Static task
static1
Behavioral task
behavioral1
Sample
4bcff241c156c30d151a91f1474f8510.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
4bcff241c156c30d151a91f1474f8510.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
4bcff241c156c30d151a91f1474f8510
-
Size
387KB
-
MD5
4bcff241c156c30d151a91f1474f8510
-
SHA1
11e03b6de87b2378aa20fa8c482e6c82638fca7b
-
SHA256
82b5e123839dcf5990e17a023a606a499fee54bbd213b26d247adb1ecf64fc3b
-
SHA512
a89b2fec47b3fdc18e143c7b5beed1e69cc61e9f024f690b11f4094e35cf3cc856d32c003ce2d5d4d9c41034fe10010a35f655964b8ec5028408bf304e21f722
-
SSDEEP
12288:OSfcdcelCvePAQNYS4glhn6y6QxKLrP3jCmi4:bf9qCvePtNYS4C6zQx8/c4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4bcff241c156c30d151a91f1474f8510
Files
-
4bcff241c156c30d151a91f1474f8510.exe windows:4 windows x86 arch:x86
570018cb80cccd38984036e66ad452e5
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateDirectoryW
GetStringTypeExW
GlobalReAlloc
HeapCompact
LCMapStringA
GetSystemTime
WriteProcessMemory
GetProfileSectionW
GetDriveTypeW
EndUpdateResourceA
SetConsoleTitleW
OpenEventW
TerminateThread
IsValidCodePage
ConnectNamedPipe
WriteConsoleOutputW
WritePrivateProfileSectionW
DeleteFileA
CreateProcessW
GetThreadPriority
CancelIo
CreateFileMappingW
SetVolumeLabelW
GetNumberOfConsoleMouseButtons
GlobalMemoryStatus
CreateThread
IsProcessorFeaturePresent
RaiseException
GetCurrentThreadId
SetEvent
UpdateResourceA
WideCharToMultiByte
OpenFileMappingA
LocalFree
GetVersion
ResetWriteWatch
BackupRead
GlobalSize
FindAtomA
lstrcpyW
FindNextFileW
WaitForMultipleObjects
BackupWrite
CreateMutexA
FindCloseChangeNotification
EnumSystemLocalesW
GetShortPathNameA
CreateFileA
InterlockedExchangeAdd
ResumeThread
_lclose
WritePrivateProfileStructA
SetProcessWorkingSetSize
IsBadCodePtr
GlobalUnfix
ReadConsoleW
SetFileAttributesA
HeapAlloc
EnumResourceNamesA
OpenFile
QueryDosDeviceW
SetVolumeLabelA
SetCalendarInfoW
GlobalDeleteAtom
GetConsoleMode
_lread
CreateMailslotW
GetVolumeInformationW
GetPrivateProfileSectionNamesW
SetDefaultCommConfigW
GlobalHandle
ReadFileScatter
SetCommConfig
GetThreadLocale
HeapWalk
SetEnvironmentVariableA
CreatePipe
IsSystemResumeAutomatic
GetFileAttributesW
TlsSetValue
DeleteFileW
GetPrivateProfileSectionA
GetFileAttributesExA
GlobalFindAtomW
GetWindowsDirectoryW
_lwrite
SetThreadExecutionState
GetSystemPowerStatus
FlushInstructionCache
GetCalendarInfoW
AddAtomW
UpdateResourceW
GetTapePosition
lstrcpynA
FindFirstChangeNotificationW
lstrlenA
DosDateTimeToFileTime
VirtualAllocEx
FreeEnvironmentStringsW
GetNamedPipeHandleStateW
ResetEvent
GetPrivateProfileStringA
GetOverlappedResult
QueryDosDeviceA
EnumDateFormatsW
AreFileApisANSI
TerminateProcess
OpenProcess
WritePrivateProfileStringA
GlobalFix
RequestWakeupLatency
InitAtomTable
SetComputerNameA
GetShortPathNameW
