t:\xl\x86\ship\0\excel.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
d7bac801eb5714764619180f30251796.exe
Resource
win7-20240220-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
d7bac801eb5714764619180f30251796.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
d7bac801eb5714764619180f30251796
-
Size
19.5MB
-
MD5
d7bac801eb5714764619180f30251796
-
SHA1
85fd84c1cb196529a83eaccfb251f524335b14af
-
SHA256
2d308933203744252691fb15fb6c02fa50bed49da96c68d8159ff8b911f5e235
-
SHA512
ef04a54a4cf3dd535b73d25187744c1f9720c86d293c2aedbf81d8a9da8bf703804019266e4d7ac8d04c430eba10e620b6b8596705517985a326aa3f838c0868
-
SSDEEP
393216:RcCM4/joZEE+U5umBJQh3wvj08XEBCfGdQb8/N22t5ktAD:mCMwoZf5uAvj5EBH5N22v
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d7bac801eb5714764619180f30251796
Files
-
d7bac801eb5714764619180f30251796.exe windows:5 windows x86 arch:x86
46145d9d6a5ab3915bdbb211f4d21464
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
advapi32
RegCloseKey
OpenProcessToken
MakeSelfRelativeSD
InitializeSecurityDescriptor
AllocateAndInitializeSid
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
InitializeAcl
SetSecurityDescriptorDacl
GetPrivateObjectSecurity
SetPrivateObjectSecurity
GetSecurityDescriptorLength
MapGenericMask
GetSecurityDescriptorDacl
GetAclInformation
LookupAccountNameW
EqualSid
FreeSid
BuildTrusteeWithSidW
GetExplicitEntriesFromAclW
SetEntriesInAclW
GetLengthSid
IsValidSecurityDescriptor
GetAce
LookupAccountSidW
ImpersonateSelf
OpenThreadToken
AccessCheck
RevertToSelf
GetSecurityDescriptorControl
GetSecurityDescriptorOwner
GetSecurityDescriptorGroup
GetSecurityDescriptorSacl
IsValidSid
IsValidAcl
SetNamedSecurityInfoW
CryptAcquireContextW
CryptReleaseContext
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
RegQueryInfoKeyW
RegEnumKeyExW
MakeAbsoluteSD
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSecurityDescriptorToStringSecurityDescriptorW
RegOpenKeyExW
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
UnregisterTraceGuids
TraceEvent
RegQueryValueExA
RegOpenKeyExA
RegisterTraceGuidsA
DeregisterEventSource
ReportEventW
RegisterEventSourceW
RegOpenKeyA
RegQueryValueExW
gdi32
DeleteEnhMetaFile
SelectClipRgn
CreateSolidBrush
RestoreDC
GetTextColor
GetStockObject
IntersectClipRect
GetViewportExtEx
SetViewportExtEx
GetClipBox
CreatePen
CreatePatternBrush
GetNearestColor
GetTextFaceW
GetNearestPaletteIndex
SaveDC
GetMapMode
CreateBrushIndirect
CreateCompatibleBitmap
SetMapMode
CombineRgn
DPtoLP
GetPaletteEntries
DeleteObject
CreateBitmap
GetTextCharsetInfo
GetRgnBox
ExcludeClipRect
GetDIBits
SetBrushOrgEx
CreateFontIndirectW
CreateHatchBrush
EnumFontsW
GetWindowExtEx
SetWindowExtEx
LPtoDP
GetTextMetricsW
CreateDIBPatternBrush
GetWindowOrgEx
EnumFontFamiliesW
SetWindowOrgEx
SetBitmapBits
ExtCreatePen
MoveToEx
