Static task
static1
Behavioral task
behavioral1
Sample
0a40f04c4687a30f37502d3e3841547867ac90390d9abbba9610f84157a45256.exe
Resource
win7-20231025-en
windows7-x64
Behavioral task
behavioral2
Sample
0a40f04c4687a30f37502d3e3841547867ac90390d9abbba9610f84157a45256.exe
Resource
win10v2004-20231020-en
windows10-2004-x64
General
-
Target
0a40f04c4687a30f37502d3e3841547867ac90390d9abbba9610f84157a45256
-
Size
551KB
-
MD5
08ea5dcc87bcac4e9249a954fd56e118
-
SHA1
4666cc5c0ad34a08e51634420259ca4cdc923e48
-
SHA256
0a40f04c4687a30f37502d3e3841547867ac90390d9abbba9610f84157a45256
-
SHA512
f22470e87398c8ceca701c9259ff21d0eaad1c76cdc3d4685a920a429e66c79a09a188e33d1aa48c8aab98693e1fc75b8031778a4da3f35b8b71f89b1eaf1c93
-
SSDEEP
6144:02mwJfIrMoGiQha+ScmshkvOznSVHJm+kYhgcmshkvOznSVHJm+x2bzdbRea1R8O:02mcwJGi+3Eekv2+LkYhGekv2+LwXF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0a40f04c4687a30f37502d3e3841547867ac90390d9abbba9610f84157a45256
Files
-
0a40f04c4687a30f37502d3e3841547867ac90390d9abbba9610f84157a45256.exe windows:6 windows x64
748899a07cc44ee374f106b9e3e748ca
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
gthcplayer
GTHCPLAYER_FiniLib
GTHCPLAYER_StopSound
GTHCPLAYER_PlaySound
GTHCPLAYER_SetOSD
GTHCPLAYER_Capture
GTHCPLAYER_InputData
GTHCPLAYER_Close
GTHCPLAYER_Open
GTHCPLAYER_InitLib
qt5widgets
?qt_metacall@QLabel@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QLabel@@UEAAPEAXPEBD@Z
?qt_metacall@QWidget@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QWidget@@UEAAPEAXPEBD@Z
?staticMetaObject@QLabel@@2UQMetaObject@@B
?staticMetaObject@QWidget@@2UQMetaObject@@B
?widget@QLayoutItem@@UEAAPEAVQWidget@@XZ
?takeAt@QBoxLayout@@UEAAPEAVQLayoutItem@@H@Z
?spacerItem@QSpacerItem@@UEAAPEAV1@XZ
?spacerItem@QLayoutItem@@UEAAPEAVQSpacerItem@@XZ
?sizeHint@QSpacerItem@@UEBA?AVQSize@@XZ
?sizeHint@QFrame@@UEBA?AVQSize@@XZ
?sizeHint@QBoxLayout@@UEBA?AVQSize@@XZ
?setGeometry@QSpacerItem@@UEAAXAEBVQRect@@@Z
?setGeometry@QBoxLayout@@UEAAXAEBVQRect@@@Z
?qt_metacast@QVBoxLayout@@UEAAPEAXPEBD@Z
?qt_metacast@QHBoxLayout@@UEAAPEAXPEBD@Z
?qt_metacast@QFrame@@UEAAPEAXPEBD@Z
?setHorizontalStretch@QSizePolicy@@QEAAXH@Z
?qt_metacast@QAction@@UEAAPEAXPEBD@Z
?qt_metacall@QVBoxLayout@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QHBoxLayout@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QFrame@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QAction@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?paintEvent@QWidget@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QFrame@@MEAAXPEAVQPaintEvent@@@Z
?mousePressEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?minimumSize@QSpacerItem@@UEBA?AVQSize@@XZ
?minimumSize@QBoxLayout@@UEBA?AVQSize@@XZ
?minimumHeightForWidth@QLayoutItem@@UEBAHH@Z
?minimumHeightForWidth@QBoxLayout@@UEBAHH@Z
?metaObject@QVBoxLayout@@UEBAPEBUQMetaObject@@XZ
?metaObject@QHBoxLayout@@UEBAPEBUQMetaObject@@XZ
?metaObject@QFrame@@UEBAPEBUQMetaObject@@XZ
?metaObject@QAction@@UEBAPEBUQMetaObject@@XZ
?maximumSize@QSpacerItem@@UEBA?AVQSize@@XZ
?maximumSize@QBoxLayout@@UEBA?AVQSize@@XZ
?layout@QLayoutItem@@UEAAPEAVQLayout@@XZ
?layout@QLayout@@UEAAPEAV1@XZ
?itemAt@QBoxLayout@@UEBAPEAVQLayoutItem@@H@Z
?isEmpty@QSpacerItem@@UEBA_NXZ
?isEmpty@QLayout@@UEBA_NXZ
?invalidate@QLayoutItem@@UEAAXXZ
?invalidate@QBoxLayout@@UEAAXXZ
?indexOf@QLayout@@UEBAHPEAVQWidget@@@Z
?heightForWidth@QLayoutItem@@UEBAHH@Z
?heightForWidth@QBoxLayout@@UEBAHH@Z
?hasHeightForWidth@QLayoutItem@@UEBA_NXZ
?hasHeightForWidth@QBoxLayout@@UEBA_NXZ
?geometry@QSpacerItem@@UEBA?AVQRect@@XZ
?geometry@QLayout@@UEBA?AVQRect@@XZ
?expandingDirections@QSpacerItem@@UEBA?AV?$QFlags@W4Orientation@Qt@@@@XZ
?expandingDirections@QBoxLayout@@UEBA?AV?$QFlags@W4Orientation@Qt@@@@XZ
?event@QFrame@@MEAA_NPEAVQEvent@@@Z
?event@QAction@@MEAA_NPEAVQEvent@@@Z
?count@QBoxLayout@@UEBAHXZ
?controlTypes@QLayoutItem@@UEBA?AV?$QFlags@W4ControlType@QSizePolicy@@@@XZ
?controlTypes@QLayout@@UEBA?AV?$QFlags@W4ControlType@QSizePolicy@@@@XZ
?childEvent@QLayout@@MEAAXPEAVQChildEvent@@@Z
?changeEvent@QFrame@@MEAAXPEAVQEvent@@@Z
?addItem@QBoxLayout@@UEAAXPEAVQLayoutItem@@@Z
?getOpenFileName@QFileDialog@@SA?AVQString@@PEAVQWidget@@AEBV2@11PEAV2@V?$QFlags@W4Option@QFileDialog@@@@@Z
?setFrameShadow@QFrame@@QEAAXW4Shadow@1@@Z
?setFrameShape@QFrame@@QEAAXW4Shape@1@@Z
??1QFrame@@UEAA@XZ
??0QFrame@@QEAA@PEAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
?setText@QAction@@QEAAXAEBVQString@@@Z
??1QAction@@UEAA@XZ
??0QAction@@QEAA@PEAVQObject@@@Z
??1QVBoxLayout@@UEAA@XZ
??0QVBoxLayout@@QEAA@PEAVQWidget@@@Z
??1QHBoxLayout@@UEAA@XZ
??0QHBoxLayout@@QEAA@XZ
?setSpacing@QBoxLayout@@QEAAXH@Z
?addLayout@QBoxLayout@@QEAAXPEAVQLayout@@H@Z
?addWidget@QBoxLayout@@QEAAXPEAVQWidget@@HV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?addSpacerItem@QBoxLayout@@QEAAXPEAVQSpacerItem@@@Z
?setContentsMargins@QLayout@@QEAAXHHHH@Z
?setMargin@QLayout@@QEAAXH@Z
??1QSpacerItem@@UEAA@XZ
??0QSpacerItem@@QEAA@HHW4Policy@QSizePolicy@@0@Z
??6@YA?AVQDebug@@V0@PEBVQWidget@@@Z
?setSizePolicy@QWidget@@QEAAXVQSizePolicy@@@Z
?sizePolicy@QWidget@@QEBA?AVQSizePolicy@@XZ
?resize@QWidget@@QEAAXHH@Z