GetPrivateProfileStructW
DefineDosDeviceA
BuildCommDCBAndTimeoutsW
EscapeCommFunction
CreateNamedPipeA
GetBinaryTypeA
DebugBreak
GetOEMCP
UnmapViewOfFile
TransactNamedPipe
ReadFileEx
GetTempFileNameW
SetConsoleCP
EndUpdateResourceW
SetConsoleCursorPosition
GetVolumeInformationA
_hwrite
GenerateConsoleCtrlEvent
InterlockedCompareExchange
GetCompressedFileSizeW
PrepareTape
LocalFlags
FillConsoleOutputCharacterW
CreateDirectoryA
GetModuleHandleW
FileTimeToLocalFileTime
FlushConsoleInputBuffer
MultiByteToWideChar
FileTimeToDosDateTime
ReleaseMutex
GetEnvironmentVariableW
GetSystemDirectoryA
GetFullPathNameW
LockFileEx
SetupComm
Heap32First
TlsGetValue
SetThreadPriorityBoost
GetProcessWorkingSetSize
FlushViewOfFile
VirtualFreeEx
GetConsoleTitleA
WriteConsoleOutputCharacterA
GetPrivateProfileSectionNamesA
SetSystemTimeAdjustment
LoadLibraryExA
RequestDeviceWakeup
SetConsoleTextAttribute
GetUserDefaultLangID
SetCalendarInfoA
GetDiskFreeSpaceExA
EnumResourceTypesW
GetConsoleTitleW
WriteConsoleInputA
FreeLibraryAndExitThread
FileTimeToSystemTime
FreeLibrary
VirtualUnlock
LocalUnlock
GetTempPathW
lstrcpyA
GlobalAlloc
GetSystemDirectoryW
GetDriveTypeA
InterlockedIncrement
CancelDeviceWakeupRequest
SetConsoleTitleA
CloseHandle
EraseTape
QueryPerformanceFrequency
ReadConsoleOutputA
SetCommState
AllocConsole
GetCPInfoExW
CompareFileTime
LCMapStringW
BuildCommDCBW
CreateIoCompletionPort
GetStringTypeA
GetNumberOfConsoleInputEvents
VirtualLock
GetSystemDefaultLCID
SetSystemTime
WriteConsoleW
IsValidLocale
CreateMailslotA
Process32First
MoveFileExA
CreateEventA
VerLanguageNameA
GetProfileSectionA
FindFirstFileA
IsBadStringPtrW
WritePrivateProfileStringW
CreateTapePartition
VirtualQuery
MulDiv
Thread32First
FreeConsole
SetHandleCount
GetVersionExW
SetCurrentDirectoryW
LocalShrink
IsBadReadPtr
FindNextFileA
GetCurrentDirectoryW
FindFirstChangeNotificationA
GetCurrentThread
OutputDebugStringW
SetThreadAffinityMask
BeginUpdateResourceA
WaitForDebugEvent
WriteProfileSectionA
EnumResourceLanguagesA
GetCompressedFileSizeA
_lcreat
GetTickCount
SetLocaleInfoA
EnumSystemCodePagesW
GetProcessHeap
GetDefaultCommConfigA
GetCommConfig
ReadConsoleInputA
FormatMessageA
GetExitCodeThread
_lopen
GetCommandLineW
SetFilePointer
SetFileTime
GetSystemDefaultLangID
HeapSize
EnumSystemLocalesA
GetEnvironmentStrings
GetProcessAffinityMask
SetDefaultCommConfigA
LockResource
GetThreadContext
EnumResourceTypesA
FindClose
SleepEx
GetConsoleOutputCP
FoldStringW
GetStartupInfoA
_hread
GetAtomNameA
GetLogicalDriveStringsW
CompareStringA
OpenFileMappingW
GetModuleFileNameA
GlobalFree
GetFileSize
WriteProfileStringA
GetComputerNameW
LoadLibraryA
Toolhelp32ReadProcessMemory
WriteProfileSectionW
GetComputerNameA
HeapReAlloc
MapViewOfFile
InterlockedExchange
WritePrivateProfileSectionA
