360zip_setup[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

360zip_setup.exe
Size

14.2MB
MD5

75b2571af26c8c33cf69d6ba82795096
SHA1

6c2adc1f69281abbd2ed7d6782a208faa621c868
SHA256

f533902ebce775ceb99d625196057b3bd7337d9cf819557ee4428771340c52ca
SHA512

cf0ee89cc66e6296def9262d3416a4e8923fb19e70ac8fb5e0f2c44f60b6c4c37e6feab0c43f91a989cb9388c521390b56268288ec15bb122bf3d556f03cba25
SSDEEP

393216:hCNjWeJDpaD28jL+JlubIJjKkfNoYi32ov+STFcE5Xsn:gNjWeP828X+nvZrs/v+Ec8X4

Score

1^/10

Malware Config

Signatures

Files

360zip_setup.exe
.exe windows x86

de9015e9b90b37c200baa2851578dff4

Code Sign

0a:1f:3a:05:7a:1d:ce:4b:f7:d7:6d:0c:7a:df:83:7e
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/11/2019, 00:00

Not After

04/02/2023, 12:00

Subject

CN=Beijing Qihu Technology Co.\, Ltd.,O=Beijing Qihu Technology Co.\, Ltd.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:83:09:ba:16:54:68:50:e6:05:e7:5d:77:3e:56:de
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/11/2019, 00:00

Not After

04/02/2023, 12:00

Subject

CN=Beijing Qihu Technology Co.\, Ltd.,O=Beijing Qihu Technology Co.\, Ltd.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

01:b2:8b:d4:cf:ee:ee:0d:be:d0:b3:0d:9b:f8:43:6a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

06/04/2022, 07:45

Not After

08/05/2033, 07:45

Subject

CN=Globalsign TSA for CodeSign1 - R6,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10/12/2014, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:be:27:4b:d8:4a:7f:10:ca:1f:a2:d8:9b:f5:d7:10:c2:aa:90:16:27:b3:d8:57:bc:a4:55:7e:e4:ae:18:a2
Signer

Actual PE Digest

11:be:27:4b:d8:4a:7f:10:ca:1f:a2:d8:9b:f5:d7:10:c2:aa:90:16:27:b3:d8:57:bc:a4:55:7e:e4:ae:18:a2

Digest Algorithm

sha256

PE Digest Matches

true

62:1c:af:dd:6a:99:5c:a3:98:d2:b5:1f:78:74:9d:6f:50:ba:0a:6c
Signer

Actual PE Digest

62:1c:af:dd:6a:99:5c:a3:98:d2:b5:1f:78:74:9d:6f:50:ba:0a:6c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
WritePrivateProfileStringW
GetPrivateProfileStringW
MoveFileW
GetVolumeInformationW
CreateDirectoryW
GetSystemDirectoryW
SetFileTime
GetShortPathNameW
GetFullPathNameW
SearchPathW
GetTempFileNameW
FindCloseChangeNotification
FindFirstChangeNotificationW
GetLogicalDriveStringsW
GetFileInformationByHandle
GetStdHandle
CompareFileTime
FileTimeToSystemTime
WaitForMultipleObjects
GetSystemWindowsDirectoryW
GetCurrentThread
GetThreadSelectorEntry
GetThreadContext
VirtualQuery
SetThreadPriority
VirtualAlloc
OpenThread
GetSystemInfo
GetThreadPriority
VirtualProtect
SuspendThread
GetFileSizeEx
WriteFile
LoadLibraryExW
FreeResource
InterlockedCompareExchange
SystemTimeToFileTime
GetSystemTime
WideCharToMultiByte
InterlockedIncrement
CreateMutexW
SetEndOfFile
SetEnvironmentVariableA
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
Process32NextW
GetTimeFormatA
QueryPerformanceCounter
GetWindowsDirectoryW
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetStartupInfoA
SetHandleCount
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
FatalAppExitA
HeapCreate
IsValidCodePage
GetOEMCP
GetACP
GetModuleFileNameA
GetStringTypeW
LCMapStringW
LCMapStringA
CompareStringW
SetFilePointer
CompareStringA
RtlUnwind
GetStartupInfoW
GetFileType
WriteConsoleW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
ExitThread
SetWaitableTimer
CreateWaitableTimerW
CancelWaitableTimer
lstrcmpiA
lstrcmpA
CreateThread
ExpandEnvironmentStringsW
GetProcessTimes
DuplicateHandle
SetErrorMode
FileTimeToLocalFileTime
GetFileTime
ExitProcess
OpenProcess
CopyFileW
TlsFree
DeleteAtom
FindAtomW
TlsAlloc
ReleaseMutex
AddAtomW
GetAtomNameW
TlsSetValue
TlsGetValue
Process32FirstW
CreateToolhelp32Snapshot
FindClose
FindNextFileW
FindFirstFileW
lstrlenA
ResetEvent
SetEvent
GlobalAlloc
ResumeThread
GlobalFree
MulDiv
GlobalUnlock
GlobalLock
CreateEventW
GetCurrentProcessId
DeviceIoControl
LoadLibraryA
GetSystemDirectoryA
DeleteCriticalSection
InitializeCriticalSection
lstrcmpiW
GetDateFormatA
InterlockedDecrement
GetLastError
SetLastError
GetDiskFreeSpaceExW
GetExitCodeThread
RemoveDirectoryW
Sleep
RaiseException
TerminateProcess
GetCurrentThreadId
FlushInstructionCache
GetTickCount
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
lstrlenW
lstrcpynW
CreateFileW
LocalAlloc
LocalFree
DeleteFileW
MoveFileExW
SetFileAttributesW
GetFileAttributesW
GetTempPathW
GetVersionExW
GetCurrentProcess
GetModuleHandleW
GetPrivateProfileIntW
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessW
FreeLibrary
GetLocalTime
FormatMessageW
OutputDebugStringW
SetFilePointerEx
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
CreateFileA
InterlockedExchange
VirtualFree
IsProcessorFeaturePresent
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetCPInfo
ReadFile
LoadLibraryW
GetProcAddress
GetModuleFileNameW
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetCommandLineW
GetModuleHandleA

