Static task
static1
Behavioral task
behavioral1
Sample
23204a01125feddeb7eab2d89c9b2d90.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
23204a01125feddeb7eab2d89c9b2d90.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
23204a01125feddeb7eab2d89c9b2d90
-
Size
708KB
-
MD5
23204a01125feddeb7eab2d89c9b2d90
-
SHA1
96eb93cd5277b721893e6bf6395f1eae7fe72db2
-
SHA256
7150f2bb74dd8d8c0dc9ff4e38660dd40077f40cb57f2eb0c83d941fc79de35d
-
SHA512
63524aa31c886d9313cdd87c235193d2661bb0cd83d06e72ff1c0b37b263a7a9a769995ca035f6a41ac0a568eaee17ae3b0e4c7f2b086e0192523cd7d580689b
-
SSDEEP
12288:oB1uLgoxMKnSeY89+oyy/B/vHENCe8ovipgIiCBGpT9VR:81GMuSEddvHENCeTvipgfpT97
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 23204a01125feddeb7eab2d89c9b2d90
Files
-
23204a01125feddeb7eab2d89c9b2d90.exe windows:4 windows x86 arch:x86
9eb45bc989ab3b4e91f322808f10d996
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
EnterCriticalSection
InterlockedDecrement
CloseHandle
SetEvent
LocalAlloc
lstrlenA
FormatMessageA
Sleep
CreateEventA
GetCurrentProcessId
RemoveDirectoryA
FindClose
FindNextFileA
FindFirstFileA
CreateDirectoryA
WaitForSingleObject
OpenEventA
GetTempPathA
GetTickCount
GetVersionExA
GetModuleHandleA
LeaveCriticalSection
CreateMutexA
ReleaseMutex
SetLastError
GetVolumeInformationA
DeleteFileA
GetProcAddress
LoadLibraryA
EnumResourceNamesA
FreeLibrary
GetSystemTimeAsFileTime
GetStartupInfoA
QueryPerformanceFrequency
QueryPerformanceCounter
DeleteCriticalSection
InitializeCriticalSection
GetUserDefaultLCID
VirtualQuery
VirtualFree
VirtualProtect
LocalFree
ResetEvent
DeviceIoControl
GetModuleFileNameA
GetLastError
GetCurrentThreadId
OpenMutexA
LCMapStringA
MultiByteToWideChar
GetStringTypeA
WideCharToMultiByte
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
WriteFile
ReadFile
CreateFileA
SetEndOfFile
SetFilePointer
GetSystemInfo
GetFileSize
GetFileType
OutputDebugStringA
user32
GetDlgItem
GetClassNameA
GetWindowTextA
PostMessageA
EnumWindows
PeekMessageA
TranslateMessage
DispatchMessageA
MsgWaitForMultipleObjects
wsprintfA
DestroyWindow
GetSysColor
GetForegroundWindow
GetSystemMetrics
LoadStringA
SystemParametersInfoA
ShowWindow
BringWindowToTop
IsWindow
GetWindowPlacement
LoadImageA
GetWindowThreadProcessId
advapi32
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
ole32
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize
oleaut32
SysFreeString
SysAllocString
VariantCopy
VariantInit
VariantClear
VariantChangeType
ace
?clone@ACE_Message_Block@@UBEPAV1@K@Z
??0ACE_Time_Value@@QAE@ABU_FILETIME@@@Z
?acquire@ACE_Recursive_Thread_Mutex@@QAEHXZ
?release@ACE_Recursive_Thread_Mutex@@QAEHXZ
?get_handle@ACE_Event_Handler@@UBEPAXXZ
?set_handle@ACE_Event_Handler@@UAEXPAX@Z
?priority@ACE_Event_Handler@@UAEXH@Z
?priority@ACE_Event_Handler@@UBEHXZ
?handle_input@ACE_Event_Handler@@UAEHPAX@Z
?handle_output@ACE_Event_Handler@@UAEHPAX@Z
?handle_exception@ACE_Event_Handler@@UAEHPAX@Z
?handle_timeout@ACE_Event_Handler@@UAEHABVACE_Time_Value@@PBX@Z
?handle_exit@ACE_Event_Handler@@UAEHPAVACE_Process@@@Z
