Static task
static1
Behavioral task
behavioral1
Sample
Magnify.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
Magnify.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
General
-
Target
Magnify.exe
-
Size
813KB
-
MD5
5eefd645b5146582c41b823b435e81ef
-
SHA1
43f1ca2cba1ce588e9403e5fa54f2409b1871c61
-
SHA256
0b26ef901ea02c9eb430ca7d990c356e002790cff99be52934ffc2e5962a71c0
-
SHA512
49d155cf8619637f31fe08bf252b8fa9e454a8688997c39e502a6d849ba4075b266f5dc5ddcf4262c1e4e7134759702d94027c3b90e2230e8aa54cc9f258f031
-
SSDEEP
6144:tU+TQkSjxmn/cpJEQuSYjnULsTagvdDVfvv46YsSykz5gzNOx8XA08bAhMWUyzoM:G+sL+cvENcsTJTktt8XOykpyk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Magnify.exe
Files
-
Magnify.exe.exe windows x64
89b08bb1e1a7820a0b6af3cd06248264
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
advapi32
TraceMessage
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
RegisterTraceGuidsW
UnregisterTraceGuids
EventUnregister
EventRegister
EventSetInformation
EventWriteTransfer
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyExW
RegGetValueW
RegQueryValueExW
RegDeleteKeyW
RegEnumValueW
RegEnumKeyExW
RegLoadMUIStringW
RegDeleteTreeW
RegNotifyChangeKeyValue
kernel32
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
GlobalDeleteAtom
GlobalAddAtomW
CreateSemaphoreExW
CreateMutexExW
WaitForSingleObjectEx
RaiseException
OpenSemaphoreW
InitializeCriticalSection
ReleaseSemaphore
WaitForSingleObject
GetUserDefaultLCID
SetEvent
GetCurrentProcessId
QueryPerformanceCounter
GetProcAddress
VirtualQuery
FreeLibrary
GetSystemInfo
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
LoadLibraryExA
QueryPerformanceFrequency
GetTickCount
InitializeCriticalSectionEx
DeleteCriticalSection
CreateEventExW
IsDebuggerPresent
OutputDebugStringW
ReleaseMutex
RegisterApplicationRestart
SetProcessShutdownParameters
GetTickCount64
CreateMutexW
Sleep
HeapSetInformation
CloseHandle
OpenMutexW
SetLastError
CompareStringW
GetLastError
DebugBreak
GetModuleFileNameA
HeapFree
GetModuleHandleExW
HeapSize
HeapReAlloc
HeapDestroy
MultiByteToWideChar
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
ResetEvent
CreateEventW
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
SizeofResource
OpenJobObjectW
IsProcessInJob
ProcessIdToSessionId
LockResource
CreateThread
FindResourceExW
LoadResource
ExpandEnvironmentStringsW
OpenProcess
InitializeProcThreadAttributeList
UpdateProcThreadAttribute
CreateProcessW
DeleteProcThreadAttributeList
GetModuleHandleW
HeapAlloc
GetProcessHeap
GetFileAttributesW
DeleteFileW
K32EnumProcesses
K32EnumProcessModules
K32GetModuleBaseNameW
InitOnceBeginInitialize
InitOnceComplete
VirtualProtect
FormatMessageW
GetCurrentThreadId
gdi32
GetDeviceCaps
LineTo
MoveToEx
GetStockObject
CreateSolidBrush
StretchBlt
SetStretchBltMode
CreateCompatibleBitmap
GetObjectW
CreateCompatibleDC
DeleteDC
SelectObject
CreateBrushIndirect
CreateBitmap
DeleteObject
CombineRgn
CreateRectRgn
user32
GetThreadDesktop
CloseDesktop
GetAsyncKeyState
FindWindowW
PostMessageW
CallNextHookEx
LoadStringW
