GPackage
Static task
static1
General
-
Target
Postal2.exe
-
Size
1.0MB
-
MD5
36bcb69a02c8712c559e7cbee0895070
-
SHA1
6e997a9530533be822d9dae06dcf737349291d52
-
SHA256
96d3283cf33c3c45f0bb7e930d3b5071ecb3bc62b3263d5d0dc75112efbfd5b3
-
SHA512
a625b5e303f9179d8b175ec28de723d81e9d75aca964c5be6f4d7eb7bf5e0232749a378b3826f412b460791ca1855339e918c06e792bdc02c599126e2acafe38
-
SSDEEP
12288:kXlFa1YrmtgNlB9NG9w5kkMNb1EPWSh3kyqwrUF9iZ7eTPTdcr+qZ7KL:k+1YMIlfykMN5SWStcECTPTGK
Score
1/10
Malware Config
Signatures
Files
-
Postal2.exe.exe windows x86
72ef253bd635764a5fe2b741b272fc79
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
window
??1WWizardPage@@UAE@XZ
??1WCoolButton@@UAE@XZ
??1WListBox@@UAE@XZ
??1WButton@@UAE@XZ
?Show@WDialog@@UAEXH@Z
?WndProc@WWindow@@UAEJIIJ@Z
?CallDefaultProc@WDialog@@UAEHIIJ@Z
?SetText@WWindow@@UAEXPBG@Z
?OnCopyData@WWindow@@UAEXPAUHWND__@@PAUtagCOPYDATASTRUCT@@@Z
?OnSetFocus@WWindow@@UAEXPAUHWND__@@@Z
?OnSize@WWindow@@UAEXKHH@Z
?OnCommand@WWindow@@UAEXH@Z
?OnShowWindow@WWindow@@UAEXH@Z
?OnCreate@WWindow@@UAEXXZ
?OnClose@WWindow@@UAEXXZ
?OnDestroy@WWindow@@UAEXXZ
?LocalizeText@WDialog@@UAEXPBG0@Z
?GetBackText@WWizardPage@@UAEPBGXZ
?GetNextText@WWizardPage@@UAEPBGXZ
?GetFinishText@WWizardPage@@UAEPBGXZ
?GetCancelText@WWizardPage@@UAEPBGXZ
?GetShow@WWizardPage@@UAEHXZ
?OnCancel@WWizardPage@@UAEXXZ
?OnInitDialog@WDialog@@UAEXXZ
?OnCurrent@WWizardPage@@UAEXXZ
?GetNext@WWizardPage@@UAEPAV1@XZ
?OnClose@WWizardDialog@@UAEXXZ
?OnDestroy@WWizardDialog@@UAEXXZ
?Advance@WWizardDialog@@UAEXPAVWWizardPage@@@Z
?RefreshPage@WWizardDialog@@UAEXXZ
?OnBack@WWizardDialog@@UAEXXZ
?OnNext@WWizardDialog@@UAEXXZ
?OnFinish@WWizardDialog@@UAEXXZ
?OnCancel@WWizardDialog@@UAEXXZ
?WindowMessageOpen@@3IA
?InitWindowing@@YAXXZ
??0WLog@@QAE@PBGAAPAVFArchive@@VFName@@PAVWWindow@@@Z
?GLogWindow@@3PAVWLog@@A
?OpenWindow@WLog@@QAEXHH@Z
??BWWindow@@QBEPAUHWND__@@XZ
?Unused@FCommandTarget@@UAEXXZ
?Show@WWindow@@UAEXH@Z
?Serialize@WWindow@@UAEXAAVFArchive@@@Z
?GetPackageName@WLog@@UAEPBGXZ
?DoDestroy@WWindow@@UAEXXZ
?GetWindowClassName@WLog@@UAEXPAG@Z
?WndProc@WLog@@UAEJIIJ@Z
?CallDefaultProc@WWindow@@UAEHIIJ@Z
?InterceptControlCommand@WWindow@@UAEHIIJ@Z
?GetText@WWindow@@UAE?AVFString@@XZ
?SetText@WLog@@UAEXPBG@Z