GetCurrentPositionEx
LineTo
PatBlt
Polygon
Ellipse
Pie
Arc
CreateCompatibleDC
DeleteDC
GetBitmapBits
GetPixel
SetPixel
Escape
CreatePolygonRgn
GetEnhMetaFileHeader
GetWinMetaFileBits
SetMetaFileBitsEx
CreateMetaFileW
EnumMetaFile
CloseMetaFile
DeleteMetaFile
GetMetaFileBitsEx
SetWinMetaFileBits
PlayMetaFileRecord
PlayEnhMetaFileRecord
EnumEnhMetaFile
GdiComment
Polyline
CreateDIBSection
GdiFlush
GetSystemPaletteEntries
CreatePalette
SelectPalette
RealizePalette
RoundRect
Rectangle
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
OffsetRgn
GetTextAlign
SetTextAlign
SetMapperFlags
EnumObjects
GetCurrentObject
ExtEscape
SetAbortProc
AbortDoc
EndDoc
StartPage
EndPage
CreateICW
SetStretchBltMode
StretchDIBits
InvertRgn
GetEnhMetaFileBits
CopyMetaFileW
CopyEnhMetaFileW
CreateDIBitmap
SetEnhMetaFileBits
SetDIBits
GetOutlineTextMetricsW
ExtTextOutA
ExtTextOutW
UnrealizeObject
GetClipRgn
GetTextExtentPoint32W
TextOutW
SetViewportOrgEx
ScaleViewportExtEx
GetLayout
SetLayout
CreateFontA
CreateBitmapIndirect
GetObjectType
StretchBlt
GetBkColor
GetCharacterPlacementA
PlayEnhMetaFile
GetTextMetricsA
GetWorldTransform
SetGraphicsMode
GetRegionData
BitBlt
GetObjectW
SetBkMode
SetROP2
SetTextColor
SetBkColor
SelectObject
SetWorldTransform
GetDeviceCaps
SetRectRgn
kernel32
OutputDebugStringA
WinExec
GlobalLock
GetSystemDefaultLCID
GlobalAlloc
GetVersionExW
lstrlenW
GlobalUnlock
GetModuleFileNameW
IsDBCSLeadByte
GetACP
IsDBCSLeadByteEx
GetDriveTypeW
GlobalSize
GlobalReAlloc
GetFileSize
GetFileTime
SetFileTime
GetVolumeInformationW
UnlockFile
LockFile
GetCurrentDirectoryW
MoveFileW
ReadFile
WriteFile
SetFilePointer
DeleteFileW
SetFileAttributesW
CloseHandle
SearchPathW
FindClose
FindFirstFileW
FindNextFileW
SetCurrentDirectoryW
SetEnvironmentVariableW
GetShortPathNameW
SetErrorMode
FindResourceW
LoadResource
GetLocalTime
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
CompareStringA
GetStringTypeW
FreeLibrary
LCMapStringW
IsBadReadPtr
GetOEMCP
DeleteCriticalSection
GetCurrentProcess
LocalAlloc
LocalFree
GetSystemDirectoryW
GetCommandLineW
GetCurrentThread
MultiByteToWideChar
InitializeCriticalSectionAndSpinCount
MoveFileExW
GetSystemDefaultLangID
DebugBreak
InitializeCriticalSection
CreateEventW
CreateThread
SetThreadIdealProcessor
GetExitCodeThread
TerminateThread
SetEvent
GetSystemInfo
GetTempFileNameW
GetSystemTime
IsBadWritePtr
TerminateProcess
RaiseException
OutputDebugStringW
SizeofResource
LockResource
GetWindowsDirectoryW
SetThreadPriority
GlobalAddAtomW
AddAtomW
FlushFileBuffers
GetTempPathW
lstrcmpW
GetFileAttributesExW
VirtualAlloc
VirtualFree
GetLocaleInfoW
IsValidCodePage
LoadLibraryExW
LoadLibraryA
EnumCalendarInfoW
GetLogicalDrives
GetFullPathNameW
HeapAlloc
GetProcessHeap
HeapReAlloc
HeapFree
IsValidLocale
GlobalGetAtomNameW
GlobalDeleteAtom
