filename | iw5sp.exe | |
---|---|---|
size | 4753480 (0x488848) | |
md5 | 96371a6f01b1e5465e0de0e5bc0c911b | |
type | PE32 executable (GUI) Intel 80386, for MS Windows | |
mimetype | application/x-dosexec | |
clamav | Hacktool.Crack.CODModernWarfare FOUND | |
virustotal | → scan with virustotal.com | |
histogram |
MZ Header
signature | MZ |
bytes_in_last_block | 0x90 |
blocks_in_file | 3 |
num_relocs | 0 |
header_paragraphs | 4 |
min_extra_paragraphs | 0 |
max_extra_paragraphs | 0xffff |
ss | 0 |
sp | 0xb8 |
checksum | 0 |
ip | 0 |
cs | 0 |
reloc_table_offset | 0x40 |
overlay_number | 0 |
reserved0 | 0 |
oem_id | 0 |
oem_info | 0 |
reserved2 | 0 |
reserved3 | 0 |
reserved4 | 0 |
reserved5 | 0 |
reserved6 | 0 |
lfanew | 0x120 |
PE Header
Packer / Compiler
Sections
Data Directory
TLS
raw start | raw end | index | callbks | zero fill | flags | |
---|---|---|---|---|---|---|
0x273f000 | 0x273f020 | 0x273afb8 | 0x790778 | 0 | 0 |
id | lang | string |
---|---|---|
1 | 1033 | Modern Warfare 2 |
Signers (1)
issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)04/CN=VeriSign Class 3 Code Signing 2004 CA
serial: 6C409E48C32B0D1100F80B9D29BC1FB9
Certificates (2)
Certificate: Data: Version: 3 (0x2) Serial Number: 41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2 Signature Algorithm: sha1WithRSAEncryption Issuer: C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority Validity Not Before: Jul 16 00:00:00 2004 GMT Not After : Jul 15 23:59:59 2014 GMT Subject: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bc:ee:bc:7e:ef:83:eb:e0:37:4f:fb:03:10: 38:be:08:d2:8c:7d:9d:fa:92:7f:19:0c:c2:6b:ee: 42:52:8c:de:d3:1c:48:13:25:ea:c1:63:7a:f9:51: 65:ee:d3:aa:3b:f5:f0:94:9c:2b:fb:f2:66:d4:24: da:f7:f5:9f:6e:19:39:36:bc:d0:a3:76:08:1e:22: 27:24:6c:38:91:27:e2:84:49:ae:1b:8a:a1:fd:25: 82:2c:10:30:e8:71:ab:28:e8:77:4a:51:f1:ec:cd: f8:f0:54:d4:6f:c0:e3:6d:0a:8f:d9:d8:64:8d:63: b2:2d:4e:27:f6:85:0e:fe:6d:e3:29:99:e2:85:47: 7c:2d:86:7f:e8:57:8f:ad:67:c2:33:32:91:13:20: fc:a9:23:14:9a:6d:c2:84:4b:76:68:04:d5:71:2c: 5d:21:fa:88:0d:26:fd:1f:2d:91:2b:e7:01:55:4d: f2:6d:35:28:82:df:d9:6b:5c:b6:d6:d9:aa:81:fd: 5f:cd:83:ba:63:9d:d0:22:fc:a9:3b:42:69:b2:8e: 3a:b5:bc:b4:9e:0f:5e:c4:ea:2c:82:8b:28:fd:53: 08:96:dd:b5:01:20:d1:f9:a5:18:e7:c0:ee:51:70: 37:e1:b6:05:48:52:48:6f:38:ea:c3:e8:6c:7b:44: 84:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE, pathlen:0 X509v3 Certificate Policies: Policy: 2.16.840.1.113733.1.7.23.3 CPS: https://www.verisign.com/rpa X509v3 CRL Distribution Points: Full Name: URI:http://crl.verisign.com/pca3.crl X509v3 Extended Key Usage: TLS Web Client Authentication, Code