irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
General
-
Target
DELTA.zip
-
Size
227.2MB
-
MD5
15dc2e2463e65be4ea8dcddf165c68e3
-
SHA1
d0a1ae074bcc343008bb37e36bda151aa37e2bb0
-
SHA256
d19d972f9577e72b13137b7066a3bf64098ed58d98fb917c2ead180ed814cc44
-
SHA512
02afa8f782396d9a84e4b46c90bc0c60ed77150f89ae391064b1c3ff0c368ab1b1bd7dedb00bcf7c5f4061f9576a20402d60f15d8a698a11a620d115ee2817b4
-
SSDEEP
6291456:Thtoq8Fv2lBGYJ5Q7JSJs+jqk2gPDzxufxohouDm6:Nyq8EeY0MJsrkbPDkUX
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
resource yara_rule static1/unpack001/DELTA/Bin/Plugins/KeyLock/KeyLock.lmd acprotect -
resource yara_rule static1/unpack001/DELTA/Bin/Plugins/KeyLock/KeyLock.lmd upx -
Unsigned PE 10 IoCs
Checks for missing Authenticode signature.
resource unpack001/DELTA/Bin/Plugins/CMU/CMU.lmd unpack001/DELTA/Bin/Plugins/CommandLine/CommandLine.lmd unpack001/DELTA/Bin/Plugins/GIF/GIF.APO unpack001/DELTA/Bin/Plugins/KeyLock/KeyLock.lmd unpack001/DELTA/Bin/Plugins/MemoryEx/MemoryEx.lmd unpack001/DELTA/Bin/Plugins/PROGRESSBARCIRCLEEX/PROGRESSBARCIRCLEEX.APO unpack001/DELTA/Bin/Plugins/SystemInfo/SystemInfo.lmd unpack001/DELTA/Bin/Plugins/WinApi/WinApi.lmd unpack001/DELTA/Bin/Plugins/_7Zip/_7Zip.lmd unpack001/DELTA/DELTA.exe
Files
-
DELTA.zip.zip
-
DELTA/Bin/Content/DELTA01.DELTA.rar
-
DELTA/Bin/Content/DELTA02.DELTA.rar
-
DELTA/Bin/Content/DELTA03.DELTA.rar
-
DELTA/Bin/Content/DELTA04.DELTA.rar
-
DELTA/Bin/Content/DELTA05.DELTA.rar
-
DELTA/Bin/Content/DELTA06.DELTA.rar
-
DELTA/Bin/Content/DELTA07.DELTA.rar
-
DELTA/Bin/Content/DELTA08.DELTA.rar
-
DELTA/Bin/Icons/icon.ico
-
DELTA/Bin/Plugins/CMU/CMU.lmd.dll windows x86
f5faf94b30fc795c16306f78794b258b
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
lua5.1
lua_settop
psapi
GetProcessMemoryInfo
user32
GetClassInfoExA
gdi32
OffsetViewportOrgEx
winspool.drv
OpenPrinterA
advapi32
RegOpenKeyA
shell32
ShellExecuteA
comctl32
ord17
shlwapi
PathFindExtensionA
oleaut32
SysAllocString
Exports
Exports
Sections
.text Size: 60KB - Virtual size: 764KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
DELTA/Bin/Plugins/CommandLine/CommandLine.lmd.dll windows x86
c034b3b77e1426d781dcd4e605a998ca
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
lua5.1
lua_remove
user32
GetForegroundWindow
gdi32
Escape
winspool.drv
OpenPrinterA
advapi32
RegQueryValueA
shell32
ShellExecuteA
comctl32
ord17
shlwapi
PathFindExtensionA
oleaut32
VariantInit
Exports
Exports
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.text Size: 63KB - Virtual size: 768KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
DELTA/Bin/Plugins/GIF/GIF.APO.dll windows x86
2f921fc7de4a6b04c1672cb55d4109fa
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
lua5.1
lua_pushboolean
user32
SetMenuItemBitmaps
gdi32
DeleteDC
winspool.drv
OpenPrinterA
advapi32
RegEnumKeyA
shell32
ShellExecuteA
comctl32
ord17
shlwapi
PathFindExtensionA
oleaut32
VariantClear
Exports
Exports
??0CxFile@@QAE@ABV0@@Z
??0CxFile@@QAE@XZ
??0CxIOFile@@QAE@ABV0@@Z
??0CxIOFile@@QAE@PAU_iobuf@@@Z
??0CxMemFile@@QAE@ABV0@@Z
??1CxFile@@UAE@XZ
??1CxIOFile@@UAE@XZ
??1CxImage@@UAE@XZ
??4CxFile@@QAEAAV0@ABV0@@Z
??4CxIOFile@@QAEAAV0@ABV0@@Z
??4CxMemFile@@QAEAAV0@ABV0@@Z
??_7CxFile@@6B@
??_7CxIOFile@@6B@
??_7CxImage@@6B@
??_7CxMemFile@@6B@
??_FCxIOFile@@QAEXXZ
??_FCxImage@@QAEXXZ
??_FCxMemFile@@QAEXXZ
??_OCxImage@@QAEXABV0@@Z
?Close@CxIOFile@@UAE_NXZ