SetWindowsHookExW
UnhookWindowsHookEx
GetSystemMetrics
GetWindowLongW
GetAncestor
PtInRect
EqualRect
GetDesktopWindow
GetWindowRect
IsRectEmpty
OffsetRect
SendInput
MonitorFromPoint
GetMonitorInfoW
CopyRect
GetPointerDevices
ShowWindow
SetTimer
SystemParametersInfoW
KillTimer
EnumDisplayMonitors
ClipCursor
IsWindow
DestroyWindow
GetPhysicalCursorPos
CreateWindowExW
RegisterPointerDeviceNotifications
UnionRect
RegisterClassExW
IntersectRect
MonitorFromRect
UpdateWindow
DefWindowProcW
GetGUIThreadInfo
SetRect
InflateRect
GetWindowLongPtrW
SetWindowLongPtrW
UnhookWinEvent
GetParent
GetPointerDeviceRects
BeginPaint
EndPaint
SetActiveWindow
LoadCursorW
SetLayeredWindowAttributes
SetWinEventHook
GetClientRect
GetSysColor
SetWindowPos
SetWindowRgn
InvalidateRect
GetWindowThreadProcessId
GetWindowTextW
GetPointerInfo
GetPointerFrameInfoHistory
MapWindowPoints
SetPhysicalCursorPos
SetWindowLongW
LoadIconW
SendMessageW
IsWindowVisible
AdjustWindowRectEx
GetWindow
SetRectEmpty
ChangeWindowMessageFilterEx
GetMessageW
TranslateMessage
DispatchMessageW
IsIconic
GetCapture
GetForegroundWindow
SetForegroundWindow
IsWindowEnabled
GetDC
ReleaseDC
UpdateLayeredWindow
GetCursorPos
RegisterHotKey
UnregisterHotKey
OpenInputDesktop
GetClassNameW
SendMessageTimeoutW
GetDoubleClickTime
RealGetWindowClassW
MonitorFromWindow
CreatePopupMenu
InsertMenuItemW
CheckMenuRadioItem
TrackPopupMenu
SetWindowPlacement
SetPropW
RemovePropW
GetMessagePos
PostQuitMessage
SetCursor
FillRect
RegisterClassW
LoadImageW
WindowFromPhysicalPoint
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
UnregisterClassA
SetDesktopColorTransform
SendNotifyMessageW
GetShellWindow
GetKeyState
GetUserObjectInformationW
msvcp_win
_Thrd_start
_Mtx_unlock
_Mtx_destroy
_Cnd_wait
?_Throw_C_error@std@@YAXH@Z
_Cnd_do_broadcast_at_thread_exit
_Cnd_signal
_Mtx_lock
_Mtx_init
_Cnd_init
?_Xlength_error@std@@YAXPEBD@Z
_Cnd_destroy
api-ms-win-crt-runtime-l1-1-0
_c_exit
_initterm
_register_thread_local_exe_atexit_callback
_initterm_e
api-ms-win-crt-string-l1-1-0
wcsspn
memmove_s
wcscspn
wcscmp
memset
api-ms-win-crt-private-l1-1-0
_o__hypot
_o__initialize_onexit_table
_o__initialize_wide_environment
_o__invalid_parameter_noinfo
_o__invalid_parameter_noinfo_noreturn
_o__ltow_s
_o__purecall
_o__register_onexit_function
_o__seh_filter_exe
_o__set_app_type
_o__set_new_mode
_o__wcsicmp
_o__wcslwr_s
_o__wtoi
_o_atan2
_o_ceil
_o_exit
_o_fmod
_o_free
_o_log
_o_malloc
_o_memcpy_s
_o_pow
_o_powf
_o_realloc
_o_sqrt
_o_terminate
_o_wcstok
__C_specific_handler
_CxxThrowException
_o__crt_atexit
_o__configure_wide_argv
_o__configthreadlocale
_o___stdio_common_vswprintf
_o___stdio_common_vsnprintf_s
_o___std_exception_destroy
_o___std_exception_copy
_o___p__commode
__std_terminate
__CxxFrameHandler3
wcschr
wcsrchr
_o__get_wide_winmain_command_line
memcpy
_o__exit
_o__errno
_o__cexit
_o__callnewh
_o__set_fmode
memmove
ole32
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
CoInitializeEx
CoCreateInstance
CoUninitialize
oleacc
AccessibleObjectFromEvent
