filename | LsaIso.exe | |
---|---|---|
size | 268056 (0x41718) | |
md5 | b94d0f61cf6d002f4dd72660e910ed58 | |
type | PE32+ executable (GUI) x86-64, for MS Windows | |
mimetype | application/x-dosexec | |
clamav | OK | |
virustotal | → scan with virustotal.com | |
histogram |
MZ Header
signature | MZ |
bytes_in_last_block | 0x90 |
blocks_in_file | 3 |
num_relocs | 0 |
header_paragraphs | 4 |
min_extra_paragraphs | 0 |
max_extra_paragraphs | 0xffff |
ss | 0 |
sp | 0xb8 |
checksum | 0 |
ip | 0 |
cs | 0 |
reloc_table_offset | 0x40 |
overlay_number | 0 |
reserved0 | 0 |
oem_id | 0 |
oem_info | 0 |
reserved2 | 0 |
reserved3 | 0 |
reserved4 | 0 |
reserved5 | 0 |
reserved6 | 0 |
lfanew | 0xf0 |
Rich Header
lib id | version | times used |
---|---|---|
147 | 30729 | 38 |
259 | 24325 | 4 |
1 | 0 | 297 |
257 | 24325 | 23 |
261 | 24325 | 6 |
265 | 24325 | 30 |
260 | 24325 | 19 |
256 | 24325 | 1 |
255 | 24325 | 1 |
258 | 24325 | 1 |
DOS stub
00000000: 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 |........!..L.!Th| 00000010: 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f |is program canno| 00000020: 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 |t be run in DOS | 00000030: 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 |mode....$.......|
PE Header
Sections
Data Directory
ord | entry_va | function_name | |
---|---|---|---|
1 | 0x41470 | s_IumPolicyMetadata |
StringTable 040904B0
CompanyName | Microsoft Corporation |
FileDescription | Credential Guard |
FileVersion | 10.0.14946.1000 (rs_prerelease.161007-1700) |
InternalName | LsaIso.exe |
LegalCopyright | © Microsoft Corporation. All rights reserved. |
OriginalFilename | LsaIso.exe |
ProductName | Microsoft® Windows® Operating System |
ProductVersion | 10.0.14946.1000 |
VS_FIXEDFILEINFO
FileVersion | 10.0.14946.1000 |
ProductVersion | 10.0.14946.1000 |
StrucVersion | 0x10000 |
FileFlagsMask | 0x3f |
FileFlags | 0 |
FileOS | 0x40004 |
FileType | 1 |
FileSubtype | 0 |
Signers (1)
issuer: /C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/CN=Microsoft Development PCA 2014
serial: 3300000200097C3304CF749D59000000000200
Certificates (2)
Certificate: Data: Version: 3 (0x2) Serial Number: 33:00:00:02:00:09:7c:33:04:cf:74:9d:59:00:00:00:00:02:00 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Development PCA 2014 Validity Not Before: Aug 11 21:18:39 2016 GMT Not After : May 15 21:18:39 2017 GMT Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Windows Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:eb:bf:81:24:8e:e2:35:94:c9:8d:65:d5:d1:04: 4a:e6:e7:4a:6f:9d:08:90:aa:45:6c:d7:3c:ca:33: 