2415A9802D148C045B4EA067D1BACC2D87A184FBDBA86B9F97C602478A4E0B16[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

2415A9802D148C045B4EA067D1BACC2D87A184FBDBA86B9F97C602478A4E0B16.zip
Size

956KB
MD5

818ee7202725c998da635455ad59b0de
SHA1

c0fb59f7af045c6f58a36ad51fe99ec712efcc12
SHA256

965516e1bb72f62ea4387d49706a292d2f33c3c0cb523a134efc3b0e02225924
SHA512

21251b75f30e61500cbca1314d7de6933b9bc89a49a9125d97b4ffa054f7e277e449696e91a3818fce6dd7cca5b42b4aaa14625040f4d06ab37dc076479b4b9e
SSDEEP

24576:fW1dLezON2jTDZWw13WHvgyLsAvLTn2uGO0:O1SEYTZ3WHvTAMn2uGO0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2415A9802D148C045B4EA067D1BACC2D87A184FBDBA86B9F97C602478A4E0B16

Files

2415A9802D148C045B4EA067D1BACC2D87A184FBDBA86B9F97C602478A4E0B16.zip
.zip

Password: infected
2415A9802D148C045B4EA067D1BACC2D87A184FBDBA86B9F97C602478A4E0B16
.exe windows:4 windows x86 arch:x86

Password: infected.

230038c1f6f1bac9fd3b82e21f09cfb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetUserNameA
GetUserNameW
RegCloseKey
RegCreateKeyExA
RegFlushKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CompareStringA
CompareStringW
CopyFileA
CopyFileW
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileW
CreateMutexA
CreateProcessA
CreateProcessW
CreateThread
DebugBreak
DeleteCriticalSection
DeleteFileA
DeleteFileW
DosDateTimeToFileTime
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FindResourceA
FindResourceW
FormatMessageA
FormatMessageW
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetComputerNameA
GetComputerNameW
GetCurrencyFormatA
GetCurrencyFormatW
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetDiskFreeSpaceW
GetEnvironmentStrings
GetExitCodeThread
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetFullPathNameW
GetLastError
GetLocalTime
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProfileStringA
GetShortPathNameA
GetShortPathNameW
GetStartupInfoA
GetStdHandle
GetStringTypeExA
GetStringTypeExW
GetStringTypeW
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemTime
GetTempFileNameA
GetTempFileNameW
GetTempPathA
GetTempPathW
GetThreadLocale
GetTickCount
GetUserDefaultLCID
GetVersion
GetVersionExA
GetVolumeInformationW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LockResource
MoveFileA
MoveFileW
MulDiv
MultiByteToWideChar
RaiseException
ReadFile
RemoveDirectoryA
RemoveDirectoryW
ResetEvent
ResumeThread
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetThreadLocale
SetThreadPriority
SizeofResource
Sleep
SuspendThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
WriteProfileStringA
lstrcmpA
lstrcpyA
lstrcpynA
lstrlenA
GetVolumeInformationA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA
VerQueryValueW

wsock32

WSAAsyncGetHostByName
WSAAsyncSelect
WSACleanup
WSAGetLastError
WSAStartup
accept
closesocket
connect
gethostbyname
gethostname
htons
ioctlsocket
listen
ntohs
recv
recvfrom
send
sendto
setsockopt
socket
bind

winspool.drv

ClosePrinter
DocumentPropertiesA
EnumPrintersA
OpenPrinterA

comctl32

ImageList_Add
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_Draw
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_Write
ord17

comdlg32

ChooseColorA
ChooseFontA
FindTextA
GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA
PrintDlgA
ReplaceTextA
GetSaveFileNameW

gdi32

Arc
BitBlt
CloseEnhMetaFile
CombineRgn
CopyEnhMetaFileA
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateDIBitmap
CreateEnhMetaFileA
CreateFontIndirectA
CreateHalftonePalette
CreateICA
CreatePalette
CreatePenIndirect
CreatePolygonRgn
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteObject
Ellipse
EndDoc
EndPage
EnumFontFamiliesExA
ExcludeClipRect
ExtCreatePen
ExtSelectClipRgn
ExtTextOutA
ExtTextOutW
GdiFlush
GetBitmapBits
GetBkColor
GetBkMode
GetBrushOrgEx
GetClipBox
GetCurrentPositionEx
GetDCOrgEx
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetObjectA
GetPaletteEntries
GetPixel
GetRgnBox
GetStockObject
GetSystemPaletteEntries
GetTextAlign
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointA
GetTextExtentPointW
GetTextMetricsA
GetWinMetaFileBits
GetWindowOrgEx
IntersectClipRect
LPtoDP
LineTo
MaskBlt
MoveToEx
PatBlt
Pie
PlayEnhMetaFile
PolyPolyline
Polygon
Polyline
RealizePalette
RectVisible
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetMapMode
SetPixel
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWinMetaFileBits
SetWindowExtEx
SetWindowOrgEx
StartDocA
StartPage
StretchBlt
TextOutA
TranslateCharsetInfo
UnrealizeObject