AccessibleObjectFromWindow
comctl32
ord17
InitCommonControlsEx
oleaut32
SafeArrayCreate
SafeArrayPutElement
VariantClear
SafeArrayDestroy
SysAllocString
VariantInit
gdiplus
GdipCreateBitmapFromStream
GdipStringFormatGetGenericTypographic
GdipDrawString
GdipSetTextRenderingHint
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDrawLine
GdipDeletePen
GdipCreatePen1
GdipSetInterpolationMode
GdipSetSmoothingMode
GdipFillRectangle
GdipAlloc
GdipFree
GdipDeleteBrush
GdipCreateSolidFill
GdipDeleteGraphics
GdiplusShutdown
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipDisposeImage
GdipCloneImage
GdipCreateFromHDC
shell32
SHAppBarMessage
ShellExecuteW
ntdll
RtlVirtualUnwind
RtlLookupFunctionEntry
WinSqmAddToStream
WinSqmSetDWORD
WinSqmIsOptedIn
WinSqmIncrementDWORD
RtlCaptureContext
NtQueryWnfStateData
shlwapi
ord628
dwmapi
DwmIsCompositionEnabled
DwmSetWindowAttribute
dui70
?Destroy@Element@DirectUI@@QEAAJ_N@Z
InitProcessPriv
InitThread
UnInitProcessPriv
UnInitThread
??0NativeHWNDHost@DirectUI@@QEAA@XZ
??1NativeHWNDHost@DirectUI@@UEAA@XZ
?Initialize@NativeHWNDHost@DirectUI@@QEAAJPEBG0PEAUHWND__@@PEAUHICON__@@HHHHHHPEAUHINSTANCE__@@I@Z
?EndDefer@Element@DirectUI@@QEAAXK@Z
?FindDescendent@Element@DirectUI@@QEAAPEAV12@G@Z
StrToID
?SetContentString@Element@DirectUI@@QEAAJPEBG@Z
?DestroyWindow@NativeHWNDHost@DirectUI@@QEAAXXZ
?CreateHostWindow@NativeHWNDHost@DirectUI@@UEAAPEAUHWND__@@KPEBG0KHHHHPEAU3@PEAUHMENU__@@PEAUHINSTANCE__@@PEAX@Z
?_OnUIStateChanged@HWNDElement@DirectUI@@MEAAXGG@Z
?GetWindowClassNameAndStyle@HWNDElement@DirectUI@@UEAAXPEAPEBGPEAI@Z
?WndProc@HWNDElement@DirectUI@@UEAA_JPEAUHWND__@@I_K_J@Z
?IsMSAAEnabled@HWNDElement@DirectUI@@UEAA_NXZ
?CanSetFocus@HWNDElement@DirectUI@@UEAA_NXZ
?OnCompositionChanged@HWNDElement@DirectUI@@UEAAXXZ
?OnWmSettingChanged@HWNDElement@DirectUI@@UEAAX_K_J@Z
?OnWmThemeChanged@HWNDElement@DirectUI@@UEAAX_K_J@Z
?OnGetDlgCode@HWNDElement@DirectUI@@UEAAXPEAUtagMSG@@PEA_J@Z
?OnNoChildWithShortcutFound@HWNDElement@DirectUI@@UEAAXPEAUKeyboardEvent@2@@Z
?OnImmersiveColorSchemeChanged@HWNDElement@DirectUI@@UEAAXXZ
?OnThemeChanged@HWNDElement@DirectUI@@UEAAXPEAUThemeChangedEvent@2@@Z
?GetHWND@HWNDElement@DirectUI@@UEAAPEAUHWND__@@XZ
?GetUiaFocusDelegate@Element@DirectUI@@UEAAPEAV12@XZ
?HandleUiaEventListener@Element@DirectUI@@UEAAXPEAUEvent@2@@Z
?HandleUiaPropertyChangingListener@Element@DirectUI@@UEAAXPEBUPropertyInfo@2@@Z
?HandleUiaPropertyListener@Element@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
?HandleUiaDestroyListener@Element@DirectUI@@UEAAXXZ
?GetElementProviderImpl@Element@DirectUI@@UEAAJPEAVInvokeHelper@2@PEAPEAVElementProvider@2@@Z
?GetUIAElementProvider@Element@DirectUI@@UEAAJAEBU_GUID@@PEAPEAX@Z
?DefaultAction@Element@DirectUI@@UEAAJXZ
?GetAccessibleImpl@HWNDElement@DirectUI@@UEAAJPEAPEAUIAccessible@@@Z
?GetClassInfoW@HWNDElement@DirectUI@@UEAAPEAUIClassInfo@2@XZ
?GetKeyFocused@Element@DirectUI@@UEAA_NXZ
?RemoveTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@@Z
?ActivateTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@K@Z
?UpdateTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@@Z
?OnUnHosted@Element@DirectUI@@MEAAXPEAV12@@Z
?OnHosted@Element@DirectUI@@MEAAXPEAV12@@Z
?_SelfLayoutUpdateDesiredSize@Element@DirectUI@@MEAA?AUtagSIZE@@HHPEAVSurface@2@@Z
?_SelfLayoutDoLayout@Element@DirectUI@@MEAAXHH@Z
?GetImmersiveFocusRectOffsets@Element@DirectUI@@UEAAXPEAUtagRECT@@@Z
?QueryInterface@Element@DirectUI@@UEAAJAEBU_GUID@@PEAPEAX@Z
?MessageCallback@Element@DirectUI@@UEAAIPEAUtagGMSG@@@Z
?RemoveBehavior@Element@DirectUI@@UEAAJPEAUIDuiBehavior@@@Z
?AddBehavior@Element@DirectUI@@UEAAJPEAUIDuiBehavior@@@Z
?SetKeyFocus@Element@DirectUI@@UEAAXXZ
?EnsureVisible@Element@DirectUI@@UEAA_NHHHH@Z
?GetAdjacent@Element@DirectUI@@UEAAPEAV12@PEAV12@HPEBUNavReference@2@K@Z
?Remove@Element@DirectUI@@UEAAJPEAPEAV12@I@Z
??1CritSecLock@DirectUI@@QEAA@XZ
?UpdateTooltip@Element@DirectUI@@MEAAXPEAV12@@Z
?ActivateTooltip@Element@DirectUI@@MEAAXPEAV12@K@Z
?RemoveTooltip@Element@DirectUI@@MEAAXPEAV12@@Z
?GetTooltip@Element@DirectUI@@QEAA_NXZ
?Initialize@AccessibleButton@DirectUI@@QEAAJPEAVElement@2@PEAK@Z
??1AccessibleButton@DirectUI@@UEAA@XZ
?OnPropertyChanged@AccessibleButton@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
?GetClassInfoPtr@AccessibleButton@DirectUI@@SAPEAUIClassInfo@2@XZ
?Register@AccessibleButton@DirectUI@@SAJXZ
??0AccessibleButton@DirectUI@@QEAA@XZ
??0ClassInfoBase@DirectUI@@QEAA@XZ
??1ClassInfoBase@DirectUI@@UEAA@XZ
?Initialize@ClassInfoBase@DirectUI@@QEAAJPEAUHINSTANCE__@@PEBG_NPEBQEBUPropertyInfo@2@I@Z
?Register@ClassInfoBase@DirectUI@@QEAAJXZ
?ClassExist@ClassInfoBase@DirectUI@@SA_NPEAPEAUIClassInfo@2@PEBQEBUPropertyInfo@2@IPEAU32@PEAUHINSTANCE__@@PEBG_N@Z
?AddRef@ClassInfoBase@DirectUI@@UEAAXXZ
?Release@ClassInfoBase@DirectUI@@UEAAHXZ
?EnumPropertyInfo@ClassInfoBase@DirectUI@@UEAAPEBUPropertyInfo@2@I@Z
?GetByClassIndex@ClassInfoBase@DirectUI@@UEAAPEBUPropertyInfo@2@I@Z
?GetPICount@ClassInfoBase@DirectUI@@UEBAIXZ
?GetGlobalIndex@ClassInfoBase@DirectUI@@UEBAIXZ
?GetName@ClassInfoBase@DirectUI@@UEBAPEBGXZ
?IsValidProperty@ClassInfoBase@DirectUI@@UEBA_NPEBUPropertyInfo@2@@Z
?IsSubclassOf@ClassInfoBase@DirectUI@@UEBA_NPEAUIClassInfo@2@@Z
?GetModule@ClassInfoBase@DirectUI@@UEBAPEAUHINSTANCE__@@XZ
?IsGlobal@ClassInfoBase@DirectUI@@UEBA_NXZ
?AddChild@ClassInfoBase@DirectUI@@UEAAXXZ
?RemoveChild@ClassInfoBase@DirectUI@@UEAAXXZ
?GetChildren@ClassInfoBase@DirectUI@@UEBAHXZ
?AssertPIZeroRef@ClassInfoBase@DirectUI@@UEBAXXZ
?OnGroupChanged@Element@DirectUI@@UEAAXH_N@Z
?OnDestroy@Element@DirectUI@@UEAAXXZ
?OnEvent@Element@DirectUI@@UEAAXPEAUEvent@2@@Z
?GetFactoryLock@Element@DirectUI@@SAPEAU_RTL_CRITICAL_SECTION@@XZ
?KeyFocusedProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
?GetAccessibleImpl@Element@DirectUI@@UEAAJPEAPEAUIAccessible@@@Z
?OnInput@Button@DirectUI@@UEAAXPEAUInputEvent@2@@Z
?OnLostDialogFocus@Button@DirectUI@@UEAA_NPEAUIDialogElement@2@@Z
?OnReceivedDialogFocus@Button@DirectUI@@UEAA_NPEAUIDialogElement@2@@Z
?DefaultAction@Button@DirectUI@@UEAAJXZ
?GetClassInfoPtr@CCPushButton@DirectUI@@SAPEAUIClassInfo@2@XZ
