63bc6e235181c14958918513c60d8dbb

Sharing

Copy URL

Twitter E-mail

General

Target

63bc6e235181c14958918513c60d8dbb
Size

621KB
MD5

63bc6e235181c14958918513c60d8dbb
SHA1

8d49a42113d8f7f4bca66a7803e9744b726cab63
SHA256

9e9a3a938c7b54c9a20f96bbdd1cade66fad4b866bffaf29fa64c1a2399bec9d
SHA512

511bbfb0d122e72bf75571e7111f0d49f50449dd4e3ea42464d69e0527340de1069fab79cf1733db5829ee0a0483fe38e0b1d378c454ae5cd0708efce74ac0bb
SSDEEP

12288:vmIZGeYzlobWZ/f3OXZ7V5HhOEwbK+cq/fQCT2IC3XHRO/m:v1Up5obC3QxtOEwbK+p/YQWxOO

Score

3^/10

Malware Config

Signatures

Unsigned PE 6 IoCs

Checks for missing Authenticode signature.

resource
unpack001/K-MetaSearch Engine Version 3.0 个人版/Server/KMSWordSegmentation.dll
unpack001/K-MetaSearch Engine Version 3.0 个人版/Server/KMetaSearch.dll
unpack001/K-MetaSearch Engine Version 3.0 个人版/Server/search.exe
unpack001/K-MetaSearch Engine Version 3.0 个人版/Server/初始化.exe
unpack001/K-MetaSearch Engine Version 3.0 个人版/Server/服务器.exe
unpack001/K-MetaSearch Engine Version 3.0 个人版/Server/清空缓存.exe

Files

63bc6e235181c14958918513c60d8dbb
.rar
K-MetaSearch Engine Version 3.0 个人版/Server/KMSWordSegmentation.dll
.dll regsvr32 windows:4 windows x86 arch:x86

f55af406a33841cb4c71acf1c57eb149

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

__vbaVarTstGt
__vbaStrI2
_CIcos
_adj_fptan
__vbaStrI4
__vbaFreeVar
__vbaLenBstr
__vbaStrVarMove
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
ord516
_adj_fprem1
ord518
ord519
__vbaStrCat
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
__vbaAryVar
__vbaAryDestruct
__vbaLateMemSt
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
_CIsin
ord631
__vbaChkstk
EVENT_SINK_AddRef
__vbaGenerateBoundsError
__vbaStrCmp
__vbaVarTstEq
__vbaObjVar
__vbaRedimPreserve
_adj_fpatan
__vbaRedim
EVENT_SINK_Release
__vbaNew
_CIsqrt
EVENT_SINK_QueryInterface
ord710
__vbaExceptHandler
ord711
_adj_fprem
_adj_fdivr_m64
ord608
ord716
__vbaFPException
__vbaUbound
__vbaVarCat
_CIlog
__vbaErrorOverflow
__vbaR8Str
__vbaInStr
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaI4Str
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord101
ord102
ord103
ord104
ord105
__vbaLateMemCall
__vbaVarDup
ord617
__vbaLateMemCallLd
_CIatan
__vbaCastObj
__vbaStrMove
__vbaAryCopy
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
K-MetaSearch Engine Version 3.0 个人版/Server/KMetaSearch.dll
.dll regsvr32 windows:4 windows x86 arch:x86

baffa211d426035ff05ba274cd1f3edb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