?setStyleSheet@QWidget@@QEAAXAEBVQString@@@Z
?setWindowTitle@QWidget@@QEAAXAEBVQString@@@Z
?setMaximumSize@QWidget@@QEAAXAEBVQSize@@@Z
?setMinimumSize@QWidget@@QEAAXAEBVQSize@@@Z
?winId@QWidget@@QEBA_KXZ
?setVerticalStretch@QSizePolicy@@QEAAXH@Z
?changeEvent@QLabel@@MEAAXPEAVQEvent@@@Z
?hasHeightForWidth@QSizePolicy@@QEBA_NXZ
?setHeightForWidth@QSizePolicy@@QEAAX_N@Z
??0QSizePolicy@@QEAA@W4Policy@0@0W4ControlType@0@@Z
?show@QWidget@@QEAAXXZ
?setSizeIncrement@QWidget@@QEAAXHH@Z
?isEnabled@QWidget@@QEBA_NXZ
?setFixedSize@QWidget@@QEAAXHH@Z
?enterEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?exec@QApplication@@SAHXZ
??1QApplication@@UEAA@XZ
?leaveEvent@QWidget@@MEAAXPEAVQEvent@@@Z
??0QLabel@@QEAA@PEAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
??1QLabel@@UEAA@XZ
??0QApplication@@QEAA@AEAHPEAPEADH@Z
?sizeHint@QWidget@@UEBA?AVQSize@@XZ
?mouseReleaseEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?minimumSizeHint@QWidget@@UEBA?AVQSize@@XZ
?keyPressEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?heightForWidth@QWidget@@UEBAHH@Z
?focusOutEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QWidget@@MEAA_N_N@Z
?focusInEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?event@QWidget@@MEAA_NPEAVQEvent@@@Z
?contextMenuEvent@QWidget@@MEAAXPEAVQContextMenuEvent@@@Z
?changeEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?setAutoFillBackground@QWidget@@QEAAX_N@Z
?setAttribute@QWidget@@QEAAXW4WidgetAttribute@Qt@@_N@Z
?update@QWidget@@QEAAXXZ
?setToolTip@QWidget@@QEAAXAEBVQString@@@Z
?setPalette@QWidget@@QEAAXAEBVQPalette@@@Z
?palette@QWidget@@QEBAAEBVQPalette@@XZ
?setMaximumHeight@QWidget@@QEAAXH@Z
?setMinimumHeight@QWidget@@QEAAXH@Z
?height@QWidget@@QEBAHXZ
?width@QWidget@@QEBAHXZ
??1QWidget@@UEAA@XZ
??0QWidget@@QEAA@PEAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
?wheelEvent@QWidget@@MEAAXPEAVQWheelEvent@@@Z
?tabletEvent@QWidget@@MEAAXPEAVQTabletEvent@@@Z
?sizeHint@QLabel@@UEBA?AVQSize@@XZ
?showEvent@QWidget@@MEAAXPEAVQShowEvent@@@Z
?sharedPainter@QWidget@@MEBAPEAVQPainter@@XZ
?setVisible@QWidget@@UEAAX_N@Z
?resizeEvent@QWidget@@MEAAXPEAVQResizeEvent@@@Z
?redirected@QWidget@@MEBAPEAVQPaintDevice@@PEAVQPoint@@@Z
?paintEvent@QLabel@@MEAAXPEAVQPaintEvent@@@Z
?paintEngine@QWidget@@UEBAPEAVQPaintEngine@@XZ
?nativeEvent@QWidget@@MEAA_NAEBVQByteArray@@PEAXPEAJ@Z
?moveEvent@QWidget@@MEAAXPEAVQMoveEvent@@@Z
?mouseMoveEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?minimumSizeHint@QLabel@@UEBA?AVQSize@@XZ
?metric@QWidget@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z
?keyReleaseEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QLabel@@MEAAXPEAVQKeyEvent@@@Z
?inputMethodQuery@QWidget@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MEAAXPEAVQInputMethodEvent@@@Z
?initPainter@QWidget@@MEBAXPEAVQPainter@@@Z
?hideEvent@QWidget@@MEAAXPEAVQHideEvent@@@Z
?heightForWidth@QLabel@@UEBAHH@Z
?hasHeightForWidth@QWidget@@UEBA_NXZ
?focusOutEvent@QLabel@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QLabel@@MEAA_N_N@Z
?focusInEvent@QLabel@@MEAAXPEAVQFocusEvent@@@Z
?event@QLabel@@MEAA_NPEAVQEvent@@@Z
?dropEvent@QWidget@@MEAAXPEAVQDropEvent@@@Z
?dragMoveEvent@QWidget@@MEAAXPEAVQDragMoveEvent@@@Z
?dragLeaveEvent@QWidget@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragEnterEvent@QWidget@@MEAAXPEAVQDragEnterEvent@@@Z
?devType@QWidget@@UEBAHXZ
?contextMenuEvent@QLabel@@MEAAXPEAVQContextMenuEvent@@@Z
?closeEvent@QWidget@@MEAAXPEAVQCloseEvent@@@Z
?actionEvent@QWidget@@MEAAXPEAVQActionEvent@@@Z
?mouseReleaseEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?setPixmap@QLabel@@QEAAXAEBVQPixmap@@@Z
qt5gui
?x@QMouseEvent@@QEBAHXZ
?pos@QMouseEvent@@QEBA?AVQPoint@@XZ
?setBrush@QPalette@@QEAAXW4ColorGroup@1@W4ColorRole@1@AEBVQBrush@@@Z
??1QPalette@@QEAA@XZ
??0QPalette@@QEAA@AEBV0@@Z
?fillRect@QPainter@@QEAAXAEBVQRect@@AEBVQColor@@@Z
?drawText@QPainter@@QEAAXAEBVQRectF@@AEBVQString@@AEBVQTextOption@@@Z
?setPen@QPainter@@QEAAXAEBVQPen@@@Z
?setFont@QPainter@@QEAAXAEBVQFont@@@Z
??1QPainter@@QEAA@XZ
??0QPainter@@QEAA@PEAVQPaintDevice@@@Z
?width@QFontMetrics@@QEBAHAEBVQString@@H@Z
?height@QFontMetrics@@QEBAHXZ
??1QFontMetrics@@QEAA@XZ
??0QFontMetrics@@QEAA@AEBVQFont@@@Z
??4QFont@@QEAAAEAV0@$$QEAV0@@Z
??1QFont@@QEAA@XZ
??0QFont@@QEAA@AEBVQString@@HH_N@Z
??0QFont@@QEAA@XZ
??0QPixmap@@QEAA@AEBVQString@@PEBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
??1QPixmap@@UEAA@XZ
?width@QPixmap@@QEBAHXZ
?height@QPixmap@@QEBAHXZ
??0QColor@@QEAA@XZ
??0QColor@@QEAA@HHHH@Z
??4QColor@@QEAAAEAV0@$$QEAV0@@Z
??0QTextOption@@QEAA@XZ
??1QTextOption@@QEAA@XZ
??0QBrush@@QEAA@AEBVQColor@@W4BrushStyle@Qt@@@Z
??1QBrush@@QEAA@XZ
??0QPen@@QEAA@AEBVQColor@@@Z
??1QPen@@QEAA@XZ
qt5core
?addSecs@QDateTime@@QEBA?AV1@_J@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
?activate@QMetaObject@@SAXPEAVQObject@@PEBU1@HPEAPEAX@Z
?qUnregisterResourceData@@YA_NHPEBE00@Z
?qRegisterResourceData@@YA_NHPEBE00@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
??6QDebug@@QEAAAEAV0@_K@Z
??1QDebug@@QEAA@XZ
?fromTime_t@QDateTime@@SA?AV1@I@Z
?time@QDateTime@@QEBA?AVQTime@@XZ
?date@QDateTime@@QEBA?AVQDate@@XZ