shell32

ExtractAssociatedIconA
ExtractAssociatedIconW
ExtractIconExA
ExtractIconExW
SHBrowseForFolderA
SHFileOperationA
SHFreeNameMappings
SHGetFileInfoA
ShellExecuteA
ShellExecuteW
Shell_NotifyIconA
SHGetPathFromIDListA

user32

ActivateKeyboardLayout
AdjustWindowRectEx
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CallWindowProcW
CharLowerA
CharLowerBuffA
CharLowerBuffW
CharLowerW
CharNextA
CharUpperA
CharUpperBuffA
CharUpperBuffW
CharUpperW
CheckMenuItem
ChildWindowFromPoint
ClientToScreen
CloseClipboard
CreateIcon
CreateMDIWindowW
CreateMenu
CreatePopupMenu
CreateWindowExA
CreateWindowExW
DefFrameProcA
DefFrameProcW
DefMDIChildProcA
DefMDIChildProcW
DefWindowProcA
DefWindowProcW
DeferWindowPos
DeleteMenu
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageA
DispatchMessageW
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIcon
DrawIconEx
DrawMenuBar
DrawTextA
DrawTextW
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndPaint
EnumClipboardFormats
EnumThreadWindows
EnumWindows
EqualRect
FillRect
FindWindowA
FrameRect
GetActiveWindow
GetCapture
GetCaretPos
GetClassInfoA
GetClassInfoW
GetClassNameA
GetClassNameW
GetClientRect
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyNameTextA
GetKeyNameTextW
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutList
GetKeyboardState
GetKeyboardType
GetLastActivePopup
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuItemInfoW
GetMenuState
GetMenuStringA
GetMenuStringW
GetMessagePos
GetMessageTime
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSystemMenu
GetSystemMetrics
GetTopWindow
GetUpdateRect
GetWindow
GetWindowDC
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
InsertMenuA
InsertMenuItemA
InsertMenuItemW
IntersectRect
InvalidateRect
IsCharAlphaA
IsCharAlphaNumericA
IsCharUpperA
IsChild
IsClipboardFormatAvailable
IsDialogMessageA
IsDialogMessageW
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadKeyboardLayoutA
LoadStringA
LoadStringW
MapVirtualKeyA
MapVirtualKeyW
MapWindowPoints
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
OemToCharA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostMessageW
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassA
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
ScrollWindowEx
SendDlgItemMessageA
SendMessageA
SendMessageTimeoutA
SendMessageW
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenu
SetMenuItemInfoA
SetMenuItemInfoW
SetPropA
SetRect
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
SetWindowsHookExW
ShowCursor
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA
GetSysColor

ole32

CoCreateInstance
CoGetClassObject
CoInitialize
CoTaskMemFree
CoUninitialize
CreateStreamOnHGlobal
IsAccelerator
IsEqualGUID
OleDraw
OleSetMenuDescriptor
ProgIDFromCLSID
StringFromCLSID

oleaut32

CreateErrorInfo
GetActiveObject
GetErrorInfo
SafeArrayCreate
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayRedim
SetErrorInfo
SysAllocString
SysAllocStringLen
SysFreeString
SysReAllocStringLen
VarBoolFromStr
VarBstrFromBool
VarBstrFromCy
VarBstrFromDate
VarCyFromStr
VarDateFromStr
VarI4FromStr
VarNeg
VarNot
VarR8FromStr
VariantChangeType
VariantChangeTypeEx
VariantClear
VariantCopy
VariantCopyInd
VariantInit

