NEAS[.]475a1a1799fd712deef39bbae5128560[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.475a1a1799fd712deef39bbae5128560.exe
Size

208KB
MD5

475a1a1799fd712deef39bbae5128560
SHA1

3f53f780638f506d0621a28ed70b936ebd1168e7
SHA256

217073d86969ca3dc295f42c45d6735e27dde7ebf3e2dabd9f1620651974b061
SHA512

6742c5969be3c2edd04591f2ecc1729b22645bf71b208d558a355899b116ec778d05f64ea5d66bcd4bf26eb61c9a62174e5c29c8d0088929fd6d07f676441a7e
SSDEEP

3072:k72k7G3sejzh7DVMXZeQ4znWEg5lfnGJzyX39xp:A218eBKXZ74j2Pj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.475a1a1799fd712deef39bbae5128560.exe

Files

NEAS.475a1a1799fd712deef39bbae5128560.exe
.exe windows:4 windows x86

f0d1b7c3a85e6e7411530e8b2256f1a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord1776
ord6055
ord1576
ord2587
ord4432
ord1726
ord3748
ord5240
ord4108
ord4961
ord4964
ord4524
ord4529
ord4526
ord4543
ord4545
ord4406
ord5290
ord3729
ord812
ord559
ord2848
ord4531
ord4890
ord4349
ord4341
ord4589
ord4613
ord4823
ord535
ord537
ord338
ord860
ord6877
ord652
ord4426
ord4623
ord6175
ord6080
ord3198
ord3454
ord4387
ord2399
ord4858
ord4953
ord4420
ord5653
ord3172
ord5577
ord1746
ord5740
ord5243
ord2542
ord2510
ord6336
ord3065
ord3058
ord6144
ord4238
ord1825
ord4129
ord4278
ord5710
ord2414
ord641
ord3626
ord3663
ord3597
ord4425
ord4627
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1775
ord4078
ord6052
ord2514
ord4998
ord4853
ord4376
ord5265
ord1134
ord2621
ord540
ord2818
ord823
ord520
ord986
ord296
ord5214
ord5301
ord617
ord800
ord825
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord1199
ord2538
ord2535
ord3078
ord3517
ord1168
ord922
ord5862
ord858
ord4123
ord4899
ord3317
ord3874
ord924
ord941
ord939
ord6402
ord2080
ord541
ord5861
ord6143
ord2847
ord801
ord2915
ord4151
ord2884
ord3797
ord4284
ord4427
ord4436
ord1665
ord2649
ord5237
ord4077
ord2878
ord2879
ord3403
ord975
ord5012
ord3350
ord4303
ord3059
ord2723
ord4809
ord6199
ord2763
ord2614
ord4398
ord2578
ord4218
ord2023
ord2411
ord1669
ord2652
ord3742
ord4224
ord2864
ord859
ord5981
ord2086
ord6215
ord4299
ord1175
ord3811
ord2820
ord3521
ord4696
ord2642
ord3922
ord5731
ord2554
ord4486
ord6375
ord4610
ord4612
ord4615

msvcrt

__p__commode
_strdup
free
__CxxFrameHandler
atoi
_mbscmp
atof
_mbscoll
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_controlfp
__set_app_type
__p__fmode
_setmbcp
_adjust_fdiv
__setusermatherr
_initterm

kernel32

LoadLibraryA
GetStartupInfoA
GetModuleHandleA
GetProcAddress

user32

EnableWindow
SendMessageA
SetRect
GetClientRect
GetWindowLongA
InvalidateRect
GetKeyState
PostMessageA
GetDesktopWindow
GetFocus
KillTimer
GetParent
SetMenu
CopyRect
DrawFocusRect
GetSysColor
GetMenu