?GetLength@WWindow@@UAEHXZ
?OnCopyData@WLog@@UAEXPAUHWND__@@PAUtagCOPYDATASTRUCT@@@Z
??1WWizardDialog@@UAE@XZ
?OnKillFocus@WWindow@@UAEXPAUHWND__@@@Z
??1WLabel@@UAE@XZ
?MaybeDestroy@WWindow@@QAEXXZ
??0WButton@@QAE@PAVWWindow@@HUFDelegate@@P6GJPAUHWND__@@IIJ@Z@Z
??0WListBox@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WCoolButton@@QAE@PAVWWindow@@HUFDelegate@@K@Z
??0FDelegate@@QAE@PAVFCommandTarget@@P81@AEXXZ@Z
??0WWizardPage@@QAE@PBGHPAVWWizardDialog@@@Z
??0WLabel@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WWizardDialog@@QAE@XZ
?OnInitDialog@WWizardDialog@@UAEXXZ
?SetCurrent@WListBox@@QAEHHH@Z
?FindStringChecked@WListBox@@QAEHPBG@Z
?AddString@WListBox@@QAEHPBG@Z
?Empty@WListBox@@QAEXXZ
??4FDelegate@@QAEAAU0@ABU0@@Z
?GetString@WListBox@@QAE?AVFString@@H@Z
?GetCurrent@WListBox@@QAEHXZ
??0WEdit@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
?EndDialog@WDialog@@QAEXH@Z
??1WEdit@@UAE@XZ
??1WUrlButton@@UAE@XZ
??0WUrlButton@@QAE@PAVWWindow@@PBGH@Z
?GetRoot@WObjectProperties@@UAEPAVFTreeItem@@XZ
?GetWindowClassName@WObjectProperties@@UAEXPAG@Z
?GetPackageName@WObjectProperties@@UAEPBGXZ
?Show@WObjectProperties@@UAEXH@Z
?SetValue@WProperties@@UAEXPBG@Z
?BeginSplitterDrag@WProperties@@UAEXXZ
?ForceRefresh@WProperties@@UAEXXZ
?SetItemFocus@WProperties@@UAEXH@Z
?ResizeList@WProperties@@UAEXXZ
?GetDividerWidth@WProperties@@UAEHXZ
?GetRoot@WConfigProperties@@UAEPAVFTreeItem@@XZ
?OnDestroy@WProperties@@UAEXXZ
?OnSetCursor@WProperties@@UAEHXZ
?OnSize@WTerminal@@UAEXKHH@Z
?OnWindowPosChanging@WWindow@@UAEXPAH000@Z
?OnMove@WWindow@@UAEXHH@Z
?OnCommand@WLog@@UAEXH@Z
?OnSysCommand@WWindow@@UAEHH@Z
?OnActivate@WWindow@@UAEXH@Z
?OnChar@WWindow@@UAEXG@Z
?OnKeyDown@WWindow@@UAEXG@Z
?OnCut@WWindow@@UAEXXZ
?OnCopy@WWindow@@UAEXXZ
?OnPaste@WWindow@@UAEXXZ
?OnShowWindow@WLog@@UAEXH@Z
?OnUndo@WWindow@@UAEXXZ
?OnEraseBkgnd@WWindow@@UAEHXZ
?OnVScroll@WWindow@@UAEXIJ@Z
?OnHScroll@WWindow@@UAEXIJ@Z
?OnKeyUp@WWindow@@UAEXIJ@Z
?OnPaint@WWindow@@UAEXXZ
?OnCreate@WLog@@UAEXXZ
?OnDrawItem@WWindow@@UAEXPAUtagDRAWITEMSTRUCT@@@Z
?OnMeasureItem@WWindow@@UAEXPAUtagMEASUREITEMSTRUCT@@@Z
?OnInitDialog@WWindow@@UAEXXZ
?OnEnterIdle@WWindow@@UAEXXZ
?OnMouseEnter@WWindow@@UAEXXZ
?OnMouseLeave@WWindow@@UAEXXZ
?OnMouseHover@WWindow@@UAEXXZ