Signing X509v3 Key Usage: critical Certificate Sign, CRL Sign Netscape Cert Type: Object Signing CA X509v3 Subject Alternative Name: DirName:/CN=Class3CA2048-1-43 X509v3 Subject Key Identifier: 08:F5:51:E8:FB:FE:3D:3D:64:36:7C:68:CF:5B:78:A8:DF:B9:C5:37 X509v3 Authority Key Identifier: DirName:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority serial:70:BA:E4:1D:10:D9:29:34:B6:38:CA:7B:03:CC:BA:BF Signature Algorithm: sha1WithRSAEncryption ae:3a:17:b8:4a:7b:55:fa:64:55:ec:40:a4:ed:49:41:90:99: 9c:89:bc:af:2e:1d:ca:78:23:f9:1c:19:0f:7f:eb:68:bc:32: d9:88:38:de:dc:3f:d3:89:b4:3f:b1:82:96:f1:a4:5a:ba:ed: 2e:26:d3:de:7c:01:6e:00:0a:00:a4:06:92:11:48:09:40:f9: 1c:18:79:67:23:24:e0:bb:d5:e1:50:ae:1b:f5:0e:dd:e0:2e: 81:cd:80:a3:6c:52:4f:91:75:55:8a:ba:22:f2:d2:ea:41:75: 88:2f:63:55:7d:1e:54:5a:95:59:ca:d9:34:81:c0:5f:5e:f6: 7a:b5
Certificate: Data: Version: 3 (0x2) Serial Number: 6c:40:9e:48:c3:2b:0d:11:00:f8:0b:9d:29:bc:1f:b9 Signature Algorithm: sha1WithRSAEncryption Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)04, CN=VeriSign Class 3 Code Signing 2004 CA Validity Not Before: Apr 20 00:00:00 2009 GMT Not After : Apr 19 23:59:59 2012 GMT Subject: C=US, ST=Washington, L=Bellevue, O=Valve Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Steam, CN=Valve Corporation Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (1024 bit) Modulus: 00:a9:80:49:32:c1:b9:aa:c6:d1:b7:7f:3a:b3:8a: 83:e8:ac:b3:e5:3d:57:e9:bc:0e:b4:32:bc:14:97: 9f:3e:81:db:70:85:25:0d:d9:04:48:15:b4:14:d1: 20:ed:b4:ca:d0:4b:3d:ae:b0:8a:78:9b:1f:03:7a: 86:e7:d7:ef:3e:ff:10:78:9b:6e:28:56:55:8f:44: 27:14:fd:d7:ff:d2:e8:67:fc:b2:ca:39:5d:a2:d2: 12:cb:69:cb:32:58:a1:7f:15:ac:2a:a2:32:94:3a: af:ea:3f:4a:a5:53:e7:0b:df:0b:79:d2:3a:f9:ea: 99:c0:5a:3c:28:90:7f:d0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: CA:FALSE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:http://CSC3-2004-crl.verisign.com/CSC3-2004.crl X509v3 Certificate Policies: Policy: 2.16.840.1.113733.1.7.23.3 CPS: https://www.verisign.com/rpa X509v3 Extended Key Usage: Code Signing Authority Information Access: OCSP - URI:http://ocsp.verisign.com CA Issuers - URI:http://CSC3-2004-aia.verisign.com/CSC3-2004-aia.cer X509v3 Authority Key Identifier: keyid:08:F5:51:E8:FB:FE:3D:3D:64:36:7C:68:CF:5B:78:A8:DF:B9:C5:37 Netscape Cert Type: Object Signing 1.3.6.1.4.1.311.2.1.27: 0....... Signature Algorithm: sha1WithRSAEncryption 79:e8:88:ca:fc:ca:47:f1:84:9e:11:5d:15:21:53:82:20:50: 75:39:eb:d5:cd:bd:ad:e3:61:c6:78:8d:70:44:aa:f6:a0:36: 3f:e0:52:f4:a1:7b:e0:ef:a3:23:ea:a5:ae:02:d9:53:f4:14: 76:58:e5:aa:88:fc:f0:88:b1:3f:ae:27:d1:fc:9d:ba:da:30: 