Exports

Exports

@$xp$14Sicomp@TsiLang
@$xp$15Sicomp@TsiLabel
@$xp$15Sicomp@pStrings
@$xp$16Sicomp@siComp__9
@$xp$16Xipanel@TXiPanel
@$xp$17Sicomp@TTextStyle
@$xp$17Sicomp@siComp__61
@$xp$17Sicomp@siComp__71
@$xp$17Tntforms@TTntForm
@$xp$17Vrclasses@TVrRect
@$xp$18Memini@TMemIniFile
@$xp$18Sicomp@TMyHKeyType
@$xp$18Tntforms@TFormProc
@$xp$18Tntforms@TTntFrame
@$xp$18Vrborder@TVrBorder
@$xp$18Vrclasses@TVrBevel
@$xp$18Vrthreads@TVrTimer
@$xp$18Xibutton@TBtnState
@$xp$18Xibutton@TXiButton
@$xp$19Memini@TMemIniEntry
@$xp$19Memini@TMemIniValue
@$xp$19Sicomp@TStringsType
@$xp$19Trctrls@TTrCheckBox
@$xp$19Trctrls@TTrGroupBox
@$xp$19Vrclasses@TVrFont3D
@$xp$19Vrclasses@TVrGlyphs
@$xp$19Vrclasses@TVrMinMax
@$xp$19Vrcontrols@TVrAngle
@$xp$19Vrcontrols@TVrInt10
@$xp$19Vrsystem@TVrDirScan
@$xp$19Vrsystem@TVrRunOnce
@$xp$19Vrthreads@TVrThread
@$xp$20Kahlbevel@TKahlBevel
@$xp$20Sicomp@TTestModeInfo
@$xp$20Sicomp@TTestModeKind
@$xp$20Sicomp@TsiCustomLang
@$xp$20Sicomp@TsiLangOption
@$xp$20Tntstdctrls@TTntEdit
@$xp$20Tntstdctrls@TTntMemo
@$xp$20Trctrls@TTransObject
@$xp$20Vrblotter@TVrBlotter
@$xp$20Vrclasses@TVrBitmaps
@$xp$20Vrclasses@TVrIntList
@$xp$20Vrclasses@TVrPalette
@$xp$20Vrcontrols@TVrColInt
@$xp$20Vrcontrols@TVrIntMax
@$xp$20Vrcontrols@TVrMaxInt
@$xp$20Vrcontrols@TVrRowInt
@$xp$20Vrdesktop@TVrDeskTop
@$xp$20Vrspinner@TVrSpinner
@$xp$20Vrsystem@TVrCopyFile
@$xp$20Vrsystem@TVrTrayIcon
@$xp$20Xipanel@TColorScheme
@$xp$21Memini@TCustomIniFile
@$xp$21Sicomp@ELanguageError
@$xp$21Sicomp@TTranslateType
@$xp$21Sicomp@TsiFormStorage
@$xp$21Sicomp@TsiLangOptions
@$xp$21Tntextctrls@TTntBevel
@$xp$21Tntextctrls@TTntImage
@$xp$21Tntextctrls@TTntPanel
@$xp$21Tntextctrls@TTntShape
@$xp$21Tntmenus@TTntMainMenu
@$xp$21Tntmenus@TTntMenuItem
@$xp$21Tntstdctrls@TTntLabel
@$xp$21Trctrls@TTrRadioGroup
@$xp$21Vrbuttons@TVrShapeBtn
@$xp$21Vrcontrols@TVrByteInt
@$xp$21Vrcontrols@TVrDegrees
@$xp$21Vrcontrols@TVrWordInt
@$xp$21Vrsystem@TVrKeyStatus
@$xp$21Vrsystem@TVrOpenEvent
@$xp$21Xibutton@TColorScheme
@$xp$22Sicomp@TSIBFileManager
@$xp$22Sicomp@TsiExtendedItem
@$xp$22Sicomp@TsiPropInfoList
@$xp$22Tntactnlist@ITntAction
@$xp$22Tntactnlist@TTntAction
@$xp$22Tntclasses@TTntStrings
@$xp$22Tntforms@TTntScrollBox
@$xp$22Tntmenus@TTntPopupList
@$xp$22Tntmenus@TTntPopupMenu
@$xp$22Tntstdctrls@TTntButton
@$xp$22Trctrls@TTrRadioButton
@$xp$22Vrblinkled@TVrBlinkLed
@$xp$22Vrbuttons@TVrAniButton
@$xp$22Vrbuttons@TVrShadowPen
@$xp$22Vrclasses@TVrNumGlyphs
@$xp$22Vrclasses@TVrPaletteEx
@$xp$22Vrcontrols@TVrHoursInt
@$xp$22Vrspinner@VrSpinner__3
@$xp$22Vrsystem@TVrBitmapList
@$xp$22Vrsystem@TVrPathChange
@$xp$22Vrsystem@TVrStringList
@$xp$22Vrthreads@TVrTimerType
@$xp$22Xibutton@TButtonLayout
@$xp$22Xipanel@TFillDirection
@$xp$23Sicomp@TsiExtendedItems
@$xp$23Tntclasses@TAnsiStrings
@$xp$23Tntgraphics@TTntPicture
@$xp$23Tntstdactns@TTntEditCut
@$xp$23Tntstdctrls@TTntListBox
@$xp$23Tntsysutils@TSearchRecW
@$xp$23Vrborder@TVrBorderShape
@$xp$23Vrborder@TVrBorderStyle
@$xp$23Vrbuttons@TVrDemoButton
@$xp$23Vrclasses@TVrBevelSpace
@$xp$23Vrclasses@TVrBevelStyle
@$xp$23Vrclasses@TVrBevelWidth
@$xp$23Vrclasses@TVrCollection
@$xp$23Vrclasses@TVrPersistent
@$xp$23Vrcontrols@EVrException
@$xp$23Vrcontrols@TVrAlignment
@$xp$23Vrcontrols@TVrComponent
@$xp$23Vrcontrols@TVrDrawStyle
@$xp$23Vrcontrols@TVrTextAngle
@$xp$23Vrcontrols@TVrTickMarks
@$xp$23Vrdesign@TVrBitmapImage
@$xp$23Vrspinner@TTimeBtnState
