GPackage
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
65e404e18637fea5f9f648a5363e7579.exe
Resource
win7-20231129-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
65e404e18637fea5f9f648a5363e7579.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
65e404e18637fea5f9f648a5363e7579
-
Size
164KB
-
MD5
65e404e18637fea5f9f648a5363e7579
-
SHA1
37d5b6b1508720896681b570ea3be939af1c1890
-
SHA256
dd797b0ec796e6f1a9d89979cf5cbb2159019339bfcc1b8dd7fe6b29af54c944
-
SHA512
ec26fe26adbb0b9aba411f17edc22e927da119359e4001197d5cd16e858cc0de6bf783164203a20194d679fb583fc50f39190b4c1824f18c5d8730987f223b24
-
SSDEEP
1536:vvKzj83cTKu9FKT7UvRUvAg38HzJnGY9KsWdK8owsYPRekX:vvKHfTKuvE7iR3+KRH/WdK8ow1PReU
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 65e404e18637fea5f9f648a5363e7579
Files
-
65e404e18637fea5f9f648a5363e7579.exe windows:4 windows x86 arch:x86
4ce391797687068a8ea391367e46a4ec
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comdlg32
GetSaveFileNameA
kernel32
GetCommandLineW
SetErrorMode
CreateMutexW
CreateMutexA
FindNextFileW
FindNextFileA
RemoveDirectoryW
RemoveDirectoryA
GetCurrentThreadId
GetCurrentThread
SetThreadPriority
Sleep
MultiByteToWideChar
CreateDirectoryW
CreateDirectoryA
CopyFileW
CopyFileA
ReadFile
GetFileAttributesW
CreateProcessW
GetExitCodeProcess
GetCurrentDirectoryW
SetCurrentDirectoryW
SetCurrentDirectoryA
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindFirstFileA
FindClose
GetFileTime
MoveFileW
MoveFileA
DeleteFileW
DeleteFileA
SetEndOfFile
WriteFile
SetFileAttributesW
SetFileAttributesA
CloseHandle
SetFilePointer
CreateFileW
CreateFileA
GetFileSize
VirtualFree
EnterCriticalSection
VirtualAlloc
LeaveCriticalSection
GetDriveTypeW
GetStartupInfoA
GetDriveTypeA
GetLastError
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetSystemDirectoryW
GetWindowsDirectoryW
GetModuleFileNameW
CreateThread
GetSystemInfo
InitializeCriticalSection
GetModuleHandleA
GetCurrentDirectoryA
user32
FindWindowExA
GetPropW
GetPropA
GetDesktopWindow
GetDC
SetPropW
SetPropA
RemovePropW
RemovePropA
PeekMessageA
GetForegroundWindow
GetWindowThreadProcessId
SetFocus
EndDialog
GetWindowRect
ShowWindow
PeekMessageW
TranslateMessage
MessageBoxW
LoadIconW
LoadIconA
SetForegroundWindow
PostQuitMessage
DispatchMessageA
DispatchMessageW
GetMessageA