WriteFileGather
GetNamedPipeHandleStateA
PeekConsoleInputA
AddAtomA
ExpandEnvironmentStringsA
UnlockFile
ReadConsoleOutputAttribute
SetProcessAffinityMask
ScrollConsoleScreenBufferW
FreeEnvironmentStringsA
SizeofResource
IsBadStringPtrA
GetWriteWatch
Module32First
VirtualFree
LoadLibraryW
GetLocaleInfoW
SetConsoleWindowInfo
LocalCompact
LocalSize
ClearCommError
Heap32ListNext
GlobalWire
GetDateFormatA
IsBadHugeWritePtr
GetLongPathNameW
Module32Next
CreateDirectoryExA
GetExitCodeProcess
SetLocalTime
WaitForMultipleObjectsEx
QueryPerformanceCounter
GetFileType
OpenMutexA
SetFileAttributesW
GetDiskFreeSpaceExW
GetStringTypeW
CommConfigDialogA
FlushFileBuffers
DefineDosDeviceW
TlsFree
GetTimeFormatW
GetPriorityClass
SetMailslotInfo
LeaveCriticalSection
WinExec
GetThreadSelectorEntry
SetThreadContext
GetModuleHandleA
WriteConsoleA
_llseek
LocalHandle
GetVersionExA
user32
IsIconic
SetScrollInfo
GetWindowRgn
UnregisterClassA
AdjustWindowRectEx
EnumWindows
DialogBoxParamA
SetCursorPos
GetClientRect
CopyIcon
AnyPopup
GetMessagePos
CharPrevExA
GetClipCursor
CallMsgFilterA
SetWindowLongA
DispatchMessageW
DefMDIChildProcA
IsWindowEnabled
TabbedTextOutW
LoadMenuIndirectW
GetWindowWord
CharToOemW
AttachThreadInput
GetWindowTextA
UnloadKeyboardLayout
CreatePopupMenu
RegisterClipboardFormatA
DefWindowProcA
GetKeyboardType
PostThreadMessageA
EnumChildWindows
DrawTextExA
DestroyIcon
GetDCEx
GetClassInfoExW
SetCaretBlinkTime
CheckRadioButton
CreateDialogIndirectParamA
IsWindowUnicode
RemoveMenu
GetSubMenu
CreateIconFromResourceEx
KillTimer
CharPrevW
SetDebugErrorLevel
CharLowerBuffW
TranslateAcceleratorA
OpenWindowStationW
InflateRect
SetWindowWord
LoadAcceleratorsA
CreateAcceleratorTableW
SetWindowsHookExA
ShowOwnedPopups
MapDialogRect
WinHelpW
SetKeyboardState
ChildWindowFromPoint
DlgDirListComboBoxW
SetUserObjectInformationA
GetMenuItemCount
MessageBoxExA
wvsprintfW
MessageBoxExW
EnumDisplaySettingsW
CreateDesktopW
GetKBCodePage
SetMenuItemBitmaps
GetClassNameA
ChangeMenuA
SetScrollPos
GetMessageA
ReleaseDC
SubtractRect
DrawStateA
SetUserObjectSecurity
EqualRect
MapWindowPoints
MessageBoxW
TrackPopupMenu
IsDlgButtonChecked
FindWindowExW
IsDialogMessageW
GetKeyState
EndDialog
FrameRect
GetThreadDesktop
GetWindowTextLengthA
ShowCursor
EnableScrollBar
GetClassInfoExA
GetKeyboardLayoutNameA
SwapMouseButton
IsWindowVisible
wsprintfA
GetActiveWindow
MessageBeep
SetMessageQueue
SetProcessWindowStation
DragObject
PeekMessageW
GetUpdateRect
DlgDirSelectExW
DlgDirListA
DestroyCaret
CharNextW
TileWindows
SetMenuDefaultItem
DialogBoxIndirectParamW
GetCursorPos
DrawIcon
GetClassInfoW
HiliteMenuItem
SetPropA
CreateCaret
LoadBitmapA
CharUpperBuffW
ShowCaret
keybd_event
CreateWindowExA
DlgDirSelectComboBoxExA
SetLastErrorEx
CascadeWindows
CharPrevA
CharLowerBuffA
InsertMenuItemW