@$xp$23Vrspinner@TVrSpinButton
@$xp$23Vrsystem@TFileAttribute
@$xp$23Vrsystem@TVrLocateEvent
@$xp$23Vrsysutils@TVrShapeType
@$xp$24Sicomp@TsiLangDispatcher
@$xp$24Sicomp@TsiSortCollection
@$xp$24Silangcombo@TsiLangCombo
@$xp$24Tntclipbrd@TTntClipboard
@$xp$24Tntcontrols@TWideCaption
@$xp$24Tntextctrls@TTntPaintBox
@$xp$24Tntextctrls@TTntSplitter
@$xp$24Tntforms@TTntApplication
@$xp$24Tntforms@TTntCustomFrame
@$xp$24Tntstdactns@TTntEditCopy
@$xp$24Tntstdactns@TTntEditUndo
@$xp$24Tntstdactns@TTntFileExit
@$xp$24Tntstdactns@TTntFileOpen
@$xp$24Tntstdactns@TTntFontEdit
@$xp$24Tntstdactns@TTntPrintDlg
@$xp$24Tntstdctrls@TTntCheckBox
@$xp$24Tntstdctrls@TTntComboBox
@$xp$24Tntstdctrls@TTntGroupBox
@$xp$24Vrbuttons@TVrHyperButton
@$xp$24Vrbuttons@TVrPowerButton
@$xp$24Vrbuttons@TVrShadowBrush
@$xp$24Vrclasses@TVrBorderWidth
@$xp$24Vrclasses@TVrFont3DStyle
@$xp$24Vrclasses@TVrTextOutline
@$xp$24Vrcontrols@TVrChangeLink
@$xp$24Vrcontrols@TVrMinutesInt
@$xp$24Vrcontrols@TVrPercentInt
@$xp$24Vrcontrols@TVrSecondsInt
@$xp$24Vrdesign@TVrBitmapButton
@$xp$24Vrsystem@TFileAttributes
@$xp$24Vrsystem@TVrKeyStateType
@$xp$25Sicomp@TsiItemSortCompare
@$xp$25Silangcombo@TLanguageInfo
@$xp$25Tntclasses@TTntFileStream
@$xp$25Tntclasses@TTntStringList
@$xp$25Tntclasses@TntClasses__11
@$xp$25Tntdialogs@TTntOpenDialog
@$xp$25Tntdialogs@TTntSaveDialog
@$xp$25Tntstdactns@TTntEditPaste
@$xp$25Tntstdctrls@TTntScrollBar
@$xp$25Tntsysutils@ETntUserError
@$xp$25Tntsysutils@TWideFileName
@$xp$25Trctrls@TCustomTrCheckBox
@$xp$25Trctrls@TCustomTrGroupBox
@$xp$25Vrbuttons@TVrShadowButton
@$xp$25Vrcontrols@TVrOrientation
@$xp$25Vrdesign@TVrCheckBoxState
@$xp$25Vrsystem@TVrKeyStateTypes
@$xp$25Vrsystem@TVrOverwriteMode
@$xp$25Vrsystem@TVrProgressEvent
@$xp$25Vrthreads@TVrSystemThread
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Silangcombo@TLanguageInfos
@$xp$26Tntactnlist@TTntActionList
@$xp$26Tntcontrols@TTntHintWindow
@$xp$26Tntextctrls@TTntControlBar
@$xp$26Tntextctrls@TTntRadioGroup
@$xp$26Tntstdactns@TTntEditAction
@$xp$26Tntstdactns@TTntEditDelete
@$xp$26Tntstdactns@TTntFileAction
@$xp$26Tntstdactns@TTntFileSaveAs
@$xp$26Tntstdactns@TTntHelpAction
@$xp$26Tntstdactns@TTntHelpOnHelp
@$xp$26Tntstdactns@TTntHintAction
@$xp$26Tntstdactns@TTntSearchFind
@$xp$26Tntstdctrls@TTntCustomEdit
@$xp$26Tntstdctrls@TTntCustomMemo
@$xp$26Tntstdctrls@TTntStaticText
@$xp$26Tntsystem@TTntSystemUpdate
@$xp$26Vrblinkled@TVrBlinkLedType
@$xp$26Vrblotter@TCustomVrBlotter
@$xp$26Vrdesign@TVrBitmapCheckBox
@$xp$26Vrdesign@TVrCheckBoxGlyphs
@$xp$26Vrsystem@TVrCopyErrorEvent
@$xp$26Vrsystem@TVrCustomTrayIcon
@$xp$26Vrsystem@TVrOverwriteEvent
@$xp$26Xiprogressbar@TColorScheme
@$xp$27Sicomp@TsiExtendedItemClass
@$xp$27Sicomp@TsiStringsCollection
@$xp$27Tntclasses@TSetAnsiStrEvent
@$xp$27Tntclasses@TTntMemoryStream
@$xp$27Tntextctrls@TTntCustomPanel
@$xp$27Tntstdactns@TTntColorSelect
@$xp$27Tntstdactns@TTntWindowClose
@$xp$27Tntstdctrls@TTntCustomLabel
@$xp$27Tntstdctrls@TTntMemoStrings
@$xp$27Tntstdctrls@TTntRadioButton
@$xp$27Tntwidestrings@TWideStrings
@$xp$27Trctrls@TCustomTrRadioGroup
@$xp$27Vrclasses@TVrCollectionItem
@$xp$27Vrcontrols@TVrCustomControl
@$xp$27Vrcontrols@TVrGradDirection
@$xp$27Vrcontrols@TVrProgressStyle
@$xp$27Vrcontrols@TVrTextAlignment
@$xp$27Vrdesign@TVrCheckBoxTexture
@$xp$27Vrspinner@TVrSpinButtonType
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Tntactnlist@TTntCustomAction