?OnTimer@WWindow@@UAEXXZ
?OnReleaseCapture@WWindow@@UAEXXZ
?OnMdiActivate@WWindow@@UAEXH@Z
?OnMouseMove@WWindow@@UAEXKUFPoint@@@Z
?OnLeftButtonDown@WWindow@@UAEXXZ
?OnLeftButtonDoubleClick@WWindow@@UAEXXZ
?OnMiddleButtonDoubleClick@WWindow@@UAEXXZ
?OnRightButtonDoubleClick@WWindow@@UAEXXZ
?OnRightButtonDown@WWindow@@UAEXXZ
?OnLeftButtonUp@WWindow@@UAEXXZ
?OnRightButtonUp@WWindow@@UAEXXZ
?OnFinishSplitterDrag@WWindow@@UAEXPAVWDragInterceptor@@H@Z
?OnSetCursor@WWindow@@UAEHXZ
?OnClose@WLog@@UAEXXZ
?OnDestroy@WLog@@UAEXXZ
?MyDrawEdge@WWindow@@UAEXPAUHDC__@@PAUtagRECT@@H@Z
?TypeChar@WTerminal@@UAEXG@Z
?Paste@WTerminal@@UAEXXZ
??0WCrashBoxDialog@@QAE@PBG0@Z
?hInstanceWindow@@3PAUHINSTANCE__@@A
?DoModal@WDialog@@UAEHPAUHINSTANCE__@@@Z
??1WCrashBoxDialog@@UAE@XZ
?OnFinishSplitterDrag@WProperties@@UAEXPAVWDragInterceptor@@H@Z
?OnPaint@WProperties@@UAEXXZ
?OnActivate@WProperties@@UAEXH@Z
?GetBitmapHandle@FWindowsBitmap@@QAEPAUHBITMAP__@@XZ
?OnSize@WProperties@@UAEXKHH@Z
?GetWindowClassName@WConfigProperties@@UAEXPAG@Z
?DoDestroy@WProperties@@UAEXXZ
??0FWindowsBitmap@@QAE@H@Z
?LoadFile@FWindowsBitmap@@QAEHPBG@Z
?GetPackageName@WConfigProperties@@UAEPBGXZ
?Serialize@WProperties@@UAEXAAVFArchive@@@Z
?SetNotifyHook@WWindow@@QAEXPAVFNotifyHook@@@Z
??0WConfigProperties@@QAE@VFName@@PBG@Z
?OpenWindow@WProperties@@QAEXPAUHWND__@@@Z
??0WObjectProperties@@QAE@VFName@@KPBGPAVWWindow@@H@Z
?ScrollCaret@WEdit@@QAEXXZ
?SetExec@WTerminal@@QAEXPAVFExec@@@Z
??1WDialog@@UAE@XZ
?EndDialogFalse@WDialog@@QAEXXZ
??0WDialog@@QAE@VFName@@HPAVWWindow@@@Z
?GetWindowRect@WWindow@@QBE?AUFRect@@H@Z
?EndDialogTrue@WDialog@@QAEXXZ
??1WLog@@UAE@XZ
??1WObjectProperties@@UAE@XZ
??1WConfigProperties@@UAE@XZ
?OnSetFocus@WTerminal@@UAEXPAUHWND__@@@Z
??1FWindowsBitmap@@QAE@XZ
core
?appStrchr@@YAPAGPBGH@Z
??DFString@@QBE?AV0@PBG@Z
??DFString@@QBEPBGXZ
??DFString@@QBE?AV0@ABV0@@Z
??1FArray@@QAE@XZ
??0FString@@QAE@ABV0@@Z
?IsError@FArchive@@QAEHXZ
??_7FFileManager@@6B@
?Init@FFileManager@@UAEXH@Z
?winGetSizeANSI@@YAHPBG@Z
?winToANSI@@YAPADPADPBGH@Z
?GIsSlowTask@@3HA
??0FString@@QAE@XZ
??4FString@@QAEAAV0@PBG@Z
??1FString@@QAE@XZ
?appGetVarArgs@@YAHPAGHAAPBG@Z
??_7FFeedbackContext@@6B@
?GIsRunning@@3HA
?GIsClient@@3HA
?GIsEditor@@3HA
?GIsStarted@@3HA