GetMessageW
UpdateWindow
SendMessageA
SendMessageW
SetWindowPos
GetSystemMetrics
GetDlgItem
CreateDialogParamA
CreateDialogParamW
PostThreadMessageA
FindWindowExW
PostThreadMessageW
gdi32
GetDeviceCaps
DeleteObject
advapi32
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
shell32
ShellExecuteW
ShellExecuteA
core
?GWindowManager@@3PAVUSubsystem@@A
?appSleep@@YAXM@Z
?GExec@@3PAVFExec@@A
?GetOuter@UObject@@QBEPAV1@XZ
?appStrcmp@@YAHPBG0@Z
?appMsgf@@YA?BHHPBGZZ
?GLog@@3PAVFOutputDevice@@A
?StaticClass@UClass@@SAPAV1@XZ
?ParseObject@@YAHPBG0PAVUClass@@AAPAVUObject@@PAV2@@Z
?ParseCommand@@YAHPAPBGPBG@Z
?GetDefaultObject@UClass@@QAEPAVUObject@@XZ
??0FName@@QAE@XZ
?Parse@@YAHPBG0AAVFName@@@Z
?GetName@UObject@@QBEPBGXZ
??DFName@@QBEPBGXZ
??0FName@@QAE@PBGW4EFindName@@@Z
??8FName@@QBEHABV0@@Z
?ExportToOutputDevice@UExporter@@SAXPAVUObject@@PAV1@AAVFOutputDevice@@PBGH@Z
?appClipboardCopy@@YAXPBG@Z
?LocalizeGeneral@@YAPBGPBDPBG1@Z
?appLaunchURL@@YAXPBG0PAVFString@@@Z
?StaticClass@UPackage@@SAPAVUClass@@XZ
??1FArray@@QAE@XZ
??0FString@@QAE@ABV0@@Z
?Split@FString@@QBEHABV1@PAV1@1H@Z
?Localize@@YAPBGPBG000H@Z
??8FString@@QBEHPBG@Z
?Remove@FArray@@QAEXHHH@Z
?Empty@FArray@@QAEXHH@Z
?appFromAnsi@@YAPBGPBD@Z
?Printf@FString@@SA?AV1@PBGZZ
??4FString@@QAEAAV0@ABV0@@Z
?TotalSize@FArchive@@UAEHXZ
?Precache@FArchive@@UAEXH@Z
?Logf@FOutputDevice@@QAAXPBGZZ
??0FArchive@@QAE@XZ
??1FArchive@@UAE@XZ
?SerializeBits@FArchive@@UAEXPAXH@Z
?SerializeInt@FArchive@@UAEXAAKK@Z
?Preload@FArchive@@UAEXPAVUObject@@@Z
?CountBytes@FArchive@@UAEXKK@Z
??6FArchive@@UAEAAV0@AAPAVUObject@@@Z
??6FArchive@@UAEAAV0@AAVFName@@@Z
?MapName@FArchive@@UAEHPAVFName@@@Z
?MapObject@FArchive@@UAEHPAVUObject@@@Z
?SetMinSize@FArchive@@UAEXK@Z
?AtEnd@FArchive@@UAEHXZ
?AtStopper@FArchive@@UAEHXZ
?SetStopper@FArchive@@UAEXH@Z
?GFixedDeltaTime@@3MA
?DetachLazyLoader@FArchive@@UAEXPAVFLazyLoader@@@Z
?Flush@FArchive@@UAEXXZ
?GetError@FArchive@@UAEHXZ
?appStrchr@@YAPAGPBGH@Z
?IsError@FArchive@@QAEHXZ
??4FString@@QAEAAV0@PBG@Z
?IsA@UObject@@QBEHPAVUClass@@@Z
?GetTransientPackage@UObject@@SAPAVUPackage@@XZ
?GError@@3PAVFOutputDeviceError@@A
?StaticConstructObject@UObject@@SAPAV1@PAVUClass@@PAV1@VFName@@K1PAVFOutputDevice@@H@Z
?StaticLoadClass@UObject@@SAPAVUClass@@PAV2@PAV1@PBG2KPAX@Z
??1FRegistryObjectInfo@@QAE@XZ