?Eof@CxIOFile@@UAE_NXZ
?Error@CxIOFile@@UAEJXZ
?Flush@CxIOFile@@UAE_NXZ
?GetC@CxIOFile@@UAEJXZ
?GetS@CxIOFile@@UAEPADPADH@Z
?Open@CxIOFile@@QAE_NPBD0@Z
?PutC@CxFile@@UAE_NE@Z
?PutC@CxIOFile@@UAE_NE@Z
?Read@CxIOFile@@UAEIPAXII@Z
?Scanf@CxIOFile@@UAEJPBDPAX@Z
?Seek@CxIOFile@@UAE_NJH@Z
?Size@CxIOFile@@UAEJXZ
?Tell@CxIOFile@@UAEJXZ
?Write@CxIOFile@@UAEIPBXII@Z
irPlg_GetAuthorInfo
irPlg_GetIRPluginObjectVersion
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_Object_CreateObject
irPlg_Object_DeleteObject
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.text Size: 101KB - Virtual size: 360KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
DELTA/Bin/Plugins/KeyLock/KeyLock.lmd.dll windows x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Exports
Exports
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
UPX0 Size: - Virtual size: 84KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 132KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
DELTA/Bin/Plugins/MemoryEx/MemoryEx.lmd.dll windows x86
7e8347c7ae2a6aefc30d9fc57caa46a1
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
memset
strncmp
memmove
strncpy
strstr
_strnicmp
_strdup
free
strlen
strcpy
strcat
memcpy
_wcsicmp
wcsncmp
_wcsnicmp
_stricmp
strcmp
tolower
realloc
strtol
wcstombs
kernel32
HeapCreate
HeapDestroy
VirtualAlloc
GetModuleFileNameA
CloseHandle
VirtualFree
UnmapViewOfFile
FreeLibrary
CreateFileMappingA
OpenFileMappingA
MapViewOfFile
VerLanguageNameA
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetCurrentProcessId
GetCurrentThreadId
InitializeCriticalSection
GetCurrentProcess
DuplicateHandle
CreatePipe
GetStdHandle
HeapAlloc
CreateProcessA
WaitForSingleObject
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapReAlloc
HeapSize
MultiByteToWideChar
WideCharToMultiByte
GetDriveTypeA
FindFirstFileA
FindClose
GetFileAttributesA
WriteFile
CreateFileA
SetFilePointer
ReadFile
GetFileSize
TlsFree
TlsGetValue
TlsSetValue
TlsAlloc
DeleteCriticalSection
InterlockedCompareExchange
Sleep
InterlockedExchange
GetLastError
SetLastError
VirtualProtect
IsBadReadPtr
GetProcessHeap
lstrlenA
GetThreadLocale
GetCurrentThread
CreateSemaphoreA
CreateThread
ReleaseSemaphore
WaitForMultipleObjects
lua5.1
lua_getfield
lua_type
lua_pushnil
lua_next
lua_isnumber
lua_isstring
lua_tolstring
lua_settop
lua_typename
lua_toboolean
lua_rawgeti
lua_pushnumber
lua_pcall
lua_pushstring
lua_error
lua_remove
lua_tonumber
luaL_loadbuffer
lua_call
lua_pushboolean
lua_gettop
luaL_checkinteger
lua_pushinteger
lua_createtable
lua_settable
lua_pushcclosure
lua_pushlstring
lua_dump
lua_gettable
luaL_newstate
luaopen_base
luaopen_io
luaopen_debug
luaopen_os
luaopen_package
luaopen_math
luaopen_string
luaopen_table
lua_close
luaL_unref
lua_insert
luaL_ref
lua_pushvalue
lua_tointeger
user32
IsWindow
GetWindowTextA
GetPropA
CallWindowProcA
SetPropA
SetWindowLongA
RemovePropA
CharLowerA
MessageBoxA
GetForegroundWindow
GetWindowThreadProcessId
IsWindowVisible
GetWindowLongA
IsWindowEnabled
EnableWindow
EnumWindows
SetWindowPos
CharUpperA
comctl32
InitCommonControlsEx
ole32
CoInitialize
shell32
ShellExecuteExA
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
Exports
Exports
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_OnProjectBuild
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.code Size: 43KB - Virtual size: 43KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 127KB - Virtual size: 129KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