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

g_langutilr

??0CG_LangUtil@@QAE@XZ
?ReadLangString@CG_LangUtil@@QAEHGPAD0@Z
?GetLangString@CG_LangUtil@@QAEPADH@Z
??1CG_LangUtil@@UAE@XZ

g_util

?XHelp_GetData@@YGHPADHH@Z
?XHelp_GetData@@YGHAAVCStringArray@@0H@Z
?HfxWon@@YGXAAVCString@@H@Z
?HfxWon@@YAXPAD0ZZ
?XHelp_Dlg@@YGHHPAD00PAH@Z

g_dznxframeworkr

?messageMap@CNeoXWinApp@@1UAFX_MSGMAP@@B
?DoMessageBox@CNeoXWinApp@@UAEHPBDII@Z
?GetRuntimeClass@CNeoXWinApp@@UBEPAUCRuntimeClass@@XZ
??0CNeoXWinApp@@QAE@PBD@Z
??1CNeoXWinApp@@UAE@XZ
?LoadStdProfileSettings@CNeoXWinApp@@QAEXI@Z
?InitInstance@CNeoXWinApp@@UAEHXZ
?OnInitDialog@CNeoXDialog@@MAEHXZ
?DoDataExchange@CNeoXDialog@@MAEXPAVCDataExchange@@@Z
?messageMap@CNeoXDialog@@1UAFX_MSGMAP@@B
?classCNeoXView@CNeoXView@@2UCRuntimeClass@@B
?messageMap@CNeoXView@@1UAFX_MSGMAP@@B
?MessageDsp@CNeoXView@@UAEXVCString@@@Z
?SetUserID@CNeoXView@@UAEXVCString@@@Z
?SetMsg@CNeoXView@@UAEXVCString@@@Z
?OnUpdate@CNeoXView@@MAEXPAVCView@@JPAVCObject@@@Z
?PreSubclassWindow@CNeoXView@@MAEXXZ
?OnSelchanging@CNeoXTabCtrl@@MAEXPAUtagNMHDR@@PAJ@Z
?OnSize@CNeoXDialog@@IAEXIHH@Z
?OnCreate@CNeoXDialog@@IAEHPAUtagCREATESTRUCTA@@@Z
??0CNeoXDialog@@QAE@XZ
??1CNeoXDialog@@UAE@XZ
?Create@CNeoXButton@@QAEHPBDKABUtagRECT@@PAVCWnd@@I@Z
??0CNeoXButton@@QAE@XZ
??1CNeoXButton@@UAE@XZ
?OnGmDbDown@CG_OneGrid@@UAEJIJ@Z
?OnGmDbUp@CG_OneGrid@@UAEJIJ@Z
?OnGmDbHome@CG_OneGrid@@UAEJIJ@Z
?OnGmDbEnd@CG_OneGrid@@UAEJIJ@Z
?OnGmDbPgUp@CG_OneGrid@@UAEJIJ@Z
?OnGmDbPgDn@CG_OneGrid@@UAEJIJ@Z
?OnGmDbTop@CG_OneGrid@@UAEJIJ@Z
?OnGmDbLast@CG_OneGrid@@UAEJIJ@Z
?OnGmDbAppend@CG_OneGrid@@UAEJIJ@Z
?OnGmDbUpdate@CG_OneGrid@@UAEJIJ@Z
?OnGmDbDelete@CG_OneGrid@@UAEJIJ@Z
?OnGmDbYSpcResize@CG_OneGrid@@UAEJIJ@Z
?OnGmDbSetDwg@CG_OneGrid@@UAEJIJ@Z
?OnGmSetUp@CG_OneGrid@@UAEXXZ
?SetMenu@CMenuBar@@QAE_NPAUHMENU__@@@Z
?OnClose@CNeoXFrameWnd@@IAEXXZ
??1CNeoXFrameWnd@@UAE@XZ
??0CNeoXFrameWnd@@QAE@XZ
?OnFinalRelease@CNeoXFrameWnd@@UAEXXZ
?PreCreateWindow@CNeoXFrameWnd@@MAEHAAUtagCREATESTRUCTA@@@Z