QueryPerformanceCounter
SystemTimeToTzSpecificLocalTime
SetCriticalSectionSpinCount
QueryPerformanceFrequency
InitializeSListHead
InterlockedFlushSList
InterlockedPushEntrySList
WaitForSingleObjectEx
ResetEvent
WaitForSingleObject
WideCharToMultiByte
GetStringTypeExW
LoadLibraryW
GetLastError
GetFileAttributesW
GetVersion
GetProcAddress
GetModuleHandleW
GetModuleHandleA
SetLastError
GetCurrentProcessId
OpenFile
LoadLibraryExA
TlsAlloc
FormatMessageW
TlsSetValue
TlsGetValue
TlsFree
GetStringTypeExA
GetStartupInfoA
InterlockedCompareExchange
InterlockedExchange
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
VirtualProtect
RtlCaptureStackBackTrace
GetModuleHandleExW
FormatMessageA
GetUserDefaultLCID
GetVersionExA
GetCurrentThreadId
GetGeoInfoW
GetUserGeoID
GetTickCount
Sleep
MulDiv
EnterCriticalSection
LeaveCriticalSection
DecodePointer
GlobalFree
EncodePointer
ole32
OleSetMenuDescriptor
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoCreateGuid
CoCreateInstanceEx
GetHGlobalFromILockBytes
OleCreateFromData
CoRegisterMessageFilter
CoFreeUnusedLibraries
CoUninitialize
OleQueryCreateFromData
CoAllowSetForegroundWindow
CoRegisterClassObject
CoRevokeClassObject
CreateOleAdviseHolder
OleRegGetUserType
CreateDataAdviseHolder
OleQueryLinkFromData
CoInitialize
CoInitializeEx
IsAccelerator
OleSetContainedObject
ReadClassStm
CoTreatAsClass
SetConvertStg
WriteClassStg
WriteClassStm
OleSaveToStream
OleConvertIStorageToOLESTREAM
OleConvertOLESTREAMToIStorage
CoTaskMemAlloc
CLSIDFromProgID
CoFileTimeNow
CoIsOle1Class
CreateItemMoniker
WriteFmtUserTypeStg
OleGetIconOfClass
ReadFmtUserTypeStg
CoGetMalloc
GetClassFile
CLSIDFromString
OleSave
OleUninitialize
DoDragDrop
OleInitialize
ReadClassStg
CoDisconnectObject
CreateGenericComposite
OleIsRunning
ProgIDFromCLSID
ReleaseStgMedium
MkParseDisplayName
OleRun
OleCreateLinkFromData
CreateBindCtx
CoTaskMemFree
CoMarshalInterface
CoUnmarshalInterface
OleGetClipboard
OleFlushClipboard
OleSetClipboard
StringFromGUID2
GetHGlobalFromStream
CoLockObjectExternal
GetRunningObjectTable
CoCreateInstance
CoGetClassObject
CreateFileMoniker
StringFromCLSID
StgIsStorageFile
StgSetTimes
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleIsCurrentClipboard
OleTranslateAccelerator
oleaut32
VariantInit
VariantClear
VariantChangeType
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysStringLen
SysFreeString
SafeArrayUnlock
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayLock
SafeArrayDestroy
SysAllocStringLen
SafeArrayGetElement
SafeArrayPutElement
GetErrorInfo
OleCreateFontIndirect
VariantChangeTypeEx
VariantCopyInd
SysAllocStringByteLen
SysReAllocStringLen
SetErrorInfo
LoadTypeLi
RegisterTypeLi
SafeArrayPtrOfIndex
SafeArrayGetElemsize
RegisterActiveObject
RevokeActiveObject
LoadRegTypeLi
CreateErrorInfo