4d:94:ba:4f:08:fd:d8:c9:37:4c:86:e2:67:8a:38:85:d4:44: 7b:3a:76:fd:41:a6:5f:c8:1d:ea:15:12:b5:f4:fa:e0:b5:e5: 84:84:ee:45:fe:48:ef:56:69:c4:b9:3c:19:fc:5e:a4:fd:18: ec:c4:93:a1:11:27:c2:33:09:1c:57:35:62:5b:5a:cb:6d:f5: 2e:af:d9:c8:eb:39:fc:9f:45:0c:13:e2:25:ef:73:12:a3:f8: 11:cc:81:97:30:5f:dd:01:4e:43:34:c4:a0:d4:d6:9f:62:50: de:75:cd:02:a0:4d:36:ac:7f:9b:d0:ce:2a:90:3e:63:9e:be: 69:df:f5:07:6e:79:0d:3a:dd:3b:b5:6a:80:47:84:fe:7d:cb: 7d:e4:b4:4d:1c:08:ba:0e:4b:a7:90:5c:f4:c9:d2:74:7c:89: 2d:95:22:7c:c7:c1:16:1f:23:26:a3:42:f3:c3:93:61:c8:b2: d3:7c:8e:26
pkcs7-signedData
- 1
- SHA1: nil
- 1.3.6.1.4.1.311.2.1.4
- #0
- 1.3.6.1.4.1.311.2.1.15
- :
00 3c 00 3c 00 3c 00 4f 00 62 00 73 00 6f 00 6c |.<.<.<.O.b.s.o.l| 00 65 00 74 00 65 00 3e 00 3e 00 3e |.e.t.e.>.>.> |
- :
- #1
- SHA1: nil
- : , , , , , , , ,
- 1.3.6.1.4.1.311.2.1.15
- #0
- Certificates
- Certificate #0
- 2
- 41:91:A1:5A:39:78:DF:CF:49:65:66:38:1D:4C:75:C2
- RSA-SHA1: nil
- Issuer
- C: US
- O: VeriSign, Inc.
- OU: Class 3 Public Primary Certification Authority
- 2004-07-16 00:00:00 UTC: 2014-07-15 23:59:59 UTC
- Subject
- C: US
- O: VeriSign, Inc.
- OU: VeriSign Trust Network
- OU: Terms of use at https://www.verisign.com/rpa (c)04
- CN: VeriSign Class 3 Code Signing 2004 CA
- #5
- rsaEncryption: nil
- BE:BC:EE:BC:7E:EF:83:EB:E0:37:4F:FB:03:10:38:BE:
08:D2:8C:7D:9D:FA:92:7F:19:0C:C2:6B:EE:42:52:8C:
DE:D3:1C:48:13:25:EA:C1:63:7A:F9:51:65:EE:D3:AA:
3B:F5:F0:94:9C:2B:FB:F2:66:D4:24:DA:F7:F5:9F:6E:
19:39:36:BC:D0:A3:76:08:1E:22:27:24:6C:38:91:27:
E2:84:49:AE:1B:8A:A1:FD:25:82:2C:10:30:E8:71:AB:
28:E8:77:4A:51:F1:EC:CD:F8:F0:54:D4:6F:C0:E3:6D:
0A:8F:D9:D8:64:8D:63:B2:2D:4E:27:F6:85:0E:FE:6D:
E3:29:99:E2:85:47:7C:2D:86:7F:E8:57:8F:AD:67:C2:
33:32:91:13:20:FC:A9:23:14:9A:6D:C2:84:4B:76:68:
04:D5:71:2C:5D:21:FA:88:0D:26:FD:1F:2D:91:2B:E7:
01:55:4D:F2:6D:35:28:82:DF:D9:6B:5C:B6:D6:D9:AA:
81:FD:5F:CD:83:BA:63:9D:D0:22:FC:A9:3B:42:69:B2:
8E:3A:B5:BC:B4:9E:0F:5E:C4:EA:2C:82:8B:28:FD:53:
08:96:DD:B5:01:20:D1:F9:A5:18:E7:C0:EE:51:70:37:
E1:B6:05:48:52:48:6F:38:EA:C3:E8:6C:7B:44:84:BB: 0x010001
- X509v3 extensions
- basicConstraints
- true
- true: 0
- certificatePolicies
- 2.16.840.1.113733.1.7.23.3
- id-qt-cps: https://www.verisign.com/rpa
- 2.16.840.1.113733.1.7.23.3
- crlDistributionPoints: http://crl.verisign.com/pca3.crl
- extendedKeyUsage
- clientAuth: codeSigning
- keyUsage: true, 6
- nsCertType: 1
- subjectAltName
- CN: Class3CA2048-1-43
- subjectKeyIdentifier:
08 f5 51 e8 fb fe 3d 3d 64 36 7c 68 cf 5b 78 a8 |..Q...==d6|h.[x.| df b9 c5 37 |...7 |
- authorityKeyIdentifier
- unnamed
- #0
- C: US
- O: VeriSign, Inc.