DELTA/Bin/Plugins/PROGRESSBARCIRCLEEX/PROGRESSBARCIRCLEEX.APO.dll windows x86
89681029196fb2daf07e07bb7f94fccd
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ord413
ord411
ord412
ord410
kernel32
lstrcpyA
FindResourceA
LoadResource
LockResource
SizeofResource
CreateFileA
WriteFile
CloseHandle
FreeResource
GetModuleFileNameA
lstrlenA
GetFileAttributesA
GetWindowsDirectoryA
GetLastError
FormatMessageA
LocalFree
LoadLibraryA
GetProcAddress
FreeLibrary
VirtualAlloc
VirtualFree
SetConsoleCtrlHandler
HeapAlloc
HeapFree
ExitProcess
GetSystemTimeAsFileTime
GetVersionExA
GetCommandLineA
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
TlsAlloc
SetLastError
GetCurrentThread
GetModuleHandleA
TlsGetValue
TlsSetValue
TlsFree
DeleteCriticalSection
FatalAppExitA
UnhandledExceptionFilter
RtlUnwind
GetCurrentProcess
TerminateProcess
HeapCreate
HeapDestroy
IsBadWritePtr
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetFilePointer
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ReadFile
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSection
VirtualQuery
InterlockedExchange
FlushFileBuffers
SetStdHandle
GetSystemInfo
VirtualProtect
GetDateFormatA
GetTimeFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
GetStringTypeW
GetStringTypeA
RaiseException
HeapSize
SetEndOfFile
GetTimeZoneInformation
GetLocaleInfoW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
lua5.1
lua_sethook
luaL_error
lua_isstring
lua_getfield
lua_type
lua_settop
lua_pushvalue
lua_pushinteger
lua_call
lua_gettop
lua_pushcclosure
lua_insert
lua_pcall
lua_remove
lua_gc
lua_close
lua_tolstring
lua_pushnumber
lua_tonumber
lua_pushboolean
lua_pushnil
lua_next
lua_isnumber
lua_pushstring
lua_toboolean
luaL_openlib
lua_pushlstring
luaL_newstate
luaL_openlibs
luaL_loadbuffer
lua_getstack
lua_getinfo
lua_gettable
lua_typename
lua_error
lua_touserdata
lua_tointeger
lua_createtable
lua_setfield
lua_setmetatable
lua_newuserdata
lua_settable
lua_pushlightuserdata
lua_isuserdata
lua_objlen
luaL_checklstring
lua_topointer
ole32
OleInitialize
CoInitialize
CoUninitialize
OleUninitialize
CreateStreamOnHGlobal
shell32
ShellExecuteA
shlwapi
PathRemoveFileSpecA
PathFindFileNameA
user32
SetWindowLongA
SetWindowTextA
GetClientRect
GetWindowRect
MoveWindow
GetWindowLongA
EndDialog
DialogBoxParamA
wsprintfA
IsWindow
GetDesktopWindow
SendMessageA
MessageBoxA
FindWindowA
EnableWindow
IsWindowEnabled
GetWindowTextLengthA
GetWindowTextA
IsChild
GetActiveWindow
SetForegroundWindow
GetForegroundWindow
WindowFromPoint
IsZoomed
IsIconic
ChildWindowFromPoint
SetParent
GetParent
IsWindowVisible
ShowWindow
CreateWindowExA
GetScrollPos
GetScrollInfo
SetScrollInfo
SetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
GetTopWindow
DestroyWindow
SetFocus
GetFocus
GetWindowDC
GetDC
ReleaseDC
gdiplus
GdipFree
GdipAlloc
GdipDeleteBrush
GdipSetLineWrapMode
GdipCreatePen1
GdipDeletePen
GdipCreateStringFormat
GdipDeleteStringFormat
GdipCreatePath
GdipDeletePath
GdipDeleteGraphics
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFont
GdipDeleteFont
GdipDisposeImage
GdipSaveImageToFile
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipGetImageEncodersSize
GdipGetImageEncoders
GdiplusStartup
GdiplusShutdown
GdipCreateSolidFill
GdipCreateLineBrushFromRect
GdipCreateHatchBrush
GdipSetPenDashCap197819