RemovePropA
EnumPropsW
VkKeyScanExW
SwitchToThisWindow
GetClassLongW
SetSysColors
GetMenuDefaultItem
GetFocus
PostThreadMessageW
DefFrameProcA
SetWindowContextHelpId
DefDlgProcA
ValidateRgn
DlgDirSelectExA
TrackPopupMenuEx
CopyAcceleratorTableW
MapVirtualKeyExA
ChildWindowFromPointEx
IsCharAlphaNumericA
MapVirtualKeyExW
GetClipboardFormatNameA
DispatchMessageA
DrawTextW
CloseWindowStation
LoadCursorW
UnionRect
RemovePropW
SendMessageCallbackW
SendNotifyMessageA
RegisterWindowMessageA
EnumWindowStationsA
DialogBoxParamW
LockWindowUpdate
OpenWindowStationA
GetDC
GetMessageExtraInfo
EmptyClipboard
DrawEdge
EnumDesktopsW
TranslateMessage
ModifyMenuA
RegisterHotKey
InSendMessage
GetWindowTextW
LoadMenuW
GetMenuItemRect
AppendMenuW
BeginDeferWindowPos
GetClipboardViewer
SetDoubleClickTime
SetTimer
OemToCharA
LoadCursorFromFileA
PtInRect
LoadStringW
MoveWindow
FlashWindow
IsDialogMessageA
WaitForInputIdle
DefWindowProcW
ToAscii
UnregisterClassW
ChangeClipboardChain
LookupIconIdFromDirectory
GetClassWord
GetClassNameW
CloseClipboard
IsCharLowerW
CallWindowProcA
CreateDesktopA
GetClipboardOwner
mouse_event
CreateIconFromResource
DrawTextA
ChangeDisplaySettingsW
OpenIcon
CharToOemBuffW
SetMessageExtraInfo
DestroyAcceleratorTable
InsertMenuA
SetDlgItemInt
TranslateMDISysAccel
LoadStringA
wvsprintfA
IsMenu
RegisterClipboardFormatW
DrawStateW
GetMenuContextHelpId
EndDeferWindowPos
SetUserObjectInformationW
CopyAcceleratorTableA
SetCapture
IsChild
SetMenuContextHelpId
SetWindowTextW
DefFrameProcW
DefMDIChildProcW
GetAsyncKeyState
EnumWindowStationsW
GetOpenClipboardWindow
SendMessageTimeoutA
RegisterClassExA
GetWindowRect
GetKeyNameTextW
LoadImageA
CallWindowProcW
ScrollDC
ScrollWindow
SetThreadDesktop
GetCursor
GetClassInfoA
GetPropW
RedrawWindow
CreateIcon
SetSystemCursor
WindowFromPoint
GetWindowTextLengthW
GetIconInfo
IsCharUpperW
CharNextA
GetSysColorBrush
GetPriorityClipboardFormat
GetDialogBaseUnits
CheckMenuRadioItem
LoadIconA
ToUnicodeEx
PostMessageW
IsCharAlphaW
UpdateWindow
GetKeyboardState
CreateMDIWindowW
GetDesktopWindow
GetClipboardData
GetCaretPos
gdi32
CreateBitmap
FrameRgn
GetROP2
DrawEscape
GetRgnBox
BeginPath
PlayMetaFile
GetMiterLimit
CombineTransform
GetNearestPaletteIndex
GetDeviceGammaRamp
GetCharABCWidthsFloatW
GetICMProfileA
CombineRgn
DescribePixelFormat
CopyMetaFileW
GetPixelFormat
CloseMetaFile
CopyMetaFileA
GetTextColor
SetViewportOrgEx
LPtoDP
SetMiterLimit
RectInRegion
PtVisible
GetSystemPaletteEntries
OffsetViewportOrgEx
PatBlt
AddFontResourceA
CreatePatternBrush
GetPath
GetMapMode
GetCharABCWidthsA
SetBrushOrgEx
PolyDraw
CreatePalette
FillRgn
CreateBrushIndirect
ExtCreatePen
CopyEnhMetaFileA
CreateDIBPatternBrush
GetBrushOrgEx
CreateRoundRectRgn
CreateDCA
CreateDIBPatternBrushPt
GetBkColor
GetDIBColorTable
CreateEnhMetaFileW