@$xp$28Tntclasses@TTntStreamCharSet
@$xp$28Tntstdactns@TTntFileOpenWith
@$xp$28Tntstdactns@TTntHelpContents
@$xp$28Tntstdactns@TTntSearchAction
@$xp$28Tntstdactns@TTntWindowAction
@$xp$28Tntsysutils@ETntGeneralError
@$xp$28Vrblinkled@TVrCustomBlinkLed
@$xp$28Vrbuttons@TVrShadowDirection
@$xp$28Vrcontrols@TVrGraphicControl
@$xp$28Vrdesign@TVrRadioButtonState
@$xp$28Vrspinner@TVrTimerSpinButton
@$xp$28Xiprogressbar@TFillDirection
@$xp$28Xiprogressbar@TXiProgressBar
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Sicomp@TLinkToDispatcherEvent
@$xp$29Tntclasses@TListTargetCompare
@$xp$29Tntclasses@TTntResourceStream
@$xp$29Tntdialogs@TIncludeItemEventW
@$xp$29Tntstdactns@TTntEditSelectAll
@$xp$29Tntstdactns@TTntSearchReplace
@$xp$29Tntstdactns@TTntWindowArrange
@$xp$29Tntstdactns@TTntWindowCascade
@$xp$29Tntstdctrls@TTntCustomListBox
@$xp$29Tntstdctrls@TWMCharMsgHandler
@$xp$29Tntsystem@TTntSystemUpdateSet
@$xp$29Tntsysutils@ETntInternalError
@$xp$29Vrcontrols@TVrImageTextLayout
@$xp$29Vrcontrols@TVrScrollDirection
@$xp$29Vrcontrols@TVrSharedComponent
@$xp$29Vrcontrols@TVrTransparentMode
@$xp$29Vrdesign@TVrBitmapRadioButton
@$xp$29Vrdesign@TVrRadioButtonGlyphs
@$xp$30Silangcombo@TLanguageInfoClass
@$xp$30Tntactnlist@TTntMenuActionLink
@$xp$30Tntclasses@TBufferedAnsiString
@$xp$30Tntclasses@TBufferedWideString
@$xp$30Tntstdactns@TTntFilePrintSetup
@$xp$30Tntstdactns@TTntSearchFindNext
@$xp$30Tntstdctrls@TTntCustomCheckBox
@$xp$30Tntstdctrls@TTntCustomComboBox
@$xp$30Tntstdctrls@TTntCustomGroupBox
@$xp$30Tntstdctrls@TTntListBoxStrings
@$xp$30Tntwidestrings@TWideStringItem
@$xp$30Vrbuttons@TVrShadowButtonStyle
@$xp$30Vrclasses@TVrBevelOutlineStyle
@$xp$30Vrcontrols@TVrHoursChangeEvent
@$xp$30Vrdesign@TVrRadioButtonTexture
@$xp$31Sicomp@TsiStringsCollectionItem
@$xp$31Tntclasses@TWideComponentHelper
@$xp$31Tntstdactns@TTntHelpTopicSearch
@$xp$31Tntstdactns@TTntSearchFindFirst
@$xp$31Tntstdctrls@ITntComboFindString
@$xp$31Tntstdctrls@TLBGetWideDataEvent
@$xp$31Tntstdctrls@TTntComboBoxStrings
@$xp$31Vrcontrols@TCustomControlCanvas
@$xp$32Shdocvw_tlb@TCppCScriptErrorList
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Sicomp@TsiStringsCollectionClass
@$xp$32Tntactnlist@TTntButtonActionLink
@$xp$32Tntclasses@TBufferedStreamReader
@$xp$32Tntcontrols@TTntCustomHintWindow
@$xp$32Tntextctrls@TTntCustomControlBar
@$xp$32Tntextctrls@TTntCustomRadioGroup
@$xp$32Tntstdctrls@TAccessCustomListBox
@$xp$32Tntstdctrls@TTntCustomStaticText
@$xp$32Vrcontrols@TGraphicControlCanvas
@$xp$32Vrcontrols@TVrCustomImageControl
@$xp$32Vrcontrols@TVrMinutesChangeEvent
@$xp$32Vrcontrols@TVrSecondsChangeEvent
@$xp$33Shdocvw_tlb@TCppSearchAssistantOC
@$xp$33Tntactnlist@TTntControlActionLink
@$xp$33Tntstdactns@TTntHelpContextAction
@$xp$33Tntstdactns@TTntWindowMinimizeAll
@$xp$33Vrcontrols@TVrGraphicImageControl
@$xp$34Shdocvw_tlb@TCppShellBrowserWindow
@$xp$34Tntactnlist@TTntListViewActionLink
@$xp$34Tntcontrols@IWideCustomListControl
@$xp$34Tntformatstrutils@EFormatSpecError
@$xp$34Tntstdactns@TTntCommonDialogAction
@$xp$34Tntstdactns@TTntWindowTileVertical
@$xp$34Tntsysutils@TTntTextLineBreakStyle
@$xp$34Tntwidestrings@IWideStringsAdapter
@$xp$34Tntwidestrings@PWideStringItemList
@$xp$34Tntwidestrings@TWideStringItemList
@$xp$35Vrblinkled@TVrUserBlinkLedDrawEvent
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Tntactnlist@TTntComboBoxExActionLink
@$xp$36Tntactnlist@TTntToolButtonActionLink