GdipSetPenMode
GdipSetPenDashStyle
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipResetPath
GdipClosePathFigure
GdipAddPathArcI
GdipCreateFromHDC
GdipSetSmoothingMode
GdipSetPageUnit
GdipDrawLineI
GdipDrawArcI
GdipDrawRectangleI
GdipDrawEllipseI
GdipDrawPieI
GdipDrawPolygonI
GdipDrawPath
GdipFillRectangleI
GdipFillPolygonI
GdipFillEllipseI
GdipFillPieI
GdipFillPath
GdipDrawString
GdipMeasureString
GdipDrawImageRectI
GdipCloneBrush
GdipCloneImage
Exports
Exports
__GraphicsOpen
__WindowOpen
irPlg_GetAuthorInfo
irPlg_GetDependencies
irPlg_GetIRPluginObjectVersion
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_Object_CreateObject
irPlg_Object_DeleteObject
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
irPlg_GetAuthorInfo
irPlg_GetIRPluginObjectVersion
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_Object_CreateObject
irPlg_Object_DeleteObject
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.code Size: 512B - Virtual size: 219B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text Size: 107KB - Virtual size: 107KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 42KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 292KB - Virtual size: 291KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
DELTA/Bin/Plugins/SystemInfo/SystemInfo.lmd.dll windows x86
d937a188eb1b4df4354e2af68d20fe20
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ord413
ord411
ord412
ord410
kernel32
FindResourceA
LoadResource
LockResource
SizeofResource
CreateFileA
WriteFile
CloseHandle
FreeResource
GetModuleFileNameA
lstrlenA
lstrcpyA
GetFileAttributesA
GetWindowsDirectoryA
GetLastError
FormatMessageA
LocalFree
LoadLibraryA
GetProcAddress
FreeLibrary
VirtualAlloc
VirtualFree
SetConsoleCtrlHandler
HeapAlloc
HeapFree
ExitProcess
GetSystemTimeAsFileTime
GetVersionExA
GetCommandLineA
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
DeleteCriticalSection
FatalAppExitA
UnhandledExceptionFilter
TlsAlloc
SetLastError
GetCurrentThread
GetModuleHandleA
TlsGetValue
TlsSetValue
TlsFree
RtlUnwind
GetCurrentProcess
TerminateProcess
HeapCreate
HeapDestroy
IsBadWritePtr
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetFilePointer
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ReadFile
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
MultiByteToWideChar
LCMapStringA
InitializeCriticalSection
GetOEMCP
GetACP
GetCPInfo
VirtualQuery
InterlockedExchange
FlushFileBuffers
SetStdHandle
GetSystemInfo
VirtualProtect
GetDateFormatA
GetTimeFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
GetStringTypeW
GetStringTypeA
RaiseException
HeapSize
SetEndOfFile
GetTimeZoneInformation
GetLocaleInfoW
SetEnvironmentVariableA
CompareStringW
CompareStringA
lua5.1
lua_sethook
luaL_error
lua_isstring
lua_getfield
lua_type
lua_settop
lua_pushvalue
lua_pushinteger
lua_call
lua_gettop
lua_pushcclosure
lua_insert
lua_pcall
lua_remove
lua_gc
lua_pushnumber
lua_toboolean
lua_isnumber
lua_tonumber
lua_pushboolean
lua_tolstring
lua_pushlstring
lua_pushstring
luaL_openlib
lua_getstack
lua_getinfo
luaL_loadbuffer
lua_typename
lua_error
lua_touserdata
lua_tointeger
lua_createtable
lua_setfield
lua_setmetatable
lua_newuserdata
lua_settable
lua_pushlightuserdata
lua_isuserdata
lua_pushnil
lua_next
lua_objlen
lua_gettable
lua_topointer
shell32
ShellExecuteA
shlwapi
PathRemoveFileSpecA
PathFindFileNameA
user32
SetWindowLongA
SetWindowTextA
