454f305fbe2862152ab65f07002ef97f6f793ce5c170673124eee0e26086ebbe

Sharing

Copy URL

Twitter E-mail

General

Target

454f305fbe2862152ab65f07002ef97f6f793ce5c170673124eee0e26086ebbe
Size

13.4MB
MD5

581a53e3bf613ee7808a7bd4a6759abd
SHA1

cc09343b2b9effefd612a764996704cac9ff6681
SHA256

454f305fbe2862152ab65f07002ef97f6f793ce5c170673124eee0e26086ebbe
SHA512

aecd47fbfc1a1dafc1c2b964c1959c94f4aaca5751ad5fb1526aa9748ea5e7b463dbb4956c014ba17a0ce57ed948279b515124ad5ea57357a1d4ceaefd794f99
SSDEEP

98304:dMuOELbLtSXsGx4dmSlKbm2vl08SPmoMF0JXcmfBGiMxkzMi0+Gpe0XOHfEKLSPo:AEn3P8zSPmXF0SmfQFxkzMiFUXOu7U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
454f305fbe2862152ab65f07002ef97f6f793ce5c170673124eee0e26086ebbe

Files

454f305fbe2862152ab65f07002ef97f6f793ce5c170673124eee0e26086ebbe
.exe windows:4 windows x64 arch:x64

6aec03cd8352f51437d9c2127bd1de47

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

libcurl

curl_easy_cleanup
curl_easy_escape
curl_easy_init
curl_easy_perform
curl_easy_setopt
curl_free
curl_global_init
curl_share_init
curl_share_setopt
curl_slist_append
curl_slist_free_all
curl_version_info

avcodec-60

av_packet_alloc
av_packet_free
av_packet_rescale_ts
avcodec_alloc_context3
avcodec_find_encoder
avcodec_free_context
avcodec_get_name
avcodec_open2
avcodec_parameters_from_context
avcodec_receive_packet
avcodec_send_frame

avformat-60

av_dump_format
av_interleaved_write_frame
av_write_trailer
avformat_alloc_output_context2
avformat_free_context
avformat_new_stream
avformat_write_header
avio_closep
avio_open

avutil-58

av_channel_layout_from_mask
av_dict_copy
av_dict_free
av_frame_alloc
av_frame_free
av_frame_get_buffer
av_frame_make_writable
av_log_set_level
av_opt_set
av_opt_set_int
av_opt_set_sample_fmt
av_rescale_q
av_rescale_rnd
av_samples_fill_arrays
av_strerror

swresample-4

swr_alloc
swr_convert
swr_free
swr_get_delay
swr_init

swscale-7

sws_freeContext
sws_getCachedContext
sws_scale

libfreetype

FT_Done_Face
FT_Done_FreeType
FT_Error_String
FT_Get_Char_Index
FT_Get_Kerning
FT_Init_FreeType
FT_Library_Version
FT_Load_Char
FT_Load_Glyph
FT_New_Memory_Face
FT_Set_Pixel_Sizes

libopusfile

op_channel_count
op_open_memory
op_pcm_total
op_read

libpng16-16

png_create_info_struct
png_create_read_struct
png_create_write_struct
png_destroy_info_struct
png_destroy_read_struct
png_destroy_write_struct
png_get_bit_depth
png_get_channels
png_get_color_type
png_get_compression_type
png_get_error_ptr
png_get_filter_type
png_get_image_height
png_get_image_width
png_get_interlace_type
png_get_io_ptr
png_get_rowbytes
png_get_valid
png_read_image
png_read_info
png_read_update_info
png_set_IHDR
png_set_error_fn
png_set_expand_gray_1_2_4_to_8
png_set_palette_to_rgb
png_set_read_fn
png_set_sig_bytes
png_set_strip_16
png_set_tRNS_to_alpha
png_set_write_fn
png_sig_cmp
png_write_end
png_write_image
png_write_info

