f16023dd305822e674e85b25e9e1e65b0e33ec8b14e2e821510b075862ef3989

Sharing

Copy URL Twitter E-mail

General

Target

f16023dd305822e674e85b25e9e1e65b0e33ec8b14e2e821510b075862ef3989
Size

1.2MB
MD5

82574f06ab3f19b03c13807bf8a7d06c
SHA1

a343334746f7e8570dd471ebb42c7ddb414797cc
SHA256

f16023dd305822e674e85b25e9e1e65b0e33ec8b14e2e821510b075862ef3989
SHA512

3c50bdef19a8809ae9c1baca157aa3e77d6c6399ede9f797494dfe18a3dfc02eb97befeb62ae8cd2329753958ad7a6155dee56a53f98e9c77c98a43e5f2873c0
SSDEEP

12288:9JGPNd0Qq6q1GbmVk+ieweUzM0jx3psdkrqnwdb6CepX:9Jcb0QqhBk+iewhzpsIqnabu

Score

N/A

Malware Config

Signatures

Files

f16023dd305822e674e85b25e9e1e65b0e33ec8b14e2e821510b075862ef3989
.exe windows x86

39f184757701cf3602ecd44306ee7c32

Code Sign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

81:b9:12:c7:b2:e2:52:f9:f5:7d:ec:fa:ae:e1:52:c5
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

05/06/2015, 00:00

Not After

04/06/2016, 23:59

Subject

CN=PROSTOR,O=PROSTOR,POSTALCODE=614000,STREET=ul. Ekaterininskaya 96,L=Perm,ST=Perm region,C=RU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

11:1a:e6:82:7b:88:69:5a:2c:81:55:6c:e6:74:25:17:23:f0:8a:c8
Signer

Actual PE Digest

11:1a:e6:82:7b:88:69:5a:2c:81:55:6c:e6:74:25:17:23:f0:8a:c8

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=PROSTOR,O=PROSTOR,POSTALCODE=614000,STREET=ul. Ekaterininskaya 96,L=Perm,ST=Perm region,C=RU

04/11/2022, 15:41
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comdlg32

GetOpenFileNameA
ChooseColorW
dwOKSubclass
CommDlgExtendedError
GetFileTitleA
GetFileTitleW
GetSaveFileNameW
ChooseColorA
ReplaceTextA

oleaut32

VarBstrFromCy
VarCyMulI4
VarI4FromI8
SafeArrayDestroyDescriptor
VarUI2FromI8
VarR4FromI8
GetRecordInfoFromGuids
VarCyCmpR8
VarBstrFromDisp
VarDateFromDec

gdi32

PolyTextOutW
GdiConvertBitmap
GetETM
SetWinMetaFileBits
EngGetPrinterDataFileName
XFORMOBJ_iGetXform
EngUnlockSurface
EngAcquireSemaphore
Pie
GetFontData
GetHFONT
SetPixelV
EngFindResource
GetKerningPairsA
GetStretchBltMode
CloseFigure
StretchDIBits
GetCharABCWidthsI

ws2_32

ntohl
select
WPUCompleteOverlappedRequest
freeaddrinfo

comctl32

FlatSB_GetScrollInfo
FlatSB_GetScrollRange
CreateToolbar
ImageList_SetDragCursorImage
ImageList_LoadImage
ImageList_GetBkColor
PropertySheetW
PropertySheetA