??0FArray@@QAE@XZ
?GPlatform@@3HA
??0FFileManager@@QAE@XZ
?Init@FFileManager@@UAEXH@Z
?szGetGlobalTime@FFileManager@@UAE_JPBGAAVFString@@@Z
?ExecuteCommandLine@FFileManager@@UAEXPBG@Z
?IsFileReadOnly@FFileManager@@UAEHPBG@Z
??1FFeedbackContext@@UAE@XZ
?GIsSlowTask@@3HA
?GStackBase@@3PAKA
?GCdPath@@3PAGA
?appStrstr@@YAPAGPBG0@Z
?Factory@FConfigCacheIni@@SAPAVFConfigCache@@XZ
?appInit@@YAXPBG0PAVFMalloc@@PAVFOutputDevice@@PAVFOutputDeviceError@@PAVFFeedbackContext@@PAVFFileManager@@P6APAVFConfigCache@@XZH@Z
?appPreExit@@YAXXZ
?GMemoryReporter@@3PAVFOutputDevice@@A
?Log@FOutputDevice@@QAEXPBG@Z
?GIsServer@@3HA
?GIsBinarySound@@3HA
?GIsScriptable@@3HA
?GLazyLoad@@3HA
?appINTCTNOTF@@YAHXZ
??HFString@@QAE?AV0@ABV0@@Z
?Log@FOutputDevice@@QAEXW4EName@@PBG@Z
?appExit@@YAXXZ
?appAtoi@@YAHPBG@Z
?Parse@@YAHPBG0AAVFString@@@Z
??0FName@@QAE@W4EName@@@Z
?appStrfind@@YAPBGPBG0@Z
?ParseParam@@YAHPBG0@Z
GIsMMX
?GPhysicalMemory@@3KA
GIsPentiumPro
?appGetVarArgs@@YAHPAGHAAPBG@Z
??0FFeedbackContext@@QAE@XZ
??1FOutputDeviceError@@UAE@XZ
?GIsFixedDeltaTime@@3HA
?GIsRequestingExit@@3HA
??DFString@@QBE?AV0@ABV0@@Z
??DFString@@QBE?AV0@PBG@Z
?AttachLazyLoader@FArchive@@UAEXPAVFLazyLoader@@@Z
?appSqrt@@YANN@Z
?GetRegistryObjects@UObject@@SAXAAV?$TArray@VFRegistryObjectInfo@@$0A@@@PAVUClass@@1H@Z
??9FString@@QBEHPBG@Z
??0FArray@@IAE@HH@Z
?GSecondsPerCycle@@3NA
?GMalloc@@3PAVFMalloc@@A
?Num@FArray@@QBEHXZ
?GObjObjects@UObject@@0V?$TArray@PAVUObject@@$0A@@@A
?appUnwindf@@YAXPBGZZ
?appSprintf@@YAHPAGPBGZZ
?appPackage@@YAPBGXZ
??0FMalloc@@QAE@XZ
?GPageSize@@3KA
?GUnicodeOS@@3HA
?appStricmp@@YAHPBG0@Z
?appStrlen@@YAHPBG@Z
?appStrcpy@@YAPAGPAGPBG@Z
?winToUNICODE@@YAPAGPAGPBDH@Z
?winGetSizeUNICODE@@YAHPBD@Z
??1FString@@QAE@XZ
??0FString@@QAE@XZ
??DFString@@QBEPBGXZ
?LocalizeGeneral@@YAPBGPBG00@Z
?winToANSI@@YAPADPADPBGH@Z
?winGetSizeANSI@@YAHPBG@Z
?appBaseDir@@YAPBGXZ
?GFileManager@@3PAVFFileManager@@A
??HFString@@QAE?AV0@PBG@Z
??0FString@@QAE@PBG@Z
??YFString@@QAEAAV0@PBG@Z
?NotifyExec@FNotifyHook@@UAEXPAXPBG@Z
?NotifyPostChange@FNotifyHook@@UAEXPAX@Z
?NotifyPreChange@FNotifyHook@@UAEXPAX@Z
??0FNotifyHook@@QAE@XZ
??0FExec@@QAE@XZ
??0FOutputDevice@@QAE@XZ
??1FOutputDevice@@UAE@XZ
?Logf@FOutputDevice@@QAAXW4EName@@PBGZZ
?appTimestamp@@YAPBGXZ
?GLogHook@@3PAVFOutputDevice@@A
?SafeString@FName@@SAPBGW4EName@@@Z