?GConfig@@3PAVFConfigCache@@A
?LocalizeError@@YAPBGPBG00@Z
?appGetSystemErrorMessage@@YAPBGH@Z
?StaticShutdownAfterError@UObject@@SAXXZ
?GErrorHist@@3PAGA
?appStrncpy@@YAPAGPAGPBGH@Z
?appStrncat@@YAPAGPAGPBGH@Z
?GIsGuarded@@3HA
?appRequestExit@@YAXH@Z
??_7FOutputDeviceError@@6B@
?GIsCriticalError@@3HA
?SafeSuppressed@FName@@SAHW4EName@@@Z
?appBaseDir@@YAPBGXZ
?Parse@@YAHPBG0PAGH@Z
?appPackage@@YAPBGXZ
?appStrcat@@YAPAGPAGPBG@Z
?GNull@@3PAVFOutputDevice@@A
?GFileManager@@3PAVFFileManager@@A
?appTimestamp@@YAPBGXZ
?Logf@FOutputDevice@@QAAXW4EName@@PBGZZ
?SafeString@FName@@SAPBGW4EName@@@Z
?appSprintf@@YAHPAGPBGZZ
?GLogHook@@3PAVFOutputDevice@@A
??0FOutputDevice@@QAE@XZ
?GLog@@3PAVFOutputDevice@@A
?appCmdLine@@YAPBGXZ
?ParseParam@@YAHPBG0@Z
GIsSSE
?LocalizeError@@YAPBGPBDPBG1@Z
?GError@@3PAVFOutputDeviceError@@A
?Logf@FOutputDevice@@QAAXPBGZZ
?GPageSize@@3KA
?appUnwindf@@YAXPBGZZ
??_7FMalloc@@6B@
?GMalloc@@3PAVFMalloc@@A
?winGetSizeUNICODE@@YAHPBD@Z
?winToUNICODE@@YAPAGPAGPBDH@Z
?appStrcpy@@YAPAGPAGPBG@Z
?appStrlen@@YAHPBG@Z
?appStricmp@@YAHPBG0@Z
?appFailAssert@@YAXPBD0H@Z
?GUnicodeOS@@3HA
?GetError@FArchive@@UAEHXZ
?Flush@FArchive@@UAEXXZ
?DetachLazyLoader@FArchive@@UAEXPAVFLazyLoader@@@Z
??1FRegistryObjectInfo@@QAE@XZ
?appSqrt@@YANN@Z
?GRunningOS@@3W4ERunningOS@@A
?appLaunchURL@@YAXPBG0PAVFString@@@Z
?appAtof@@YAMPBG@Z
?appStaticString1024@@YAPAGXZ
?Log@FOutputDevice@@QAEXPBG@Z
?appStrstr@@YAPAGPBG0@Z
?GCRCTable@@3PAKA
??8FString@@QBEHABV0@@Z
?GObjObjects@UObject@@0V?$TArray@PAVUObject@@@@A
?StaticClass@UPackage@@SAPAVUClass@@XZ
?GetOuter@UObject@@QBEPAV1@XZ
?appStrcmp@@YAHPBG0@Z
?appMsgf@@YA?BHHPBGZZ
?appRandInit@@YAXH@Z
?GWindowManager@@3PAVUSubsystem@@A
?appSleep@@YAXM@Z
?GScriptCycles@@3HA
??YFString@@QAEAAV0@ABV0@@Z
?appSaveStringToFile@@YAHABVFString@@PBGPAVFFileManager@@@Z
?appLoadFileToString@@YAHAAVFString@@PBGPAVFFileManager@@@Z
?appRand@@YAHXZ
?Remove@FArray@@QAEXHHH@Z
?Realloc@FArray@@IAEXH@Z
?ParseCommand@@YAHPAPBGPBG@Z
?ParseObject@@YAHPBG0PAVUClass@@AAPAVUObject@@PAV2@@Z
?GetDefaultObject@UClass@@QAEPAVUObject@@XZ
?IsA@UObject@@QBEHPAVUClass@@@Z
??0FName@@QAE@XZ
?Parse@@YAHPBG0AAVFName@@@Z
?GetName@UObject@@QBEPBGXZ
??DFName@@QBEPBGXZ
?ExportToOutputDevice@UExporter@@SAXPAVUObject@@PAV1@AAVFOutputDevice@@PBGH@Z
