PC Equalizer Free v1[.]3[.]3[.]3 Portable[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

PC Equalizer Free v1.3.3.3 Portable.rar
Size

6.2MB
MD5

652287d40f2c3db4dcbff11b78284a0d
SHA1

87fa69fa55dc106f505e81ca98130451e22ae083
SHA256

e72e56eeee066fb26ae57051f5f4935b64687b2b355495c37024a2a3c7f76829
SHA512

58e1022dcf90663f1546eb96b7e12dff4f0703457a00de9567476700f94aa3557b765e915292053afa19560a249d8b41b53550199b6f1258ecec13d706ccd9f4
SSDEEP

98304:3ncGCK3Ke8XjbKbZPrfa4bhy3x6wQzWMtgNm677WAQTX9yhH0Z8iHfLzgYPvgD+Y:sGCK9Fbxfa4ghCaG6gTXKI7Hfwyov

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PC Equalizer Free/PCEqualizer.exe
unpack001/PC Equalizer Free/data/Plugins/Download/Download.lmd
unpack001/PC Equalizer Free/data/Plugins/SLIDEREX/SLIDEREX.APO
unpack001/PC Equalizer Free/data/Plugins/Skin/win.8.msstyles
unpack001/PC Equalizer Free/lua5.1.dll

Files

PC Equalizer Free v1.3.3.3 Portable.rar
.rar

Password: infected
PC Equalizer Free/PCEqualizer.dll
.zip
PC Equalizer Free/PCEqualizer.exe
.exe windows:5 windows x86 arch:x86

Password: infected

5089dfad9757b4e98342d65a4ea49e1b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

lua5.1

lua_settop
lua_sethook
lua_getinfo
lua_toboolean
lua_isnumber
lua_tonumber
lua_getfield
luaL_openlibs
lua_pushnil
lua_pushboolean
lua_pushnumber
lua_close
lua_pushstring
lua_setfield
lua_type
lua_tothread
luaL_newstate
lua_concat
lua_pushfstring
lua_getstack
lua_pushlstring
lua_gettop
lua_tointeger
lua_tolstring
lua_isstring
lua_pcall
lua_insert
lua_pushcclosure
luaL_loadbuffer
lua_settable
lua_createtable
lua_gettable
lua_error
lua_next
lua_pushvalue
luaL_openlib
lua_remove

winmm

mixerOpen
mixerSetControlDetails
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
waveInReset
waveInClose
waveInOpen
waveInStart
waveInGetNumDevs
waveInGetDevCapsA
waveInUnprepareHeader
mixerGetNumDevs
waveInAddBuffer
waveOutGetPosition
waveOutReset
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutGetNumDevs
waveOutGetDevCapsA
mciGetErrorStringA
mciSendCommandA
timeGetTime
mixerClose
waveInPrepareHeader
PlaySoundA
timeGetDevCaps
sndPlaySoundA
timeEndPeriod
timeKillEvent
timeBeginPeriod
timeSetEvent

wsock32

connect
socket
WSAAsyncGetHostByName
WSACleanup
WSAStartup
WSAGetLastError
WSACancelAsyncRequest
htons
ioctlsocket
inet_addr
select
__WSAFDIsSet
inet_ntoa
send
closesocket
recv

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

msacm32

acmStreamOpen
acmStreamConvert
acmStreamUnprepareHeader
acmStreamClose
acmStreamSize
acmStreamPrepareHeader
acmFormatSuggest