?PreTranslateMessage@CNeoXFrameWnd@@UAEHPAUtagMSG@@@Z
?RecalcLayout@CNeoXFrameWnd@@MAEXH@Z
?OnCreateClient@CNeoXFrameWnd@@MAEHPAUtagCREATESTRUCTA@@PAUCCreateContext@@@Z
?OnUpdateFrameTitle@CNeoXFrameWnd@@MAEXH@Z
?OnUpdateFrameMenu@CNeoXFrameWnd@@MAEXPAUHMENU__@@@Z
?DelayUpdateFrameMenu@CNeoXFrameWnd@@MAEXPAUHMENU__@@@Z
?SetMsg@CNeoXFrameWnd@@UAEXVCString@@@Z
?SetUserID@CNeoXFrameWnd@@UAEXVCString@@@Z
?MessageDsp@CNeoXFrameWnd@@UAEXVCString@@@Z
?DrawMenuBorder@CNeoXFrameWnd@@MAEHPAVCDC@@PAUtagRECT@@@Z
?DrawMenuSidebar@CNeoXFrameWnd@@MAEHPAVCDC@@PAUtagRECT@@PBD@Z
?DrawMenuClientBkgnd@CNeoXFrameWnd@@MAEHPAVCDC@@PAUtagRECT@@1@Z
?DrawMenuNonClientBkgnd@CNeoXFrameWnd@@MAEHPAVCDC@@PAUtagRECT@@@Z
?messageMap@CNeoXFrameWnd@@1UAFX_MSGMAP@@B
?classCNeoXFrameWnd@CNeoXFrameWnd@@2UCRuntimeClass@@B
?PreTranslateMessage@CNeoXComboBox@@UAEHPAUtagMSG@@@Z
?OnCreate@CNeoXComboBox@@IAEHPAUtagCREATESTRUCTA@@@Z
?messageMap@CNeoXComboBox@@1UAFX_MSGMAP@@B
??0CNeoXComboBox@@QAE@XZ
??1CNeoXComboBox@@UAE@XZ
?GetRuntimeClass@CNeoXComboBox@@UBEPAUCRuntimeClass@@XZ
?PreTranslateMessage@CNeoXView@@UAEHPAUtagMSG@@@Z
?OnSetFocus@CNeoXView@@IAEXPAVCWnd@@@Z
?OnCreate@CNeoXView@@IAEHPAUtagCREATESTRUCTA@@@Z
?Create@CNeoXTabCtrl@@QAEHKABUtagRECT@@PAVCWnd@@I@Z
?AddTab@CNeoXTabCtrl@@QAEXPAVCWnd@@PADH@Z
?OnSize@CNeoXView@@IAEXIHH@Z
?OnInitialUpdate@CNeoXView@@UAEXXZ
?SetCheck@CNeoXButton@@QAEKHH@Z
?GetCheck@CNeoXButton@@QAEHXZ
?GetTopSpace@CG_PrnDlg@@QAEHXZ
?GetLeftSpace@CG_PrnDlg@@QAEHXZ
?PreCreateWindow@CNeoXView@@MAEHAAUtagCREATESTRUCTA@@@Z
??1CNeoXTabCtrl@@UAE@XZ
??0CNeoXView@@IAE@XZ
??0CNeoXTabCtrl@@QAE@XZ
??1CNeoXView@@MAE@XZ
?GetMessageMap@CNeoXTabCtrl@@MBEPBUAFX_MSGMAP@@XZ
?WindowProc@CNeoXTabCtrl@@MAEJIIJ@Z
?OnCtlColor@CNeoXTabCtrl@@MAEPAUHBRUSH__@@PAVCDC@@PAUtagDRAWITEMSTRUCT@@I@Z
?DrawItem@CNeoXTabCtrl@@MAEXPAVCDC@@AAVCRgn@@PAUtagDRAWITEMSTRUCT@@@Z
?drawItemBackground@CNeoXTabCtrl@@MAEXPAVCDC@@PAUtagDRAWITEMSTRUCT@@AAVCRgn@@@Z
?drawItemText@CNeoXTabCtrl@@MAEXPAVCDC@@PAUtagDRAWITEMSTRUCT@@@Z