GetClientRect
GetWindowRect
MoveWindow
GetWindowLongA
EndDialog
DialogBoxParamA
wsprintfA
IsWindow
GetDesktopWindow
SendMessageA
MessageBoxA
FindWindowA
EnableWindow
IsWindowEnabled
GetWindowTextLengthA
GetWindowTextA
IsChild
GetActiveWindow
SetForegroundWindow
GetForegroundWindow
WindowFromPoint
IsZoomed
IsIconic
ChildWindowFromPoint
SetParent
GetParent
IsWindowVisible
ShowWindow
CreateWindowExA
GetScrollPos
GetScrollInfo
SetScrollInfo
SetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
GetTopWindow
DestroyWindow
SetFocus
GetFocus
GetWindowDC
GetDC
ReleaseDC
Exports
Exports
__WindowOpen
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetDependencies
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.code Size: 512B - Virtual size: 126B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text Size: 89KB - Virtual size: 89KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 15KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 438KB - Virtual size: 437KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
DELTA/Bin/Plugins/WinApi/WinApi.lmd.dll windows x86
741aebfdf8901ce175d376634d256093
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
lua5.1
luaL_openlib
lua_pushnumber
lua_type
lua_remove
lua_gettable
lua_pushstring
lua_getfield
lua_settop
lua_settable
lua_pushboolean
lua_tolstring
lua_error
lua_gettop
lua_toboolean
lua_tonumber
lua_pushnil
lua_createtable
lua_pcall
winmm
mciSendStringA
sndPlaySoundA
gdiplus
GdipGetImageGraphicsContext
GdipFree
GdiplusShutdown
GdiplusStartup
GdipCloneImage
GdipDrawImageI
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipSaveImageToFile
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHBITMAP
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipGetImageEncoders
kernel32
lstrcmpA
GetCurrentThread
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SetErrorMode
InterlockedIncrement
GlobalFlags
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
GetModuleFileNameA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
HeapReAlloc
TerminateProcess
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
ConvertDefaultLocale
EnumResourceLanguagesA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetModuleHandleA
InterlockedDecrement
SetLastError
GlobalFree
FormatMessageA
lstrcpynA
LocalFree
GetNumberFormatA
FindFirstFileA
FindNextFileA
CreateFileA
GetFileSizeEx
CloseHandle
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
GetTickCount
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetFileAttributesA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
lstrcatA
lstrlenA
lstrcpyA
LoadLibraryA
GetProcAddress
FreeLibrary
user32
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassInfoExA
GetClassLongA
SetWindowsHookExA
GetCapture
WinHelpA
LoadBitmapA
GetMenuCheckMarkDimensions
CheckMenuItem
ModifyMenuA
SetMenuItemBitmaps
PostQuitMessage
SetCursor
ValidateRect
GetCursorPos
TranslateMessage
GetMessageA
ClientToScreen
DestroyMenu
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
DestroyWindow
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
MessageBoxA
GetKeyState
GetMenu
PostMessageA
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetWindowPlacement
PtInRect
UnhookWindowsHookEx
GetMenuState
GetSubMenu
GetSystemMenu
EnableMenuItem
mouse_event
GetSysColorBrush
LoadCursorA
CreateWindowExA
ChildWindowFromPointEx
SystemParametersInfoA