__vbaStrI2
_CIcos
_adj_fptan
__vbaStrI4
__vbaVarMove
__vbaAryMove
__vbaFreeVar
__vbaAptOffset
__vbaLenBstr
__vbaStrVarMove
ord696
__vbaVarIdiv
__vbaFreeVarList
_adj_fdiv_m64
__vbaVarIndexStore
__vbaFreeObjList
ord516
_adj_fprem1
ord518
ord519
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
ord556
_adj_fdiv_m32
__vbaAryVar
__vbaAryDestruct
__vbaLateMemSt
__vbaExitProc
__vbaVarForInit
__vbaObjSet
__vbaOnError
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaVarIndexLoad
ord520
__vbaFPFix
__vbaRefVarAry
__vbaVarTstLt
__vbaBoolVarNull
_CIsin
ord631
__vbaVarCmpGt
__vbaChkstk
EVENT_SINK_AddRef
__vbaGenerateBoundsError
__vbaStrCmp
__vbaVarTstEq
__vbaObjVar
DllFunctionCall
__vbaVarOr
__vbaRedimPreserve
__vbaLbound
_adj_fpatan
__vbaStrR8
__vbaRedim
EVENT_SINK_Release
__vbaNew
ord600
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
ord710
__vbaExceptHandler
ord711
ord712
_adj_fprem
_adj_fdivr_m64
ord608
ord716
__vbaFPException
ord717
__vbaStrVarVal
__vbaUbound
__vbaVarCat
_CIlog
__vbaErrorOverflow
__vbaR8Str
__vbaNew2
__vbaInStr
__vbaVar2Vec
_adj_fdiv_m32i
_adj_fdivr_m32i
ord573
__vbaStrCopy
__vbaI4Str
__vbaFreeStrList
_adj_fdivr_m32
__vbaPowerR8
_adj_fdiv_r
ord685
ord101
ord102
__vbaI4Var
ord103
ord104
ord105
__vbaVarAdd
__vbaAryLock
__vbaLateMemCall
__vbaStrToAnsi
__vbaFreeVarg
__vbaVarDup
__vbaFpI4
__vbaVarCopy
ord617
__vbaLateMemCallLd
_CIatan
__vbaCastObj
__vbaStrMove
__vbaAryCopy
ord650
_allmul
_CItan
ord546
__vbaAryUnlock
__vbaVarForNext
_CIexp
__vbaFreeStr
__vbaFreeObj

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
K-MetaSearch Engine Version 3.0 个人版/Server/config.ini
K-MetaSearch Engine Version 3.0 个人版/Server/database.sql
K-MetaSearch Engine Version 3.0 个人版/Server/db.bak
K-MetaSearch Engine Version 3.0 个人版/Server/keyword.dat
K-MetaSearch Engine Version 3.0 个人版/Server/search.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
K-MetaSearch Engine Version 3.0 个人版/Server/初始化.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
K-MetaSearch Engine Version 3.0 个人版/Server/卸载组件.BAT
K-MetaSearch Engine Version 3.0 个人版/Server/安装组件.BAT
K-MetaSearch Engine Version 3.0 个人版/Server/服务器.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
K-MetaSearch Engine Version 3.0 个人版/Server/清空缓存.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
K-MetaSearch Engine Version 3.0 个人版/Web/Thumbs.db
K-MetaSearch Engine Version 3.0 个人版/Web/about.asp
K-MetaSearch Engine Version 3.0 个人版/Web/admin/admin_manage.asp
K-MetaSearch Engine Version 3.0 个人版/Web/admin/admin_manage_ok.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/css/style.css
K-MetaSearch Engine Version 3.0 个人版/Web/admin/desktop.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_add.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_add_ok.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_edit.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_edit_ok.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_manage.asp
.js
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_ok.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/engine_test.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/image/Thumbs.db
K-MetaSearch Engine Version 3.0 个人版/Web/admin/image/bar_bg.jpg
.jpg
K-MetaSearch Engine Version 3.0 个人版/Web/admin/image/login_top.jpg
.jpg
K-MetaSearch Engine Version 3.0 个人版/Web/admin/image/logo.gif
.gif
K-MetaSearch Engine Version 3.0 个人版/Web/admin/image/td_list_bg_25.gif
.gif
K-MetaSearch Engine Version 3.0 个人版/Web/admin/image/top_bg.jpg
.jpg
K-MetaSearch Engine Version 3.0 个人版/Web/admin/inc/body.fix
K-MetaSearch Engine Version 3.0 个人版/Web/admin/inc/code.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/inc/head.fix
K-MetaSearch Engine Version 3.0 个人版/Web/admin/inc/md5.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/index.asp
K-MetaSearch Engine Version 3.0 个人版/Web/admin/left.asp
.js
K-MetaSearch Engine Version 3.0 个人版/Web/admin/login.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/login_out.asp
K-MetaSearch Engine Version 3.0 个人版/Web/admin/login_verify.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/main.asp
K-MetaSearch Engine Version 3.0 个人版/Web/admin/sort_manage.asp
.js
K-MetaSearch Engine Version 3.0 个人版/Web/admin/sort_ok.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/admin/top_main.asp
K-MetaSearch Engine Version 3.0 个人版/Web/ads.asp
K-MetaSearch Engine Version 3.0 个人版/Web/bottom.asp
K-MetaSearch Engine Version 3.0 个人版/Web/css/style.css
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/characterbig5.kcd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/charactergb2312.kcd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlista.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistb.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistc.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistd.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordliste.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistf.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistg.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlisth.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistj.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistk.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistl.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistm.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistn.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlisto.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistp.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistq.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistr.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlists.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistt.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistw.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistx.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlisty.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/dictionary/wordlistz.kwd
K-MetaSearch Engine Version 3.0 个人版/Web/help.asp
K-MetaSearch Engine Version 3.0 个人版/Web/image/Thumbs.db
K-MetaSearch Engine Version 3.0 个人版/Web/image/index_bg.jpg
.jpg
K-MetaSearch Engine Version 3.0 个人版/Web/image/logo.gif
.gif
K-MetaSearch Engine Version 3.0 个人版/Web/image/search_buttom_bg.jpg
.jpg
K-MetaSearch Engine Version 3.0 个人版/Web/inc/config.asp
.asp .vbs polyglot
K-MetaSearch Engine Version 3.0 个人版/Web/inc/sort.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/index.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/link.asp
K-MetaSearch Engine Version 3.0 个人版/Web/search/index.asp
.vbs
K-MetaSearch Engine Version 3.0 个人版/Web/top.asp
K-MetaSearch Engine Version 3.0 个人版/使用帮助.chm
.chm
K-MetaSearch Engine Version 3.0 个人版/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