kernel32

LocalFileTimeToFileTime
DosDateTimeToFileTime
SetVolumeLabelA
GetLocalTime
FlushFileBuffers
MoveFileA
VirtualUnlock
FreeResource
VirtualFree
VirtualAlloc
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetModuleFileNameW
GetThreadLocale
ResumeThread
LocalReAlloc
EnumResourceLanguagesA
ConvertDefaultLocale
GetFileTime
GetStringTypeExA
LockFile
UnlockFile
DuplicateHandle
GetFileAttributesExA
GetFileSizeEx
GetProfileIntA
GlobalFlags
GetCPInfo
GetOEMCP
GetModuleHandleW
SearchPathA
LoadLibraryW
GetSystemDirectoryW
FindResourceExA
RtlUnwind
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
ExitProcess
GetTimeFormatA
GetDateFormatA
VirtualQuery
HeapReAlloc
RaiseException
GetCommandLineA
GetStartupInfoA
ExitThread
SetStdHandle
GetFileType
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
HeapCreate
GetStdHandle
CompareStringW
GetStringTypeA
GetStringTypeW
SetEnvironmentVariableW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
SetHandleCount
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
LocalLock
LocalUnlock
IsDBCSLeadByte
lstrcmpA
TlsGetValue
IsBadReadPtr
TlsFree
TlsSetValue
GlobalHandle
TlsAlloc
GetProcessAffinityMask
VirtualProtect
VirtualLock
OpenFile
InterlockedDecrement
QueryPerformanceCounter
QueryPerformanceFrequency
ResetEvent
GetCurrentThreadId
GetSystemDefaultLangID
DeviceIoControl
SetErrorMode
IsBadStringPtrA
WriteFile
GetFileSize
SetEndOfFile
GetDriveTypeA
GetComputerNameA
GetSystemInfo
GlobalMemoryStatus
ExpandEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentProcessId
GetLocaleInfoA
GlobalSize
CreateThread
TerminateThread
CreateEventA
SetEvent
WaitForSingleObject
GetExitCodeThread
GetThreadPriority
SetThreadPriority
DeleteCriticalSection
InitializeCriticalSection
GetCurrentThread
GetCurrentProcess
LoadLibraryExA
GetTickCount
OpenProcess
TerminateProcess
GetTempPathA
FormatMessageA
LocalFree
MoveFileExA
GetWindowsDirectoryA
GetShortPathNameA
CopyFileA
GetPrivateProfileStringA
GetPrivateProfileSectionA
GetPrivateProfileSectionNamesA
WritePrivateProfileStringA
lstrcpyA
MulDiv
GetTempFileNameA
CreateProcessA
GetExitCodeProcess
GetDiskFreeSpaceA
CreateDirectoryA
SystemTimeToFileTime
SetFileTime
DeleteFileA
RemoveDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
GetVolumeInformationA
FindNextFileA
FindFirstFileA
FindClose
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileA
SetFilePointer
ReadFile
CloseHandle
lstrlenA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
SetFileAttributesA
Sleep
lstrcpynA
SetEnvironmentVariableA
GetSystemDirectoryA
GetEnvironmentVariableA
FreeLibrary
lstrlenW
InterlockedIncrement
GetFileAttributesA
GetModuleFileNameA
GetLastError
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
CompareStringA
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
FileTimeToDosDateTime
lstrcmpiA
GetLogicalDriveStringsA
LocalAlloc
EnumResourceNamesA
EnumResourceTypesA
LoadLibraryExW
LocalSize
IsBadWritePtr
lstrcatA