VarDateFromUdate
VarUdateFromDate
GetAltMonthNames
VariantCopy
user32
SetWindowsHookExW
GetKeyboardState
SetKeyboardState
UnhookWindowsHookEx
SetActiveWindow
IsRectEmpty
MonitorFromPoint
MonitorFromWindow
GetMonitorInfoW
RegisterClassExW
ClientToScreen
ShowWindow
AdjustWindowRectEx
HideCaret
ShowCaret
GetActiveWindow
IsChild
GetSystemMenu
PeekMessageW
BeginPaint
EndPaint
GetScrollInfo
InvalidateRect
GetTopWindow
GetParent
MapWindowPoints
GetWindowTextW
GetUpdateRgn
InvalidateRgn
ExcludeUpdateRgn
ValidateRect
ValidateRgn
SetCapture
ReleaseCapture
GetCapture
EnableWindow
IsWindowEnabled
IsWindow
DestroyWindow
UpdateWindow
FlashWindow
DispatchMessageW
GetClassLongW
BeginDeferWindowPos
EndDeferWindowPos
RedrawWindow
GetUpdateRect
SetClassLongW
IsWindowVisible
InSendMessage
VkKeyScanW
GetClassNameW
TranslateMessage
MapVirtualKeyW
WaitMessage
GetQueueStatus
GetInputState
PostQuitMessage
GetCursorPos
RegisterClipboardFormatW
SetCursor
ShowCursor
MessageBeep
FindWindowW
OpenIcon
GetWindowThreadProcessId
SetRectEmpty
EnumDisplayMonitors
CreateMenu
DestroyMenu
DrawMenuBar
GetMenuItemCount
GetMenuItemID
RemoveMenu
GetSubMenu
EnableMenuItem
AppendMenuW
TrackPopupMenu
EnumThreadWindows
SetWindowWord
SetScrollPos
DeferWindowPos
CallWindowProcW
GetDlgItem
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollInfo
EmptyClipboard
CloseClipboard
GetKeyboardLayout
IsClipboardFormatAvailable
GetClipboardData
SetClipboardData
OpenClipboard
GetClipboardOwner
EnumClipboardFormats
CreateCaret
DestroyCaret
GetCaretPos
PostMessageW
GetThreadDesktop
OpenInputDesktop
GetUserObjectInformationW
CloseDesktop
IsCharUpperW
SetWindowTextA
IsWindowUnicode
DispatchMessageA
GetMessageW
WindowFromPoint
SetCursorPos
ArrangeIconicWindows
IsZoomed
GetAncestor
SetParent
FlashWindowEx
GetMenu
UnregisterClassW
MoveWindow
EqualRect
GetMessagePos
ToAscii
ToUnicode
GetMessageTime
BringWindowToTop
GetTitleBarInfo
GetWindowInfo
DestroyIcon
DrawIcon
NotifyWinEvent
GetAsyncKeyState
RegisterWindowMessageW
EnumChildWindows
CharUpperA
CharLowerW
ActivateKeyboardLayout
FreeDDElParam
PackDDElParam
GetClipboardFormatNameW
SetWindowTextW
CreatePopupMenu
CharLowerBuffW
DrawFrameControl
GetCursor
SetMenu
CreateAcceleratorTableW
CharUpperBuffW
CreateIconIndirect
IsCharAlphaW
GetForegroundWindow
DefWindowProcW
LoadCursorFromFileW
GetIconInfo
GetKeyboardLayoutList
CallNextHookEx
LoadImageW
MessageBoxW
PostMessageA
DestroyAcceleratorTable
GetDesktopWindow
GetDoubleClickTime
GetWindowDC
UnpackDDElParam
SendMessageTimeoutW
MessageBoxA
GetKeyState
OffsetRect
SetWindowPos
ScreenToClient
GetWindowRect
SendMessageW
SetWindowPlacement
GetWindowPlacement
GetWindow
FillRect
IsIconic
SetForegroundWindow
MonitorFromRect
SetWindowLongW
GetWindowLongW
CreateWindowExW
GetSystemMetrics
RegisterClassW
LoadIconW
LoadCursorW