@$xp$36Tntactnlist@TTntWinControlActionLink
@$xp$36Tntstdactns@TTntWindowTileHorizontal
@$xp$37Tntactnlist@TTntSpeedButtonActionLink
@$xp$37Tntclasses@TWideStringListSortCompare
@$xp$37Tntwidestrings@TWideStringsEnumerator
@$xp$39Tntactnlist@TUpgradeActionListItemsProc
@$xp$44Tntclasses@TAnsiStringsForWideStringsAdapter
@@Acercade@Finalize
@@Acercade@Initialize
@@Automatas@Finalize
@@Automatas@Initialize
@@Calibracion@Finalize
@@Calibracion@Initialize
@@Configurarimpresion@Finalize
@@Configurarimpresion@Initialize
@@Detalleensayo@Finalize
@@Detalleensayo@Initialize
@@Formrealizandoensayo@Finalize
@@Formrealizandoensayo@Initialize
@@Functions1@Finalize
@@Functions1@Initialize
@@Grilla@Finalize
@@Grilla@Initialize
@@Listadoensayos@Finalize
@@Listadoensayos@Initialize
@@Main@Finalize
@@Main@Initialize
@@Maquina@Finalize
@@Maquina@Initialize
@@Nuevoensayo@Finalize
@@Nuevoensayo@Initialize
@@Regulacion_notas@Finalize
@@Regulacion_notas@Initialize
@@Shdocvw_ocx@Finalize
@@Shdocvw_ocx@Initialize
@@Splashscreen@Finalize
@@Splashscreen@Initialize
@@Threadvariables@Finalize
@@Threadvariables@Initialize
@@Unidades@Finalize
@@Unidades@Initialize
@@Velocidadcarrera@Finalize
@@Velocidadcarrera@Initialize
@@Vistaprevia@Finalize
@@Vistaprevia@Initialize
@Kahlbevel@Finalization$qqrv
@Kahlbevel@Register$qqrv
@Kahlbevel@TKahlBevel@
@Kahlbevel@TKahlBevel@$bctr$qqrp18Classes@TComponent
@Kahlbevel@TKahlBevel@Paint$qqrv
@Kahlbevel@TKahlBevel@setColorBg$qqrx15Graphics@TColor
@Kahlbevel@TKahlBevel@setColorLight$qqrx15Graphics@TColor
@Kahlbevel@TKahlBevel@setColorShadow$qqrx15Graphics@TColor
@Kahlbevel@TKahlBevel@setInvertir$qqrxo
@Kahlbevel@initialization$qqrv
@Memini@ExtractTranslation$qqrx17System@AnsiStringxucxi
@Memini@Finalization$qqrv
@Memini@SearchBM$qqr17System@AnsiStringt1
@Memini@TCustomIniFile@
@Memini@TCustomIniFile@$bctr$qqrx17System@AnsiString
@Memini@TCustomIniFile@DeleteKey$qqrx17System@AnsiStringt1
@Memini@TCustomIniFile@EraseSection$qqrx17System@AnsiString
@Memini@TCustomIniFile@ReadBool$qqrx17System@AnsiStringt1o
@Memini@TCustomIniFile@ReadDate$qqrx17System@AnsiStringt116System@TDateTime
@Memini@TCustomIniFile@ReadDateTime$qqrx17System@AnsiStringt116System@TDateTime
@Memini@TCustomIniFile@ReadFloat$qqrx17System@AnsiStringt1d
@Memini@TCustomIniFile@ReadInteger$qqrx17System@AnsiStringt1i
@Memini@TCustomIniFile@ReadSection$qqrx17System@AnsiStringp16Classes@TStrings
@Memini@TCustomIniFile@ReadSectionValues$qqrx17System@AnsiStringp16Classes@TStrings
@Memini@TCustomIniFile@ReadSections$qqrp16Classes@TStrings
@Memini@TCustomIniFile@ReadString$qqrx17System@AnsiStringt1t1
@Memini@TCustomIniFile@ReadTime$qqrx17System@AnsiStringt116System@TDateTime
@Memini@TCustomIniFile@SectionExists$qqrx17System@AnsiString
@Memini@TCustomIniFile@UpdateFile$qqrv
@Memini@TCustomIniFile@ValueExists$qqrx17System@AnsiStringt1
@Memini@TCustomIniFile@WriteBool$qqrx17System@AnsiStringt1o
@Memini@TCustomIniFile@WriteDate$qqrx17System@AnsiStringt116System@TDateTime
@Memini@TCustomIniFile@WriteDateTime$qqrx17System@AnsiStringt116System@TDateTime
@Memini@TCustomIniFile@WriteFloat$qqrx17System@AnsiStringt1d
@Memini@TCustomIniFile@WriteInteger$qqrx17System@AnsiStringt1i
@Memini@TCustomIniFile@WriteString$qqrx17System@AnsiStringt1t1
@Memini@TCustomIniFile@WriteTime$qqrx17System@AnsiStringt116System@TDateTime
@Memini@TMemIniEntry@
@Memini@TMemIniEntry@$bctr$qqrv
@Memini@TMemIniEntry@$bdtr$qqrv