user32

DefMDIChildProcA
TranslateMDISysAccel
PostThreadMessageA
SubtractRect
GetTabbedTextExtentA
DestroyCursor
DrawIcon
GetDCEx
IsCharLowerA
MapVirtualKeyExA
SetWindowContextHelpId
MapDialogRect
GetSysColorBrush
IsMenu
IsZoomed
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsA
InsertMenuItemA
BringWindowToTop
TranslateAcceleratorA
DestroyAcceleratorTable
NotifyWinEvent
GetMessageA
ValidateRect
DestroyMenu
MapVirtualKeyA
GetKeyNameTextA
GetMenuStringA
EndPaint
BeginPaint
IsDialogMessageA
CheckRadioButton
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
CheckMenuItem
SendDlgItemMessageA
WinHelpA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetWindowTextLengthA
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
ScrollWindow
TrackPopupMenuEx
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetClassInfoExA
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
GetMenu
IsIconic
GetWindowPlacement
CreateDialogIndirectParamA
GetDlgItem
IsWindowEnabled
CharToOemA
OemToCharBuffA
CharLowerA
WaitForInputIdle
SetDlgItemTextA
SetWindowTextA
EndDialog
DialogBoxParamA
GetActiveWindow
OemToCharA
CharNextA
CharPrevA
CharUpperBuffA
CharLowerBuffA
UnregisterClassA
ExitWindowsEx
DrawMenuBar
RemoveMenu
RegisterClassA
CreateWindowExA
DestroyWindow
GetAsyncKeyState
GetNextDlgTabItem
GetDoubleClickTime
WindowFromPoint
ClipCursor
IsClipboardFormatAvailable
GetClassInfoA
InvertRect
DrawEdge
FrameRect
FillRect
TrackMouseEvent
EnableScrollBar
InsertMenuA
DrawFrameControl
MapWindowPoints
GetMenuItemCount
CreatePopupMenu
DefFrameProcA
GetWindowRgn
EqualRect
GetForegroundWindow
GetWindow
GetWindowThreadProcessId
EnumWindows
GetWindowTextA
TrackPopupMenu
DrawAnimatedRects
FindWindowA
EnumChildWindows
GetClassNameA
SetMenuDefaultItem
SetParent
SetActiveWindow
LoadMenuA
GetSubMenu
SendMessageTimeoutA
MsgWaitForMultipleObjects
wsprintfA
DrawIconEx
LoadBitmapA
CharUpperA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
MessageBeep
RegisterWindowMessageA
IsChild
LoadCursorA
SetCursor
ShowWindow
MoveWindow
SetWindowRgn
UnionRect
TranslateMessage
SetRectEmpty
DefWindowProcA
SetCapture
GetCapture
SetFocus
SetWindowPos
CallWindowProcA
GetFocus
InvalidateRgn
UpdateWindow
IntersectRect
PostQuitMessage
RegisterClassExA
GetWindowDC
GetSystemMenu
GetMenuState
EnableMenuItem
DeleteMenu
MessageBoxA
GetMessagePos
DestroyIcon
DrawFocusRect
SetRect
GetIconInfo
GetSystemMetrics
SystemParametersInfoA
GetMenuItemInfoA
AppendMenuA
InflateRect
CopyRect
DrawStateA
PeekMessageA
DispatchMessageA
ReleaseCapture
CloseWindow
GetParent
PostMessageA
GetSysColor
GetKeyState
GetCursorPos
RedrawWindow
IsWindowVisible
InvalidateRect
ScreenToClient
PtInRect
IsWindow
LoadIconA
SendMessageA
OffsetRect
KillTimer
SetTimer
GetWindowLongA
SetWindowLongA
GetDC
UpdateLayeredWindow
ReleaseDC
LoadImageA
EnableWindow
SetForegroundWindow
GetDesktopWindow
ClientToScreen
GetClientRect
GetWindowRect
IsRectEmpty
SetWindowLongW
GetWindowLongW
IsWindowUnicode
CreateIconIndirect
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
GetMenuStringW
CallWindowProcW
CreateAcceleratorTableA
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
CopyIcon
SetCursorPos
GetMenuDefaultItem
EmptyClipboard
CloseClipboard
SetClipboardData
CopyImage
OpenClipboard
WaitMessage
DefWindowProcW
DefFrameProcW
DefDlgProcA
DefDlgProcW
DefMDIChildProcW
RegisterClassW
HideCaret
ShowCaret
GetCursor
ShowOwnedPopups
SetClassLongA
LockWindowUpdate
GetUpdateRect
RegisterClipboardFormatA
GetNextDlgGroupItem
CreateMenu
CopyAcceleratorTableA
GetKeyboardLayoutList
GetMenuItemID

gdi32

AddFontResourceA
RemoveFontResourceA
CreateHalftonePalette
CreateFontIndirectA
GetTextColor
Polygon
RealizePalette
SelectPalette
CreateRectRgnIndirect
CombineRgn
GetWindowOrgEx
GetWindowExtEx
IntersectClipRect
GetDeviceCaps
GetMapMode
GetViewportExtEx
DPtoLP
LPtoDP
ExtCreateRegion
BitBlt
CreateRectRgn
CreateRoundRectRgn
GetPaletteEntries
GetBkColor
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GdiFlush
CreateFontA
CreateScalableFontResourceA
EnumFontFamiliesExA
CreatePalette
CreateBitmap
PatBlt
CreatePatternBrush
ExcludeClipRect
LineTo
MoveToEx
SetTextAlign
EndDoc
GetPixel
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
GetStockObject
ScaleWindowExtEx
GetCurrentPositionEx
PolyBezierTo
ExtSelectClipRgn
GetObjectType
CreateHatchBrush
CopyMetaFileA
CreateDCA
CreateSolidBrush
CreateEllipticRgn
CreatePolygonRgn
Polyline
Ellipse
GetRgnBox
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetCharWidthA
StretchDIBits
OffsetRgn
SetDIBColorTable
GetDIBits
StartPage
SetPixel
RoundRect
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
GetTextAlign
GetTextFaceA
GetNearestPaletteIndex
GetSystemPaletteEntries
DeleteMetaFile
SetPixelV
StartDocA
GetCurrentObject
OffsetViewportOrgEx
GetTextExtentPoint32A
SetWindowExtEx
Rectangle
SetViewportOrgEx
GetClipRgn
SelectClipRgn
GetBkMode
GetTextMetricsA
CreateCompatibleBitmap
PtInRegion
AbortDoc
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
RestoreDC
SaveDC
SetTextColor
CreatePen
CreateDIBSection
StretchBlt
SetBrushOrgEx
GetBitmapBits
GetTextExtentPoint32W
ExtTextOutW
StrokePath
FillPath
StrokeAndFillPath
EndPath
CloseFigure
BeginPath
SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
GetMetaFileBitsEx
GetMetaFileA
GetEnhMetaFileA
PlayEnhMetaFile
GetClipBox
GetDCOrgEx
SetBkColor
SetBkMode
GetStretchBltMode
SetRectRgn
DeleteObject
GetObjectA
EndPage
SelectObject
DeleteDC
CreateCompatibleDC