g_onegridr

?SetScrollMode@CG_OneGrid@@QAEXH@Z
?SetCellWindow@CG_OneGrid@@QAEXHHPAVCWnd@@@Z
?GetRect@CG_OneGrid@@QAE?AUtagRECT@@HHH@Z
?SetEtc@CG_OneGrid@@QAEXHHI@Z
?SetText@CG_OneGrid@@QAEXHHPBDH@Z
?GetColCount@CG_OneGrid@@QAEHH@Z
?isEditMode@CG_OneGrid@@QAEHXZ
?SetDefSpace@CG_OneGrid@@QAEXHH@Z
?InitCols@CG_OneGrid@@QAEXHHH@Z
?messageMap@CG_OneGrid@@1UAFX_MSGMAP@@B
??0CG_OneGrid@@QAE@XZ
??1CG_OneGrid@@UAE@XZ
?SetMaskAttr@CG_OneGrid@@QAEXHHPBDH@Z
?WindowProc@CG_OneGrid@@MAEJIIJ@Z
?GetRowCount@CG_OneGrid@@QAEHXZ
?Create@CG_OneGrid@@QAEHABUtagRECT@@PAVCWnd@@IPAUCCreateContext@@K@Z
?GetFont@CG_OneGrid@@QAEXAAUtagLOGFONTA@@@Z
?Init@CG_OneGrid@@QAEXH@Z
?StopEdit@CG_OneGrid@@QAEXH@Z
?SetText@CG_OneGrid@@QAEXHHVCString@@H@Z
?GotoXY@CG_OneGrid@@QAEXHH@Z
?GetCell@CG_OneGrid@@QAEPAVCG_TextCell@@HH@Z
?SetMaskFormat@CG_OneGrid@@QAEXHHVCString@@@Z
?GetText@CG_OneGrid@@QAE?AVCString@@HH@Z