GetSystemMetrics
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
FindWindowExA
FindWindowA
ChangeDisplaySettingsA
GetClientRect
SetWindowLongA
SetLayeredWindowAttributes
GetWindowTextA
UnregisterClassA
CallNextHookEx
GetSysColor
IsClipboardFormatAvailable
FillRect
SetClassLongA
EnumDisplaySettingsA
SetCursorPos
BlockInput
GetWindowDC
MoveWindow
GetLastActivePopup
ShowWindow
SetActiveWindow
IsWindowVisible
IsChild
SetParent
GetParent
ChildWindowFromPoint
GetWindow
GetTopWindow
keybd_event
IsIconic
IsZoomed
WindowFromPoint
GetForegroundWindow
SetForegroundWindow
GetActiveWindow
SetWindowTextA
IsWindowEnabled
LoadImageA
SendMessageA
IsWindow
FlashWindow
CreatePopupMenu
GetMenuItemCount
GetMenuStringA
GetMenuItemID
EnableWindow
LoadIconA
wsprintfA
GetDesktopWindow
GetWindowRect
SetWindowPos
GetDC
ReleaseDC
RegisterWindowMessageA
GetFocus
DispatchMessageA
CopyRect
GetDlgItem
GetWindowLongA
gdi32
Rectangle
Ellipse
CreateSolidBrush
StrokeAndFillPath
EndPath
LineTo
AngleArc
BeginPath
GetStockObject
MoveToEx
SetBkMode
GetPixel
SetPixel
SetTextColor
EnumFontFamiliesExA
TextOutA
CreateFontA
GetClipBox
SetBkColor
ExtTextOutA
SaveDC
RestoreDC
GetObjectA
SetDIBColorTable
CreateCompatibleBitmap
GetDeviceCaps
RoundRect
GetBitmapBits
PtVisible
RectVisible
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreatePen
SetMapMode
CreateBitmap
CreateCompatibleDC
CreateDIBSection
SelectObject
BitBlt
DeleteObject
DeleteDC
comdlg32
ChooseFontA
ChooseColorA
winspool.drv
ClosePrinter
DocumentPropertiesA
OpenPrinterA
advapi32
RegCreateKeyExA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegQueryValueA
RegSetValueExA
shell32
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteA
SHEmptyRecycleBinA
ShellExecuteExA
SHQueryRecycleBinA
SHFileOperationA
SHGetDiskFreeSpaceExA
SHGetMalloc
comctl32
ord17
shlwapi
PathFindFileNameA
PathFindExtensionA
PathFindExtensionW
StrToInt64ExA
oleaut32
VariantClear
VariantChangeType
VariantInit
Exports
Exports
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.text Size: 128KB - Virtual size: 127KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 32KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 606KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 120KB - Virtual size: 116KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
DELTA/Bin/Plugins/_7Zip/_7Zip.lmd.dll windows x86
d937a188eb1b4df4354e2af68d20fe20
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ord413
ord411
ord412
ord410
kernel32
FindResourceA
LoadResource
LockResource
SizeofResource
CreateFileA
WriteFile
CloseHandle
FreeResource
GetModuleFileNameA
lstrlenA
lstrcpyA
GetFileAttributesA
GetWindowsDirectoryA
GetLastError
FormatMessageA
LocalFree
LoadLibraryA
GetProcAddress
FreeLibrary
VirtualAlloc
VirtualFree
SetConsoleCtrlHandler
HeapAlloc
HeapFree
ExitProcess
GetSystemTimeAsFileTime
GetVersionExA
GetCommandLineA
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
DeleteCriticalSection
FatalAppExitA
UnhandledExceptionFilter
TlsAlloc
SetLastError
GetCurrentThread
GetModuleHandleA
TlsGetValue
TlsSetValue
TlsFree
RtlUnwind
GetCurrentProcess
TerminateProcess
HeapCreate
HeapDestroy
IsBadWritePtr
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetFilePointer
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ReadFile
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
MultiByteToWideChar
LCMapStringA
InitializeCriticalSection