kernel32

FreeResource
ScrollConsoleScreenBufferW
IsProcessInJob
SetTapeParameters
CreateTapePartition
GetStringTypeExA
FileTimeToLocalFileTime
MoveFileWithProgressW
SetProcessShutdownParameters
PeekNamedPipe
GetShortPathNameA
SetFileValidData
MoveFileExW
GetStringTypeExW
lstrcmpiA
EnumTimeFormatsW
PrivCopyFileExW
AllocConsole
GetConsoleTitleA
GetTapeStatus
GetPrivateProfileIntA
AllocateUserPhysicalPages
RtlZeroMemory
SetFileApisToOEM
GetFileInformationByHandle
IsWow64Process
CreateDirectoryExW
GetVolumeNameForVolumeMountPointW
SetThreadPriorityBoost
CreateNamedPipeW
WriteProfileStringA
WriteProfileSectionW
GetCPInfoExW
WriteConsoleOutputAttribute
ConnectNamedPipe
GetDefaultCommConfigA
GetDateFormatW
SystemTimeToFileTime
CreateJobSet
SetFilePointerEx
OpenMutexW
SetMailslotInfo
FindClose
GetProcessHeap
GetVolumeInformationW
CloseHandle
FreeEnvironmentStringsA
GetPrivateProfileSectionNamesA
FindAtomA
SetEnvironmentVariableA
RegisterWowExec
GetCurrentActCtx
EnumUILanguagesA
GetConsoleKeyboardLayoutNameA
GetNumberFormatA
GetCalendarInfoA
CreateNamedPipeA
ReplaceFileA
MoveFileExA
WriteConsoleW
WritePrivateProfileSectionW
GetFullPathNameW
ProcessIdToSessionId
GetVersionExA
SignalObjectAndWait
GetProfileIntW
SetUserGeoID
GetVersion
FileTimeToDosDateTime
GetLogicalDriveStringsA
EnumCalendarInfoExW
CommConfigDialogW
GetProcessPriorityBoost
GlobalUnfix
GlobalLock
SetProcessWorkingSetSize
GetExitCodeThread
WaitForDebugEvent
FatalAppExitA
GetProfileSectionA
AssignProcessToJobObject
GetFileAttributesExW
FindResourceW
FindFirstVolumeMountPointA
CallNamedPipeA
QueueUserWorkItem
SetEnvironmentVariableW
LZSeek
InitAtomTable
LZRead
SetFileAttributesA
TlsGetValue
LocalUnlock
InitializeCriticalSection
CancelDeviceWakeupRequest
GlobalMemoryStatus
GlobalReAlloc
BuildCommDCBAndTimeoutsW
FindFirstVolumeMountPointW
WaitNamedPipeA
ScrollConsoleScreenBufferA
LZCopy
RemoveDirectoryW
FindVolumeClose
OpenWaitableTimerW
GetConsoleAliasesA
TerminateProcess
EnumCalendarInfoA
WaitForSingleObject
WritePrivateProfileStringA
MultiByteToWideChar
OpenJobObjectW
GetBinaryTypeA
Beep
EnumSystemGeoID
SetVolumeMountPointW
MoveFileW
Sleep
PrepareTape
lstrcpynW
GetStringTypeW
LZOpenFileW
FindFirstChangeNotificationA
TerminateJobObject
GetDiskFreeSpaceA
GetThreadLocale
CreateWaitableTimerA
EnumResourceNamesW
RemoveVectoredExceptionHandler
CreateProcessA
GetLocalTime
GlobalMemoryStatusEx
FindFirstChangeNotificationW
GetSystemDefaultLCID
EnumSystemCodePagesW
HeapUnlock
CreateActCtxA
LeaveCriticalSection
SetCalendarInfoW
SetComputerNameW
GetNumberOfConsoleInputEvents
WriteConsoleOutputCharacterA
CreateTimerQueue
EnumResourceNamesA
GetCurrencyFormatW
GetTapePosition
GetComputerNameA
GetSystemDefaultUILanguage
UnhandledExceptionFilter
QueryActCtxW
SetEvent
PeekConsoleInputA
SetDefaultCommConfigW
PulseEvent
EnumCalendarInfoW
FoldStringA
ReadConsoleOutputA
SetSystemTimeAdjustment
UnlockFileEx
ReadConsoleInputExW
SetProcessPriorityBoost
EnumDateFormatsA
FindNextFileA
WriteFile
SetCommTimeouts
SetComPlusPackageInstallStatus
LocalFlags
ShowConsoleCursor
GetConsoleDisplayMode
FlushConsoleInputBuffer
RaiseException
GetACP
InvalidateConsoleDIBits
WritePrivateProfileStringW
SetLocaleInfoA
GetNamedPipeInfo
TransactNamedPipe
GetPrivateProfileStructA