- OU: Class 3 Public Primary Certification Authority
70 ba e4 1d 10 d9 29 34 b6 38 ca 7b 03 cc ba bf |p.....)4.8.{....|
- #0
- unnamed
- basicConstraints
- RSA-SHA1:
ae 3a 17 b8 4a 7b 55 fa 64 55 ec 40 a4 ed 49 41 |.:..J{U.dU.@..IA| 90 99 9c 89 bc af 2e 1d ca 78 23 f9 1c 19 0f 7f |.........x#.....| eb 68 bc 32 d9 88 38 de dc 3f d3 89 b4 3f b1 82 |.h.2..8..?...?..| 96 f1 a4 5a ba ed 2e 26 d3 de 7c 01 6e 00 0a 00 |...Z...&..|.n...| a4 06 92 11 48 09 40 f9 1c 18 79 67 23 24 e0 bb |....H.@...yg#$..| d5 e1 50 ae 1b f5 0e dd e0 2e 81 cd 80 a3 6c 52 |..P...........lR| 4f 91 75 55 8a ba 22 f2 d2 ea 41 75 88 2f 63 55 |O.uU.."...Au./cU| 7d 1e 54 5a 95 59 ca d9 34 81 c0 5f 5e f6 7a b5 |}.TZ.Y..4.._^.z.|
- 2
- Certificate #1
- 2
- 6C:40:9E:48:C3:2B:0D:11:00:F8:0B:9D:29:BC:1F:B9
- RSA-SHA1: nil
- Issuer
- C: US
- O: VeriSign, Inc.
- OU: VeriSign Trust Network
- OU: Terms of use at https://www.verisign.com/rpa (c)04
- CN: VeriSign Class 3 Code Signing 2004 CA
- 2009-04-20 00:00:00 UTC: 2012-04-19 23:59:59 UTC
- Subject
- C: US
- ST: Washington
- L: Bellevue
- O: Valve Corporation
- OU: Digital ID Class 3 - Microsoft Software Validation v2
- OU: Steam
- CN: Valve Corporation
- #5
- rsaEncryption: nil
- A9:80:49:32:C1:B9:AA:C6:D1:B7:7F:3A:B3:8A:83:E8:
AC:B3:E5:3D:57:E9:BC:0E:B4:32:BC:14:97:9F:3E:81:
DB:70:85:25:0D:D9:04:48:15:B4:14:D1:20:ED:B4:CA:
D0:4B:3D:AE:B0:8A:78:9B:1F:03:7A:86:E7:D7:EF:3E:
FF:10:78:9B:6E:28:56:55:8F:44:27:14:FD:D7:FF:D2:
E8:67:FC:B2:CA:39:5D:A2:D2:12:CB:69:CB:32:58:A1:
7F:15:AC:2A:A2:32:94:3A:AF:EA:3F:4A:A5:53:E7:0B:
DF:0B:79:D2:3A:F9:EA:99:C0:5A:3C:28:90:7F:D0:81: 0x010001
- X509v3 extensions
- basicConstraints
- nil
- keyUsage: true, 0x80
- crlDistributionPoints: http://CSC3-2004-crl.verisign.com/CSC3-2004.crl
- certificatePolicies
- 2.16.840.1.113733.1.7.23.3
- id-qt-cps: https://www.verisign.com/rpa
- 2.16.840.1.113733.1.7.23.3
- extendedKeyUsage: codeSigning
- authorityInfoAccess
- #0
- OCSP: http://ocsp.verisign.com
- caIssuers: http://CSC3-2004-aia.verisign.com/CSC3-2004-aia.cer