GetCharWidthW
MoveToEx
SetColorSpace
SetDIBColorTable
StrokeAndFillPath
EnumICMProfilesA
DeleteEnhMetaFile
CreateColorSpaceA
FillPath
SetSystemPaletteUse
AnimatePalette
EnumFontFamiliesW
GetTextExtentExPointA
CheckColorsInGamut
GetTextCharacterExtra
SetStretchBltMode
EnumFontsA
UpdateColors
SetEnhMetaFileBits
SetTextJustification
GetTextMetricsW
GetTextCharsetInfo
PolylineTo
GetEnhMetaFileBits
OffsetRgn
GetCharacterPlacementW
UpdateICMRegKeyW
SetRectRgn
CreateFontIndirectA
PolyTextOutW
SetDeviceGammaRamp
CreateDIBitmap
GetTextFaceA
DeleteMetaFile
CreateICW
CreateColorSpaceW
GetCharWidthFloatW
LineDDA
OffsetClipRgn
GetCharacterPlacementA
ExtEscape
StretchDIBits
EndPage
CreateFontIndirectW
SetTextColor
DPtoLP
GetMetaFileA
SetBitmapBits
ModifyWorldTransform
ArcTo
GetWindowOrgEx
PtInRegion
PathToRegion
GetArcDirection
PlayEnhMetaFile
EnumFontFamiliesA
RealizePalette
SelectClipRgn
PlayMetaFileRecord
GetMetaFileBitsEx
CreatePolyPolygonRgn
SetTextCharacterExtra
GetTextExtentPointW
GetPolyFillMode
GetEnhMetaFilePaletteEntries
SetICMProfileW
PolyPolyline
RemoveFontResourceW
ExtFloodFill
RestoreDC
GetFontLanguageInfo
SetBoundsRect
GetPixel
Escape
ExtTextOutW
Chord
GetTextExtentExPointW
LineTo
GetTextAlign
GetLogColorSpaceW
ResizePalette
EnumFontsW
UpdateICMRegKeyA
ExtSelectClipRgn
CreateHalftonePalette
EnumFontFamiliesExA
GetKerningPairsA
FloodFill
GetOutlineTextMetricsW
RoundRect
GetObjectA
GetViewportOrgEx
CreateEllipticRgnIndirect
SetWinMetaFileBits
PolyPolygon
GetGlyphOutlineA
CreatePolygonRgn
GetDIBits
GetCharWidthA
StartDocA
GdiSetBatchLimit
AbortPath
SetGraphicsMode
ExcludeClipRect
CreateScalableFontResourceW
CreateBitmapIndirect
SetAbortProc
comdlg32
PageSetupDlgW
GetOpenFileNameA
ChooseFontA
FindTextA
GetSaveFileNameW
PageSetupDlgA
ReplaceTextW
PrintDlgA
ChooseColorW
CommDlgExtendedError
ChooseFontW
GetFileTitleA
advapi32
QueryServiceConfigA
EnumDependentServicesW
GetMultipleTrusteeOperationA
SetEntriesInAclW
GetUserNameW
CryptGetDefaultProviderA
LookupPrivilegeNameW
AreAnyAccessesGranted
CryptGetHashParam
RegEnumKeyW
GetFileSecurityW
ObjectCloseAuditAlarmA
CryptImportKey
SetServiceStatus
PrivilegedServiceAuditAlarmA
CloseServiceHandle
GetLengthSid
GetServiceKeyNameW
ChangeServiceConfigW
GetServiceDisplayNameA
RegCreateKeyExW
RegSetKeySecurity
CryptDuplicateHash
RegRestoreKeyW
RegEnumKeyExW
DeleteAce
IsValidSid
ClearEventLogW
SetServiceObjectSecurity
LookupAccountNameA
LockServiceDatabase
SetSecurityDescriptorSacl
EnumServicesStatusW
CreatePrivateObjectSecurity
ReportEventA
GetAuditedPermissionsFromAclW
MapGenericMask
CryptSetProviderExA
AbortSystemShutdownA
DestroyPrivateObjectSecurity
GetNamedSecurityInfoW
CryptSignHashA
FindFirstFreeAce
OpenBackupEventLogA
RegQueryMultipleValuesA
AbortSystemShutdownW
BackupEventLogW
BuildImpersonateTrusteeA