GetTapeParameters
BackupWrite
GetPrivateProfileIntW
VirtualQueryEx
FindNextChangeNotification
GetCurrencyFormatA
SetFileApisToANSI
SetFilePointer
SizeofResource
TerminateThread
WritePrivateProfileSectionA
SetThreadLocale
WriteFileGather
EnumDateFormatsExW
DefineDosDeviceW
VerifyVersionInfoA
FindAtomW
GetLastError
IsBadWritePtr
QueryMemoryResourceNotification
VerifyConsoleIoHandle
WaitForMultipleObjectsEx
GetConsoleWindow
DeleteCriticalSection
GetPrivateProfileStringA
lstrcpynA
HeapReAlloc
GetVolumePathNameA
RemoveDirectoryA
TzSpecificLocalTimeToSystemTime
SetVolumeLabelA
LZClose
SetInformationJobObject
LockResource
CreateActCtxW
VerLanguageNameA
ReplaceFileW
FindFirstFileExA
EnumDateFormatsExA
UnregisterWait
GetFullPathNameA
GlobalFindAtomW
GetOverlappedResult
HeapValidate
EnumResourceLanguagesA
lstrlen
HeapDestroy
HeapSize
GetNativeSystemInfo
UnlockFile
Heap32ListNext
GetCommProperties
WriteFileEx
IsValidCodePage
ResetEvent
FindNextVolumeA
IsProcessorFeaturePresent
IsValidLanguageGroup
DelayLoadFailureHook
FoldStringW
SetLocaleInfoW
GetLongPathNameA
GetCalendarInfoW
HeapAlloc
EraseTape
GetLogicalDriveStringsW
LZCreateFileW
GetEnvironmentStringsA
GetProcessWorkingSetSize
GetExitCodeProcess
GetConsoleCursorMode
CreateFileMappingA
DeleteTimerQueue
LocalSize
SetLocalTime
MapViewOfFileEx
GlobalHandle
RegisterWaitForInputIdle
GetStartupInfoA
GetExpandedNameA
AddConsoleAliasW
GetGeoInfoA
DeleteTimerQueueEx
GetHandleContext
GetUserDefaultLangID
ReadDirectoryChangesW
GlobalFlags
SetThreadExecutionState
GetVolumePathNameW
OpenFile
GetThreadPriority
FillConsoleOutputCharacterA
GetCompressedFileSizeA
DosDateTimeToFileTime
GetModuleFileNameA
RtlFillMemory
GetUserDefaultLCID
GetAtomNameA
WriteConsoleOutputW
ExpandEnvironmentStringsA
GetDevicePowerState
CreateFileA
FindVolumeMountPointClose
CreateSocketHandle
GetModuleHandleExW
SetVolumeLabelW
SetLastConsoleEventActive
ReadConsoleInputExA
GetLongPathNameW
PeekConsoleInputW
AddAtomA
GetCurrentProcess
MulDiv
SetStdHandle
GetSystemDefaultLangID
SetCurrentDirectoryW
FindNextVolumeMountPointW
EnumLanguageGroupLocalesW
BuildCommDCBA
WriteProfileSectionA
LocalHandle
SetCommBreak
CreateMailslotA
GetLargestConsoleWindowSize
UnregisterWaitEx
IsBadCodePtr
GlobalFindAtomA
CreateThread
ActivateActCtx
WritePrivateProfileStructW
SetCommConfig
GetModuleHandleExA
GetSystemTimeAsFileTime
GetCPInfo
OutputDebugStringW
QueryPerformanceFrequency
BeginUpdateResourceW
GetCurrentConsoleFont
IsDBCSLeadByte
FormatMessageW
GlobalSize
ReadConsoleInputA
SearchPathW
LocalCompact
GetStartupInfoW
GetLogicalDrives
GetPriorityClass
GetConsoleTitleW
FlushFileBuffers
GetPrivateProfileSectionNamesW
ExpandEnvironmentStringsW
SetFileShortNameW
SetTapePosition
SleepEx
GetConsoleFontInfo
ClearCommError
OpenEventW
QueryPerformanceCounter
WaitCommEvent
GetNamedPipeHandleStateA
GetConsoleCP
GetProcessHeaps
FindNextFileW
RequestDeviceWakeup
ConsoleMenuControl
DeleteTimerQueueTimer
WaitForMultipleObjects
FindFirstFileA
LZCloseFile
ReadConsoleOutputAttribute
GetTimeFormatW
CommConfigDialogA
GetProcessVersion
CreateWaitableTimerW
lstrcat
OpenJobObjectA
GlobalFree
LoadLibraryExA
GetCommandLineW
GetCommandLineA
LocalAlloc
GlobalAlloc
CopyFileW
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