?GetKeyFocusedElement@HWNDElement@DirectUI@@SAPEAVElement@2@XZ
?GetLocation@Element@DirectUI@@QEAAPEBUtagPOINT@@PEAPEAVValue@2@@Z
?Click@Button@DirectUI@@SA?AVUID@@XZ
?SetEnabled@Element@DirectUI@@QEAAJ_N@Z
?SetLayoutPos@Element@DirectUI@@QEAAJH@Z
??0HWNDElement@DirectUI@@QEAA@XZ
?Destroy@DUIXmlParser@DirectUI@@QEAAXXZ
?SetXMLFromResource@DUIXmlParser@DirectUI@@QEAAJIPEAUHINSTANCE__@@0@Z
?Create@DUIXmlParser@DirectUI@@SAJPEAPEAV12@P6APEAVValue@2@PEBGPEAX@Z2P6AX11H2@Z2@Z
?GetExtent@Element@DirectUI@@QEAAPEBUtagSIZE@@PEAPEAVValue@2@@Z
?OnGroupChanged@HWNDElement@DirectUI@@UEAAXH_N@Z
?Add@Element@DirectUI@@QEAAJPEAV12@@Z
?LoadFromResource@DUIFactory@DirectUI@@QEAAJPEAUHINSTANCE__@@PEBG1PEAVElement@2@PEAKPEAPEAV42@1@Z
?Destroy@Layout@DirectUI@@QEAAXXZ
?SetLayout@Element@DirectUI@@QEAAJPEAVLayout@2@@Z
?Create@FillLayout@DirectUI@@SAJPEAPEAVLayout@2@@Z
?DoubleBuffered@Element@DirectUI@@QEAAX_N@Z
?Host@NativeHWNDHost@DirectUI@@QEAAXPEAVElement@2@@Z
?SetAccessible@Element@DirectUI@@QEAAJ_N@Z
?Release@Value@DirectUI@@QEAAXXZ
?SetVisible@Element@DirectUI@@QEAAJ_N@Z
?Insert@Element@DirectUI@@UEAAJPEAPEAV12@II@Z
?Register@HWNDElement@DirectUI@@SAJXZ
?Initialize@HWNDElement@DirectUI@@QEAAJPEAUHWND__@@_NIPEAVElement@2@PEAK@Z
??1DUIFactory@DirectUI@@QEAA@XZ
??1HWNDElement@DirectUI@@UEAA@XZ
?IsRTLReading@Element@DirectUI@@UEAA_NXZ
?IsContentProtected@Element@DirectUI@@UEAA_NXZ
?GetContentStringAsDisplayed@Element@DirectUI@@UEAAPEBGPEAPEAVValue@2@@Z
?OnPropertyChanging@Element@DirectUI@@UEAA_NPEBUPropertyInfo@2@HPEAVValue@2@1@Z
?OnPropertyChanging@Element@DirectUI@@UEAA_NPEAUPropertyInfo@2@HPEAVValue@2@1@Z
?OnPropertyChanged@HWNDElement@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
?OnPropertyChanged@Element@DirectUI@@UEAAXPEAUPropertyInfo@2@HPEAVValue@2@1@Z
?OnInput@HWNDElement@DirectUI@@UEAAXPEAUInputEvent@2@@Z
?OnKeyFocusMoved@Element@DirectUI@@UEAAXPEAV12@0@Z
?OnMouseFocusMoved@Element@DirectUI@@UEAAXPEAV12@0@Z
?OnDestroy@HWNDElement@DirectUI@@UEAAXXZ
?OnEvent@HWNDElement@DirectUI@@UEAAXPEAUEvent@2@@Z
?Paint@Element@DirectUI@@UEAAXPEAUHDC__@@PEBUtagRECT@@1PEAU4@2@Z
?GetContentSize@Element@DirectUI@@UEAA?AUtagSIZE@@HHPEAVSurface@2@@Z
?Add@Element@DirectUI@@UEAAJPEAPEAV12@I@Z
magnification
MagSetFullscreenTransform
MagUninitialize
MagShowSystemCursor
MagSetFullscreenColorEffect
MagSetFullscreenUseBitmapSmoothing
MagSetInputTransform
MagSetLensUseBitmapSmoothing
MagSetWindowTransform
MagSetWindowSource
MagInitialize
uiautomationcore
UiaHostProviderFromHwnd
UiaClientsAreListening
UiaRaiseStructureChangedEvent
UiaRaiseAutomationEvent
UiaReturnRawElementProvider
api-ms-win-crt-math-l1-1-0
sinf
floorf
cosf
ceilf
atan2f
_finite
_isnan
sqrtf
Sections
.text Size: 312KB - Virtual size: 311KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 75KB - Virtual size: 75KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 512B - Virtual size: 64B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 406KB - Virtual size: 405KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