@Memini@TMemIniEntry@Add$qqrx17System@AnsiString
@Memini@TMemIniEntry@Add$qqrx17System@AnsiStringt1
@Memini@TMemIniEntry@Assign$qqrp19Classes@TPersistent
@Memini@TMemIniEntry@Clear$qqrv
@Memini@TMemIniEntry@Delete$qqri
@Memini@TMemIniEntry@Find$qqrx17System@AnsiStringri
@Memini@TMemIniEntry@GetStringCount$qqrv
@Memini@TMemIniEntry@GetValue$qqri
@Memini@TMemIniEntry@SetValue$qqri17System@AnsiString
@Memini@TMemIniEntry@divideKeyValue$qqrx17System@AnsiStringr17System@AnsiStringt2
@Memini@TMemIniEntry@getEntry$qqri
@Memini@TMemIniEntry@getKey$qqri
@Memini@TMemIniFile@
@Memini@TMemIniFile@$bctr$qqrx17System@AnsiString
@Memini@TMemIniFile@$bdtr$qqrv
@Memini@TMemIniFile@AddSection$qqrx17System@AnsiString
@Memini@TMemIniFile@Clear$qqrv
@Memini@TMemIniFile@DeleteKey$qqrx17System@AnsiStringt1
@Memini@TMemIniFile@EraseSection$qqrx17System@AnsiString
@Memini@TMemIniFile@GetStrings$qqrp16Classes@TStrings
@Memini@TMemIniFile@LoadValues$qqrv
@Memini@TMemIniFile@ReadSection$qqrx17System@AnsiStringp16Classes@TStrings
@Memini@TMemIniFile@ReadSectionValues$qqrx17System@AnsiStringp16Classes@TStrings
@Memini@TMemIniFile@ReadSections$qqrp16Classes@TStrings
@Memini@TMemIniFile@ReadString$qqrx17System@AnsiStringt1t1
@Memini@TMemIniFile@Rename$qqrx17System@AnsiStringo
@Memini@TMemIniFile@SetStrings$qqrp16Classes@TStrings
@Memini@TMemIniFile@UpdateFile$qqrv
@Memini@TMemIniFile@WriteString$qqrx17System@AnsiStringt1t1
@Memini@TMemIniValue@
@Memini@initialization$qqrv
@Shdocvw_ocx@Register$qqrv
@Shdocvw_tlb@TCppCScriptErrorList@
@Shdocvw_tlb@TCppCScriptErrorList@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppCScriptErrorList@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppCScriptErrorList@Connect$qqrv
@Shdocvw_tlb@TCppCScriptErrorList@ConnectTo$qqr91%TComInterface$28Shdocvw_tlb@IScriptErrorListpx5_GUID$e&@Shdocvw_tlb@IID_IScriptErrorList$%
@Shdocvw_tlb@TCppCScriptErrorList@Disconnect$qqrv
@Shdocvw_tlb@TCppCScriptErrorList@GetDefaultInterface$qv
@Shdocvw_tlb@TCppCScriptErrorList@GetDunk$qqrv
@Shdocvw_tlb@TCppCScriptErrorList@InitServerData$qqrv
@Shdocvw_tlb@TCppInternetExplorer@
@Shdocvw_tlb@TCppInternetExplorer@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppInternetExplorer@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Connect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ConnectTo$qqr83%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$e&@Shdocvw_tlb@IID_IWebBrowser2$%
@Shdocvw_tlb@TCppInternetExplorer@Disconnect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GetDefaultInterface$qv
@Shdocvw_tlb@TCppInternetExplorer@GetDunk$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InitServerData$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppSearchAssistantOC@
@Shdocvw_tlb@TCppSearchAssistantOC@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppSearchAssistantOC@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppSearchAssistantOC@Connect$qqrv
@Shdocvw_tlb@TCppSearchAssistantOC@ConnectTo$qqr97%TComInterface$31Shdocvw_tlb@ISearchAssistantOC3px5_GUID$e&@Shdocvw_tlb@IID_ISearchAssistantOC3$%
@Shdocvw_tlb@TCppSearchAssistantOC@Disconnect$qqrv
@Shdocvw_tlb@TCppSearchAssistantOC@GetDefaultInterface$qv
@Shdocvw_tlb@TCppSearchAssistantOC@GetDunk$qqrv
@Shdocvw_tlb@TCppSearchAssistantOC@InitServerData$qqrv
@Shdocvw_tlb@TCppSearchAssistantOC@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppShellBrowserWindow@