GetMenuItemID
WaitMessage
SetClipboardViewer
FindWindowExA
GetTopWindow
CharPrevA
SendMessageCallbackA
UnregisterDeviceNotification
CharLowerW
IsDialogMessageA
GetClientRect
EmptyClipboard
RealGetWindowClassW
GetPropA
InvertRect
RegisterClipboardFormatW
IsCharLowerA
BlockInput
IsDialogMessage
GetProcessWindowStation
IsCharAlphaNumericA
SetKeyboardState
AppendMenuW
ActivateKeyboardLayout
ToUnicode
GetMenuBarInfo
SetPropW
PaintDesktop
GetShellWindow
GetWindowRgnBox
SetCursorContents
SetProcessWindowStation
GetCaretPos
SetMenu
IsWindowUnicode
GetLastInputInfo
DrawTextExW
GetIconInfo
EndMenu
MonitorFromRect
SendNotifyMessageW
ToAscii
SetCaretPos
GetClassInfoExA
MapDialogRect
GetAltTabInfoA
FrameRect
TranslateMessage
wsprintfW
GetDlgItemInt
DialogBoxParamA
CreateDialogIndirectParamW
LockWorkStation
GetDesktopWindow
GetClipCursor
GetDC
GetAncestor
CreateMenu
OemKeyScan
LoadCursorW
LoadKeyboardLayoutA
BroadcastSystemMessageExA
TrackMouseEvent
ModifyMenuA
GetKeyboardLayout
TabbedTextOutA
wvsprintfW
UnregisterClassW
PostMessageW
DrawCaption
RegisterClassA
DlgDirSelectExW
PeekMessageW
UpdateWindow
SwapMouseButton
SetLayeredWindowAttributes
EnumDisplaySettingsW
OpenDesktopW
BroadcastSystemMessageExW
GetKeyboardLayoutNameW
GetScrollInfo
OemToCharBuffA
GetWindowModuleFileNameA
DefFrameProcA
CallMsgFilterW
SetCursor
SetWindowWord
DialogBoxParamW
MapVirtualKeyExA
OemToCharW
SetForegroundWindow
SetProgmanWindow
SetWindowPlacement
OemToCharA
LoadMenuIndirectA
CloseWindow
EnumPropsW
SetWindowsHookA
IsGUIThread
SystemParametersInfoA
GetWindowTextW
GetDlgCtrlID
GetMenuItemInfoW
CreateIconIndirect
GetCaretBlinkTime
CheckRadioButton
ArrangeIconicWindows
SetMenuDefaultItem
WinHelpA
ClipCursor
CopyIcon
GetMouseMovePointsEx
GetMessageA
ScrollChildren
UpdateLayeredWindow
SendMessageTimeoutA
SetPropA
DrawFrameControl
SetSystemMenu
DrawTextW
GetMessagePos
DefDlgProcW
AdjustWindowRectEx
GetKeyboardLayoutNameA
IsRectEmpty
CharToOemBuffW
FlashWindowEx
GetParent
SendInput
FlashWindow
ShowCaret
CharNextExA
GetSystemMetrics
IsCharAlphaA
SendMessageW
GetKeyState
DispatchMessageA
GetTabbedTextExtentW
PostThreadMessageW
GetScrollPos
CharPrevW
SetCursorPos
FindWindowA
SetClassLongA
TabbedTextOutW
SetScrollInfo
UnregisterHotKey
CheckMenuRadioItem
IsCharAlphaNumericW
DlgDirListA
SetClassLongW
CreateIcon
GetMenuDefaultItem
ChangeDisplaySettingsExW
GetMessageTime
SendNotifyMessageA
IsHungAppWindow
ExitWindowsEx
ReleaseCapture
RegisterWindowMessageA
GetClassLongW
IsChild
MenuItemFromPoint
ValidateRect
DrawMenuBar
GetMonitorInfoW
GetClassNameA
GetUpdateRect
ChangeDisplaySettingsW
GetMenuState
LoadBitmapW
EnumThreadWindows
GetWindowRgn
FindWindowExW
SetWindowsHookW
DestroyIcon
UnhookWindowsHook
GetKeyboardType
DeleteMenu
CharToOemA
LoadCursorFromFileA
SetDeskWallpaper
GetWindowThreadProcessId
IsCharUpperA
ShowOwnedPopups
GetClipboardViewer
GetCursorInfo
MessageBeep
DrawCaptionTempW
GetKeyNameTextA
IsDlgButtonChecked
SetWindowsHookExA
GetGuiResources
IsIconic
GetWindowTextLengthW
PostMessageA
CheckMenuItem
CreateMDIWindowW
CopyAcceleratorTableW
DrawTextA
TranslateMessageEx
ReleaseDC
CreateDialogParamW
GetAltTabInfoW
GetWindowLongA
TileChildWindows
SubtractRect
RegisterWindowMessageW
UnionRect
GetMessageW
ChangeMenuW
MapVirtualKeyExW
GetDialogBaseUnits
RemoveMenu
SetMessageExtraInfo
LoadAcceleratorsA
GetInputState
CopyAcceleratorTableA
EnumPropsExA
SetCapture
GetWindowDC
DrawAnimatedRects
ChildWindowFromPoint
BeginPaint
SetWindowTextW
DrawFrame
EnumDesktopWindows
GetScrollRange
SendDlgItemMessageW
MessageBoxTimeoutW
CharUpperA
EnableMenuItem
RegisterDeviceNotificationA
EnumDisplaySettingsExW
CloseClipboard
GetWindowTextA
TileWindows
GetCapture
AttachThreadInput
CharPrevExA
SetRect
SetClipboardData
GetWindowLongW
CallNextHookEx
GetClassLongA
ToAsciiEx
EnumPropsA
IsWindowVisible
DrawFocusRect
LoadCursorA
GetTabbedTextExtentA
UnlockWindowStation
GetPropW
LockWindowUpdate
LoadIconW
GetListBoxInfo
SendMessageA
wvsprintfA
CharToOemW
CreateIconFromResourceEx
SetScrollPos
CreateDialogIndirectParamA
CharNextA
InvalidateRgn
GetSubMenu
GetKeyNameTextW
TranslateAcceleratorW
GetWindowInfo
DestroyWindow
GetGUIThreadInfo
CreateDialogParamA
GetMenuItemCount

