392710b1f8cb1e516ac715204ca7e3bcc1360c94fd80d2fd6bbd775e6ebdd1d9

Sharing

Copy URL

Twitter E-mail

General

Target

392710b1f8cb1e516ac715204ca7e3bcc1360c94fd80d2fd6bbd775e6ebdd1d9
Size

14.6MB
MD5

6309b84900e5a94a7c11719b25fbe5b0
SHA1

f60788a5a2895f2382e76a38deaefda55afef235
SHA256

392710b1f8cb1e516ac715204ca7e3bcc1360c94fd80d2fd6bbd775e6ebdd1d9
SHA512

4ef679dc914fee9aec4e66bff4a0a74da764715f8f6f638c8bad0ff7f01ead6f2380902b589ec1b04269ee214d25bb6683dd73edd9c3e092956f7c256830c09a
SSDEEP

393216:uvXljcdMz1My6y4vGkT243D5ZA7MHlTCW6vZiULv:+Jc0c+kT2UMgHgzvxT

Score

8^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

Processes:

resource	yara_rule
static1/unpack001/ٸѰ0112/Ѱ0112˺test123456/˺test123456ҹرɱ󱨣.exe	vmprotect

Files

392710b1f8cb1e516ac715204ca7e3bcc1360c94fd80d2fd6bbd775e6ebdd1d9
.zip
急速辅助免费版0112/下载说明.txt
急速辅助免费版0112/数码资源网.url
.url
ٸѰ0112/ǰ2.1-0110/ǰ2.1.exe
.exe windows x86

73ec795c6c369c6ce2c3b4c3f6477daa

Code Sign

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22-02-2011 19:25

Not After

22-02-2021 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

38:7c:94:76:e2:83:20:26:45:94:84:63:17:d4:65:40
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

28-06-2011 00:00

Not After

27-06-2014 23:59

Subject

CN=Anhua Xinda (Beijing) Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Anhua Xinda (Beijing) Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

71:b8:0c:b9:0e:8a:c3:7f:21:72:0a:ee:86:86:0f:44:ac:d8:93:d6
Signer

Actual PE Digest

71:b8:0c:b9:0e:8a:c3:7f:21:72:0a:ee:86:86:0f:44:ac:d8:93:d6

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Anhua Xinda (Beijing) Technology Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Anhua Xinda (Beijing) Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

01-01-0001 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
DuplicateHandle
GetShortPathNameA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

2
Size: 975KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

4
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 46KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ٸѰ0112/ǰ2.1-0110/ǰٷվ.url
.url
ٸѰ0112/ǰ2.1-0110/ʹ˵.txt
ٸѰ0112/Ѱ0112˺test123456/ʹ˵.txt
ٸѰ0112/Ѱ0112˺test123456/ֵԼ˵.txt
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/3km2ϻ¼/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/3km2ϻ¼/ע.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/3km2ϻ¼/ϷͿ3KM2.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/CD½/CD½-¶.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/CD½/CD.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/CD½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/DEE½/DEE½ע.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/DEE½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/DEE½/[DEE¼]ҵҵ¼[Flym2]ʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/DEE½/DEE¼עҳʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Legend¼/1ע治Ǻܺñ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Legend¼/LEG½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Legend¼/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Legend¼/LEG桿ʼϷʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Legend¼/LEGCD¼¼ʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Legend¼/ʼϷͺ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/M6½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/M6½/M6¼.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/M6½/M6¼ҿͻʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/M6½/M6¼Գʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Q7½/Q7½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Q7½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/Q7½/Q7¼Աעʾͼ.jpg
.jpg .ps1
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/game2½/GAME2.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/game2½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/game2½/ע.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˳ݷҵ½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˳ݷҵ½/˳ݷҵ½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˳ݷҵ½/˳¼Աעʾͼ.jpg.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ͳһ½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ͳһ½/ͳһ¼Աעʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/¼.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/¼Աעʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/½Գʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/޵½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/޵½/޿ͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/޵½/ͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ܵ½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ܵ½/ܵ¼ҿͻʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ܵ½/ܵ¼Աעʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ܵ½/ܵ½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ܵ½/ܵ½2.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ţ½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ţ½/ţ¼Աעʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/ţ½/ţ½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/¼ ӥ½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/¼ ӥ½/עͰ汾ţ20110702.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/¼ ӥ½/ӥҵ¼Աעʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/¼ ӥ½/ӥռ桿Գʾͼ.jpg.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/¼ ӥ½/ӥռ¼Աעʾͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/¼ ӥ½/Ҽ¼.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˫½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˫½/˫ .jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˫½/˫.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/˫½/˫½.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/Thumbs.db
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/汾.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/ֵ¼/½/ͼ.jpg
.jpg
ٸѰ0112/Ѱ0112˺test123456/¼¼.txt
ٸѰ0112/Ѱ0112˺test123456/ټ.txt
ٸѰ0112/Ѱ0112˺test123456/ļ/3KM2/11111.ini
ٸѰ0112/Ѱ0112˺test123456/ļ/3KM2/33333333.ini
ٸѰ0112/Ѱ0112˺test123456/ļ/3KM2/43434343.ini
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76սʿοһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76սʿο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76οһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76ο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76Ʒսʿ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76Ʒ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.76΢.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.80սʿοһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.80սʿο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.80οһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.85սʿο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/1.85ο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/176ַ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/95Ұ汾.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/dsadsadsa.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/ԡ°汾սʿPK.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/սʿοһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/ɰ汾.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/ݵ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/սʿο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/սʿοһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/սʿο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/ùһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/б䲻ٵ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/б.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/бսʿοһ.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/бսʿο.sky
ٸѰ0112/Ѱ0112˺test123456/ļ/SkyM2/бһű.sky
ٸѰ0112/Ѱ0112˺test123456/˺test123456ҹرɱ󱨣.exe
.exe windows x86