95:60:6c:65:b4:d2:68:1e:58:1b:38:16:9d:8e:09: bc:ff:d3:0d:58:e8:ec:72:1d:79:db:0f:f7:cb:0a: 1f:8e:c1:5e:50:78:6e:e1:c1:a2:51:22:56:81:5c: 7d:ff:7c:11:3c:a3:53:ab:ca:46:f0:6e:27:35:b4: 1a:1b:02:11:9d:c4:be:79:2c:c8:39:25:22:b0:1f: 98:bf:84:17:69:95:7f:49:5e:c2:82:48:08:5c:5f: 93:ad:f2:c7:96:68:a0:78:9b:c6:ce:7c:44:16:1e: e2:21:ef:33:df:43:86:55:94:be:ab:ee:53:10:8d: 0c:0a:38:73:ee:72:51:4c:65:68:b9:20:4e:10:7c: 56:9f:ad:e1:f3:67:41:19:78:f5:a8:d7:b9:58:c8: 86:21:6d:ab:ca:56:d3:f3:f4:02:ed:9e:ca:86:aa: d1:5e:80:9c:b8:99:7f:c7:58:b8:51:09:35:03:fb: 42:81:9a:7e:22:87:ba:f8:0c:6f:f1:e7:c8:54:66: 2f:0c:9e:d3:ac:ef:f4:5b:60:e6:be:9d:dd:d9:90: a4:18:c7:35:7e:57:3b:38:40:0d:5e:ff:21:a7:97: 5b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: Code Signing, 1.3.6.1.4.1.311.10.3.6, 1.3.6.1.4.1.311.10.3.37, 1.3.6.1.4.1.311.10.3.24, 1.3.6.1.4.1.311.10.3.13, 1.3.6.1.4.1.311.10.3.27 X509v3 Subject Key Identifier: 78:E0:B9:4B:FE:11:CB:3B:E9:99:6A:3A:A6:49:DC:48:42:F0:62:BC X509v3 Subject Alternative Name: DirName:/OU=FSS/serialNumber=53736\+5430b4e3-d5bd-464f-a6e9-8b484b94c58c, othername: 1.2.3.4.6.1::FSS-140310001-RSA-20160803 X509v3 Authority Key Identifier: 84:DD:10:36:7B:0B:D2:08:A3:26:56:9F:22:95:25:41:85:2C:09:C0 X509v3 CRL Distribution Points: Full Name: URI:http://www.microsoft.com/pkiops/crl/Microsoft%20Development%20PCA%202014.crl Authority Information Access: CA Issuers - URI:http://www.microsoft.com/pkiops/certs/Microsoft%20Development%20PCA%202014.crt X509v3 Basic Constraints: critical CA:FALSE Signature Algorithm: sha256WithRSAEncryption Signature Value: b4:18:bc:c3:c9:8b:f4:9b:38:f2:ee:ee:b4:8b:56:31:3e:0f: eb:e9:00:ab:48:84:cf:0d:37:77:a5:18:8e:21:d5:c8:41:00: a0:36:b6:47:9f:47:2a:b7:99:42:3a:f9:bc:66:64:be:32:4c: 6a:86:e0:57:97:f3:00:f9:32:9b:cb:ff:53:5c:a9:67:9c:4f: 4a:0d:b9:b6:27:17:60:a9:5d:f6:18:b5:a3:9f:54:d3:c2:2a: 02:a1:71:12:3a:13:d8:bb:04:1e:bb:1c:b3:84:8a:18:e0:01: 1e:67:66:48:3f:9a:a7:d1:fe:aa:a3:1b:6c:d8:79:cc:64:89: 3f:4d:d4:13:8e:22:7e:53:20:9d:f6:c4:63:d3:6b:30:7f:5c: 3d:7b:5a:e7:21:5a:b0:4d:b1:ad:dc:21:40:83:0b:c5:38:dd: 2e:77:a5:0c:8e:d8:3f:96:17:a4:77:74:28:1f:de:9f:02:19: 7b:0f:ad:9b:55:d4:cd:6c:16:60:bd:8c:f5:7e:2e:90:d1:c1: d5:c5:3a:90:7b:8d:6c:31:37:2b:1e:92:ae:c0:84:46:1d:24: 49:44:43:03:43:c8:89:96:9b:bf:76:0b:79:03:e0:e1:50:7f: ea:b0:86:6f:26:b1:a6:1e:08:11:4a:fc:0c:f8:ca:eb:8e:9d: 03:fe:ad:73:db:1e:f0:df:b4:42:94:48:2b:ea:06:b0:a4:01: 67:e2:f7:f7:a6:cc:48:83:b2:5b:bc:05:71:17:6b:1f:6d:4f: ee:b3:0b:d0:e9:e9:72:89:25:be:72:67:d7:28:74:9e:bd:63: 0c:fc:0e:ae:2d:68:a4:2c:a7:c9:7a:22:11:92:5e:7d:bb:de: 