sdl2

SDL_CloseAudioDevice
SDL_CreateWindow
SDL_DestroyWindow
SDL_EventState
SDL_FlashWindow
SDL_GL_CreateContext
SDL_GL_DeleteContext
SDL_GL_GetDrawableSize
SDL_GL_MakeCurrent
SDL_GL_SetAttribute
SDL_GL_SetSwapInterval
SDL_GL_SwapWindow
SDL_GetClipboardText
SDL_GetClosestDisplayMode
SDL_GetCurrentAudioDriver
SDL_GetCurrentDisplayMode
SDL_GetDesktopDisplayMode
SDL_GetDisplayBounds
SDL_GetDisplayMode
SDL_GetDisplayName
SDL_GetError
SDL_GetKeyboardState
SDL_GetMouseState
SDL_GetNumDisplayModes
SDL_GetNumVideoDisplays
SDL_GetRelativeMouseState
SDL_GetScancodeFromKey
SDL_GetVersion
SDL_GetWindowDisplayIndex
SDL_GetWindowFlags
SDL_GetWindowFromID
SDL_GetWindowSize
SDL_Init
SDL_InitSubSystem
SDL_JoystickGetAxis
SDL_JoystickGetGUID
SDL_JoystickGetGUIDString
SDL_JoystickGetHat
SDL_JoystickInstanceID
SDL_JoystickName
SDL_JoystickNumAxes
SDL_JoystickNumBalls
SDL_JoystickNumButtons
SDL_JoystickNumHats
SDL_JoystickOpen
SDL_MinimizeWindow
SDL_NumJoysticks
SDL_OpenAudioDevice
SDL_PauseAudioDevice
SDL_PollEvent
SDL_PumpEvents
SDL_Quit
SDL_QuitSubSystem
SDL_RestoreWindow
SDL_SetClipboardText
SDL_SetHint
SDL_SetRelativeMouseMode
SDL_SetTextInputRect
SDL_SetWindowBordered
SDL_SetWindowDisplayMode
SDL_SetWindowFullscreen
SDL_SetWindowGrab
SDL_SetWindowPosition
SDL_SetWindowResizable
SDL_SetWindowSize
SDL_ShowSimpleMessageBox
SDL_StartTextInput
SDL_StopTextInput
SDL_Vulkan_CreateSurface
SDL_Vulkan_GetInstanceExtensions
SDL_WasInit
SDL_free
SDL_getenv
SDL_setenv

sqlite3

sqlite3_bind_int
sqlite3_bind_text
sqlite3_close
sqlite3_column_int
sqlite3_column_text
sqlite3_errmsg
sqlite3_exec
sqlite3_finalize
sqlite3_open
sqlite3_prepare_v2
sqlite3_reset
sqlite3_step

vulkan-1

vkCreateInstance
vkDestroyInstance
vkEnumeratePhysicalDevices
vkGetPhysicalDeviceFormatProperties
vkGetPhysicalDeviceProperties
vkGetPhysicalDeviceQueueFamilyProperties
vkGetPhysicalDeviceMemoryProperties
vkGetInstanceProcAddr
vkCreateDevice
vkDestroyDevice
vkEnumerateDeviceExtensionProperties
vkEnumerateInstanceLayerProperties
vkGetDeviceQueue
vkQueueSubmit
vkQueueWaitIdle
vkDeviceWaitIdle
vkAllocateMemory
vkFreeMemory
vkMapMemory
vkUnmapMemory
vkFlushMappedMemoryRanges
vkInvalidateMappedMemoryRanges
vkBindBufferMemory
vkBindImageMemory
vkGetBufferMemoryRequirements
vkGetImageMemoryRequirements
vkCreateFence
vkDestroyFence
vkResetFences
vkWaitForFences
vkCreateSemaphore
vkDestroySemaphore
vkCreateBuffer
vkDestroyBuffer
vkCreateImage
vkDestroyImage
vkGetImageSubresourceLayout
vkCreateImageView
vkDestroyImageView
vkCreateShaderModule
vkDestroyShaderModule
vkCreateGraphicsPipelines
vkDestroyPipeline
vkCreatePipelineLayout
vkDestroyPipelineLayout
vkCreateSampler
vkDestroySampler
vkCreateDescriptorSetLayout
vkDestroyDescriptorSetLayout
vkCreateDescriptorPool
vkDestroyDescriptorPool
vkAllocateDescriptorSets
vkFreeDescriptorSets
vkUpdateDescriptorSets
vkCreateFramebuffer
vkDestroyFramebuffer
vkCreateRenderPass
vkDestroyRenderPass
vkCreateCommandPool
vkDestroyCommandPool
vkAllocateCommandBuffers
vkFreeCommandBuffers
vkBeginCommandBuffer
vkEndCommandBuffer
vkResetCommandBuffer
vkCmdBindPipeline
vkCmdSetViewport
vkCmdSetScissor
vkCmdBindDescriptorSets
vkCmdBindIndexBuffer
vkCmdBindVertexBuffers
vkCmdDraw
vkCmdDrawIndexed
vkCmdCopyBuffer
vkCmdCopyImage
vkCmdBlitImage
vkCmdCopyBufferToImage
vkCmdClearAttachments
vkCmdPipelineBarrier
vkCmdPushConstants
vkCmdBeginRenderPass
vkCmdEndRenderPass
vkCmdExecuteCommands
vkDestroySurfaceKHR
vkGetPhysicalDeviceSurfaceSupportKHR
vkGetPhysicalDeviceSurfaceCapabilitiesKHR
vkGetPhysicalDeviceSurfaceFormatsKHR
vkGetPhysicalDeviceSurfacePresentModesKHR
vkCreateSwapchainKHR
vkDestroySwapchainKHR
vkGetSwapchainImagesKHR
vkAcquireNextImageKHR
vkQueuePresentKHR