?appClipboardCopy@@YAXPBG@Z
?LocalizeGeneral@@YAPBGPBDPBG1@Z
??YFString@@QAEAAV0@PBG@Z
GIsMMX
?GPhysicalMemory@@3KA
GIsPentiumPro
?Empty@FArray@@QAEXHH@Z
?StaticClass@UClass@@SAPAV1@XZ
?GetRegistryObjects@UObject@@SAXAAV?$TArray@VFRegistryObjectInfo@@@@PAVUClass@@1H@Z
?Split@FString@@QBEHABV1@PAV1@1H@Z
??9FString@@QBEHPBG@Z
??8FString@@QBEHPBG@Z
?Localize@@YAPBGPBG000H@Z
?GSecondsPerCycle@@3NA
??0FExec@@QAE@XZ
??_7FNotifyHook@@6B@
?GExec@@3PAVFExec@@A
?appAtoi@@YAHPBG@Z
?Printf@FString@@SA?AV1@PBGZZ
?StaticLoadClass@UObject@@SAPAVUClass@@PAV2@PAV1@PBG2KPAVUPackageMap@@@Z
??0FName@@QAE@W4EName@@@Z
?IsChildOf@UStruct@@QBEHPBV1@@Z
?GetTransientPackage@UObject@@SAPAVUPackage@@XZ
?StaticConstructObject@UObject@@SAPAV1@PAVUClass@@PAV1@VFName@@K1PAVFOutputDevice@@H@Z
?NotifyPreChange@FNotifyHook@@UAEXPAX@Z
?NotifyPostChange@FNotifyHook@@UAEXPAX@Z
?NotifyExec@FNotifyHook@@UAEXPAXPBG@Z
?appStrfind@@YAPBGPBG0@Z
?appInit@@YAXPBG0PAVFMalloc@@PAVFOutputDevice@@PAVFOutputDeviceError@@PAVFFeedbackContext@@PAVFFileManager@@P6APAVFConfigCache@@XZH@Z
?GIsServer@@3HA
?GIsScriptable@@3HA
?GLazyLoad@@3HA
??HFString@@QAE?AV0@PBG@Z
?GIsRequestingExit@@3HA
?appPreExit@@YAXXZ
?appExit@@YAXXZ
??0FName@@QAE@PBGW4EFindName@@@Z
?LocalizeGeneral@@YAPBGPBG00@Z
?Log@FOutputDevice@@QAEXW4EName@@PBG@Z
?Parse@@YAHPBG0AAVFString@@@Z
??HFString@@QAE?AV0@ABV0@@Z
?appFromAnsi@@YAPBGPBD@Z
??0FArray@@QAE@XZ
?Add@FArray@@QAEHHH@Z
??0FArray@@IAE@HH@Z
??4FString@@QAEAAV0@ABV0@@Z
?TotalSize@FArchive@@UAEHXZ
?Precache@FArchive@@UAEXH@Z
??0FArchive@@QAE@XZ
??1FArchive@@UAE@XZ
?SerializeBits@FArchive@@UAEXPAXH@Z
?SerializeInt@FArchive@@UAEXAAKK@Z
?Preload@FArchive@@UAEXPAVUObject@@@Z
?CountBytes@FArchive@@UAEXKK@Z
??6FArchive@@UAEAAV0@AAPAVUObject@@@Z
??6FArchive@@UAEAAV0@AAVFName@@@Z
?MapName@FArchive@@UAEHPAVFName@@@Z
?MapObject@FArchive@@UAEHPAVUObject@@@Z
?AtEnd@FArchive@@UAEHXZ
?AtStopper@FArchive@@UAEHXZ
?SetStopper@FArchive@@UAEXH@Z
?AttachLazyLoader@FArchive@@UAEXPAVFLazyLoader@@@Z
??0FString@@QAE@PBG@Z
engine
?GetLevel@AActor@@QBEPAVULevel@@XZ
?StaticClass@AActor@@SAPAVUClass@@XZ
?UpdateString@FStats@@QAEXAAVFString@@H@Z
?GEngineStats@@3VFEngineStats@@A
?Clear@FStats@@QAEXXZ
?StaticClass@URenderDevice@@SAPAVUClass@@XZ
?StaticClass@UShader@@SAPAVUClass@@XZ
