3c68b07925985ce6c5533752ebd042b0581fd1a1f7efbef1226f15824bdc5aaf

Sharing

Copy URL Twitter E-mail

General

Target

3c68b07925985ce6c5533752ebd042b0581fd1a1f7efbef1226f15824bdc5aaf
Size

682KB
MD5

e0eec0b154b51672bba7b62d763af261
SHA1

20039728ddacd105afa229baa4cc01a1520ec567
SHA256

3c68b07925985ce6c5533752ebd042b0581fd1a1f7efbef1226f15824bdc5aaf
SHA512

6ba5658391fcae97f127ca5e24f8982fccd50352d77abd847c30c1eb56ef6cf6128ba605b8d52c5b21be520b0faa8a3f31b267ebcaf3e28aafb1825fe5edb71a
SSDEEP

12288:36S7uvJcQ3h9lrlABkhx396mYQZDguUbsiVHR3uAo:3RSvHlqBdmYQZDoYiB9C

Score

N/A

Malware Config

Signatures

Files

3c68b07925985ce6c5533752ebd042b0581fd1a1f7efbef1226f15824bdc5aaf
.exe windows x86

6533e9fbc755464bbc50a612d1545510

Code Sign

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6d
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

17/11/2006, 00:00

Not After

16/07/2036, 23:59

Subject

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1f:6c:49:48:17:87:1a:91:0f:51:74:55:f5:1a:03:b6
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

20/11/2014, 00:00

Not After

20/11/2015, 23:59

Subject

CN=Monitor LLC,O=Monitor LLC,L=Moscow,ST=Moscow region,C=RU

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

8d:d2:1a:ca:e0:32:79:5d:4e:30:59:e0:d9:7d:3a:7f:41:1d:71:67
Signer

Actual PE Digest

8d:d2:1a:ca:e0:32:79:5d:4e:30:59:e0:d9:7d:3a:7f:41:1d:71:67

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Monitor LLC,O=Monitor LLC,L=Moscow,ST=Moscow region,C=RU