f55af406a33841cb4c71acf1c57eb149

Headers

File Characteristics

Imports

msvbvm60

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 33KB

.data Size: 4KB - Virtual size: 852B

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 2KB

baffa211d426035ff05ba274cd1f3edb

Headers

File Characteristics

Imports

msvbvm60

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 72KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 10KB

.reloc Size: 8KB - Virtual size: 7KB

Headers

File Characteristics

Sections

CODE Size: 147KB - Virtual size: 147KB

DATA Size: 6KB - Virtual size: 6KB

BSS Size: - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 4KB

.tls Size: - Virtual size: 12B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 11KB

.rsrc Size: 17KB - Virtual size: 16KB

Headers

File Characteristics

Sections

CODE Size: 149KB - Virtual size: 148KB

DATA Size: 6KB - Virtual size: 6KB

BSS Size: - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 4KB

.tls Size: - Virtual size: 12B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 11KB

.rsrc Size: 144KB - Virtual size: 144KB

Headers

File Characteristics

Sections

CODE Size: 149KB - Virtual size: 148KB

DATA Size: 6KB - Virtual size: 6KB

BSS Size: - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 4KB

.tls Size: - Virtual size: 12B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 11KB

.rsrc Size: 87KB - Virtual size: 86KB

Headers

File Characteristics

Sections

CODE Size: 149KB - Virtual size: 148KB

DATA Size: 6KB - Virtual size: 6KB

BSS Size: - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 4KB

.tls Size: - Virtual size: 12B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 11KB

.rsrc Size: 86KB - Virtual size: 85KB

.text
Size: 36KB - Virtual size: 33KB

.data
Size: 4KB - Virtual size: 852B

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 2KB

.text
Size: 76KB - Virtual size: 72KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 10KB

.reloc
Size: 8KB - Virtual size: 7KB

CODE
Size: 147KB - Virtual size: 147KB

DATA
Size: 6KB - Virtual size: 6KB

BSS
Size: - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 4KB

.tls
Size: - Virtual size: 12B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 11KB

.rsrc
Size: 17KB - Virtual size: 16KB

CODE
Size: 149KB - Virtual size: 148KB

DATA
Size: 6KB - Virtual size: 6KB

BSS
Size: - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 4KB

.tls
Size: - Virtual size: 12B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 11KB

.rsrc
Size: 144KB - Virtual size: 144KB

CODE
Size: 149KB - Virtual size: 148KB

DATA
Size: 6KB - Virtual size: 6KB

BSS
Size: - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 4KB

.tls
Size: - Virtual size: 12B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 11KB

.rsrc
Size: 87KB - Virtual size: 86KB

CODE
Size: 149KB - Virtual size: 148KB

DATA
Size: 6KB - Virtual size: 6KB

BSS
Size: - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 4KB

.tls
Size: - Virtual size: 12B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 11KB

.rsrc
Size: 86KB - Virtual size: 85KB