RegisterWindowMessageA
KillTimer
SetTimer
GetSysColor
SetCaretPos
SetRect
PtInRect
SystemParametersInfoW
TrackMouseEvent
DrawFocusRect
SetFocus
InflateRect
GetClientRect
EnumDisplaySettingsW
GetFocus
UnionRect
ReleaseDC
GetDC
GetWindowWord
IntersectRect
msvcr90
memcpy
__CxxFrameHandler3
_vscwprintf
floor
__CxxLongjmpUnwind
_CxxThrowException
_seh_longjmp_unwind4
_invoke_watson
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
_crt_debugger_hook
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
vswprintf_s
memset
free
malloc
tolower
_fpreset
toupper
_ecvt_s
_wtof
_wsplitpath_s
_vsnprintf_s
wcscspn
atof
_controlfp_s
wcsncmp
_snwprintf_s
rand
srand
_wtoi
memcpy_s
wcsnlen
_vsnwprintf_s
strncpy_s
wcsrchr
memmove
wcschr
exit
wcsstr
_wassert
ceil
?raw_name@type_info@@QBEPBDXZ
wcsncpy_s
??8type_info@@QBE_NABV0@@Z
gfx
ord819
ord699
ord77
ord590
ord879
ord377
ord762
ord185
ord504
ord24
ord166
ord235
ord541
ord171
ord207
ord145
ord892
ord70
ord952
ord192
ord341
ord316
ord353
ord624
ord175
ord635
ord931
ord214
ord833
ord133
ord951
ord216
ord322
ord844
ord453
ord471
ord649
ord794
ord307
ord362
ord787
ord782
ord641
ord843
ord302
ord326
ord795
ord498
ord430
ord11
ord569
ord75
ord938
ord601
ord770
ord61
ord534
ord735
ord627
ord513
ord46
ord303
ord976
ord752
ord467
ord34
ord497
ord910
ord164
oart
ord5830
ord3901
ord3528
ord7116
ord5624
ord6934
ord1321
ord7349
ord2130
ord3194
ord2428
ord8222
ord3247
ord6878
ord6492
ord4825
ord3315
ord985
ord6327
ord2574
ord5062
ord475
ord134
ord5723
ord7724
ord3829
ord964
ord8040
ord5774
ord2585
ord6687
ord3452
ord2032
ord4588
ord446
ord1876
ord7281
ord6769
ord6424
ord1607
ord1430
ord2475
ord5479
ord616
ord8179
ord3156
ord978
ord3994
ord3910
ord6560
ord2943
ord5292
ord2335
ord7273
ord4059
ord4269
ord3460
ord988
ord8260
ord5811
ord2950
ord3426
ord7920
ord1633
ord2538
ord790
ord7052
ord6553
ord2929
ord6331
ord7634
ord6334
ord4483
ord362
ord4270
ord5331
ord3772
ord5278
ord961
ord6407
ord4429
ord2786
ord2189
ord4532
ord2776
ord314
ord7333
ord2340
ord2107
ord1333
ord7890
ord7713
ord592
ord2246
ord5833
ord604
ord5518
ord4796
ord4535
ord6113
ord2445
ord6632
ord5227
ord4842
ord912
ord6362
ord2152
ord8417
ord1663
ord344
ord4353
ord1976
ord3673
ord1102
ord6659
ord5923
ord59
ord4685
ord3956
ord1978
ord2047
ord5983
ord2135
ord1715
ord4681
ord4607
ord6544
ord1905
ord3610
ord7764
ord7749
ord3821
ord6531
ord2676
ord8276
ord81
ord7388
ord6338
ord7593
ord1398
ord4206
ord732
ord5512
ord8370
ord1870
ord7711
ord8245
ord5459
ord6998
ord5946
ord6595
ord4759
ord6714
ord7812
ord8054
ord2410
ord6977
ord3900
ord4049
ord7602
ord5111
ord5808
ord7013
ord4159
ord7193
ord243
ord1879
ord1045
ord2998
ord6534
ord7867
ord2338
ord1080
ord5330
ord3891
ord7578
ord1988
ord639
ord4621
ord6127
ord7718
ord3851
ord5260
ord7475
ord1682
ord6387
ord2064
ord6827