?second@QTime@@QEBAHXZ
?minute@QTime@@QEBAHXZ
?hour@QTime@@QEBAHXZ
?day@QDate@@QEBAHXZ
?month@QDate@@QEBAHXZ
?year@QDate@@QEBAHXZ
?translate@QCoreApplication@@SA?AVQString@@PEBD00H@Z
?postEvent@QCoreApplication@@SAXPEAVQObject@@PEAVQEvent@@H@Z
??1QEvent@@UEAA@XZ
??0QEvent@@QEAA@W4Type@0@@Z
??0QSize@@QEAA@HH@Z
?connect@QObject@@SA?AVConnection@QMetaObject@@PEBV1@PEBD01W4ConnectionType@Qt@@@Z
?setObjectName@QObject@@QEAAXAEBVQString@@@Z
?objectName@QObject@@QEBA?AVQString@@XZ
?toLocal8Bit@QString@@QEGBA?AVQByteArray@@XZ
?data@QByteArray@@QEAAPEADXZ
??1QByteArray@@QEAA@XZ
??1Connection@QMetaObject@@QEAA@XZ
?connectSlotsByName@QMetaObject@@SAXPEAVQObject@@@Z
?debug@QMessageLogger@@QEBA?AVQDebug@@XZ
??0QMessageLogger@@QEAA@PEBDH0@Z
??0QString@@QEAA@XZ
?toString@QDateTime@@QEBA?AVQString@@AEBV2@@Z
?tr@QObject@@SA?AVQString@@PEBD0H@Z
??4QString@@QEAAAEAV0@$$QEAV0@@Z
?tr@QMetaObject@@QEBA?AVQString@@PEBD0H@Z
??0QRectF@@QEAA@AEBVQRect@@@Z
?setRect@QRect@@QEAAXHHHH@Z
??0QRect@@QEAA@XZ
?currentDateTime@QDateTime@@SA?AV1@XZ
??MQDateTime@@QEBA_NAEBV0@@Z
?msecsTo@QDateTime@@QEBA_JAEBV1@@Z
?addMSecs@QDateTime@@QEBA?AV1@_J@Z
??4QDateTime@@QEAAAEAV0@AEBV0@@Z
??4QDateTime@@QEAAAEAV0@$$QEAV0@@Z
??1QDateTime@@QEAA@XZ
??0QDateTime@@QEAA@AEBV0@@Z
??0QDateTime@@QEAA@XZ
?arg@QString@@QEBA?AV1@HHHVQChar@@@Z
??0QChar@@QEAA@UQLatin1Char@@@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?fromAscii_helper@QString@@CAPEAU?$QTypedArrayData@G@@PEBDH@Z
?fromUtf8@QString@@SA?AV1@PEBDH@Z
?append@QString@@QEAAAEAV1@AEBV1@@Z
??4QString@@QEAAAEAV0@AEBV0@@Z
??1QString@@QEAA@XZ
??0QString@@QEAA@AEBV0@@Z
kernel32
WriteConsoleW
SetEndOfFile
CreateFileW
GetConsoleCP
FlushFileBuffers
GetStringTypeW
SetStdHandle
LCMapStringW
CompareStringW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
GetTimeZoneInformation
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetFileType
GetCommandLineW
GetCommandLineA
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
ReadFile
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
SetLastError
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetProcAddress
GetModuleHandleW
CreateEventW
InitializeCriticalSectionAndSpinCount
CloseHandle
OutputDebugStringW
IsDebuggerPresent
RaiseException
GetLastError
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
user32
InvalidateRect
winmm
timeSetEvent
timeKillEvent
Sections
.text Size: 157KB - Virtual size: 156KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 371KB - Virtual size: 371KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