?GNull@@3PAVFOutputDevice@@A
?appStrcat@@YAPAGPAGPBG@Z
?Parse@@YAHPBG0PAGH@Z
?appCmdLine@@YAPBGXZ
?SafeSuppressed@FName@@SAHW4EName@@@Z
?GIsCriticalError@@3HA
??0FOutputDeviceError@@QAE@XZ
?appRequestExit@@YAXH@Z
?LocalizeError@@YAPBGPBDPBG1@Z
?GIsGuarded@@3HA
?appStrncat@@YAPAGPAGPBGH@Z
?appStrncpy@@YAPAGPAGPBGH@Z
?GErrorHist@@3PAGA
?StaticShutdownAfterError@UObject@@SAXXZ
?appGetSystemErrorMessage@@YAPBGH@Z
?LocalizeError@@YAPBGPBG00@Z
?GConfig@@3PAVFConfigCache@@A
?GIsStarted@@3HA
?GIsEditor@@3HA
?GIsClient@@3HA
?GIsRunning@@3HA
?Add@FArray@@QAEHHH@Z
window
?OnCopy@WWindow@@UAEXXZ
?OnCut@WWindow@@UAEXXZ
?OnKeyDown@WWindow@@UAEXG@Z
?OnChar@WWindow@@UAEXG@Z
?OnActivate@WWindow@@UAEXH@Z
?OnSysCommand@WWindow@@UAEHH@Z
?OnCommand@WWindow@@UAEXH@Z
?OnMove@WWindow@@UAEXHH@Z
?OnWindowPosChanging@WWindow@@UAEXPAH000@Z
?OnSize@WWindow@@UAEXKHH@Z
?OnKillFocus@WWindow@@UAEXPAUHWND__@@@Z
?OnSetFocus@WWindow@@UAEXPAUHWND__@@@Z
?OnCopyData@WWindow@@UAEXPAUHWND__@@PAUtagCOPYDATASTRUCT@@@Z
?GetLength@WWindow@@UAEHXZ
?SetText@WWindow@@UAEXPBG@Z
?GetText@WWindow@@UAE?AVFString@@XZ
?InterceptControlCommand@WWindow@@UAEHIIJ@Z
?CallDefaultProc@WDialog@@UAEHIIJ@Z
?WndProc@WWindow@@UAEJIIJ@Z
?DoDestroy@WWindow@@UAEXXZ
?Serialize@WWindow@@UAEXAAVFArchive@@@Z
?Show@WWindow@@UAEXH@Z
?Unused@FCommandTarget@@UAEXXZ
??1WWizardDialog@@UAE@XZ
??1WLabel@@UAE@XZ
?MaybeDestroy@WWindow@@QAEXXZ
??0WLabel@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WWizardDialog@@QAE@XZ
??BWWindow@@QBEPAUHWND__@@XZ
?OnInitDialog@WWizardDialog@@UAEXXZ
?OnCancel@WWizardPage@@UAEXXZ
?GetShow@WWizardPage@@UAEHXZ
?GetCancelText@WWizardPage@@UAEPBGXZ
?GetFinishText@WWizardPage@@UAEPBGXZ
?GetBackText@WWizardPage@@UAEPBGXZ
?OnCurrent@WWizardPage@@UAEXXZ
?OnDestroy@WWindow@@UAEXXZ
?OnClose@WWindow@@UAEXXZ
??1WButton@@UAE@XZ
??1WWizardPage@@UAE@XZ
??0WButton@@QAE@PAVWWindow@@HUFDelegate@@P6GJPAUHWND__@@IIJ@Z@Z
??0FDelegate@@QAE@PAVFCommandTarget@@P81@AEXXZ@Z
??0WWizardPage@@QAE@PBGHPAVWWizardDialog@@@Z
?OnInitDialog@WDialog@@UAEXXZ
?OnPaste@WWindow@@UAEXXZ
??1WCrashBoxDialog@@UAE@XZ
?hInstanceWindow@@3PAUHINSTANCE__@@A
??0WCrashBoxDialog@@QAE@PBG0@Z
?GetString@WListBox@@QAE?AVFString@@H@Z
?GetCurrent@WListBox@@QAEHXZ
?GetRoot@WConfigProperties@@UAEPAVFTreeItem@@XZ
?GetWindowClassName@WConfigProperties@@UAEXPAG@Z