advapi32

CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
OpenProcessToken
RegCloseKey
RegCreateKeyExW
RegDeleteTreeW
RegGetValueW
RegOpenKeyExW
RegSetValueExW
SystemFunction036

bcrypt

BCryptGenRandom

imm32

ImmGetCandidateListW
ImmGetContext
ImmReleaseContext

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
AttachConsole
CancelIo
CloseHandle
CompareStringOrdinal
ConnectNamedPipe
CopyFileExW
CreateDirectoryW
CreateEventW
CreateFileMappingA
CreateFileW
CreateHardLinkW
CreateMutexA
CreateNamedPipeW
CreateProcessW
CreateSemaphoreW
CreateSymbolicLinkW
CreateThread
CreateToolhelp32Snapshot
DeleteCriticalSection
DeleteFileW
DeviceIoControl
DisconnectNamedPipe
DuplicateHandle
EnterCriticalSection
ExitProcess
FindClose
FindFirstFileW
FindNextFileW
FlushFileBuffers
FormatMessageA
FormatMessageW
FreeEnvironmentStringsW
FreeLibrary
GetCommandLineW
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetEnvironmentStringsW
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameW
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOverlappedResult
GetProcAddress
GetProcessHeap
GetProcessId
GetStartupInfoA
GetStdHandle
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetUserDefaultLocaleName
GetWindowsDirectoryW
HeapAlloc
HeapFree
HeapReAlloc
InitOnceBeginInitialize
InitOnceComplete
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LocalFree
MapViewOfFile
Module32FirstW
Module32NextW
MoveFileExW
MultiByteToWideChar
OutputDebugStringW
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReadFileEx
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
RtlUnwindEx
RtlVirtualUnwind
SetConsoleTextAttribute
SetCurrentDirectoryW
SetEnvironmentVariableW
SetFileAttributesW
SetFileInformationByHandle
SetFilePointerEx
SetFileTime
SetHandleInformation
SetLastError
SetThreadStackGuarantee
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SleepEx
SwitchToThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryEnterCriticalSection
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteFileEx
__C_specific_handler

msvcrt

___lc_codepage_func
___mb_cur_max_func
__getmainargs
__initenv
__iob_func
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_commode
_errno
_fdopen
_fileno
_fmode
_fpreset
_get_osfhandle
_getpid
_initterm
_localtime64
_lock
_lseeki64
_onexit
_open_osfhandle
_setjmp
_stricmp
_strnicmp
_time64
_unlock
_vsprintf_p
_wgetenv
_wopen
abort
acos
bsearch
calloc
exit
fclose
ferror
fflush
fprintf
fputc
fputs
fread
free
fseek
ftell
fwrite
getc
islower
isspace
isupper
isxdigit
localeconv
log10
malloc
memchr
memcmp
memcpy
memmove
memset
rand
realloc
signal
srand
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncat
strncmp
strrchr
strspn
strtok
strtol
strtoul
tolower
ungetc
vfprintf
wcscmp
wcslen
wcstombs
longjmp
_write
_read
_open
_close

ntdll

NtCreateFile
NtReadFile
NtWriteFile
RtlCaptureContext
RtlLookupFunctionEntry
RtlNtStatusToDosError

ole32

CoInitializeEx
CoUninitialize

opengl32

glAlphaFunc
glBindTexture
glBlendFunc
glClear
glClearColor
glColorPointer
glDeleteTextures
glDepthMask
glDisable
glDisableClientState
glDrawArrays
glDrawElements
glEnable
glEnableClientState
glFinish
glGenTextures
glGetIntegerv
glGetString
glLoadIdentity
glMatrixMode
glOrtho
glPixelStorei
glReadBuffer
glReadPixels
glScissor
glTexCoordPointer
glTexImage2D
glTexParameterf
glTexParameteri
glTexSubImage2D
glVertexPointer
glViewport
wglGetCurrentDC
wglGetProcAddress