@Shdocvw_tlb@TCppShellBrowserWindow@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellBrowserWindow@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellBrowserWindow@Connect$qqrv
@Shdocvw_tlb@TCppShellBrowserWindow@ConnectTo$qqr83%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$e&@Shdocvw_tlb@IID_IWebBrowser2$%
@Shdocvw_tlb@TCppShellBrowserWindow@Disconnect$qqrv
@Shdocvw_tlb@TCppShellBrowserWindow@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellBrowserWindow@GetDunk$qqrv
@Shdocvw_tlb@TCppShellBrowserWindow@InitServerData$qqrv
@Shdocvw_tlb@TCppShellBrowserWindow@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppShellUIHelper@
@Shdocvw_tlb@TCppShellUIHelper@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellUIHelper@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Connect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ConnectTo$qqr87%TComInterface$26Shdocvw_tlb@IShellUIHelperpx5_GUID$e&@Shdocvw_tlb@IID_IShellUIHelper$%
@Shdocvw_tlb@TCppShellUIHelper@Disconnect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellUIHelper@GetDunk$qqrv
@Shdocvw_tlb@TCppShellUIHelper@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@
@Shdocvw_tlb@TCppShellWindows@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellWindows@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellWindows@Connect$qqrv
@Shdocvw_tlb@TCppShellWindows@ConnectTo$qqr85%TComInterface$25Shdocvw_tlb@IShellWindowspx5_GUID$e&@Shdocvw_tlb@IID_IShellWindows$%
@Shdocvw_tlb@TCppShellWindows@Disconnect$qqrv
@Shdocvw_tlb@TCppShellWindows@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellWindows@GetDunk$qqrv
@Shdocvw_tlb@TCppShellWindows@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppWebBrowser@
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp6HWND__
@Shdocvw_tlb@TCppWebBrowser@CControlData
@Shdocvw_tlb@TCppWebBrowser@ClientToWindow$qqrpit1
@Shdocvw_tlb@TCppWebBrowser@CreateControl$qqrv
@Shdocvw_tlb@TCppWebBrowser@DEF_CTL_INTF
@Shdocvw_tlb@TCppWebBrowser@EventDispIDs
@Shdocvw_tlb@TCppWebBrowser@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp10tagVARIANTt3
@Shdocvw_tlb@TCppWebBrowser@GetDefaultInterface$qqrv
@Shdocvw_tlb@TCppWebBrowser@GetProperty$qqrpb
@Shdocvw_tlb@TCppWebBrowser@GetWordBoolProp$qqri
@Shdocvw_tlb@TCppWebBrowser@GoBack$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoForward$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoHome$qqrv

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 79KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 183KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 242KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 116KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected.

230038c1f6f1bac9fd3b82e21f09cfb6

Headers

File Characteristics

Imports

advapi32

kernel32

version

wsock32

winspool.drv

comctl32

comdlg32

gdi32

shell32

user32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.data Size: 79KB - Virtual size: 100KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 15KB - Virtual size: 16KB

.edata Size: 183KB - Virtual size: 184KB

.rsrc Size: 242KB - Virtual size: 244KB

.reloc Size: 116KB - Virtual size: 136KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.data
Size: 79KB - Virtual size: 100KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 15KB - Virtual size: 16KB

.edata
Size: 183KB - Virtual size: 184KB

.rsrc
Size: 242KB - Virtual size: 244KB

.reloc
Size: 116KB - Virtual size: 136KB