?GetPackageName@WConfigProperties@@UAEPBGXZ
?SetValue@WProperties@@UAEXPBG@Z
?GetListItem@WPropertiesBase@@UAEPAVFTreeItem@@H@Z
?BeginSplitterDrag@WProperties@@UAEXXZ
?ForceRefresh@WProperties@@UAEXXZ
?OnShowWindow@WWindow@@UAEXH@Z
?ResizeList@WProperties@@UAEXXZ
?GetDividerWidth@WProperties@@UAEHXZ
?GetRoot@WObjectProperties@@UAEPAVFTreeItem@@XZ
?OnDestroy@WProperties@@UAEXXZ
?OnSetCursor@WProperties@@UAEHXZ
?OnFinishSplitterDrag@WProperties@@UAEXPAVWDragInterceptor@@H@Z
?OnInitDialog@WWindow@@UAEXXZ
?OnPaint@WProperties@@UAEXXZ
?OnActivate@WProperties@@UAEXH@Z
?OnSize@WProperties@@UAEXKHH@Z
?CallDefaultProc@WWindow@@UAEHIIJ@Z
?GetWindowClassName@WObjectProperties@@UAEXPAG@Z
?DoDestroy@WProperties@@UAEXXZ
?GetPackageName@WObjectProperties@@UAEPBGXZ
?Serialize@WProperties@@UAEXAAVFArchive@@@Z
?SetNotifyHook@WWindow@@QAEXPAVFNotifyHook@@@Z
??0WConfigProperties@@QAE@VFName@@PBG@Z
?OpenWindow@WProperties@@QAEXPAUHWND__@@@Z
??0WObjectProperties@@QAE@VFName@@KPBGPAVWWindow@@H@Z
?ScrollCaret@WEdit@@QAEXXZ
?GLogWindow@@3PAVWLog@@A
??1WObjectProperties@@UAE@XZ
??1WConfigProperties@@UAE@XZ
?SetExec@WTerminal@@QAEXPAVFExec@@@Z
?SetCurrent@WListBox@@QAEHHH@Z
?FindStringChecked@WListBox@@QAEHPBG@Z
?AddString@WListBox@@QAEHPBG@Z
?Empty@WListBox@@QAEXXZ
?GetNextText@WWizardPage@@UAEPBGXZ
??1WListBox@@UAE@XZ
??0WListBox@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WEdit@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??1WEdit@@UAE@XZ
??1WUrlButton@@UAE@XZ
??0WUrlButton@@QAE@PAVWWindow@@PBGH@Z
??4FDelegate@@QAEAAU0@ABU0@@Z
?GetNext@WWizardPage@@UAEPAV1@XZ
??1WCoolButton@@UAE@XZ
??0WCoolButton@@QAE@PAVWWindow@@HUFDelegate@@K@Z
?Serialize@WTerminal@@UAEXPBGW4EName@@@Z
?Paste@WTerminal@@UAEXXZ
?TypeChar@WTerminal@@UAEXG@Z
?OnDestroy@WLog@@UAEXXZ
?OnClose@WLog@@UAEXXZ
?OnCreate@WLog@@UAEXXZ
?OnShowWindow@WLog@@UAEXH@Z
?OnCommand@WLog@@UAEXH@Z
?OnSize@WTerminal@@UAEXKHH@Z
?OnSetFocus@WTerminal@@UAEXPAUHWND__@@@Z
?OnCopyData@WLog@@UAEXPAUHWND__@@PAUtagCOPYDATASTRUCT@@@Z
?SetText@WLog@@UAEXPBG@Z
?WndProc@WLog@@UAEJIIJ@Z
?GetWindowClassName@WLog@@UAEXPAG@Z
?GetPackageName@WLog@@UAEPBGXZ
?OpenWindow@WLog@@QAEXHH@Z
??0WLog@@QAE@PBGAAPAVFArchive@@VFName@@PAVWWindow@@@Z
?InitWindowing@@YAXXZ
??1WLog@@UAE@XZ
?OnUndo@WWindow@@UAEXXZ
?OnVScroll@WWindow@@UAEXIJ@Z