?handle_close@ACE_Event_Handler@@UAEHPAXK@Z
?handle_signal@ACE_Event_Handler@@UAEHHPAUsiginfo_t@@PAH@Z
?resume_handler@ACE_Event_Handler@@UAEHXZ
?handle_qos@ACE_Event_Handler@@UAEHPAX@Z
?handle_group_qos@ACE_Event_Handler@@UAEHPAX@Z
?reactor@ACE_Event_Handler@@UBEPAVACE_Reactor@@XZ
?reactor@ACE_Event_Handler@@UAEXPAVACE_Reactor@@@Z
?suspend@ACE_Task_Base@@UAEHXZ
?resume@ACE_Task_Base@@UAEHXZ
?open@ACE_Task_Base@@UAEHPAX@Z
?close@ACE_Task_Base@@UAEHK@Z
?module_closed@ACE_Task_Base@@UAEHXZ
?put@ACE_Task_Base@@UAEHPAVACE_Message_Block@@PAVACE_Time_Value@@@Z
?activate@ACE_Task_Base@@UAEHJHHJHPAV1@QAPAX1QAIQAK@Z
?wait@ACE_Task_Base@@UAEHXZ
?init@ACE_Shared_Object@@UAEHHQAPAD@Z
?fini@ACE_Shared_Object@@UAEHXZ
?info@ACE_Shared_Object@@UBEHPAPADI@Z
?normalize@ACE_Time_Value@@AAEXXZ
??0ACE_Message_Block@@QAE@PAVACE_Allocator@@@Z
?cond_signal@ACE_OS@@SAHPAVACE_cond_t@@@Z
?cond_wait@ACE_OS@@SAHPAVACE_cond_t@@PAU_RTL_CRITICAL_SECTION@@@Z
??0ACE_Thread_Mutex@@QAE@PBDPAUACE_mutexattr_t@@@Z
??1ACE_Thread_Mutex@@QAE@XZ
??0ACE_Recursive_Thread_Mutex@@QAE@PBDPAUACE_mutexattr_t@@@Z
??1ACE_Recursive_Thread_Mutex@@QAE@XZ
??G@YA?AVACE_Time_Value@@ABV0@0@Z
?max_time@ACE_Time_Value@@2V1@B
??1ACE_Message_Block@@UAE@XZ
??H@YA?AVACE_Time_Value@@ABV0@0@Z
?log@ACE_Log_Msg@@QAAHW4ACE_Log_Priority@@PBDZZ
?conditional_set@ACE_Log_Msg@@QAEXPBDHHH@Z
?instance@ACE_Log_Msg@@SAPAV1@XZ
?last_error@ACE_OS@@SAHXZ
?cond_init@ACE_OS@@SAHPAVACE_cond_t@@FPBDPAX@Z
?svc@ACE_Task_Base@@UAEHXZ
??1ACE_Task_Base@@UAE@XZ
?release@ACE_Message_Block@@QAEPAV1@XZ
?total_length@ACE_Message_Block@@QBEIXZ
?total_size@ACE_Message_Block@@QBEIXZ
??1ACE_Message_Queue_Base@@UAE@XZ
??_7ACE_Message_Queue_Base@@6B@
??1ACE_Condition_Thread_Mutex@@QAE@XZ
?dump@ACE_Condition_Thread_Mutex@@QBEXXZ
?broadcast@ACE_Condition_Thread_Mutex@@QAEHXZ
?wait@ACE_Condition_Thread_Mutex@@QAEHPBVACE_Time_Value@@@Z
?signal@ACE_Condition_Thread_Mutex@@QAEHXZ
??1ACE_Cleanup@@UAE@XZ
?at_exit_i@ACE_Object_Manager@@AAEHPAXP6AX00@Z0@Z
?instance@ACE_Object_Manager@@SAPAV1@XZ
ace_cleanup_destroyer
??_7ACE_Cleanup@@6B@
?get_singleton_lock@ACE_Object_Manager@@SAHAAPAVACE_Thread_Mutex@@@Z
?shutting_down@ACE_Object_Manager@@SAHXZ
?starting_up@ACE_Object_Manager@@SAHXZ
??0ACE_Task_Base@@QAE@PAVACE_Thread_Manager@@@Z
?cond_broadcast@ACE_OS@@SAHPAVACE_cond_t@@@Z
?cond_destroy@ACE_OS@@SAHPAVACE_cond_t@@@Z
??0ACE_Condition_Thread_Mutex@@QAE@ABVACE_Thread_Mutex@@PBDPAX@Z
wingenerics
??_DHtmlView@Win32@GUI@WinGenerics@@QAEXXZ
?dispatch_message@Window@Win32@GUI@WinGenerics@@MAEXPAVMessage@?$WindowTask@VACE_Thread_Mutex@@VACE_Condition_Thread_Mutex@@@234@@Z
?dispatch_system_message@Window@Win32@GUI@WinGenerics@@MAEXPAVSystemMessage@?$WindowTask@VACE_Thread_Mutex@@VACE_Condition_Thread_Mutex@@@234@@Z
??0TaskRunner@WinGenerics@@QAE@PAVTaskRunnerCallback@1@K@Z
?enqueue_task@TaskRunner@WinGenerics@@QAEXPAVTask@2@PAVACE_Time_Value@@@Z
??_DTaskRunner@WinGenerics@@QAEXXZ
?svc@TaskRunner@WinGenerics@@MAEHXZ
??_DScheduler@WinGenerics@@QAEXXZ