24/11/2022, 14:54
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetPropA
DrawStateA
SetLayeredWindowAttributes
UnlockWindowStation
GetKeyNameTextW
WaitMessage
ChildWindowFromPoint
GetUserObjectSecurity
ToUnicode
SendNotifyMessageW
GetWindowRect
DragObject
ScreenToClient
DrawCaption
EnumDesktopsW
UnregisterClassW
GetDlgItemInt
SetForegroundWindow
GetNextDlgTabItem
SendInput
ChangeDisplaySettingsW
GetWindowTextLengthW
HideCaret
GetScrollInfo
MapWindowPoints
GetMonitorInfoA
CallWindowProcW
PostQuitMessage
SetLastErrorEx
SetSystemMenu
EnumWindowStationsW
WaitMessage
UnloadKeyboardLayout
GetPropW
SetTimer
RegisterClipboardFormatA
GetActiveWindow
AppendMenuW
LoadIconW
GetWindowModuleFileNameW
GetMessageTime
RegisterHotKey
CreateDialogIndirectParamA
SetClipboardViewer
GetForegroundWindow
TrackPopupMenu
UnregisterClassW
EnumDesktopWindows
DefDlgProcW
GetClassLongW
GetLastActivePopup
TabbedTextOutW
EnumClipboardFormats
UpdateWindow
DrawFrame
FindWindowW
GetUpdateRgn
OpenDesktopW
GetMessageA
DrawMenuBar
InsertMenuA
GetComboBoxInfo
ToAsciiEx
SetDlgItemTextW
RegisterClassExW
SetParent
TileChildWindows
MapDialogRect
GetCapture
EnumPropsA
EnumDisplayMonitors
EnableMenuItem
CopyIcon
RealChildWindowFromPoint
GetCaretBlinkTime
SetDlgItemInt
GetCursorInfo
EnumPropsExW
GetWindowTextLengthA
PeekMessageA
GetDlgItem
SetClipboardData
GetMenuState
GetNextDlgGroupItem
SetPropW
TranslateAcceleratorA
ShowWindowAsync
SetInternalWindowPos
CharNextW
GetWindowWord
LoadCursorA
SetWindowsHookExA
SetMenuItemInfoA
GetWindowLongA
SendDlgItemMessageW
IsMenu
GetMenuBarInfo
EndTask
DefFrameProcA
ShowScrollBar
GetUpdateRect
DrawCaptionTempW
GetDlgItemInt
PostMessageA
SetClassWord
GetScrollBarInfo
DlgDirSelectExA
CharUpperA
UnregisterDeviceNotification
GetKeyNameTextA
FindWindowA
InsertMenuW
GetWindowRgn
SetWindowTextW
EnumDesktopsA
SetKeyboardState
IsWindowEnabled
CreateCursor
LockWorkStation
SetMenuContextHelpId
wvsprintfW
SetUserObjectInformationA
IsCharAlphaNumericA
GetMenuItemID
ReleaseCapture
CreateAcceleratorTableA
GetMenuItemInfoA
CallMsgFilterW
GetSysColorBrush
LoadKeyboardLayoutA
LoadStringW
CharToOemA
IsWindow
InsertMenuItemW
CreateIconIndirect
IsCharAlphaNumericW
GetDlgItemTextW
MessageBeep
MenuWindowProcW
SetDeskWallpaper
OpenInputDesktop
DestroyMenu
LoadAcceleratorsA
DrawTextW
ToUnicodeEx
GetMouseMovePointsEx
SetClassLongW
LoadMenuIndirectA
RemovePropA
GetSystemMenu
EndPaint
RegisterClipboardFormatW
WindowFromPoint
GetAltTabInfoW
GetSysColor
CopyAcceleratorTableW
GetUserObjectInformationW
SetWindowsHookW
RemoveMenu
CreateIcon
RegisterClassA
GetWindowLongW
CascadeWindows
CheckMenuRadioItem
DefWindowProcW
GetWindowContextHelpId
FillRect
SetCaretBlinkTime
MapVirtualKeyExA
CharUpperW
DialogBoxParamW
DlgDirSelectExW
CreateDialogIndirectParamW
IsCharUpperA
GetWindowRgnBox
wsprintfA
GetWindowModuleFileNameA
BeginPaint
DragDetect
CreateCaret
EnumDisplaySettingsW
CheckRadioButton
RedrawWindow
GetDlgCtrlID
RemovePropW
GetKeyboardType
GetMenuStringA
WindowFromDC
GetWindowThreadProcessId
InvalidateRgn
DrawTextExA
ArrangeIconicWindows
SetDebugErrorLevel
SetForegroundWindow
GetInternalWindowPos
DrawCaptionTempA
MessageBoxW
SetWindowTextA
IsHungAppWindow
SetWindowPos
GetKeyboardState
LoadImageA
SendMessageA