?OnHScroll@WWindow@@UAEXIJ@Z
?OnKeyUp@WWindow@@UAEXIJ@Z
?OnPaint@WWindow@@UAEXXZ
?OnCreate@WWindow@@UAEXXZ
?OnDrawItem@WWindow@@UAEXPAUtagDRAWITEMSTRUCT@@@Z
?OnMeasureItem@WWindow@@UAEXPAUtagMEASUREITEMSTRUCT@@@Z
?OnEnterIdle@WWindow@@UAEXXZ
?OnMouseEnter@WWindow@@UAEXXZ
?OnMouseLeave@WWindow@@UAEXXZ
?OnMouseHover@WWindow@@UAEXXZ
?OnTimer@WWindow@@UAEXXZ
?OnReleaseCapture@WWindow@@UAEXXZ
?OnMdiActivate@WWindow@@UAEXH@Z
?OnMouseMove@WWindow@@UAEXKUFPoint@@@Z
?OnLeftButtonDown@WWindow@@UAEXXZ
?OnLeftButtonDoubleClick@WWindow@@UAEXXZ
?OnMiddleButtonDoubleClick@WWindow@@UAEXXZ
?OnRightButtonDoubleClick@WWindow@@UAEXXZ
?OnRightButtonDown@WWindow@@UAEXXZ
?OnLeftButtonUp@WWindow@@UAEXXZ
?OnRightButtonUp@WWindow@@UAEXXZ
?OnFinishSplitterDrag@WWindow@@UAEXPAVWDragInterceptor@@H@Z
?OnSetCursor@WWindow@@UAEHXZ
?OnClose@WWizardDialog@@UAEXXZ
?OnDestroy@WWizardDialog@@UAEXXZ
?MyDrawEdge@WWindow@@UAEXPAUHDC__@@PAUtagRECT@@H@Z
?DoModal@WDialog@@UAEHPAUHINSTANCE__@@@Z
?LocalizeText@WDialog@@UAEXPBG0@Z
?Advance@WWizardDialog@@UAEXPAVWWizardPage@@@Z
?RefreshPage@WWizardDialog@@UAEXXZ
?OnBack@WWizardDialog@@UAEXXZ
?OnNext@WWizardDialog@@UAEXXZ
?OnFinish@WWizardDialog@@UAEXXZ
?OnCancel@WWizardDialog@@UAEXXZ
?SetItemFocus@WProperties@@UAEXH@Z
?LoadFileToBitmap@@YAPAUHBITMAP__@@PBGAAH1@Z
?EndDialog@WDialog@@QAEXH@Z
engine
?GameMapExt@FURL@@2VFString@@A
?GGameOptions@@3PAVUEPCGameOptions@@A
?StaticClass@URenderDevice@@SAPAVUClass@@XZ
?GetLevel@AActor@@QBEPAVULevel@@XZ
?StaticClass@AActor@@SAPAVUClass@@XZ
?StaticClass@UEngine@@SAPAVUClass@@XZ
?SaveLIPSincDBToDisk@TLIPSincDB@@QAEXXZ
?IsDirty@TLIPSincDB@@QAE_NXZ
?GLIPSincDB@@3VTLIPSincDB@@A
?AVITakeShot@@YAXPAVUEngine@@@Z
?AVIRecording@@3HA
?g_pEngine@@3PAVUEngine@@A
?StaticClass@UGameEngine@@SAPAVUClass@@XZ
msvcr71
_controlfp
_CxxThrowException
_purecall
?terminate@@YAXXZ
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_amsg_exit
_acmdln
exit
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
_onexit
__dllonexit
??1type_info@@UAE@XZ
__CxxFrameHandler
Exports
Exports
Sections
.text Size: 96KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 28KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 161KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 24KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