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

LookupAccountNameA
RegEnumKeyA
GetUserNameA
GetServiceDisplayNameA
QueryServiceStatus
ControlService
StartServiceA
DeleteService
CreateServiceA
OpenServiceA
OpenSCManagerA
CloseServiceHandle
UnlockServiceDatabase
RegEnumValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegConnectRegistryA
EnumServicesStatusA
OpenThreadToken
EqualSid
OpenProcessToken
GetTokenInformation
RegOpenKeyA
FreeSid
GetNamedSecurityInfoA
SetEntriesInAclA
SetNamedSecurityInfoA
ConvertStringSidToSidA
LookupAccountSidA
AllocateAndInitializeSid
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegSetValueA
ConvertSidToStringSidA
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCloseKey
IsValidSid

shell32

ShellExecuteExA
ExtractIconExA
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
DragQueryFileA
DragFinish
ExtractIconA
SHGetFileInfoA
SHAppBarMessage
Shell_NotifyIconA
SHGetSpecialFolderLocation

comctl32

ImageList_GetImageInfo
ImageList_GetBkColor
FlatSB_GetScrollProp
_TrackMouseEvent
ImageList_DrawEx
ImageList_Destroy
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_DrawIndirect

shlwapi

PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
PathRemoveFileSpecW

oledlg

ord1
ord8

ole32

CreateStreamOnHGlobal
CLSIDFromString
CoCreateInstance
CoUninitialize
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
CoInitialize
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
CoInitializeEx
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
RegisterTypeLi
LoadTypeLi
VariantClear
SysStringLen
SysAllocStringByteLen
SysStringByteLen
OleCreateFontIndirect
SafeArrayDestroy
VariantChangeType
VariantCopy
SysAllocStringLen
SysAllocString
VariantInit
SysFreeString
OleLoadPicturePath

urlmon

URLDownloadToFileA

gdiplus

GdipCloneImage
GdiplusShutdown
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree

netapi32

Netbios

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

imagehlp

ImageDirectoryEntryToData

Sections

.text
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 859KB - Virtual size: 859KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 145KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PC Equalizer Free/data/Plugins/Download/Download.lmd
.dll windows:4 windows x86 arch:x86

Password: infected

2feb5367bf6ffd4be7c6e37d1b6f4244

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\AmsPluginsV8\Download\Release\DHL.pdb

Imports

lua5.1

luaL_openlib
lua_pushnumber
lua_settop
lua_tolstring
lua_pushboolean
lua_pushnil
lua_call
lua_settable
lua_createtable
lua_error
lua_getfield
lua_pushstring
lua_gettable
lua_remove
lua_type
lua_pcall
lua_next
lua_tonumber
lua_toboolean
lua_gettop