kernel32

SearchPathA
ExpandEnvironmentStringsW
GetProfileIntW
GlobalMemoryStatusEx
IsBadWritePtr
ReadConsoleInputW
LockResource
SetFilePointerEx
IsProcessorFeaturePresent
PrivCopyFileExW
WriteConsoleOutputCharacterW
GlobalUnWire
GetOverlappedResult
GetVolumePathNameW
FileTimeToDosDateTime
GetStartupInfoA
SetFileShortNameW
GetStringTypeExA
GetAtomNameW
MoveFileExA
FindNextFileA
GetModuleHandleExA
LZCopy
SetCalendarInfoW
FillConsoleOutputCharacterA
GetProfileIntW
WaitCommEvent
DebugBreak
lstrcmpW
AllocConsole
GetVolumeInformationA
GetDiskFreeSpaceA
GlobalSize
GetFileAttributesExW
GlobalDeleteAtom
GetProfileSectionA
SetComputerNameExW
GetTapeStatus
FindFirstVolumeA
GetSystemTimeAsFileTime
AddConsoleAliasA
TryEnterCriticalSection
GetThreadSelectorEntry
OpenFileMappingA
FindVolumeMountPointClose
GetFullPathNameW
OpenMutexW
GetCPInfo
CreateEventW
BeginUpdateResourceW
CommConfigDialogW
WriteConsoleInputA
PeekConsoleInputW
PulseEvent
SetErrorMode
SetWaitableTimer
GetTempPathA
GetConsoleWindow
FreeEnvironmentStringsW
CopyLZFile
BuildCommDCBA
FreeLibraryAndExitThread
GetConsoleTitleW
GetShortPathNameA
FlushConsoleInputBuffer
FindNextVolumeW
CreateActCtxW
GlobalMemoryStatus
CreateFileMappingA
RemoveDirectoryW
FindFirstVolumeMountPointA
OpenFileMappingW
FileTimeToLocalFileTime
LZInit
CompareStringW
GlobalLock
TlsFree
SetTapeParameters
GetLocaleInfoA
ClearCommBreak
QueryDosDeviceW
DeleteAtom
WaitForMultipleObjectsEx
GetConsoleSelectionInfo
GetConsoleCP
GetDriveTypeW
SetVolumeMountPointW
GetConsoleFontSize
DisconnectNamedPipe
SetTimerQueueTimer
ClearCommError
SetFileShortNameW
GlobalFix
CreateFileA
lstrcmpi
EnumSystemLocalesA
FindResourceA
HeapSetInformation
GetNamedPipeInfo
CreateJobObjectA
TlsGetValue
TransmitCommChar
GetLogicalDriveStringsW
LZSeek
SetCurrentDirectoryA
GetPrivateProfileSectionNamesA
LocalLock
SetLocaleInfoA
GetVolumePathNameA
PeekConsoleInputA
GetSystemDirectoryW
SearchPathW
WriteConsoleOutputW
GetThreadPriority
GlobalCompact
CloseHandle
GetModuleHandleExW
GetConsoleOutputCP
CreateTimerQueueTimer
GetConsoleCharType
MulDiv
VerifyVersionInfoW
CreateMailslotA
WritePrivateProfileStructW
DisableThreadLibraryCalls
GetConsoleDisplayMode
AssignProcessToJobObject
FindNextVolumeA
SetCommMask
RequestDeviceWakeup
EnumResourceLanguagesW
Beep
EnumDateFormatsW
GetACP
GetConsoleMode
EnumTimeFormatsW
WriteTapemark
WriteProfileStringA
WritePrivateProfileStructA
HeapDestroy
WriteConsoleOutputCharacterW
WideCharToMultiByte
DefineDosDeviceA
GetOverlappedResult
OpenSemaphoreA
EnumDateFormatsExW
SetInformationJobObject
FlushViewOfFile
ConsoleMenuControl
GetNamedPipeHandleStateW
lstrcpy
GetSystemInfo
GetProfileIntA
SetThreadPriority
EnumCalendarInfoA
UnlockFileEx
WaitNamedPipeW
GetProcessHeaps
SetTimeZoneInformation
PrivCopyFileExW
DosDateTimeToFileTime
GetCommConfig
EnumSystemGeoID
GetCurrentProcess
UpdateResourceW
EnumDateFormatsExA
ResetWriteWatch
GetSystemDefaultLangID
LocalReAlloc
FindFirstChangeNotificationA
GetProcessShutdownParameters
GlobalUnfix
lstrcmpA
IsBadReadPtr
FreeEnvironmentStringsA
GetCalendarInfoW
SetDefaultCommConfigA
SetMailslotInfo
UpdateResourceA
ScrollConsoleScreenBufferW
GetDriveTypeA
GetFileSize
RtlCaptureContext
CompareStringA
SetPriorityClass
GetFileType
GlobalGetAtomNameA
GlobalFlags
GlobalAddAtomA
GetSystemDefaultLCID
lstrcmpiW
DeleteFileW
WriteConsoleOutputAttribute
GlobalAddAtomW
HeapValidate
GetFileAttributesW
CancelIo
SetNamedPipeHandleState
WaitForSingleObject
QueryInformationJobObject
GetDiskFreeSpaceExW
GetUserDefaultLCID
FindActCtxSectionStringW
QueryMemoryResourceNotification
GetConsoleFontInfo
GetCPInfoExW
EnumResourceNamesW
EnumSystemCodePagesA
VirtualQuery
VirtualQueryEx
LoadLibraryA
GetModuleHandleA
LocalAlloc
GetTickCount
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