9c:75:67:6c:20:cc:d3:c0:80:8f:40:97:4d:c2:2b:c4:67:14: c1:07:07:e9:dd:a0:b9:77:9d:f0:86:2e:5d:2c:50:13:e4:ed: 1d:bf:5a:2d:3f:a5:22:0e:48:a3:46:c0:08:3b:67:cb:23:04: 7d:bf:07:5f:2f:f0:3d:a8:fe:e9:1e:10:61:bb:b0:72:86:a1: 00:da:ea:3a:58:2e:d9:c6:69:26:bc:44:bc:7d:b6:69:c7:ec: 36:2e:01:21:3e:84:95:a7:9e:c4:12:41:92:dc:bb:86:3e:70: 5b:79:9e:b0:03:1f:b9:b8:82:26:df:be:bd:fc:4f:65:8c:1c: df:e0:c1:71:0e:1d:41:ac:5d:e3:65:5d:17:2a:f9:2a:24:ea: 06:91:42:03:ee:e1:ff:9f:3d:bc:cb:5d:9a:3d:41:9c:77:e6: f3:f9:e9:a3:fe:1b:44:a7:9e:b0:e3:2f:fe:8a:2d:6b:0e:e3: a7:6e:4d:38:68:07:94:e9
Certificate: Data: Version: 3 (0x2) Serial Number: 33:00:00:00:03:c6:f9:b4:c3:ae:be:59:4b:00:00:00:00:00:03 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Development Root Certificate Authority 2014 Validity Not Before: May 28 17:33:33 2014 GMT Not After : May 28 17:43:33 2029 GMT Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Development PCA 2014 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (4096 bit) Modulus: 00:cb:53:0c:41:f9:4d:44:24:c8:da:65:4e:66:6c: c5:82:95:70:72:33:f3:b7:2e:86:ae:16:41:bc:dc: d4:b8:69:fb:12:c0:94:be:af:94:c2:7f:76:9c:3c: d3:54:d4:b5:88:ed:8f:b1:0c:1b:51:4a:8f:ea:90: e3:ac:4e:f7:df:d2:12:7b:8e:7f:72:d0:35:3c:ac: e8:e9:67:cc:e9:32:32:31:e8:43:5f:df:14:9a:40: 8f:18:0b:99:07:13:3b:71:92:9b:1d:19:f9:9b:95: f7:4f:35:61:38:56:32:b2:ed:64:84:18:fa:5a:85: b1:92:bf:01:b8:c6:96:93:04:3a:a8:ea:ec:82:ea: cd:1e:82:c2:e6:00:e4:99:3d:89:a5:dd:71:20:9e: 88:dd:5e:4d:ad:6d:cf:09:f3:a8:a6:13:6f:0c:03: e1:0c:2e:98:b4:c2:a3:07:9c:1a:6f:5f:d3:76:2f: be:99:ee:95:c6:b0:94:5f:b1:b8:a6:4b:93:2f:02: f1:cc:23:c2:43:96:38:a5:bf:9b:7c:2d:6c:1c:35: 47:b8:80:3c:e7:fa:9f:0c:9c:ef:df:5e:8c:cf:74: 0b:0c:33:97:7f:ea:04:d5:c5:33:d3:0f:9e:b0:90: 25:da:ba:fd:68:9e:c9:b4:01:6e:a9:ef:63:33:30: e9:08:c8:eb:93:cf:5b:99:bf:a1:ca:54:3a:c0:8a: 1d:93:6c:8a:d0:bc:2f:c7:22:fe:40:e3:44:76:9a: d2:94:df:17:65:4b:7b:26:80:ce:d9:47:33:4d:f5: 66:e4:fc:c6:cd:72:ac:7e:f1:70:92:83:3e:72:21: 90:c0:ec:8d:ff:59:b1:5b:b3:32:50:94:c5:c1:6c: 7b:6a:56:c8:f9:10:7c:4b:1a:9e:61:2c:a2:21:ee: 5f:9c:a4:64:ec:32:d2:b4:7b:9a:88:42:a9:2c:56: 2e:17:96:fe:93:2b:44:0c:5e:9f:23:ce:02:f6:3b: 89:98:c0:41:fc:41:d7:fa:28:7d:44:01:f2:91:b2: d1:ba:62:9e:d8:05:63:06:56:a6:c2:18:01:66:fd: bd:44:2b:4d:59:c2:f0:9b:2c:10:74:34:6f:20:a1: 2a:3d:58:ce:5c:f0:51:e1:25:a1:e9:bf:b3:35:71: c9:0d:65:c5:6c:75:01:b7:c3:fc:b3:96:93:c2:d8: af:4d:59:2a:fd:cc:cf:a6:f3:c3:b5:96:92:7a:ab: b4:4a:ae:38:a2:02:3d:e6:91:90:dd:a3:ec:a9:25: c9:08:c1:51:b1:a9:20:5c:8c:6a:3a:91:e7:09:12: 7f:ce:ca:78:cf:28:43:aa:74:0b:5c:9e:11:70:ff: c4:59:35 Exponent: 65537 (0x10001) X509v3 