ord3909
ord5785
ord4762
ord3151
ord3155
ord5869
ord295
ord6844
ord4793
ord5710
ord4617
ord7356
ord3983
ord1923
ord6660
ord2372
ord7704
ord5709
ord258
ord5312
ord2436
ord6062
ord8225
ord4256
ord8207
ord7529
ord6743
ord909
ord1840
ord1851
ord4492
ord4105
ord5346
ord3567
ord7306
ord2174
ord8070
ord1660
ord5009
ord7061
ord7509
ord7775
ord4222
ord2751
ord3820
ord1200
ord8415
ord4544
ord6291
ord7111
ord8195
ord3845
ord4229
ord6400
ord3846
ord3608
ord2610
ord5966
ord1115
ord1172
ord1288
ord3773
ord8171
ord5338
ord8421
ord953
ord1491
ord8329
ord5635
ord2385
ord3681
ord2458
ord6278
ord1054
ord788
ord2670
ord3325
ord1886
ord5015
ord7358
ord7121
ord4846
ord764
ord1627
ord4849
ord2056
ord2562
ord2039
ord3599
ord7303
ord5953
ord3329
ord2102
ord5779
ord2394
ord3936
ord332
ord2437
ord2474
ord5683
ord2778
ord4190
ord1006
ord5879
ord5149
ord285
ord7003
ord5629
ord1594
ord6147
ord2679
ord6228
ord2257
ord3328
ord4073
ord7202
ord3921
ord1316
ord3729
ord2694
ord3980
ord7691
ord8353
ord7513
ord2899
ord1789
ord2328
ord7991
ord4445
ord2468
ord4495
ord3605
ord1113
ord1799
ord454
ord6460
ord3970
ord4185
ord5076
ord2948
ord1381
ord5425
ord4618
ord8175
ord2084
ord7675
ord834
ord5718
ord1386
ord6883
ord3704
ord1525
ord741
ord7334
ord2492
ord4111
ord4879
ord5200
ord7990
ord7447
ord4513
ord5101
ord5294
ord4822
ord10
ord5775
ord5485
ord6374
ord7892
ord1189
ord3273
ord8361
ord5034
ord7484
ord6118
ord1791
ord3029
ord7905
ord4701
ord2936
ord6279
ord8132
ord2504
ord713
ord5543
ord1339
ord8073
ord4600
ord2235
ord2726
ord8412
ord5047
ord855
ord5920
ord1108
ord693
ord1345
ord1588
ord520
ord3944
ord4260
ord3837
ord6350
ord2904
ord6967
ord4547
ord8144
ord3202
ord2954
ord3693
ord8124
ord4947
ord1661
ord90
ord2506
ord6924
ord4980
ord3095
ord5996
ord6590
ord3235
ord6052
ord5843
ord2116
ord5794
ord6418
ord6591
ord6006
ord971
ord2124
ord1793
ord4402
ord5623
ord4356
ord4918
ord3530
ord7961
ord1935
ord6987
ord4094
ord1587
ord6231
ord3627
ord1678
ord2037
ord3611
ord1801
ord682
ord3946
ord5941
ord2890
ord7468
ord6438
ord4197
ord658
ord1238
ord4514
ord2059
ord263
ord5642
ord3945
ord4744
ord8033
ord7271
ord4275
ord6899
ord2790
ord5711
ord5403
ord2740
ord5248
ord5476
ord5022
ord4253
ord6990
ord1122
ord1909
ord6849
ord7842
ord7146
ord6003
ord2705
ord2494
ord6718
ord6992
ord3987
ord2956
ord8275
ord1297
ord8296
ord5859
ord7516
ord5483
ord4319
ord6546
ord6772
ord304
ord1093
ord3037
ord4957
ord6441
ord1602
ord6885
ord6623
ord3527
ord449
ord40
ord5994
ord1738
ord2749
ord1021
ord4216
Exports
Exports
DllGetLCID
MdCallBack
MdCallBack12
_LPenHelper
Sections
.text Size: 15.7MB - Virtual size: 15.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1009KB - Virtual size: 1012KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 679KB - Virtual size: 679KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