CryptSetHashParam
RegQueryValueExA
GetSidLengthRequired
GetAclInformation
AllocateAndInitializeSid
EqualSid
OpenServiceW
RegSetValueExW
CryptGenKey
SetTokenInformation
BuildExplicitAccessWithNameA
ImpersonateLoggedOnUser
OpenEventLogW
NotifyBootConfigStatus
GetTrusteeTypeA
CryptAcquireContextA
GetSecurityDescriptorControl
GetSecurityDescriptorSacl
CopySid
SetEntriesInAclA
RegLoadKeyW
RegQueryValueW
ReportEventW
ImpersonateNamedPipeClient
NotifyChangeEventLog
RegOpenKeyExA
RegDeleteValueA
QueryServiceStatus
RegFlushKey
EnumDependentServicesA
LogonUserW
PrivilegeCheck
GetPrivateObjectSecurity
StartServiceCtrlDispatcherA
BuildImpersonateExplicitAccessWithNameA
RegQueryValueExW
CryptGetProvParam
MakeAbsoluteSD
ClearEventLogA
InitiateSystemShutdownA
CryptAcquireContextW
GetSecurityInfo
BuildTrusteeWithSidA
RegLoadKeyA
AdjustTokenGroups
IsValidAcl
ImpersonateSelf
ObjectOpenAuditAlarmA
CryptExportKey
QueryServiceLockStatusA
SetPrivateObjectSecurity
ReadEventLogA
EnumServicesStatusA
RegisterEventSourceW
ObjectDeleteAuditAlarmA
RegisterServiceCtrlHandlerW
OpenProcessToken
RegCreateKeyW
SetThreadToken
OpenSCManagerW
BackupEventLogA
LookupAccountSidA
RegCreateKeyA
AddAccessAllowedAce
RegDeleteKeyW
CreateProcessAsUserA
CryptGetDefaultProviderW
QueryServiceLockStatusW
GetEffectiveRightsFromAclW
EqualPrefixSid
GetSecurityDescriptorLength
GetSecurityDescriptorOwner
LookupPrivilegeDisplayNameA
SetNamedSecurityInfoW
CryptDestroyHash
RegConnectRegistryW
CryptReleaseContext
SetNamedSecurityInfoA
RegQueryInfoKeyA
RevertToSelf
OpenThreadToken
RegCloseKey
GetSidSubAuthorityCount
RegOpenKeyW
RegEnumValueW
QueryServiceObjectSecurity
GetAuditedPermissionsFromAclA
RegSetValueA
AccessCheck
SetFileSecurityA
CloseEventLog
OpenServiceA
SetSecurityDescriptorDacl
GetTrusteeNameW
LookupAccountNameW
CryptDuplicateKey
shell32
FindExecutableA
ExtractAssociatedIconW
ShellAboutA
DragQueryFileA
SHGetMalloc
SHInvokePrinterCommandA
ExtractIconExA
SHGetFileInfoW
SHGetPathFromIDListA
FindExecutableW
SHGetDataFromIDListA
ord179
DoEnvironmentSubstA
SHAppBarMessage
SHEmptyRecycleBinA
ExtractIconW
Shell_NotifyIconA
SHGetFileInfoA
DuplicateIcon
SHFormatDrive
Shell_NotifyIconW
DoEnvironmentSubstW
ExtractAssociatedIconExA
SHBrowseForFolderA
SHGetInstanceExplorer
ExtractAssociatedIconExW
SHQueryRecycleBinA
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHFileOperationA
SHAddToRecentDocs
SHGetSpecialFolderPathA
SHEmptyRecycleBinW
DragFinish
msvcrt
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
Sections
.text Size: 283KB - Virtual size: 284KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 25KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
eo2obve0 Size: 45KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bho1wc7k Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