libwinpthread-1

clock_gettime
nanosleep
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_signal
pthread_cond_wait
pthread_create
pthread_detach
pthread_getspecific
pthread_join
pthread_key_create
pthread_key_delete
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_unlock
pthread_num_processors_np
pthread_once
pthread_self
pthread_setspecific

shell32

CommandLineToArgvW
SHChangeNotify
ShellExecuteExW

shlwapi

PathIsRelativeW

libssp-0

__stack_chk_fail
__stack_chk_guard

userenv

GetUserProfileDirectoryW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

ws2_32

WSACleanup
WSADuplicateSocketW
WSAGetLastError
WSARecv
WSASend
WSASocketW
WSAStartup
WSAStringToAddressA
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
getpeername
getsockname
getsockopt
htons
ioctlsocket
listen
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

steam_api

SteamAPI_GetHSteamPipe
SteamAPI_ISteamApps_GetLaunchCommandLine
SteamAPI_ISteamFriends_ClearRichPresence
SteamAPI_ISteamFriends_GetPersonaName
SteamAPI_ISteamFriends_SetRichPresence
SteamAPI_Init
SteamAPI_ManualDispatch_FreeLastCallback
SteamAPI_ManualDispatch_GetNextCallback
SteamAPI_ManualDispatch_Init
SteamAPI_ManualDispatch_RunFrame
SteamAPI_Shutdown
SteamAPI_SteamApps_v008
SteamAPI_SteamFriends_v017

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 700KB - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 306KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 596KB - Virtual size: 595KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 650KB - Virtual size: 650KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/83
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/96
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/107
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/118
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/134
Size: 568KB - Virtual size: 567KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/148
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/164
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/180
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6aec03cd8352f51437d9c2127bd1de47

Headers

DLL Characteristics

File Characteristics

Imports

libcurl

avcodec-60

avformat-60

avutil-58

swresample-4

swscale-7

libfreetype

libopusfile

libpng16-16

sdl2

sqlite3

vulkan-1

advapi32

bcrypt

imm32

kernel32

msvcrt

ntdll

ole32

opengl32

libwinpthread-1

shell32

shlwapi

libssp-0

userenv

version

ws2_32

steam_api

Sections

.text Size: 3.7MB - Virtual size: 3.7MB

.data Size: 52KB - Virtual size: 52KB

.rdata Size: 700KB - Virtual size: 700KB

/4 Size: 512B - Virtual size: 4B

.pdata Size: 100KB - Virtual size: 99KB

.xdata Size: 122KB - Virtual size: 122KB

.bss Size: - Virtual size: 306KB

.idata Size: 26KB - Virtual size: 25KB

.CRT Size: 512B - Virtual size: 112B

.tls Size: 512B - Virtual size: 16B

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 23KB - Virtual size: 22KB

/14 Size: 21KB - Virtual size: 21KB

/29 Size: 596KB - Virtual size: 595KB

/45 Size: 2.3MB - Virtual size: 2.3MB

/57 Size: 107KB - Virtual size: 106KB

/71 Size: 650KB - Virtual size: 650KB

/83 Size: 85KB - Virtual size: 85KB

/96 Size: 1.3MB - Virtual size: 1.3MB

/107 Size: 181KB - Virtual size: 180KB

/118 Size: 512B - Virtual size: 198B

/134 Size: 568KB - Virtual size: 567KB

/148 Size: 47KB - Virtual size: 46KB

/164 Size: 408KB - Virtual size: 407KB

/180 Size: 72KB - Virtual size: 72KB

.text
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 52KB - Virtual size: 52KB

.rdata
Size: 700KB - Virtual size: 700KB

/4
Size: 512B - Virtual size: 4B

.pdata
Size: 100KB - Virtual size: 99KB

.xdata
Size: 122KB - Virtual size: 122KB

.bss
Size: - Virtual size: 306KB

.idata
Size: 26KB - Virtual size: 25KB

.CRT
Size: 512B - Virtual size: 112B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 23KB - Virtual size: 22KB

/14
Size: 21KB - Virtual size: 21KB

/29
Size: 596KB - Virtual size: 595KB

/45
Size: 2.3MB - Virtual size: 2.3MB

/57
Size: 107KB - Virtual size: 106KB

/71
Size: 650KB - Virtual size: 650KB

/83
Size: 85KB - Virtual size: 85KB

/96
Size: 1.3MB - Virtual size: 1.3MB

/107
Size: 181KB - Virtual size: 180KB

/118
Size: 512B - Virtual size: 198B

/134
Size: 568KB - Virtual size: 567KB

/148
Size: 47KB - Virtual size: 46KB

/164
Size: 408KB - Virtual size: 407KB

/180
Size: 72KB - Virtual size: 72KB