kernel32

LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
CreateFileA
InterlockedDecrement
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SetErrorMode
WritePrivateProfileStringA
InterlockedIncrement
GlobalFlags
RaiseException
FileTimeToSystemTime
GetCPInfo
FlushFileBuffers
FileTimeToLocalFileTime
GetFileTime
RtlUnwind
ExitProcess
HeapAlloc
HeapFree
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
TerminateProcess
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
SetFilePointer
WriteFile
ReadFile
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
SetLastError
GlobalFree
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
GlobalAddAtomA
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
LoadLibraryA
GetProcAddress
CompareStringW
CompareStringA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
lstrcatA
GetExitCodeThread
WaitForSingleObject
CloseHandle
CreateThread
GetFileAttributesExA
GetTickCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetFileAttributesA
lstrlenA
lstrcpyA
GetOEMCP

user32

ClientToScreen
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetDC
ReleaseDC
GetSysColorBrush
LoadCursorA
DestroyMenu
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetWindowTextA
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetSysColor
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
CopyRect
PtInRect
GetWindow
GetMenuItemCount
GetSubMenu
SetMenuItemBitmaps
GetFocus
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
SendMessageA
SetCursor
PostQuitMessage
ShowWindow
SetWindowTextA
CharUpperA
GetClientRect
wsprintfA
EnableWindow
PostMessageA
SetTimer
KillTimer
IsWindow
GetMenuItemID
GetMenu

gdi32

SetMapMode
ExtTextOutA
RectVisible
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
GetStockObject
PtVisible
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
CreateBitmap
DeleteObject
TextOutA

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA

shell32

ShellExecuteA

comctl32

ord17

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

oleaut32

VariantInit
VariantChangeType
VariantClear

urlmon

ObtainUserAgentString

wininet

InternetReadFile
HttpQueryInfoA
InternetSetOptionA
InternetOpenA
InternetCloseHandle
InternetOpenUrlA

Exports

Exports

irPlg_Action_RegisterActions
irPlg_GetAuthorInfo
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 606KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PC Equalizer Free/data/Plugins/SLIDEREX/SLIDEREX.APO
.dll windows:4 windows x86 arch:x86

Password: infected

635c9d44287e81e9a3204d4547cde2f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

lua5.1

lua_tonumber

user32

GetCursorPos

gdi32

ExtTextOutA

comdlg32

ChooseColorA

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

ShellExecuteA

comctl32

ord17

shlwapi

PathFindFileNameA

oleaut32

VariantClear

Exports

Exports

irPlg_GetAuthorInfo
irPlg_GetIRPluginObjectVersion
irPlg_GetLuaVersion
irPlg_GetPluginActionXML
irPlg_GetPluginName
irPlg_GetPluginVersion
irPlg_GetSDKVersion
irPlg_Object_CreateObject
irPlg_Object_DeleteObject
irPlg_ShowHelpForAction
irPlg_ShowHelpForPlugin
irPlg_ValidateLicense

Sections

.text
Size: 77KB - Virtual size: 832KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PC Equalizer Free/data/Plugins/Skin/win.8.msstyles
.dll windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PC Equalizer Free/data/blgrd.csv
PC Equalizer Free/data/dat01/ap10.dat
.zip

