7779f6b5e0f90161b26d5430f85a52ab[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

7779f6b5e0f90161b26d5430f85a52ab.bin
Size

890KB
MD5

491da3d61380f41279f35e7008e56915
SHA1

d05f3b57cdb6f04b97ba72e95c3cb9d894ffd432
SHA256

ff2da99c4f5ef310a3e15e305c73140f54131155d90ee73d1fa71e07fb26559c
SHA512

61cdcf4eaf14bc353b4be34181f2bd903f07f34a28ea9fffc9f7398d15852f500d4b292dc784218dfb03212f020ae46dc4af17f33f436b10cfbc347a22672603
SSDEEP

12288:g4qrSOb/8X1ewTOo2VreUs6JMrgXpceREbHxoMs9ncHG+QByR2FxG3VA7Hwu6M:GRbYAwTOZrI6J/TU+Vc9Q4uGlUd6M

Score

1^/10

Malware Config

Signatures

Files

7779f6b5e0f90161b26d5430f85a52ab.bin
.zip

Password: infected
50a8ade77f0b3cf9eeb31adc4545a7977a80382748c042bc6aa2e8649c1ff06c.bin
.exe windows x86

Password: infected

10107c8f949f7182455dc4bb88defa9f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

wglCreateContext
wglDeleteContext
wglGetProcAddress
wglMakeCurrent
wglShareLists
glGetError
glEnable
glDisable
glClearColor
glClear
glBlendFunc
glTexSubImage2D
glGenTextures
glDeleteTextures
glCopyTexSubImage2D
glBindTexture
glTexParameteri
glFlush
glPopAttrib
glPopMatrix
glPushAttrib
glPushMatrix
glViewport
glColorPointer
glDrawArrays
glEnableClientState
glPopClientAttrib
glPushClientAttrib
glTexCoordPointer
glVertexPointer
glGetString
glIsEnabled
glTexImage2D
glMatrixMode
glLoadMatrixf
glLoadIdentity
glGetTexImage
glGetIntegerv

gdi32

SwapBuffers
SetPixelFormat
GetPixelFormat
DescribePixelFormat
ChoosePixelFormat
GetDeviceCaps

openal32

alSourcei
alGenSources
alDeleteSources
alSourcef
alSource3f
alcCreateContext
alGetSourcef
alGetSource3f
alGetSourcei
alSourcePlay
alSourceStop
alSourcePause
alcIsExtensionPresent
alcCloseDevice
alcOpenDevice
alcDestroyContext
alcMakeContextCurrent
alSourceQueueBuffers
alListenerfv
alListener3f
alListenerf
alGetEnumValue
alIsExtensionPresent
alGetError
alGetBufferi
alBufferData
alDeleteBuffers
alGenBuffers
alSourceUnqueueBuffers

winmm

timeBeginPeriod
timeGetDevCaps
joyGetDevCapsW
joyGetPosEx
timeEndPeriod

kernel32

GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
HeapAlloc
HeapFree
TerminateProcess
TerminateThread
GetCurrentThreadId
WaitForSingleObject
CloseHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
Sleep
GetVersion
QueryPerformanceFrequency
IsDebuggerPresent
RaiseException
GetStartupInfoW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcessHeap
InitializeSListHead
QueryPerformanceCounter
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteConsoleW
GetConsoleScreenBufferInfo
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryA
GetFileType
CreateFileW
GetStdHandle
LocalFree
LoadLibraryW
FreeLibrary
FormatMessageW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetLastError
GetConsoleWindow
VirtualQuery

user32

TrackMouseEvent
ReleaseDC
GetDC
DestroyWindow
CreateWindowExA
EnumDisplaySettingsW
ScreenToClient
ShowWindow
SetCursorPos
GetAsyncKeyState
GetSystemMetrics
GetCursorPos
TranslateMessage
DispatchMessageW
PeekMessageW
SendMessageW
DefWindowProcW
CallWindowProcW
RegisterClassW
UnregisterClassW
CreateWindowExW
FlashWindowEx
SetWindowPos
MapVirtualKeyW
GetCapture
SetCapture
ReleaseCapture
GetForegroundWindow
SetForegroundWindow
SetWindowTextW
GetClientRect
GetWindowRect
AdjustWindowRect
SetCursor
ClipCursor
MapWindowPoints
GetWindowLongW
SetWindowLongW
GetWindowThreadProcessId
LoadCursorW
CreateIcon
DestroyIcon
ChangeDisplaySettingsW
ClientToScreen