??0Scheduler@WinGenerics@@QAE@PAVSchedulerCallback@1@@Z
?schedule@Scheduler@WinGenerics@@QAEXPAVACE_Message_Block@@ABVACE_Time_Value@@@Z
?is_full_screen_window@Window@Win32@GUI@WinGenerics@@SA_NPAUHWND__@@@Z
?to_lower_s@StringManip@WinGenerics@@YAXPBDAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
??0FileLogger@Logging@WinGenerics@@QAE@PBDK_NKPAV?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@K@Z
?log_level@StreamLogger@Logging@WinGenerics@@QAEXK@Z
?trim@StringManip@WinGenerics@@YAXPBDAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
?fini@WinGenerics@@YA_NXZ
?init@WinGenerics@@YA_NPAUHINSTANCE__@@@Z
?log_level@StreamLogger@Logging@WinGenerics@@UAEKXZ
?log_message@FileLogger@Logging@WinGenerics@@UAE_NPBGKPBD@Z
?log_message@FileLogger@Logging@WinGenerics@@UAE_NPBDK0@Z
??_DFileLogger@Logging@WinGenerics@@QAEXXZ
??1FactoryImpl@COM@WinGenerics@@MAE@XZ
?set@FactoryImpl@COM@WinGenerics@@QAEXABU_GUID@@PBD11@Z
??0FactoryImpl@COM@WinGenerics@@QAE@XZ
?start_factory@FactoryImpl@COM@WinGenerics@@UAEXXZ
?stop_factory@FactoryImpl@COM@WinGenerics@@UAEXXZ
?dialog_ptr@Dialog@Win32@GUI@WinGenerics@@EAEPAV1234@XZ
?unregister_factory@FactoryImpl@COM@WinGenerics@@UAEXXZ
?is_running@FactoryImpl@COM@WinGenerics@@UAE_NXZ
?class_factory@FactoryImpl@COM@WinGenerics@@UAEPAUIClassFactory@@XZ
?set_cookie@HTTPCookie@Networking@WinGenerics@@QAEXPBD0H@Z
?get_cookie@HTTPCookie@Networking@WinGenerics@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@PBD@Z
?mime_url_encode@StringManip@WinGenerics@@YAXPBDAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
?start_session@HTTPCookie@Networking@WinGenerics@@QAEXXZ
??0HTTPCookie@Networking@WinGenerics@@QAE@PAVCookieStorage@12@@Z
??0CookieStorageWinReg@Networking@WinGenerics@@QAE@PAVCookieHandler@12@PAUHKEY__@@PBD@Z
??0CookieHandlerMS@Networking@WinGenerics@@QAE@XZ
??_DCookieStorageWinReg@Networking@WinGenerics@@QAEXXZ
??_DCookieHandlerMS@Networking@WinGenerics@@QAEXXZ
??_DHTTPCookie@Networking@WinGenerics@@QAEXXZ
?process_timer@Window@Win32@GUI@WinGenerics@@MAEXI@Z
?utf8_to_wchar@StringManip@WinGenerics@@YAPAGPBD@Z
?detach@Dialog@Win32@GUI@WinGenerics@@MAEXXZ
?process_cancel@Dialog@Win32@GUI@WinGenerics@@MAEXXZ
?process_cancel@Window@Win32@GUI@WinGenerics@@MAEXXZ
?process_ok@Dialog@Win32@GUI@WinGenerics@@MAEXXZ
?display_modal@Dialog@Win32@GUI@WinGenerics@@UAEHXZ
?set_active@Window@Win32@GUI@WinGenerics@@UAE_NXZ
?bring_to_top@Window@Win32@GUI@WinGenerics@@UAE_NXZ
??1FileInfo@WinGenerics@@QAE@XZ
?iconic@Window@Win32@GUI@WinGenerics@@UAE_NXZ
?redraw@Window@Win32@GUI@WinGenerics@@UAEXI@Z
?register_factory@FactoryImpl@COM@WinGenerics@@UAEXXZ
?default_message_processing_i@Dialog@Win32@GUI@WinGenerics@@MAEXXZ
?base_view_hwnd@HtmlView@Win32@GUI@WinGenerics@@QAEPAUHWND__@@XZ
?get_focus@Window@Win32@GUI@WinGenerics@@SAPAUHWND__@@XZ
?set_focus@Window@Win32@GUI@WinGenerics@@SAXPAUHWND__@@@Z
??0Guid@WinGenerics@@QAE@XZ
?generate@Guid@WinGenerics@@QAEXXZ
??BGuid@WinGenerics@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@XZ
??1Guid@WinGenerics@@QAE@XZ