Password: infected
_manifest.xml
.xml
control-1.4-dn-hil.png
.png

Password: infected
control-1.4-up-dis.png
.png

Password: infected
control-1.4-up-hil.png
.png
control-1.4-up-nor.png
.png
PC Equalizer Free/data/dat01/ap11.dat
.zip
PC Equalizer Free/data/dat01/ap12.dat
.zip
PC Equalizer Free/data/dat01/ap13.dat
.zip
PC Equalizer Free/data/dat01/ap14.dat
.zip
PC Equalizer Free/data/dat01/ap15.dat
.zip
PC Equalizer Free/data/dat01/ap16.dat
.zip
PC Equalizer Free/data/dat01/ap17.dat
.zip
PC Equalizer Free/data/dat01/ap18.dat
.zip
PC Equalizer Free/data/dat01/ap19.dat
.zip
PC Equalizer Free/data/dat01/ap20.dat
.zip
PC Equalizer Free/data/dat01/ap21.dat
.zip
PC Equalizer Free/data/dat01/ap22.dat
.zip
PC Equalizer Free/data/dat01/ap23.dat
.zip
PC Equalizer Free/data/dat01/ap24.dat
.zip
PC Equalizer Free/data/dat01/ap25.dat
.zip
PC Equalizer Free/data/dat01/ap26.dat
.zip
PC Equalizer Free/data/dat01/ap27.dat
.zip
PC Equalizer Free/data/dat01/ap28.dat
.zip
PC Equalizer Free/data/dat01/ap29.dat
.zip
PC Equalizer Free/data/dat01/ap3.dat
.zip
PC Equalizer Free/data/dat01/ap30.dat
.zip
PC Equalizer Free/data/dat01/ap31.dat
.zip
PC Equalizer Free/data/dat01/ap32.dat
.zip
PC Equalizer Free/data/dat01/ap33.dat
.zip
PC Equalizer Free/data/dat01/ap34.dat
.zip
PC Equalizer Free/data/dat01/ap35.dat
.zip
PC Equalizer Free/data/dat01/ap36.dat
.zip
PC Equalizer Free/data/dat01/ap37.dat
.png
PC Equalizer Free/data/dat01/ap38.dat
.png
PC Equalizer Free/data/dat01/ap39.dat
.png
PC Equalizer Free/data/dat01/ap4.dat
.zip
PC Equalizer Free/data/dat01/ap40.dat
.png
PC Equalizer Free/data/dat01/ap41.dat
.png
PC Equalizer Free/data/dat01/ap42.dat
.png
PC Equalizer Free/data/dat01/ap43.dat
.png
PC Equalizer Free/data/dat01/ap44.dat
.png
PC Equalizer Free/data/dat01/ap45.dat
.png
PC Equalizer Free/data/dat01/ap46.dat
.png
PC Equalizer Free/data/dat01/ap47.dat
.png
PC Equalizer Free/data/dat01/ap48.dat
.png
PC Equalizer Free/data/dat01/ap49.dat
.png
PC Equalizer Free/data/dat01/ap5.dat
.zip
PC Equalizer Free/data/dat01/ap50.dat
.png
PC Equalizer Free/data/dat01/ap51.dat
.png
PC Equalizer Free/data/dat01/ap52.dat
.png
PC Equalizer Free/data/dat01/ap53.dat
.png
PC Equalizer Free/data/dat01/ap54.dat
.png
PC Equalizer Free/data/dat01/ap6.dat
.zip
PC Equalizer Free/data/dat01/ap7.dat
.zip
PC Equalizer Free/data/dat01/ap8.dat
.zip
PC Equalizer Free/data/dat01/ap9.dat
.zip
PC Equalizer Free/data/delay/Default.txt
PC Equalizer Free/data/delay/Delay 1 sec - cut source.txt
PC Equalizer Free/data/delay/Delay 1 sec - low source.txt
PC Equalizer Free/data/delay/Echo + large hall with pan 1.txt
PC Equalizer Free/data/delay/Echo + large hall with pan 2.txt
PC Equalizer Free/data/delay/Echo + large hall with pan 3.txt
PC Equalizer Free/data/delay/Echo + large hall with pan 4.txt
PC Equalizer Free/data/delay/Echo - left channel.txt
PC Equalizer Free/data/delay/Echo - medium hall.txt
PC Equalizer Free/data/delay/Echo - small room.txt
PC Equalizer Free/data/delay/Echo - wave effect (left to right).txt
PC Equalizer Free/data/delay/Reverse 01.txt
PC Equalizer Free/data/delay/Reverse 02.txt
PC Equalizer Free/data/delay/Robot 01.txt
PC Equalizer Free/data/delay/Robot 02.txt
PC Equalizer Free/data/delay/Robot 03.txt
PC Equalizer Free/data/delay/Robot 04.txt
PC Equalizer Free/data/delay/Robot 05.txt