Sections

CODE
Size: 450KB - Virtual size: 449KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 789B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text0
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 659KB - Virtual size: 658KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39f184757701cf3602ecd44306ee7c32

Code Sign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22Certificate

Key Usages

01Certificate

Key Usages

81:b9:12:c7:b2:e2:52:f9:f5:7d:ec:fa:ae:e1:52:c5Certificate

Extended Key Usages

Key Usages

11:1a:e6:82:7b:88:69:5a:2c:81:55:6c:e6:74:25:17:23:f0:8a:c8Signer

Signature Validations

Verification

04/11/2022, 15:41 Valid: false

Headers

File Characteristics

Imports

comdlg32

oleaut32

gdi32

ws2_32

comctl32

kernel32

user32

Sections

CODE Size: 450KB - Virtual size: 449KB

DATA Size: 11KB - Virtual size: 11KB

BSS Size: - Virtual size: 789B

.idata Size: 16KB - Virtual size: 15KB

.text0 Size: 13KB - Virtual size: 13KB

.tls Size: 512B - Virtual size: 24B

.text1 Size: 73KB - Virtual size: 73KB

.reloc Size: 8KB - Virtual size: 8KB

.rsrc Size: 659KB - Virtual size: 658KB

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

01
Certificate

81:b9:12:c7:b2:e2:52:f9:f5:7d:ec:fa:ae:e1:52:c5
Certificate

11:1a:e6:82:7b:88:69:5a:2c:81:55:6c:e6:74:25:17:23:f0:8a:c8
Signer

04/11/2022, 15:41
Valid: false

CODE
Size: 450KB - Virtual size: 449KB

DATA
Size: 11KB - Virtual size: 11KB

BSS
Size: - Virtual size: 789B

.idata
Size: 16KB - Virtual size: 15KB

.text0
Size: 13KB - Virtual size: 13KB

.tls
Size: 512B - Virtual size: 24B

.text1
Size: 73KB - Virtual size: 73KB

.reloc
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 659KB - Virtual size: 658KB