extensions: 1.3.6.1.4.1.311.21.1: ... X509v3 Subject Key Identifier: 84:DD:10:36:7B:0B:D2:08:A3:26:56:9F:22:95:25:41:85:2C:09:C0 X509v3 Certificate Policies: Policy: X509v3 Any Policy Policy: 1.3.6.1.4.1.311.76.509.1.1 CPS: http://www.microsoft.com/pkiops/Docs/Repository.htm 1.3.6.1.4.1.311.20.2: . .S.u.b.C.A X509v3 Key Usage: Digital Signature, Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 Authority Key Identifier: 85:70:00:9F:77:59:1E:8C:AC:3C:9F:77:26:28:19:CC:9A:C1:8F:32 X509v3 CRL Distribution Points: Full Name: URI:http://www.microsoft.com/pkiops/crl/Microsoft%20Development%20Root%20Certificate%20Authority%202014.crl Authority Information Access: CA Issuers - URI:http://www.microsoft.com/pkiops/certs/Microsoft%20Development%20Root%20Certificate%20Authority%202014.crt Signature Algorithm: sha256WithRSAEncryption Signature Value: 4e:ea:1d:0c:fe:d3:82:d1:75:5f:f0:30:df:77:8d:ac:83:56: b0:34:cd:be:a7:07:f3:74:ac:ee:3c:4a:5d:1f:da:bd:2a:f6: 68:fb:2a:37:43:97:09:79:2c:01:bd:a1:d4:9a:75:38:94:97: 62:c8:eb:73:bc:89:94:43:cb:28:b4:4b:55:b9:f1:56:d5:24: e2:cb:a7:f0:46:40:d6:fe:30:fe:29:32:53:ed:39:21:03:73: 30:95:2d:6a:b1:87:03:df:51:7c:f1:46:13:f9:f5:05:44:dd: 0f:92:63:3a:71:cc:cf:a0:55:f1:6d:2d:95:21:e0:76:54:64: 95:d9:66:8f:7f:6b:25:c5:8a:86:19:71:34:c5:53:22:f6:dc: 55:9b:da:ba:e6:a5:f2:f7:f6:2c:76:46:d2:61:de:48:da:e3: 70:1e:55:e0:31:8c:5b:f4:b3:c2:1d:fa:ff:7e:b1:8d:b5:de: fe:94:fd:01:4a:cb:fa:1f:4c:0d:b4:5a:72:22:82:b6:2b:23: 53:0a:9d:2e:df:55:3d:fc:18:b3:32:5b:4e:b1:af:00:bf:9a: f8:91:56:2e:71:4e:44:52:c7:35:79:d3:75:4a:b8:44:a5:a5: f9:67:44:cf:27:30:dc:78:4f:7e:09:d5:a1:51:c0:6b:3f:8a: e3:59:0b:71:ef:ca:92:35:9d:d1:2a:b7:8c:75:20:43:92:74: 2e:12:df:4e:7a:7b:59:a6:0c:65:87:ca:9b:69:53:75:22:ac: d9:f6:d9:0f:39:be:c6:93:49:e1:6d:d8:63:72:e5:86:5c:29: c7:d5:db:a5:f9:5e:93:39:b0:c5:84:c9:71:e2:15:54:a6:cc: 8a:a9:1e:46:24:4d:e4:3c:9f:c1:05:df:8c:34:33:6e:05:c1: a1:40:d9:a8:0b:95:49:73:0c:03:4f:cc:c3:7c:52:23:de:a4: 36:c5:cd:82:3d:cb:f8:f0:12:7c:d8:1c:2d:5d:b7:ba:05:7e: c0:0e:19:9f:52:7b:53:3f:06:9a:bd:94:27:62:4f:55:03:96: e2:89:af:f3:cc:67:95:30:2d:1a:b4:00:bb:55:c7:6f:8b:90: 7d:4d:4f:2c:42:50:84:63:3e:2b:76:c3:04:f7:56:e0:e0:31: 76:50:e5:02:0c:00:aa:0e:4f:f4:a4:29:1f:12:96:62:a8:64: dc:f1:c3:0e:26:d7:62:e3:c6:ad:a4:68:00:67:30:41:01:17: 1f:df:61:64:8b:83:1d:37:ba:82:f1:68:9d:b4:69:9f:ad:82: dc:db:13:52:d6:4c:55:0b:0c:cd:f3:d5:b9:59:c6:f7:71:8b: 7d:ff:71:5e:3d:d9:de:00
undefined method `first' for :"1.2.3.4.6.1":Symbol
Please donate some bucks to keep this site up and running: | |
Ko-fi | |
---|---|
Yandex.Money | |
Thank you! |
everything is OK