?set_foreground2@Window@Win32@GUI@WinGenerics@@SA_NPAUHWND__@@@Z
?wchar_to_utf8@StringManip@WinGenerics@@YAXPBGAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
?to_lower@StringManip@WinGenerics@@YAXAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
?send_message@Window@Win32@GUI@WinGenerics@@IAEJIIJPBD@Z
?mbc_to_wchar@StringManip@WinGenerics@@YAXPBDAAV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@@Z
??0HtmlView@Win32@GUI@WinGenerics@@QAE@PBGHHHHKPAVWindow@123@KH@Z
?dispatch_system_message@Dialog@Win32@GUI@WinGenerics@@MAEXPAVSystemMessage@?$WindowTask@VACE_Thread_Mutex@@VACE_Condition_Thread_Mutex@@@234@@Z
?process_close@Window@Win32@GUI@WinGenerics@@MAEXXZ
?control@HtmlView@Win32@GUI@WinGenerics@@QAEPAUIUnknown@@XZ
??0Window@Win32@GUI@WinGenerics@@IAE@XZ
??0Dialog@Win32@GUI@WinGenerics@@IAE@XZ
?construct@Dialog@Win32@GUI@WinGenerics@@IAEXPAUHINSTANCE__@@PBDPAVWindow@234@_N@Z
?handle@Window@Win32@GUI@WinGenerics@@IAEPAUHWND__@@XZ
?start_timer@Window@Win32@GUI@WinGenerics@@UAEIIABVACE_Time_Value@@@Z
??1Window@Win32@GUI@WinGenerics@@MAE@XZ
??1Dialog@Win32@GUI@WinGenerics@@MAE@XZ
?remove_ref@Window@Win32@GUI@WinGenerics@@UAEXXZ
?process_resize@Window@Win32@GUI@WinGenerics@@MAEXKKK@Z
?process_message@Window@Win32@GUI@WinGenerics@@MAEJIIJ@Z
?process_command@Window@Win32@GUI@WinGenerics@@MAEXKK@Z
?process_system_command@Window@Win32@GUI@WinGenerics@@MAEXK@Z
?process_init_popup_menu@Window@Win32@GUI@WinGenerics@@MAEXPAVMenu@34@K_N@Z
?process_dialog_color@Window@Win32@GUI@WinGenerics@@MAEPAVBrush@234@XZ
?process_window_pos_changing@Window@Win32@GUI@WinGenerics@@MAEXAAVWindowPosition@34@@Z
?process_get_min_max_info@Window@Win32@GUI@WinGenerics@@MAEXAAVWindowSizeInfo@34@@Z
?process_activate@Window@Win32@GUI@WinGenerics@@MAEX_N@Z
?process_window_pos_changed@Window@Win32@GUI@WinGenerics@@MAEXABVWindowPosition@34@@Z
?process_context_menu@Window@Win32@GUI@WinGenerics@@MAEXPAV134@ABUtagPOINT@@@Z
?create@Window@Win32@GUI@WinGenerics@@MAEXPBD0HHHHKPAV1234@PAVMenu@234@KH@Z
?screen_to_client@Window@Win32@GUI@WinGenerics@@UAEXAAUtagPOINT@@@Z
?client_area@Window@Win32@GUI@WinGenerics@@UAEXAAUtagRECT@@@Z
?icon@Window@Win32@GUI@WinGenerics@@UAEPAVIcon@34@K@Z
?icon@Window@Win32@GUI@WinGenerics@@UAEXKPAVIcon@34@@Z
?trim@StringManip@WinGenerics@@YAXPBGAAV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@@Z
?to_lower@StringManip@WinGenerics@@YAXPBGAAV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@@Z
?detach@Window@Win32@GUI@WinGenerics@@MAEXXZ
?default_message_processing_i@Window@Win32@GUI@WinGenerics@@MAEXXZ
?dialog_ptr@Window@Win32@GUI@WinGenerics@@EAEPAVDialog@234@XZ
?equal@Window@Win32@GUI@WinGenerics@@UAE_NPAV134@@Z
?focus@Window@Win32@GUI@WinGenerics@@UAEXXZ
?stop_timer@Window@Win32@GUI@WinGenerics@@UAEXI@Z
?menu@Window@Win32@GUI@WinGenerics@@UAEPAVMenu@34@XZ
?menu@Window@Win32@GUI@WinGenerics@@UAEXPAVMenu@34@@Z
?coordinates@Window@Win32@GUI@WinGenerics@@UAEXAAUtagRECT@@@Z
?invalidate@Window@Win32@GUI@WinGenerics@@UAEXPBUtagRECT@@_N@Z