advapi32

ObjectPrivilegeAuditAlarmA
RegOpenKeyW
LogonUserExW
CryptGenKey
AccessCheckByTypeResultListAndAuditAlarmW
CredReadDomainCredentialsW
GetCurrentHwProfileA
IsValidSecurityDescriptor
ConvertSidToStringSidW
GetServiceKeyNameA
PrivilegedServiceAuditAlarmW
GetEffectiveRightsFromAclA
OpenEncryptedFileRawW
CredGetTargetInfoW
LsaOpenPolicySce
InitiateSystemShutdownW
SetEntriesInAuditListA
RegQueryMultipleValuesW
BuildTrusteeWithObjectsAndNameA
DecryptFileW
GetTrusteeTypeA
SaferiRecordEventLogEntry
GetMultipleTrusteeW
WmiQueryAllDataA
EnumServicesStatusExA
SetUserFileEncryptionKey
RegDeleteValueW
LsaQueryForestTrustInformation
NotifyBootConfigStatus
WmiNotificationRegistrationA
CredpConvertCredential
RegisterServiceCtrlHandlerA
LsaQueryInformationPolicy
CryptGenRandom
CryptSetProviderW
LsaSetInformationPolicy
QueryServiceConfig2W
CredIsMarshaledCredentialA
CredpDecodeCredential
InitializeSid
RegSaveKeyA
RegSaveKeyW
GetTrusteeFormW
AddAuditAccessAce
LsaGetRemoteUserName
WmiReceiveNotificationsW
SetEntriesInAclW
SetPrivateObjectSecurity
LsaStorePrivateData
CreateProcessAsUserW
LsaOpenTrustedDomainByName
CredWriteDomainCredentialsW
RegEnumKeyW
WmiSetSingleInstanceA
RegEnumValueW
QueryAllTracesA
AddAccessAllowedAce
RegSetValueW

Exports

Exports

��O F3��a�p<|��m�'�6F�}��\l��/e�"�fR��w�ѵ��A��t��n�A�>�Á��C��$^V"�ǈa�bp"!�\�7GK$�Q��:��A&h7X��;�$@��J[�gӐo�@�Σ��w�܀��J�1��j�=��_��2S��P��C��|0?N��z�%�)��b�u�@|��?�Q[��?�E��(6�E�E�u��(H$oO��7d��;0B��he}m�QDoD*��>G�m"��ٸd�csTڼP��咠Q�t],�.��Z1]�"P $=��!X�UD��U��]�c�9�l�,��]�vR��}x=��l�D`��4�X�w0��E笯�í�b�p_i~��C�8;��IO�Dq~�%~'�Nks�.�؂�ЗA�L�E9��K~�/�9�!�k��˃0��H�T/3T��1i��2��tkM�be�P��G33�<,�X�&R_�� Ĩ�� ק��f[� �a5E��w�f0z��h�B(�bY͆��b��v��O��Y|��i]t��`U6<%J1H#��3��U��q�F��L�N��%��B�<W�P;MN��l�*�L!�#3��d�x�Xg��I�b��B�<N��j�A�d�΁m�>@�n��l��=8��R��6��R�7${ݡNa�q#^��TJ��O��I�D3p�d�)Q�*(p�G��A�-v{�騥�۷��z��GN&9IH�{F󾲣��c�؃= !��IZ��`.�.&q��k�SX��3#��z��R��<�D�OR�Ѧ�m�Ԍ��J��Y��^�h��Q�J�MX��+��QP?�� b��Y�&؈+�]�ӗ�ʾ��_��g��S�縧��]�bRM��O��!Ҫ]�ĎܽloW�ds�PGz��:�8�� [sU�䴡&�á�}�Հϥx�2~I��!�LUM$l��N%��jr��0��kO�3v��=Q�0D�"#��=t)�lʹ�jm��gI7��}w�ȽU��չ��O8��Fg��>܀�~�K/}~s!�ec�U��e�"4�?e�0��|ʀ��Z�F��5�&b�E��pX��tB�� B&�`0� � �|��E6�� {�*~��e��(��ԓ�솼��"��Ԟ��:�W[��^�]��K�3��55cTQ�ᗣ�C�{H{��/È&&h��Gy9ĵ��JOHI�/*21O�]d��!��I��;I�gʻ@��Q|{Y'.1w��u �� {i뢑98��ڵބN��Ђ��D�1:3�naT]��s��'j�w��y�H˘K�cM�]��/��)�R��?� ��wU2�m�DM[��3_�8P��*GG ��袰��Y9�X4��j��q7 �^ꄻ��zHR�,�9��h��zw�Z�0K�J��g��#�z�\��ћ��W��&gn��>=��8�ꦯk0�.$i�S�f>�FN_��g�$��g����_�p/��ʼ��q�ۧ��a�/^8Ã'�W�6ԝ�c'x?;�?L}d` �.�|�rrTkǰ?e��E��]��U��L��F��:��4� ��9ُ�"O��\�BG!�BE�ؤ�N+��tL&MY/��g=�-�ħ)SҎ��P$W��TG��?��C.I�q��ĄV��Ӻ Z��>�㲧�[�Q�m�*Yu��&]�׳��b�Y� /�\-U�Ǟ!�h�E4'π$��8 ��xI��+k�+� �̺elQ�b*SD�4��v0�=��i��,� �P?��L�WPT!!!T�a�C z��A��&��7�;$�gWVsڬ�@��h��ԧ"�B�@��(󥖘3e��I��>�XTo�t5_Ƣ�:թA6��̵�7��:\��s��Qv�5p~O��=�d�-JWsR�س ,ߎNR/�'��p��Q��^�,��K=�\Sy�{|�8$l}i��2�5��I�@!F�}�sk^�:Y��Q�x{��k� ڪj��!3m��v.�RB��e��c��A��J��K��*ocF:n,IM��1s�x� E!��,k\�S[��5�`�~G> ZI��6��c>�r,�� Ħ��S��^�ܱ-�z��p=��H�$}�M�/��Q��G&b�ɣ�x��ղ��{$|��}�AgŰ}Y!�#�U��J�w�Nm�a�箒�AO+�g��0 ��x\{��,�zP8�{�dQ��>>�~j��ۍ�1�I5Q)ɶη�� s�j%��%�)^��G_�K��w5��O騍�2EG�.{��GˡA�P�gK3�S�N��J{��ôYn!@� ��ٓ��FeКW��hK��s�LOy��!�y�hO��ro�� r ��v�,�)��q�C� |�$#H�r��t�Y��*��-$%�� o֛�}�H+I�"]ڨ%�M�-(ur�l�PI��ƪH�e�,�O� G�ےH8aw��]��?��8��g� �n��o�/�Pq��\��ZwQ��)#��T��gQ9p��F�� )� fO�2;�^��h��^�E��xx?�R'�2�b��Nl �@�d�r�b�p��􆩯�W��~�ZdQ�J瑙^��z�g��/Ӫ��J�/1�QEȕM�ȗ��>R��XE��d��+��4�oj�t�Ť:�m��,g�k��cM�R�'O�T��C��r�Ȭ8>��T��a�q|',4Z+��L�-Cy�r�}=��N0�̴?v5a=�G�x�!��U��}��͢��{tvoj1(�<M��"6�"��GXJ��od�"�]X�-�j�T��8� ��T9

