02a0d7204541d9044139411ad20f19e0

Sharing

Copy URL Twitter E-mail

General

Target

02a0d7204541d9044139411ad20f19e0
Size

1.2MB
MD5

02a0d7204541d9044139411ad20f19e0
SHA1

f25a417e9868e2da785987fc8fe1c819f49b19b7
SHA256

b881d9025d71a454e6316e6bbeeba57a40607b420c4fd20134867e3d1f95c460
SHA512

4a35346236f132b428664cc0bd0f68fb3aa4353f1c4017023fa48cbff9a1f8671d10db9c1dd0c030e2d63a38e2b523c44414aec8f115106f63cb4896abce5a26
SSDEEP

24576:VwPuwsG491s2MP/uIHFOCMqN0DXVHV+hAdnjwRRRMfZ:KPWoOowwNaV+hajwRfMh

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 7 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/autowallpaper4ed.exe	upx
static1/unpack001/calendar4ed.exe	upx
static1/unpack001/colorpicker4ed.exe	upx
static1/unpack001/enterdesk.exe	upx
static1/unpack001/src/stick4ed.exe	upx
static1/unpack001/wallpaperdownload.exe	upx
static1/unpack001/wallpapers4ed.exe	upx

AutoIT Executable 7 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
static1/unpack002/out.upx	autoit_exe
static1/unpack003/out.upx	autoit_exe
static1/unpack004/out.upx	autoit_exe
static1/unpack005/out.upx	autoit_exe
static1/unpack006/out.upx	autoit_exe
static1/unpack007/out.upx	autoit_exe
static1/unpack008/out.upx	autoit_exe

Unsigned PE 14 IoCs

Checks for missing Authenticode signature.

resource
unpack001/autowallpaper4ed.exe
unpack002/out.upx
unpack001/calendar4ed.exe
unpack003/out.upx
unpack001/colorpicker4ed.exe
unpack004/out.upx
unpack001/enterdesk.exe
unpack005/out.upx
unpack001/src/stick4ed.exe
unpack006/out.upx
unpack001/wallpaperdownload.exe
unpack007/out.upx
unpack001/wallpapers4ed.exe
unpack008/out.upx

Files

02a0d7204541d9044139411ad20f19e0
.rar
autowallpaper4ed.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 460KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
calendar4ed.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 516KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
colorpicker4ed.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 460KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
enterdesk.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 512KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
imgs/ERASER.gif
.gif
imgs/Stretched.gif
.gif
imgs/add.png
.png
imgs/add_over.png
.png
imgs/auto.gif
.gif
imgs/bg.png
.png
imgs/big.png
.png
imgs/big_over.png
.png
imgs/calbg.png
.png
imgs/calblank.png
.png
imgs/centered.gif
.gif
imgs/close.png
.png
imgs/close_over.png
.png
imgs/colorpicker.png
.png
imgs/delete.gif
.gif
imgs/fav.png
.png
imgs/fav_over.png
.png
imgs/home.png
.png
imgs/home_over.png
.png
imgs/mange.png
.png
imgs/mange_over.png
.png
imgs/new.png
.png
imgs/new_over.png
.png
imgs/normal-exit.png
.png
imgs/normal-small.png
.png
imgs/normal.png
.png
imgs/over-exit.png
.png
imgs/over-small.png
.png
imgs/over.png
.png
imgs/pressed-exit.png
.png
imgs/pressed-small.png
.png
imgs/pressed.png
.png
imgs/search.png
.png
imgs/search_over.png
.png
imgs/site.png
.png
imgs/site_over.png
.png
imgs/tiled.gif
.gif
imgs/trans.gif
.gif
imgs/web.png
.png
imgs/web_over.png
.png
imgs/welcome.gif
.gif
imgs/zoom.gif
.gif
imgs/新云软件.url
.url
loading.html
.html
logo.ico
option.ini
src/stick4ed.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 516KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
wallpaperdownload.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 444KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
wallpapers4ed.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 512KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 87KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 518KB - Virtual size: 517KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 460KB

UPX1 Size: 265KB - Virtual size: 268KB

.rsrc Size: 34KB - Virtual size: 36KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 518KB - Virtual size: 517KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 12KB - Virtual size: 91KB

.rsrc Size: 41KB - Virtual size: 41KB

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 516KB

UPX1 Size: 265KB - Virtual size: 268KB

.rsrc Size: 89KB - Virtual size: 92KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 518KB - Virtual size: 517KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 12KB - Virtual size: 91KB

.rsrc Size: 96KB - Virtual size: 96KB

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 460KB

UPX1 Size: 265KB - Virtual size: 268KB

.rsrc Size: 34KB - Virtual size: 36KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 518KB - Virtual size: 517KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 12KB - Virtual size: 91KB

.rsrc Size: 41KB - Virtual size: 41KB

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 512KB

UPX1 Size: 265KB - Virtual size: 268KB

.rsrc Size: 85KB - Virtual size: 88KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 518KB - Virtual size: 517KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 12KB - Virtual size: 91KB

.rsrc Size: 93KB - Virtual size: 92KB

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 516KB

UPX1 Size: 265KB - Virtual size: 268KB

.rsrc Size: 89KB - Virtual size: 92KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 518KB - Virtual size: 517KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 12KB - Virtual size: 91KB

.rsrc Size: 96KB - Virtual size: 96KB

UPX0
Size: - Virtual size: 460KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 34KB - Virtual size: 36KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 41KB - Virtual size: 41KB

UPX0
Size: - Virtual size: 516KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 89KB - Virtual size: 92KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 96KB - Virtual size: 96KB

UPX0
Size: - Virtual size: 460KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 34KB - Virtual size: 36KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 41KB - Virtual size: 41KB

UPX0
Size: - Virtual size: 512KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 85KB - Virtual size: 88KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 93KB - Virtual size: 92KB

UPX0
Size: - Virtual size: 516KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 89KB - Virtual size: 92KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 96KB - Virtual size: 96KB

UPX0
Size: - Virtual size: 444KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 19KB - Virtual size: 20KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 26KB - Virtual size: 26KB

UPX0
Size: - Virtual size: 512KB

UPX1
Size: 265KB - Virtual size: 268KB

.rsrc
Size: 87KB - Virtual size: 88KB

.text
Size: 518KB - Virtual size: 517KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 12KB - Virtual size: 91KB

.rsrc
Size: 95KB - Virtual size: 95KB