- #0
- authorityKeyIdentifier:
08 f5 51 e8 fb fe 3d 3d 64 36 7c 68 cf 5b 78 a8 |..Q...==d6|h.[x.| df b9 c5 37 |...7 |
- nsCertType: 0x10
- 1.3.6.1.4.1.311.2.1.27
- false: true
- basicConstraints
- RSA-SHA1:
79 e8 88 ca fc ca 47 f1 84 9e 11 5d 15 21 53 82 |y.....G....].!S.| 20 50 75 39 eb d5 cd bd ad e3 61 c6 78 8d 70 44 | Pu9......a.x.pD| aa f6 a0 36 3f e0 52 f4 a1 7b e0 ef a3 23 ea a5 |...6?.R..{...#..| ae 02 d9 53 f4 14 76 58 e5 aa 88 fc f0 88 b1 3f |...S..vX.......?| ae 27 d1 fc 9d ba da 30 4d 94 ba 4f 08 fd d8 c9 |.'.....0M..O....| 37 4c 86 e2 67 8a 38 85 d4 44 7b 3a 76 fd 41 a6 |7L..g.8..D{:v.A.| 5f c8 1d ea 15 12 b5 f4 fa e0 b5 e5 84 84 ee 45 |_..............E| fe 48 ef 56 69 c4 b9 3c 19 fc 5e a4 fd 18 ec c4 |.H.Vi..<..^.....| 93 a1 11 27 c2 33 09 1c 57 35 62 5b 5a cb 6d f5 |...'.3..W5b[Z.m.| 2e af d9 c8 eb 39 fc 9f 45 0c 13 e2 25 ef 73 12 |.....9..E...%.s.| a3 f8 11 cc 81 97 30 5f dd 01 4e 43 34 c4 a0 d4 |......0_..NC4...| d6 9f 62 50 de 75 cd 02 a0 4d 36 ac 7f 9b d0 ce |..bP.u...M6.....| 2a 90 3e 63 9e be 69 df f5 07 6e 79 0d 3a dd 3b |*.>c..i...ny.:.;| b5 6a 80 47 84 fe 7d cb 7d e4 b4 4d 1c 08 ba 0e |.j.G..}.}..M....| 4b a7 90 5c f4 c9 d2 74 7c 89 2d 95 22 7c c7 c1 |K..\...t|.-."|..| 16 1f 23 26 a3 42 f3 c3 93 61 c8 b2 d3 7c 8e 26 |..#&.B...a...|.&|
- 2
- Certificate #0
- Signer
- 1
- unnamed
- #0
- C: US
- O: VeriSign, Inc.
- OU: VeriSign Trust Network
- OU: Terms of use at https://www.verisign.com/rpa (c)04
- CN: VeriSign Class 3 Code Signing 2004 CA
- 6C:40:9E:48:C3:2B:0D:11:00:F8:0B:9D:29:BC:1F:B9
- #0
- SHA1: nil
- #3
- 1.3.6.1.4.1.311.2.1.12
- nil
- contentType: 1.3.6.1.4.1.311.2.1.4
- 1.3.6.1.4.1.311.2.1.11: msCodeInd
- messageDigest
- : , , , , , , , ,
- 1.3.6.1.4.1.311.2.1.12
- rsaEncryption: nil
- : , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
Please donate some bucks to keep this site up and running: | |
Ko-fi | |
---|---|
Yandex.Money | |
Thank you! |
[?] ignoring invalid PEdump::BITMAPINFOHEADER
[?] can't find file_offset of VA 0x233afb8