g_ugridr

?GetDataType@CG_UGCell@@QAEHXZ
?GetText@CG_UGCell@@QAEPBDXZ
?GetNumber@CG_UGCell@@QAENXZ
?SetBackColor@CG_UGCell@@QAEHK@Z
?GetCellID@CG_UGCtrl@@QAEKHH@Z
?GetCurrentRow@CG_UGCtrl@@QAEJXZ
?SetText@CG_UGCell@@QAEHPBDHJ@Z
?OnColSized@CG_UGCtrl@@UAEXHPAH@Z
??0CG_UGCell@@QAE@XZ
?GetDefFont@CG_UGCtrl@@QAEXAAUtagLOGFONTA@@@Z
?SetNumberCols@CG_UGCtrl@@QAEHHH@Z
?SetTH_NumberRows@CG_UGCtrl@@QAEHH@Z
?SetBH_NumberRows@CG_UGCtrl@@QAEHH@Z
?SetCellType@CG_UGCell@@QAEHH@Z
?SetColWidth@CG_UGCtrl@@QAEHHH@Z
?QuickSetText@CG_UGCtrl@@QAEHHJPBDH@Z
?SetMaskAttr@CG_UGCtrl@@QAEHHPADH@Z
?GetCell@CG_UGCtrl@@QAEHHJPAVCG_UGCell@@H@Z
?SetCellTypeEx@CG_UGCell@@QAEHJ@Z
?SetLabelText@CG_UGCell@@QAEHPBD@Z
?SetBool@CG_UGCell@@QAEHH@Z
?SetCell@CG_UGCtrl@@QAEHHJPAVCG_UGCell@@H@Z
?SetColDefault@CG_UGCtrl@@QAEHHPAVCG_UGCell@@@Z
?SetDoubleBufferMode@CG_UGCtrl@@QAEHH@Z
?GetNumberCols@CG_UGCtrl@@QAEHXZ
?SetSelectMode@CG_UGCtrl@@QAEXH@Z
?SetUserColWidth@CG_UGCtrl@@QAEXXZ
??1CG_UGCell@@UAE@XZ
??0CG_UGCtrl@@QAE@XZ
??1CG_UGCtrl@@UAE@XZ
?PreCreateWindow@CG_UGCtrl@@MAEHAAUtagCREATESTRUCTA@@@Z
?OnCommand@CG_UGCtrl@@MAEHIJ@Z
?WindowProc@CG_UGCtrl@@MAEJIIJ@Z
?OnCanSizeRightHdg@CG_UGCtrl@@UAEHXZ
?OnCanSizeBottomHdg@CG_UGCtrl@@UAEHXZ
?OnBottomHdgSizing@CG_UGCtrl@@UAEHPAH@Z
?OnRightHdgSizing@CG_UGCtrl@@UAEHPAH@Z
?OnBottomHdgSized@CG_UGCtrl@@UAEHPAH@Z
?OnRightHdgSized@CG_UGCtrl@@UAEHPAH@Z
?OnBH_LClicked@CG_UGCtrl@@UAEXHJHPAUtagRECT@@PAUtagPOINT@@H@Z
?OnBH_RClicked@CG_UGCtrl@@UAEXHJHPAUtagRECT@@PAUtagPOINT@@H@Z
?OnBH_DClicked@CG_UGCtrl@@UAEXHJPAUtagRECT@@PAUtagPOINT@@H@Z
?OnRH_LClicked@CG_UGCtrl@@UAEXHJHPAUtagRECT@@PAUtagPOINT@@H@Z
?OnRH_RClicked@CG_UGCtrl@@UAEXHJHPAUtagRECT@@PAUtagPOINT@@H@Z
?OnRH_DClicked@CG_UGCtrl@@UAEXHJPAUtagRECT@@PAUtagPOINT@@H@Z
?OnKeyUp@CG_UGCtrl@@UAEXIII@Z
?OnScreenDCSetup@CG_UGCtrl@@UAEXPAVCDC@@0H@Z
?messageMap@CG_UGCtrl@@1UAFX_MSGMAP@@B
?CreateGrid@CG_UGCtrl@@QAEHKABUtagRECT@@PAVCWnd@@I@Z
?SetNumberRows@CG_UGCtrl@@QAEHJHH@Z
?DisplayData@CG_UGCtrl@@QAEXHH@Z
?GotoRow@CG_UGCtrl@@QAEHJ@Z
?GetCellColFromID@CG_UGCtrl@@QAEHK@Z
?UpdateCheckTitle@CG_UGCtrl@@QAEXHHHH@Z
?SetSelColor@CG_UGCtrl@@QAEXHH@Z
?GetNumberRows@CG_UGCtrl@@QAEJXZ
?QuickGetText@CG_UGCtrl@@QAEPBDHJH@Z
?SetSpecMask@CG_UGCtrl@@QAEXHJK@Z
?SetListMode@CG_UGCtrl@@QAEXH@Z

g_dzctrlr

??0CG_Calendar_@@QAE@PAVCWnd@@@Z
?GetMessageMap@CG_DzSplashwin@@MBEPBUAFX_MSGMAP@@XZ
?ShowSplashText@CG_DzSplashwin@@QAEHVCString@@0@Z
??0CG_DzSplashwin@@QAE@IHKKK@Z
??1CG_DzSplashwin@@UAE@XZ
??1CG_Calendar_@@UAE@XZ
?DLLGetDay@CG_Calendar_@@QAEXPAVCString@@PAVCWnd@@@Z
?TWO_Dlg@CG_Calendar_@@QAEIPAVCString@@VCPoint@@PAVCWnd@@H@Z