?update@Window@Win32@GUI@WinGenerics@@UAEXXZ
?move@Window@Win32@GUI@WinGenerics@@UAEXHHHH_N@Z
?set_foreground@Window@Win32@GUI@WinGenerics@@UAE_NXZ
?enable@Window@Win32@GUI@WinGenerics@@UAE_NXZ
?enable@Window@Win32@GUI@WinGenerics@@UAEX_N@Z
?child@Window@Win32@GUI@WinGenerics@@UAEPAV134@H@Z
?text_w@Window@Win32@GUI@WinGenerics@@UAEXPBG@Z
?text_w@Window@Win32@GUI@WinGenerics@@UAE?AV?$basic_string@GV?$char_traits@G@_STL@@V?$allocator@G@2@@_STL@@XZ
?text@Window@Win32@GUI@WinGenerics@@UAEXPBD@Z
?text@Window@Win32@GUI@WinGenerics@@UAE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@XZ
?show@Window@Win32@GUI@WinGenerics@@UAEXW4ShowKind@134@@Z
??1WindowManager@Win32@GUI@WinGenerics@@QAE@XZ
??0WindowManager@Win32@GUI@WinGenerics@@QAE@XZ
?process_message@WindowManager@Win32@GUI@WinGenerics@@QAE_NAAUtagMSG@@@Z
?attach@Window@Win32@GUI@WinGenerics@@IAEXPAUHWND__@@@Z
?process_ok@Window@Win32@GUI@WinGenerics@@MAEXXZ
?mime_url_decode@StringManip@WinGenerics@@YAXPBDAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
?message@DispatchContext@Win32@GUI@WinGenerics@@QBEIXZ
?wparam@DispatchContext@Win32@GUI@WinGenerics@@QBEIXZ
??0MessageHandler@Win32@GUI@WinGenerics@@QAE@PAVWindow@123@@Z
??0FileInfo@WinGenerics@@QAE@XZ
?load@FileInfo@WinGenerics@@QAEXPBD@Z
?setlocale@StringManip@WinGenerics@@YAPAGHPBG@Z
??0Version@FileInfo@WinGenerics@@QAE@ABV012@@Z
?visible@Window@Win32@GUI@WinGenerics@@UAE_NXZ
wininet
InternetGetConnectedState
InternetCloseHandle
InternetSetStatusCallback
InternetOpenA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
InternetCrackUrlA
libexpat
XML_SetCharacterDataHandler
XML_ParserCreate
XML_ParserFree
XML_Parse
XML_SetElementHandler
XML_SetUserData
ws2_32
inet_addr
msvcp60
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_exception@std@@QAE@ABV01@@Z
??1bad_exception@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_exception@std@@QAE@PBD@Z
msvcrt
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
??1type_info@@UAE@XZ
_except_handler3
fclose
fopen
fgetc
ferror
iswdigit
iswalpha
wcscpy
wcscmp
wcschr
wcsstr
wcslen
putc
getc
ungetc
feof
ftell
fsetpos
fseek
fgetpos
setvbuf
fflush
_finite
_ecvt
_fcvt
_isnan
_copysign
_fpclass
_iob
memchr
_vsnprintf
abort
?what@exception@@UBEPBDXZ
_ultoa
_stricmp
rand
atol
_splitpath
sprintf
isspace
time
srand
strchr
strcat
strstr
strerror
free
malloc
_errno
strcpy
_purecall
strncpy
__RTDynamicCast
strcmp
memmove
memcmp
??0exception@@QAE@XZ
memset
memcpy
strlen
??2@YAPAXI@Z
??1exception@@UAE@XZ
_CxxThrowException
??0exception@@QAE@ABV0@@Z
__CxxFrameHandler
_adjust_fdiv
__p__commode
__set_app_type
?terminate@@YAXXZ
_controlfp
__p__fmode
_fstat
Sections
.text Size: 440KB - Virtual size: 436KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 144KB - Virtual size: 143KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 68KB - Virtual size: 73KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
STLPORT_ Size: 4KB - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 40KB - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