user32

SendMessageW
BeginPaint
PeekMessageW
GetWindowLongW
GetClientRect
GetWindowTextW
EndPaint
SetWindowPos
SetWindowLongW
InvalidateRect
KillTimer
GetWindowRect
GetKeyNameTextW
MapVirtualKeyW
SubtractRect
FindWindowExW
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
MonitorFromPoint
SetClipboardData
EmptyClipboard
CloseClipboard
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
UnregisterClassA
SetTimer
LoadCursorW
ShowWindow
GetDlgItem
SetWindowTextW
EnableWindow
MapWindowPoints
GetDesktopWindow
GetMessageW
SetDlgItemTextW
PostThreadMessageW
wsprintfW
GetWindowDC
CharToOemW
CopyRect
PostMessageW
ReleaseDC
SetRect
GetWindow
MonitorFromWindow
GetMonitorInfoW
LoadImageW
GetWindowTextLengthW
ReleaseCapture
GetDlgCtrlID
SystemParametersInfoW
SetCapture
CreateDialogParamW
CallWindowProcW
SetCursor
GetDC
PtInRect
ClientToScreen
GetCapture
UpdateWindow
DrawFocusRect
GetSystemMetrics
InflateRect
DrawEdge
GetSysColor
IsWindowEnabled
OffsetRect
FillRect
DrawTextW
MessageBoxW
GetUpdateRect
TranslateMessage
DispatchMessageW
CharNextW
DefWindowProcW
BringWindowToTop
SetForegroundWindow
FindWindowW
CharLowerBuffW
SetWindowRgn
GetParent
AdjustWindowRectEx
GetMenu
DestroyWindow
CreateWindowExW
GetClassInfoExW
RegisterClassExW
IsWindow
RedrawWindow
IsIconic
PostQuitMessage

gdi32

OffsetViewportOrgEx
CreatePatternBrush
CreateDIBPatternBrushPt
CreateFontW
GetDeviceCaps
CreateSolidBrush
GetCurrentObject
CreateDIBSection
StretchBlt
SetTextColor
CreatePolygonRgn
CreateFontIndirectW
GetObjectW
GetStockObject
SetViewportOrgEx
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
DeleteObject
DeleteDC
SelectObject
SetBkMode
GetBitmapBits

advapi32

GetAce
RegGetKeySecurity
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
RegQueryValueExA
GetNamedSecurityInfoW
SetEntriesInAclW
SetNamedSecurityInfoW
GetUserNameW
OpenThreadToken
OpenProcessToken
GetTokenInformation
GetAclInformation
AddAce
InitializeAcl
EqualSid
IsValidSid
GetLengthSid
CopySid
RegEnumValueW
BuildExplicitAccessWithNameW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
ConvertSidToStringSidW
LookupAccountNameW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
FreeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AllocateAndInitializeSid
RegSetKeySecurity

shell32

SHGetSpecialFolderPathA
SHChangeNotify
SHGetSpecialFolderPathW
SHBrowseForFolderW
CommandLineToArgvW
ord165
SHFileOperationW
SHFreeNameMappings
SHAppBarMessage
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetFileInfoW

ole32

CoCreateInstance
CoInitialize
CoTaskMemAlloc
CoUninitialize
OleUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoTaskMemRealloc
CoTaskMemFree
CoCreateGuid
CreateStreamOnHGlobal
OleInitialize