GetOEMCP
GetACP
GetCPInfo
VirtualQuery
InterlockedExchange
FlushFileBuffers
SetStdHandle
GetSystemInfo
VirtualProtect
GetDateFormatA
GetTimeFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
GetStringTypeW
GetStringTypeA
RaiseException
HeapSize
SetEndOfFile
GetTimeZoneInformation
GetLocaleInfoW
SetEnvironmentVariableA
CompareStringW
CompareStringA
lua5.1
lua_sethook
luaL_error
lua_isstring
lua_getfield
lua_type
lua_settop
lua_pushvalue
lua_pushinteger
lua_call
lua_gettop
lua_pushcclosure
lua_insert
lua_pcall
lua_remove
lua_gc
lua_pushnumber
lua_toboolean
lua_isnumber
lua_tonumber
lua_pushboolean
lua_tolstring
lua_pushlstring
lua_pushstring
luaL_openlib
lua_getstack
lua_getinfo
luaL_loadbuffer
lua_typename
lua_error
lua_touserdata
lua_tointeger
lua_createtable
lua_setfield
lua_setmetatable
lua_newuserdata
lua_settable
lua_pushlightuserdata
lua_isuserdata
lua_pushnil
lua_next
lua_objlen
lua_gettable
lua_topointer
shell32
ShellExecuteA
shlwapi
PathRemoveFileSpecA
PathFindFileNameA
user32
SetWindowLongA
SetWindowTextA
GetClientRect
GetWindowRect
MoveWindow
GetWindowLongA
EndDialog
DialogBoxParamA
wsprintfA
IsWindow
GetDesktopWindow
SendMessageA
MessageBoxA
FindWindowA
EnableWindow
IsWindowEnabled
GetWindowTextLengthA
GetWindowTextA
IsChild
GetActiveWindow
SetForegroundWindow
GetForegroundWindow
WindowFromPoint
IsZoomed
IsIconic
ChildWindowFromPoint
SetParent
GetParent
IsWindowVisible
ShowWindow
CreateWindowExA
GetScrollPos
GetScrollInfo
SetScrollInfo
SetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
GetTopWindow
DestroyWindow
SetFocus
GetFocus
GetWindowDC
GetDC
ReleaseDC
Exports
Exports
__WindowOpen
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetDependencies
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense
Sections
.code Size: 512B - Virtual size: 126B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text Size: 89KB - Virtual size: 89KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
DELTA/Bin/Plugins/sb_BasicBlue.png.png
-
DELTA/Bin/Plugins/sb_Windows7.png.png
-
DELTA/Bin/dat01/ap1.dat
-
DELTA/Bin/dat01/ap10.dat.png
-
DELTA/Bin/dat01/ap11.dat.png
-
DELTA/Bin/dat01/ap12.dat.png
-
DELTA/Bin/dat01/ap13.dat.png
-
DELTA/Bin/dat01/ap14.dat.png
-
DELTA/Bin/dat01/ap15.dat.png
-
DELTA/Bin/dat01/ap16.dat.png
-
DELTA/Bin/dat01/ap17.dat.png
-
DELTA/Bin/dat01/ap18.dat.png
-
DELTA/Bin/dat01/ap19.dat.png
-
DELTA/Bin/dat01/ap2.dat
-
DELTA/Bin/dat01/ap20.dat.png
-
DELTA/Bin/dat01/ap21.dat.png
-
DELTA/Bin/dat01/ap22.dat.png
-
DELTA/Bin/dat01/ap23.dat.png
-
DELTA/Bin/dat01/ap24.dat.png
-
DELTA/Bin/dat01/ap3.dat.zip
-
DELTA/Bin/dat01/ap4.dat.zip
-
DELTA/Bin/dat01/ap5.dat.zip
-
DELTA/Bin/dat01/ap6.dat.zip
-
DELTA/Bin/dat01/ap7.dat.png
-
DELTA/Bin/dat01/ap8.dat.png
-
DELTA/Bin/dat01/ap9.dat.png
-
DELTA/DELTA.exe.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 2.0MB - Virtual size: 3.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Size: 222KB - Virtual size: 853KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: 45KB - Virtual size: 474KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 868KB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 55KB - Virtual size: 55KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.winlice Size: - Virtual size: 14.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.boot Size: 12.0MB - Virtual size: 12.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