5948fdb877fc01d42e01d34a6a65adfd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamRestart

ws2_32

recv

version

GetFileVersionInfoSizeA

kernel32

CreateFileA
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

GetDlgItem
MessageBoxA

gdi32

RoundRect

winspool.drv

ClosePrinter

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

CLSIDFromProgID

oleaut32

VariantClear

comctl32

ImageList_Destroy

wldap32

ord29

comdlg32

GetSaveFileNameA

Sections

.text
Size: 796KB - Virtual size: 793KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8.0MB - Virtual size: 8.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ٸѰ0112/Ѱ0112˺test123456/¼޿ҷ.txt

Sharing

General

Malware Config

Signatures

Files

73ec795c6c369c6ce2c3b4c3f6477daa

Code Sign

61:19:93:e4:00:00:00:00:00:1cCertificate

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

38:7c:94:76:e2:83:20:26:45:94:84:63:17:d4:65:40Certificate

Extended Key Usages

Key Usages

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

71:b8:0c:b9:0e:8a:c3:7f:21:72:0a:ee:86:86:0f:44:ac:d8:93:d6Signer

Signature Validations

Verification

01-01-0001 00:00 Valid: false

Headers

File Characteristics

Imports

kernel32

user32

Sections

0 Size: 1024B - Virtual size: 1KB

1 Size: 512B - Virtual size: 404B

2 Size: 975KB - Virtual size: 3.4MB

3 Size: 10KB - Virtual size: 10KB

4 Size: 512B - Virtual size: 512B

5 Size: 46KB - Virtual size: 71KB

6 Size: 3KB - Virtual size: 3KB

7 Size: 7KB - Virtual size: 28KB

5948fdb877fc01d42e01d34a6a65adfd

Headers

File Characteristics

Imports

winmm

ws2_32

version

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

wldap32

comdlg32

Sections

.text Size: 796KB - Virtual size: 793KB

.rdata Size: 8.0MB - Virtual size: 8.0MB

.data Size: 68KB - Virtual size: 232KB

.rsrc Size: 28KB - Virtual size: 27KB

.vmp0 Size: 1.3MB - Virtual size: 1.3MB

.vmp1 Size: 108KB - Virtual size: 105KB

61:19:93:e4:00:00:00:00:00:1c
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

38:7c:94:76:e2:83:20:26:45:94:84:63:17:d4:65:40
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

71:b8:0c:b9:0e:8a:c3:7f:21:72:0a:ee:86:86:0f:44:ac:d8:93:d6
Signer

01-01-0001 00:00
Valid: false

0
Size: 1024B - Virtual size: 1KB

1
Size: 512B - Virtual size: 404B

2
Size: 975KB - Virtual size: 3.4MB

3
Size: 10KB - Virtual size: 10KB

4
Size: 512B - Virtual size: 512B

5
Size: 46KB - Virtual size: 71KB

6
Size: 3KB - Virtual size: 3KB

7
Size: 7KB - Virtual size: 28KB

.text
Size: 796KB - Virtual size: 793KB

.rdata
Size: 8.0MB - Virtual size: 8.0MB

.data
Size: 68KB - Virtual size: 232KB

.rsrc
Size: 28KB - Virtual size: 27KB

.vmp0
Size: 1.3MB - Virtual size: 1.3MB

.vmp1
Size: 108KB - Virtual size: 105KB