88 b1 3f |...S..vX.......?| ae 27 d1 fc 9d ba da 30 4d 94 ba 4f 08 fd d8 c9 |.'.....0M..O....| 37 4c 86 e2 67 8a 38 85 d4 44 7b 3a 76 fd 41 a6 |7L..g.8..D{:v.A.| 5f c8 1d ea 15 12 b5 f4 fa e0 b5 e5 84 84 ee 45 |_..............E| fe 48 ef 56 69 c4 b9 3c 19 fc 5e a4 fd 18 ec c4 |.H.Vi..<..^.....| 93 a1 11 27 c2 33 09 1c 57 35 62 5b 5a cb 6d f5 |...'.3..W5b[Z.m.| 2e af d9 c8 eb 39 fc 9f 45 0c 13 e2 25 ef 73 12 |.....9..E...%.s.| a3 f8 11 cc 81 97 30 5f dd 01 4e 43 34 c4 a0 d4 |......0_..NC4...| d6 9f 62 50 de 75 cd 02 a0 4d 36 ac 7f 9b d0 ce |..bP.u...M6.....| 2a 90 3e 63 9e be 69 df f5 07 6e 79 0d 3a dd 3b |*.>c..i...ny.:.;| b5 6a 80 47 84 fe 7d cb 7d e4 b4 4d 1c 08 ba 0e |.j.G..}.}..M....| 4b a7 90 5c f4 c9 d2 74 7c 89 2d 95 22 7c c7 c1 |K..\...t|.-."|..| 16 1f 23 26 a3 42 f3 c3 93 61 c8 b2 d3 7c 8e 26 |..#&.B...a...|.&|
- 2
- Certificate #0
- Signer
- 1
- unnamed
- #0
- C: US
- O: VeriSign, Inc.
- OU: VeriSign Trust Network
- OU: Terms of use at https://www.verisign.com/rpa (c)04
- CN: VeriSign Class 3 Code Signing 2004 CA
- 6C:40:9E:48:C3:2B:0D:11:00:F8:0B:9D:29:BC:1F:B9
- #0
- SHA1: nil
- #3
- 1.3.6.1.4.1.311.2.1.12
- nil
- contentType: 1.3.6.1.4.1.311.2.1.4
- 1.3.6.1.4.1.311.2.1.11: msCodeInd
- messageDigest
- : , , , , , , , ,
- 1.3.6.1.4.1.311.2.1.12
- rsaEncryption: nil
- : , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
 |
| Please donate some bucks to keep this site up and running: | |
| Ko-fi | |
|---|---|
| Yandex.Money | |
| Thank you! | |
[?] ignoring invalid PEdump::BITMAPINFOHEADER
[?] can't find file_offset of VA 0x233afb8