PC Equalizer Free/data/delay/Robot 06.txt
PC Equalizer Free/data/delay/Separation 01.txt
PC Equalizer Free/data/delay/Separation 02 + Echo 01.txt
PC Equalizer Free/data/delay/Separation 02 + Echo 02.txt
PC Equalizer Free/data/delay/Separation 02 + Echo 03.txt
PC Equalizer Free/data/delay/Single channel delay + Echo 01.txt
PC Equalizer Free/data/delay/Single channel delay + Echo 02.txt
PC Equalizer Free/data/delay/Single channel delay + Echo 03.txt
PC Equalizer Free/data/delay/Single channel delay.txt
PC Equalizer Free/data/delay/User - 01.txt
PC Equalizer Free/data/delay/User - 02.txt
PC Equalizer Free/data/delay/User - 03.txt
PC Equalizer Free/data/delay/User - 04.txt
PC Equalizer Free/data/delay/Wide stereo + minmal delay 01.txt
PC Equalizer Free/data/delay/Wide stereo + minmal delay 02.txt
PC Equalizer Free/data/delay/Wide stereo + minmal delay 03.txt
PC Equalizer Free/data/delay/Wide stereo 01.txt
PC Equalizer Free/data/delay/Wide stereo 02.txt
PC Equalizer Free/data/preset/Car BT 01.txt
PC Equalizer Free/data/preset/Car BT 02.txt
PC Equalizer Free/data/preset/Car BT 03.txt
PC Equalizer Free/data/preset/Car BT 04.txt
PC Equalizer Free/data/preset/Car BT 05.txt
PC Equalizer Free/data/preset/Headphones 01.txt
PC Equalizer Free/data/preset/Headphones 02.txt
PC Equalizer Free/data/preset/Headphones 03.txt
PC Equalizer Free/data/preset/Headphones 04.txt
PC Equalizer Free/data/preset/Headphones 05.txt
PC Equalizer Free/data/preset/Headphones 06.txt
PC Equalizer Free/data/preset/Headphones GBN.txt
PC Equalizer Free/data/preset/Headphones V33.txt
PC Equalizer Free/data/preset/Hi Fi Speakers.txt
PC Equalizer Free/data/preset/Laptop Speakers 01.txt
PC Equalizer Free/data/preset/Laptop Speakers 02.txt
PC Equalizer Free/data/preset/Laptop Speakers 03.txt
PC Equalizer Free/data/preset/Laptop Speakers 04.txt
PC Equalizer Free/data/preset/Laptop Speakers 05.txt
PC Equalizer Free/data/preset/Monitor - HP.txt
PC Equalizer Free/data/preset/Monitor - Samsung 01.txt
PC Equalizer Free/data/preset/Monitor - Samsung 02.txt
PC Equalizer Free/data/preset/Old Phone.txt
PC Equalizer Free/data/preset/Pure Bass.txt
PC Equalizer Free/data/preset/SoundWire.txt
PC Equalizer Free/data/preset/Splashtop - Headphones.txt
PC Equalizer Free/data/preset/Splashtop.txt
PC Equalizer Free/data/preset/Stream what you hear.txt
PC Equalizer Free/data/preset/TV Soundbar.txt
PC Equalizer Free/data/preset/Tribal only.txt
PC Equalizer Free/data/preset/USB Speakers - Movies.txt
PC Equalizer Free/data/preset/USB Speakers - Music.txt
PC Equalizer Free/data/preset/[build] Bass.txt
PC Equalizer Free/data/preset/[build] Classical.txt
PC Equalizer Free/data/preset/[build] Club.txt
PC Equalizer Free/data/preset/[build] Dance.txt
PC Equalizer Free/data/preset/[build] Default.txt
PC Equalizer Free/data/preset/[build] Jazz.txt
PC Equalizer Free/data/preset/[build] Live.txt
PC Equalizer Free/data/preset/[build] Party.txt
PC Equalizer Free/data/preset/[build] Pop.txt
PC Equalizer Free/data/preset/[build] Powerful.txt
PC Equalizer Free/data/preset/[build] Rock.txt
PC Equalizer Free/data/preset/[build] Soft.txt
PC Equalizer Free/data/preset/[build] Treble.txt
PC Equalizer Free/data/preset/[build] Vocal.txt
PC Equalizer Free/lua5.1.dll
.dll windows:4 windows x86 arch:x86