Sections

CODE
Size: 492KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 924B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6533e9fbc755464bbc50a612d1545510

Code Sign

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5eCertificate

Extended Key Usages

Key Usages

34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6dCertificate

Key Usages

1f:6c:49:48:17:87:1a:91:0f:51:74:55:f5:1a:03:b6Certificate

Extended Key Usages

Key Usages

8d:d2:1a:ca:e0:32:79:5d:4e:30:59:e0:d9:7d:3a:7f:41:1d:71:67Signer

Signature Validations

Verification

24/11/2022, 14:54 Valid: false

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Exports

Exports

Sections

CODE Size: 492KB - Virtual size: 492KB

DATA Size: 46KB - Virtual size: 45KB

BSS Size: - Virtual size: 924B

.idata Size: 12KB - Virtual size: 12KB

.data Size: 15KB - Virtual size: 15KB

.tls Size: 512B - Virtual size: 24B

.text Size: 84KB - Virtual size: 83KB

.reloc Size: 7KB - Virtual size: 6KB

.rsrc Size: 19KB - Virtual size: 22KB

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6d
Certificate

1f:6c:49:48:17:87:1a:91:0f:51:74:55:f5:1a:03:b6
Certificate

8d:d2:1a:ca:e0:32:79:5d:4e:30:59:e0:d9:7d:3a:7f:41:1d:71:67
Signer

24/11/2022, 14:54
Valid: false

CODE
Size: 492KB - Virtual size: 492KB

DATA
Size: 46KB - Virtual size: 45KB

BSS
Size: - Virtual size: 924B

.idata
Size: 12KB - Virtual size: 12KB

.data
Size: 15KB - Virtual size: 15KB

.tls
Size: 512B - Virtual size: 24B

.text
Size: 84KB - Virtual size: 83KB

.reloc
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 19KB - Virtual size: 22KB