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

msvcp140d

?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
?pbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??7ios_base@std@@QBE_NXZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@V?$fpos@U_Mbstatet@@@2@@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
?narrow@?$ctype@_W@std@@QBED_WD@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$ctype@_W@std@@2V0locale@2@A
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?unsetf@ios_base@std@@QAEXH@Z
?setf@ios_base@std@@QAEHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@U_Mbstatet@@@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??Bios_base@std@@QBE_NXZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?good@ios_base@std@@QBE_NXZ
?uncaught_exception@std@@YA_NXZ
?_BADOFF@std@@3_JB
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Xbad_alloc@std@@YAXXZ
_Mbrtowc
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getdays@_Locinfo@std@@QBEPBDXZ
?_Getmonths@_Locinfo@std@@QBEPBDXZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?_Debug_message@std@@YAXPB_W0I@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

vcruntime140d

__vcrt_GetModuleHandleW
__vcrt_LoadLibraryExW
_except_handler4_common
__vcrt_InitializeCriticalSectionEx
strchr
strrchr
_setjmp3
memcpy
_purecall
memcmp
memmove
__CxxFrameHandler3
memset
_CxxThrowException
memchr
__std_exception_copy
__std_exception_destroy
longjmp
strstr
__vcrt_GetModuleFileNameW
__std_type_info_destroy_list

ucrtbased

fwrite
setvbuf
ungetc
_lock_file
_unlock_file
pow
frexp
ldexp
free
malloc
realloc
_lrotl
strtol
fopen_s
feof
fopen
fread
fseek
ftell
__stdio_common_vfprintf
strcmp
strncmp
tolower
qsort
atol
strncpy
exit
__acrt_iob_func
__stdio_common_vsprintf
ferror
getenv
__stdio_common_vsscanf
fabs
_fileno
_ftelli64
calloc
_fstat64
_setmode
strtod
fputws
_wfopen
__stdio_common_vsnprintf_s
_wstat64
_wutime64
_wchmod
_wunlink
_wrename
__libm_sse2_log
fsetpos
__libm_sse2_cos
__libm_sse2_exp
toupper
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_atan_precise
_libm_sse2_exp_precise
_libm_sse2_sqrt_precise
ceil
_libm_sse2_cos_precise
_libm_sse2_sin_precise
_libm_sse2_acos_precise
_beginthreadex
_endthreadex
_free_dbg
_malloc_dbg
_CrtDbgReport
terminate
_callnewh
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
_seh_filter_exe
_set_app_type
__setusermatherr
_get_initial_narrow_environment
_initterm
_initterm_e
_exit
_set_fmode
__p___argc
__p___argv
_c_exit
_register_thread_local_exe_atexit_callback
_configthreadlocale
_set_new_mode
__p__commode
_except1
strcpy_s
strcat_s
__stdio_common_vsprintf_s
_controlfp_s
_wmakepath_s
_wsplitpath_s
wcscpy_s
_fseeki64
fputc
fgetpos
fgetc
fflush
fclose
_get_stream_buffer_pointers
_invalid_parameter_noinfo
floor
abs
_wassert
sin
fmod
cos
_time64
setlocale
_CrtDbgReportW
rand
srand
_invalid_parameter
_calloc_dbg
strlen
wcslen
_copysign
_errno

Sections

.textbss
Size: - Virtual size: 843KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 915KB - Virtual size: 914KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

10107c8f949f7182455dc4bb88defa9f

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

gdi32

openal32

winmm

kernel32

user32

advapi32

msvcp140d

vcruntime140d

ucrtbased

Sections

.textbss Size: - Virtual size: 843KB

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 915KB - Virtual size: 914KB

.data Size: 7KB - Virtual size: 21KB

.idata Size: 21KB - Virtual size: 20KB

.tls Size: 1024B - Virtual size: 777B

_RDATA Size: 5KB - Virtual size: 5KB

.00cfg Size: 512B - Virtual size: 260B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 56KB - Virtual size: 55KB

.textbss
Size: - Virtual size: 843KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 915KB - Virtual size: 914KB

.data
Size: 7KB - Virtual size: 21KB

.idata
Size: 21KB - Virtual size: 20KB

.tls
Size: 1024B - Virtual size: 777B

_RDATA
Size: 5KB - Virtual size: 5KB

.00cfg
Size: 512B - Virtual size: 260B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 56KB - Virtual size: 55KB