?StaticClass@UCombiner@@SAPAVUClass@@XZ
?StaticClass@UCubemap@@SAPAVUClass@@XZ
?StaticClass@UModifier@@SAPAVUClass@@XZ
?StaticClass@UGameEngine@@SAPAVUClass@@XZ
?GStats@@3VFStats@@A
?StaticClass@UEngine@@SAPAVUClass@@XZ
user32
PeekMessageA
GetForegroundWindow
GetWindowThreadProcessId
SetFocus
LoadIconW
LoadIconA
SetForegroundWindow
FindWindowExW
FindWindowExA
GetPropW
GetPropA
SendMessageTimeoutW
SetPropW
SetPropA
RemovePropW
RemovePropA
ShowWindow
PeekMessageW
TranslateMessage
MessageBoxW
PostThreadMessageW
PostThreadMessageA
CreateDialogParamW
CreateDialogParamA
GetDlgItem
GetSystemMetrics
SetWindowPos
SendMessageW
SendMessageA
UpdateWindow
GetMessageW
GetMessageA
DispatchMessageW
DispatchMessageA
PostQuitMessage
kernel32
GetSystemDirectoryW
GetModuleFileNameA
GetWindowsDirectoryA
GetSystemDirectoryA
VirtualAlloc
VirtualFree
GetSystemInfo
GetLastError
GetFileSize
CreateFileA
CreateFileW
ReadFile
SetFilePointer
CloseHandle
SetFileAttributesA
SetFileAttributesW
GetWindowsDirectoryW
CopyFileA
CopyFileW
DeleteFileA
DeleteFileW
MoveFileA
MoveFileW
CreateDirectoryA
CreateDirectoryW
RemoveDirectoryA
RemoveDirectoryW
FindClose
FindNextFileA
FindFirstFileA
FindNextFileW
FindFirstFileW
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCommandLineW
CreateMutexA
CreateMutexW
Sleep
SetThreadPriority
GetCurrentThread
GetCurrentThreadId
GlobalMemoryStatus
GetModuleFileNameW
CreateThread
GetModuleHandleA
WriteFile
GetStartupInfoA
shell32
ShellExecuteW
ShellExecuteA
comdlg32
GetSaveFileNameA
d3d8
Direct3DCreate8
ddraw
DirectDrawCreate
msvcrt
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
??1type_info@@UAE@XZ
_purecall
_CxxThrowException
__CxxFrameHandler
_except_handler3
_controlfp
Exports
Exports
Sections
.text Size: 132KB - Virtual size: 132KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 36KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 175KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 24KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.cms_t Size: 204KB - Virtual size: 204KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.cms_d Size: 528KB - Virtual size: 525KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 36KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