g_dbcomlibr

??0G_DirectSQL@@QAE@XZ
?OnGetFieldValue@G_BulkDataSource@@QAE?AVCString@@V2@H@Z
??1G_DirectSQL@@QAE@XZ
?OnGetRecordCount@G_BulkDataSource@@QAEHXZ
?OnRetrievalSQLOpen@G_BulkDataSource@@QAE_NVCString@@@Z
??1G_BulkDataSource@@QAE@XZ
??0G_BulkDataSource@@QAE@XZ
?OnGetFieldValue@G_BulkDataSource@@QAE?AVCString@@HH@Z

g_lhelp

?XHelp_SITEM_GetData@@YGHAAVCStringArray@@0@Z
?XHelp_SITEM_Dlg@@YGHPAD000HH@Z

g_prndialogr

?SetPrnList@CG_PrnDlg@@QAEXPAVCG_PrnList@@@Z
?Create@CG_PrnDlg@@QAEHXZ
?Init@CG_PrnDlg@@QAEXPAVCView@@GGGG@Z
?SetNeoXPath@CG_PrnDlg@@QAEXPAD@Z
?SetScriptFileName@CG_PrnDlg@@QAEXHPAD@Z
?AddContentString@CG_PrnDlg@@QAEXPAD@Z
?GetPrintContnetCombo@CG_PrnDlg@@QAEPAVCComboBox@@XZ
??0CG_PrnDlg@@QAE@PAVCWnd@@@Z
?GetOrientButton@CG_PrnDlg@@QAEPAVCButton@@H@Z
??1CG_PrnDlg@@UAE@XZ

g_printlistr

?GetPageDataCnt@CG_PrnList@@QAEHH@Z
?BeginPrint@CG_PrnList@@QAEHH@Z
?UseFixScript@CG_PrnList@@QAEXPAD@Z
?SetDefCell@CG_PrnList@@QAEXPADH@Z
?SetScript@CG_PrnList@@QAEXPAVCDC@@PAUCPrintInfo@@PAVCString@@PADH@Z
?SetScale@CG_PrnList@@QAEXHH@Z
?SetOrg@CG_PrnList@@QAEXHHVCString@@@Z
?SetFileSave@CG_PrnList@@QAEXHHHVCString@@H@Z
?SetApproval@CG_PrnList@@QAEXHQAY0BA@DFF@Z
?EndPage@CG_PrnList@@QAEXPAUCPrintInfo@@HVCString@@@Z
?SetValue@CG_PrnList@@QAEXIPADHHPAUtagLOGFONTA@@@Z
?GetDefCellHeight@CG_PrnList@@QAEHXZ
?GetStartDataPosition@CG_PrnList@@QAEHXZ
?RunScript@CG_PrnList@@QAEXPADHHH@Z
?StartPage@CG_PrnList@@QAEXH@Z
?SetSubHeader@CG_PrnList@@QAEXHVCString@@H@Z
?SetLine@CG_PrnList@@QAEXIIHPAUtagLOGPEN@@@Z
?SetBkColor@CG_PrnList@@QAEXIKH@Z
?EndPrint@CG_PrnList@@QAEXXZ
??0CG_PrnList@@QAE@XZ
??1CG_PrnList@@UAE@XZ
?SetSideLine@CG_PrnList@@QAEXIPAUtagLOGPEN@@@Z

g_dzprintpreviewdll

??0CDzPrintPreviewState@@QAE@XZ
?classCDzPrintPreview@CDzPrintPreview@@2UCRuntimeClass@@B

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0d1b7c3a85e6e7411530e8b2256f1a5

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

advapi32

g_langutilr

g_util

g_dznxframeworkr

g_onegridr

g_ugridr

g_dzctrlr

g_dbcomlibr

g_lhelp

g_prndialogr

g_printlistr

g_dzprintpreviewdll

Sections

.text Size: 92KB - Virtual size: 90KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 24KB - Virtual size: 27KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 92KB - Virtual size: 90KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 24KB - Virtual size: 27KB

.rsrc
Size: 24KB - Virtual size: 22KB