oleaut32

VarUI4FromStr
VariantInit
VariantCopy
VariantClear
SysAllocStringByteLen
SysAllocString
OleLoadPicture
SysFreeString

shlwapi

PathIsRootW
PathIsURLW
PathCombineA
PathRemoveFileSpecW
PathFileExistsW
StrStrW
SHGetValueW
PathAppendW
PathUnquoteSpacesW
PathRemoveArgsW
SHSetValueW
PathAppendA
SHDeleteKeyW
PathIsDirectoryW
StrStrIA
PathFindExtensionW
StrCmpIW
PathFileExistsA
SHGetValueA
PathIsPrefixW
StrToIntExW
StrStrIW
PathCombineW
PathGetDriveNumberW

comctl32

ImageList_SetImageCount
ImageList_Add
ImageList_GetIconSize
ImageList_Create
_TrackMouseEvent
ImageList_Destroy
ImageList_Draw
InitCommonControlsEx
ImageList_Duplicate
ImageList_Remove

msimg32

AlphaBlend

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

secur32

GetUserNameExW

setupapi

SetupIterateCabinetW

wintrust

CryptCATAdminEnumCatalogFromHash
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
WinVerifyTrust
WTHelperProvDataFromStateData
CryptCATAdminAcquireContext
CryptCATAdminCalcHashFromFileHandle

crypt32

CertGetNameStringW

userenv

UnloadUserProfile

wininet

InternetOpenW
InternetOpenUrlW
InternetWriteFile
HttpEndRequestW
FtpOpenFileW
InternetReadFileExA
InternetReadFile
InternetSetStatusCallbackW
InternetConnectW
InternetSetOptionA
InternetCloseHandle
CommitUrlCacheEntryW
GetUrlCacheEntryInfoW
CreateUrlCacheEntryW
InternetCrackUrlW
InternetQueryOptionW
InternetSetOptionW
InternetGetLastResponseInfoW
HttpOpenRequestW
HttpSendRequestExW
FtpCommandW
FtpGetFileSize
HttpQueryInfoW

urlmon

ObtainUserAgentString

netapi32

Netbios

psapi

GetProcessMemoryInfo
GetModuleBaseNameW
GetModuleFileNameExW
EnumProcesses
EnumProcessModules

comdlg32

GetSaveFileNameW
GetOpenFileNameW

Sections

.text
Size: 580KB - Virtual size: 579KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 165KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13.3MB - Virtual size: 13.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de9015e9b90b37c200baa2851578dff4

Code Sign

0a:1f:3a:05:7a:1d:ce:4b:f7:d7:6d:0c:7a:df:83:7eCertificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

0c:83:09:ba:16:54:68:50:e6:05:e7:5d:77:3e:56:deCertificate

Extended Key Usages

Key Usages

01:b2:8b:d4:cf:ee:ee:0d:be:d0:b3:0d:9b:f8:43:6aCertificate

Extended Key Usages

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51Certificate

Key Usages

11:be:27:4b:d8:4a:7f:10:ca:1f:a2:d8:9b:f5:d7:10:c2:aa:90:16:27:b3:d8:57:bc:a4:55:7e:e4:ae:18:a2Signer

62:1c:af:dd:6a:99:5c:a3:98:d2:b5:1f:78:74:9d:6f:50:ba:0a:6cSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

msimg32

version

secur32

setupapi

wintrust

crypt32

userenv

wininet

urlmon

netapi32

psapi

comdlg32

Sections

.text Size: 580KB - Virtual size: 579KB

.rdata Size: 115KB - Virtual size: 115KB

.data Size: 165KB - Virtual size: 195KB

.rsrc Size: 13.3MB - Virtual size: 13.3MB

.reloc Size: 62KB - Virtual size: 62KB

0a:1f:3a:05:7a:1d:ce:4b:f7:d7:6d:0c:7a:df:83:7e
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

0c:83:09:ba:16:54:68:50:e6:05:e7:5d:77:3e:56:de
Certificate

01:b2:8b:d4:cf:ee:ee:0d:be:d0:b3:0d:9b:f8:43:6a
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

11:be:27:4b:d8:4a:7f:10:ca:1f:a2:d8:9b:f5:d7:10:c2:aa:90:16:27:b3:d8:57:bc:a4:55:7e:e4:ae:18:a2
Signer

62:1c:af:dd:6a:99:5c:a3:98:d2:b5:1f:78:74:9d:6f:50:ba:0a:6c
Signer

.text
Size: 580KB - Virtual size: 579KB

.rdata
Size: 115KB - Virtual size: 115KB

.data
Size: 165KB - Virtual size: 195KB

.rsrc
Size: 13.3MB - Virtual size: 13.3MB

.reloc
Size: 62KB - Virtual size: 62KB