df5ee731556844566bd09eb9e0c19cfb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
FormatMessageA
GetLastError
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

msvcr80

strtoul
strcoll
strerror
ungetc
strstr
__iob_func
_errno
fopen
fread
fprintf
ferror
freopen
realloc
fclose
getc
feof
free
fputs
fgets
setvbuf
fwrite
ftell
fseek
clearerr
fscanf
tmpfile
_pclose
fflush
_popen
ceil
modf
ldexp
rand
srand
strcspn
_HUGE
_mktime64
_gmtime64
tmpnam
system
remove
clock
strftime
setlocale
_localtime64
getenv
_difftime64
_time64
rename
memchr
ispunct
tolower
isupper
toupper
islower
strpbrk
isxdigit
strrchr
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
strncpy
strncat
sprintf
strtod
localeconv
isspace
iscntrl
isdigit
isalpha
isalnum
exit
longjmp
strchr
frexp
_setjmp3
_CIpow
floor
memcpy
_CIexp
_CIlog10
_CIlog
_CIsqrt
_CIfmod
_CIatan2
_CIatan
_CIacos
_CIasin
_CItanh
_CItan
_CIcosh
_CIcos
_CIsinh
_CIsin

Exports

Exports

luaD_growstack
luaF_newproto
luaL_addlstring
luaL_addstring
luaL_addvalue
luaL_argerror
luaL_buffinit
luaL_callmeta
luaL_checkany
luaL_checkinteger
luaL_checklstring
luaL_checknumber
luaL_checkoption
luaL_checkstack
luaL_checktype
luaL_checkudata
luaL_error
luaL_findtable
luaL_getmetafield
luaL_gsub
luaL_loadbuffer
luaL_loadfile
luaL_loadstring
luaL_newmetatable
luaL_newstate
luaL_openlib
luaL_openlibs
luaL_optinteger
luaL_optlstring
luaL_optnumber
luaL_prepbuffer
luaL_pushresult
luaL_ref
luaL_register
luaL_typerror
luaL_unref
luaL_where
luaM_realloc_
luaM_toobig
luaS_newlstr
luaU_dump
lua_atpanic
lua_call
lua_checkstack
lua_close
lua_concat
lua_cpcall
lua_createtable
lua_dump
lua_equal
lua_error
lua_gc
lua_getallocf
lua_getfenv
lua_getfield
lua_gethook
lua_gethookcount
lua_gethookmask
lua_getinfo
lua_getlocal
lua_getmetatable
lua_getstack
lua_gettable
lua_gettop
lua_getupvalue
lua_insert
lua_iscfunction
lua_isnumber
lua_isstring
lua_isuserdata
lua_lessthan
lua_load
lua_newstate
lua_newthread
lua_newuserdata
lua_next
lua_objlen
lua_pcall
lua_pushboolean
lua_pushcclosure
lua_pushfstring
lua_pushinteger
lua_pushlightuserdata
lua_pushlstring
lua_pushnil
lua_pushnumber
lua_pushstring
lua_pushthread
lua_pushvalue
lua_pushvfstring
lua_rawequal
lua_rawget
lua_rawgeti
lua_rawset
lua_rawseti
lua_remove
lua_replace
lua_resume
lua_setallocf
lua_setfenv
lua_setfield
lua_sethook
lua_setlocal
lua_setmetatable
lua_settable
lua_settop
lua_setupvalue
lua_status
lua_toboolean
lua_tocfunction
lua_tointeger
lua_tolstring
lua_tonumber
lua_topointer
lua_tothread
lua_touserdata
lua_type
lua_typename
lua_xmove
lua_yield
luaopen_base
luaopen_debug
luaopen_io
luaopen_math
luaopen_os
luaopen_package
luaopen_string
luaopen_table

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

5089dfad9757b4e98342d65a4ea49e1b

Headers

DLL Characteristics

File Characteristics

Imports

lua5.1

winmm

wsock32

version

msacm32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

gdiplus

netapi32

imm32

imagehlp

Sections

.text Size: 4.3MB - Virtual size: 4.3MB

.rdata Size: 859KB - Virtual size: 859KB

.data Size: 145KB - Virtual size: 474KB

.rsrc Size: 206KB - Virtual size: 205KB

Password: infected

2feb5367bf6ffd4be7c6e37d1b6f4244

Headers

File Characteristics

PDB Paths

Imports

lua5.1

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

urlmon

wininet

Exports

Exports

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 606KB

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 20KB - Virtual size: 18KB

Password: infected

635c9d44287e81e9a3204d4547cde2f2

Headers

File Characteristics

Imports

kernel32

lua5.1

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

.text
Size: 4.3MB - Virtual size: 4.3MB

.rdata
Size: 859KB - Virtual size: 859KB

.data
Size: 145KB - Virtual size: 474KB

.rsrc
Size: 206KB - Virtual size: 205KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 606KB

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 20KB - Virtual size: 18KB

.text
Size: 77KB - Virtual size: 832KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2.2MB - Virtual size: 2.2MB

.reloc
Size: 4KB - Virtual size: 8B

.text
Size: 128KB - Virtual size: 125KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 868B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 5KB